the log entries you are seeing are rather normal. welcome to the internet
in other words: there are a lot of bots running on hacked servers that are simply trying to spread or find ways into other peoples servers. for that it often is easier to just throw requests for known vulnerable frameworks or services at any available domain or IP address.
like someone would walk across a parking lot trying every cars doors to see if one of them has been left open - it’s just wild guessing.
this is most likely not a attack directly targeted at you but rather ‘ground noise’ - as you said yourself, you are not even running wordpress
for the issue with not reaching hestia: there has been an (automated) update tonight, which seems to have lead to some systems get stuck on updating/installing a specific hestia package. there sadly were more reports already of people running deb 10 and having to restart or getting stuck on the update of hestia-nginx.