コンニチハレバレトシタアオゾラ

つれづれなるままに、日暮らし、ぶろぐにむかひて、心にうつりゆくよしなしごとを、そこはかとなく書きつくれば、

2021/02/05 ハニーポット(仮) 観測記録

honeypot

ハニーポット(仮) 観測記録 2021/02/05分です。

特徴
共通

Liferay Portal JSON Web Serviceの脆弱性(CVE-2020-7961)を狙うアクセス
PHPUnit脆弱性(CVE-2017-9841)を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
zgrabによるスキャン行為
Apache Solrへのスキャン行為
Apache Tomcatへのスキャン行為
Laravelへのスキャン行為
phpMyAdminへのスキャン行為
WordPress Pluginへのスキャン行為
110[.]242[.]68[.]4に関する不正通信

Location:JP

GPONルータの脆弱性(CVE-2018-10561)を狙うアクセス
Spring Bootの脆弱性を狙うアクセス
Anarchy99によるスキャン行為
IDBTE4M CODE87によるスキャン行為
ZmEuによるスキャン行為
UserAgentがHello, Worldであるアクセス
を確認しました。

Location:US

ZmEuによるスキャン行為
を確認しました。

Location:UK

GPONルータの脆弱性(CVE-2018-10561)を狙うアクセス
Spring Bootの脆弱性を狙うアクセス
UserAgentがHello, Worldであるアクセス
を確認しました。

Location:SG

Spring Bootの脆弱性を狙うアクセス
/.envへのスキャン行為
を確認しました。

アクセス数推移

JP:総アクセス数:289 (前日比:+203)
US:総アクセス数:46 (前日比:-5)
UK:総アクセス数:264 (前日比:+99)
SG:総アクセス数:158 (前日比:+77)

都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。

Location:JP

送信元IPアドレス一覧

件数 送信元IPアドレス
1 1.202.114.160 China
2 3.23.85.108 United States
1 3.80.105.59 United States
1 5.8.10.202 Russia
1 13.76.44.90 United States
1 27.224.136.254 China
4 36.78.198.192 Indonesia
1 40.78.153.184 United States
11 45.155.205.108 Russia
1 51.105.58.200 United Kingdom
1 52.161.97.190 United States
1 89.190.156.35 United States
3 104.236.0.158 United States
3 106.13.196.54 China
1 111.224.221.20 China
1 112.193.169.144 China
1 119.120.228.76 China
10 121.4.74.222 China
101 123.162.193.95 China
1 124.156.54.114 Singapore
1 124.227.31.123 China
1 124.227.31.150 China
1 124.227.31.170 China
1 129.146.190.190 United States
1 139.162.145.250 Netherlands
1 157.90.113.92 Germany
2 159.69.50.92 Germany
1 165.227.205.192 United States
7 167.172.242.169 United States
1 172.104.242.173 United States
1 172.105.89.161 United States
1 178.128.61.235 United States
101 180.114.184.211 China
1 182.138.137.99 China
4 185.224.129.247 Netherlands
2 191.101.192.95 Chile
1 192.241.209.196 United States
1 192.241.218.95 United States
1 192.241.220.203 United States
1 197.230.3.98 Morocco
2 199.19.226.67 United States
3 203.170.193.86 Thailand
1 205.185.121.3 United States
1 206.189.94.151 United States
2 209.141.53.219 United States
1 220.200.159.43 China
1 221.213.75.113 China

UserAgent一覧

件数 UserAgent
16 -
1 Anarchy99
1 Go-http-client/1.1
1 Hello, World
1 IDBTE4M CODE87
2 Java/1.8.0_221
1 Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0)
6 Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.101 Safari/537.36
202 Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36
6 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
11 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
9 Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)
17 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
4 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0
3 Mozilla/5.0 zgrab/0.x
1 Mozilla/5.01732016 Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:55.0) Gecko/20100101 Firefox/55.0
3 PycURL/7.43.0 libcurl/7.47.0 GnuTLS/3.4.10 zlib/1.2.8 libidn/1.32 librtmp/2.3
4 ZmEu

リクエスト内容一覧

件数 Method Request Protocol
1 \x16\x03\x01
1 CONNECT www[.]baidu[.]com/:443 HTTP/1.1
1 CONNECT www[.]google[.]com/:443 HTTP/1.1
1 CONNECT www[.]so[.]com/:443 HTTP/1.1
1 CONNECT www[.]voanews[.]com/:443 HTTP/1.1
1 CONNECT www[.]zoosk[.]com/:443 HTTP/1.1
16 GET /.env HTTP/1.1
1 GET /0bef HTTP/1.0
1 GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1
1 GET /?a=fetch&content=die(@md5(HelloThinkCMF)) HTTP/1.1
1 GET /TP/html/public/index.php HTTP/1.1
1 GET /TP/index.php HTTP/1.1
1 GET /TP/public/index.php HTTP/1.1
1 GET /_ignition/execute-solution HTTP/1.1
1 GET /actuator/health HTTP/1.1
1 GET /bag2 HTTP/1.1
1 GET /c/version.js HTTP/1.1
1 GET /client_area/ HTTP/1.1
4 GET /config/getuser?index=0 HTTP/1.1
1 GET /console/ HTTP/1.1
1 GET /elrekt.php HTTP/1.1
1 GET /html/public/index.php HTTP/1.1
1 GET /hudson HTTP/1.1
1 GET /index.php HTTP/1.1
1 GET /index.php?s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1]=HelloThinkPHP21 HTTP/1.1
1 GET /index.php?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1]=1 HTTP/1.1
3 GET /jenkins/login HTTP/1.0
3 GET /login HTTP/1.0
3 GET /manager/html HTTP/1.0
2 GET /phpMyAdmin/scripts/setup.php HTTP/1.1
202 GET /phpmyadmin/ HTTP/1.1
1 GET /portal/redlion HTTP/1.1
1 GET /public/.env HTTP/1.1
1 GET /public/index.php HTTP/1.1
1 GET /script HTTP/1.1\n
1 GET /solr/admin/info/system?wt=json HTTP/1.1
1 GET /stalker_portal/c/ HTTP/1.1
1 GET /stalker_portal/c/version.js HTTP/1.1
1 GET /storage/.env HTTP/1.1
1 GET /streaming/clients_live.php HTTP/1.1
1 GET /system_api.php HTTP/1.1
1 GET /thinkphp/html/public/index.php HTTP/1.1
1 GET /vendor/.env HTTP/1.1
1 GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
2 GET /w00tw00t.at.blackhats.romanian.anti-sec:) HTTP/1.1
1 GET /wp-content/plugins/wp-file-manager/readme.txt HTTP/1.1
1 GET http[:]//dongtaiwang[.]com/ HTTP/1.1
1 GET http[:]//www[.]epochtimes[.]com/ HTTP/1.1
1 GET http[:]//www[.]minghui[.]org/ HTTP/1.1
1 GET http[:]//www[.]rfa[.]org/english/ HTTP/1.1
1 GET http[:]//www[.]soso[.]com/ HTTP/1.1
1 GET http[:]//www[.]wujieliulan[.]com/ HTTP/1.1
1 HEAD / HTTP/1.0\n
1 HEAD /robots.txt HTTP/1.0
1 HEAD http[:]//110[.]242[.]68[.]4/ HTTP/1.1
1 POST /Autodiscover/Autodiscover.xml HTTP/1.1
1 POST /GponForm/diag_Form?images/ HTTP/1.1
1 POST /api/jsonws/invoke HTTP/1.1
1 POST /index.php?s=captcha HTTP/1.1
1 POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 \x01\x00\x00\x00 \xbf\x02\x00\x88\x13\x00\x00\x87\x00\x00\x00NIMABIJIAN\x04\x03\x00\x00{\x99Caig\x9c\x03\xc7eB\xc5\t\xc1\x18a\x11\x1a\x91\x1f\x02\tcof\x91\xc0\x80sJ5\xd2\x80\xe6\x9a~\xb9\xc7\x83^\x96\xeeN\x16\x96\x96&\xe6\x03\xea\xbc\x81\x02=\xac\x10\xfa?7\x03\xc3\xdf\xf7\xe4\x98`p\xe6\x8d\xc1\xa9\x8d\xc6\x06\xdb\xaf\x91\xe7\x82s\xf7\x14H\xd4\xe1W\x9a\x93C\x9e]\xa4\x01#\x03#\x03]\x03c]CC\x05C\x03+S\x03b\xf4\x00\x00/\x9e\x16E\n
1 \xba\xabd\xa1EZC\xdbM\x87\xee^\xfd\xbf\x159 X\xd4>\x12\x98\xc4<\xe0\x13\xcf
Location:US

送信元IPアドレス一覧

件数 送信元IPアドレス
1 3.80.105.59 United States
1 5.8.10.202 Russia
1 5.188.210.227 Russia
1 13.239.27.149 United States
1 27.211.177.0 China
11 45.155.205.108 Russia
1 51.210.242.102 France
1 61.219.11.153 Taiwan
1 64.225.58.93 United States
1 81.30.144.119 Germany
1 89.190.156.35 United States
1 113.58.232.242 China
1 113.120.10.134 China
1 113.128.104.30 China
1 119.39.46.92 China
1 119.39.46.199 China
1 123.145.5.233 China
1 123.160.235.85 China
1 124.90.53.68 China
1 124.227.31.27 China
1 124.227.31.208 China
1 172.105.89.161 United States
3 180.46.201.141 Japan
1 185.153.196.198 Russia
4 185.224.129.247 Netherlands
1 192.241.202.249 United States
2 199.19.226.67 United States
3 221.234.36.70 China

UserAgent一覧

件数 UserAgent
10 -
1 Mozilla/4.01707650 Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; EmbeddedWB 14.52 from: http://www.bsalsa.com/ EmbeddedWB 14.52; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0)
1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.96 Safari/537.36
6 Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.101 Safari/537.36
11 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
1 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36
1 Mozilla/5.0 (Windows; U; Windows NT 5.1; en-GB; rv:1.8.1.3) Gecko/20070309 Firefox/2.0.0.3
3 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
4 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0
1 Mozilla/5.0 zgrab/0.x
4 PycURL/7.43.0 libcurl/7.47.0 GnuTLS/3.4.10 zlib/1.2.8 libidn/1.32 librtmp/2.3
2 ZmEu
1 python-requests/2.24.0

リクエスト内容一覧

件数 Method Request Protocol
3 -
1 \x03
1 \x16\x03\x01
1 CONNECT cn[.]bing[.]com/:443 HTTP/1.1
1 CONNECT www[.]baidu[.]com/:443 HTTP/1.1
1 CONNECT www[.]so[.]com/:443 HTTP/1.1
1 CONNECT www[.]voanews[.]com/:443 HTTP/1.1
3 GET /.env HTTP/1.1
1 GET /.git/config HTTP/1.1
1 GET /0bef HTTP/1.0
1 GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1
1 GET /?a=fetch&content=die(@md5(HelloThinkCMF)) HTTP/1.1
1 GET /?feed=rss2 HTTP/1.1
1 GET /_ignition/execute-solution HTTP/1.1
4 GET /config/getuser?index=0 HTTP/1.1
1 GET /console/ HTTP/1.1
1 GET /favicon.ico HTTP/1.1
1 GET /hudson HTTP/1.1
1 GET /index.php?s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1]=HelloThinkPHP21 HTTP/1.1
1 GET /jenkins/login HTTP/1.0
1 GET /login HTTP/1.0
1 GET /manager/html HTTP/1.0
1 GET /phpMyAdmin/scripts/setup.php HTTP/1.1
1 GET /solr/admin/info/system?wt=json HTTP/1.1
1 GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /w00tw00t.at.blackhats.romanian.anti-sec:) HTTP/1.1
1 GET /wp-content/plugins/wp-file-manager/readme.txt HTTP/1.1
1 GET http[:]//5[.]188[.]210[.]227/echo.php HTTP/1.1
2 GET http[:]//a[.]189[.]cn/JJ6CvF HTTP/1.0
1 GET http[:]//dongtaiwang[.]com/ HTTP/1.1
1 GET http[:]//www[.]epochtimes[.]com/ HTTP/1.1
1 GET http[:]//www[.]minghui[.]org/ HTTP/1.1
1 GET http[:]//www[.]soso[.]com/ HTTP/1.1
1 HEAD /robots.txt HTTP/1.0
1 HEAD http[:]//110[.]242[.]68[.]4/ HTTP/1.1
1 POST /Autodiscover/Autodiscover.xml HTTP/1.1
1 POST /api/jsonws/invoke HTTP/1.1
1 POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
Location:UK

送信元IPアドレス一覧

件数 送信元IPアドレス
1 5.8.10.202 Russia
1 13.76.44.90 United States
3 18.191.134.91 United States
1 45.56.100.192 United States
11 45.155.205.108 Russia
3 47.100.212.6 China
10 49.234.145.59 China
1 61.219.11.153 Taiwan
101 91.83.149.165 Hungary
1 113.58.227.213 China
1 113.128.105.117 China
1 120.34.24.103 China
1 121.57.228.6 China
3 121.201.56.33 China
1 123.145.12.101 China
1 123.158.48.161 China
1 123.191.146.159 China
1 124.235.138.61 China
1 159.69.50.92 Germany
1 171.36.142.146 China
1 171.125.241.71 China
1 172.104.242.173 United States
1 175.152.110.15 China
4 185.224.129.247 Netherlands
101 188.193.235.144 Germany
1 192.241.197.228 United States
1 192.241.212.170 United States
1 192.241.222.102 United States
1 205.185.121.3 United States
6 206.189.4.55 United States
1 221.0.18.12 China

UserAgent一覧

件数 UserAgent
20 -
1 Go-http-client/1.1
1 Hello, World
5 Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.101 Safari/537.36
202 Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36
11 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
1 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36Mozilla/5.01732016 Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:55.0) Gecko/20100101 Firefox/55.0
9 Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)
2 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
4 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0
3 Mozilla/5.0 zgrab/0.x
4 PycURL/7.43.0 libcurl/7.47.0 GnuTLS/3.4.10 zlib/1.2.8 libidn/1.32 librtmp/2.3
1 python-requests/2.25.1

リクエスト内容一覧

件数 Method Request Protocol
1 -
1 \x16\x03\x01
1 CONNECT cn[.]bing[.]com/:443 HTTP/1.1
1 CONNECT www[.]baidu[.]com/:443 HTTP/1.1
1 CONNECT www[.]so[.]com/:443 HTTP/1.1
1 CONNECT www[.]voanews[.]com/:443 HTTP/1.1
3 GET /.env HTTP/1.1
1 GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1
1 GET /?a=fetch&content=die(@md5(HelloThinkCMF)) HTTP/1.1
1 GET /TP/html/public/index.php HTTP/1.1
1 GET /TP/index.php HTTP/1.1
1 GET /TP/public/index.php HTTP/1.1
1 GET /_ignition/execute-solution HTTP/1.1
1 GET /actuator/health HTTP/1.1
4 GET /config/getuser?index=0 HTTP/1.1
1 GET /console/ HTTP/1.1
1 GET /elrekt.php HTTP/1.1
1 GET /html/public/index.php HTTP/1.1
1 GET /hudson HTTP/1.1
1 GET /index.php HTTP/1.1
1 GET /index.php?s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1]=HelloThinkPHP21 HTTP/1.1
1 GET /index.php?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1]=1 HTTP/1.1
5 GET /jenkins/login HTTP/1.0
5 GET /login HTTP/1.0
5 GET /manager/html HTTP/1.0
202 GET /phpmyadmin/ HTTP/1.1
1 GET /portal/redlion HTTP/1.1
1 GET /public/index.php HTTP/1.1
1 GET /script HTTP/1.1
1 GET /solr/admin/info/system?wt=json HTTP/1.1
1 GET /thinkphp/html/public/index.php HTTP/1.1
1 GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /wp-content/plugins/wp-file-manager/readme.txt HTTP/1.1
1 GET http[:]//dongtaiwang[.]com/ HTTP/1.1
1 GET http[:]//www[.]minghui[.]org/ HTTP/1.1
1 GET http[:]//www[.]rfa[.]org/english/ HTTP/1.1
1 GET http[:]//www[.]soso[.]com/ HTTP/1.1
1 GET http[:]//www[.]wujieliulan[.]com/ HTTP/1.1
1 HEAD http[:]//110[.]242[.]68[.]4/ HTTP/1.1
1 POST /Autodiscover/Autodiscover.xml HTTP/1.1
1 POST /GponForm/diag_Form?images/ HTTP/1.1
1 POST /HNAP1/ HTTP/1.0
1 POST /api/jsonws/invoke HTTP/1.1
1 POST /index.php?s=captcha HTTP/1.1
1 POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 \xba\xabd\xa1EZC\xdbM\x87\xee^\xfd\xbf\x159 X\xd4>\x12\x98\xc4<\xe0\x13\xcf
Location:SG

送信元IPアドレス一覧

件数 送信元IPアドレス
1 27.156.80.217 China
1 27.224.137.192 China
2 45.145.185.78 Netherlands
11 45.155.205.108 Russia
1 49.118.193.58 China
1 51.104.46.118 United Kingdom
1 51.105.58.200 United Kingdom
1 54.213.104.177 United States
1 60.208.209.75 China
1 61.219.11.153 Taiwan
1 78.121.199.146 France
4 85.26.92.232 Belgium
1 88.164.153.142 France
1 106.45.8.237 China
1 119.118.11.244 China
1 123.160.234.141 China
1 128.199.99.32 United Kingdom
1 139.162.145.250 Netherlands
1 171.37.39.67 China
1 171.120.25.24 China
1 172.104.242.173 United States
8 178.22.122.136 Iran
1 179.60.150.83 United Kingdom
1 180.95.238.22 China
3 180.100.213.72 China
101 180.136.109.59 China
3 185.224.129.247 Netherlands
2 191.101.192.95 Chile
1 192.241.222.142 United States
1 192.241.224.123 United States
1 205.185.121.3 United States
1 223.166.74.56 China

UserAgent一覧

件数 UserAgent
9 -
2 Java/1.8.0_221
1 Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0)
2 Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0
6 Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.101 Safari/537.36
101 Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36
1 Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Firefox/45.0
11 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
8 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/517.36 (KHTML, like Gecko) Chrome/51.0.2305.103 Safari/537.36
8 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
3 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0
2 Mozilla/5.0 zgrab/0.x
4 PycURL/7.43.0 libcurl/7.47.0 GnuTLS/3.4.10 zlib/1.2.8 libidn/1.32 librtmp/2.3

リクエスト内容一覧

件数 Method Request Protocol
2 -
1 \x03
1 CONNECT cn[.]bing[.]com/:443 HTTP/1.1
1 CONNECT www[.]baidu[.]com/:443 HTTP/1.1
1 CONNECT www[.]google[.]com/:443 HTTP/1.1
1 CONNECT www[.]so[.]com/:443 HTTP/1.1
1 CONNECT www[.]voanews[.]com/:443 HTTP/1.1
1 CONNECT www[.]zoosk[.]com/:443 HTTP/1.1
8 GET /.env HTTP/1.1
1 GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1
1 GET /?a=fetch&content=die(@md5(HelloThinkCMF)) HTTP/1.1
1 GET /_ignition/execute-solution HTTP/1.1
1 GET /actuator/health HTTP/1.1
1 GET /app/.env HTTP/1.1
1 GET /bag2 HTTP/1.1
3 GET /config/getuser?index=0 HTTP/1.1
1 GET /console/ HTTP/1.1
1 GET /core/.env HTTP/1.1
1 GET /http/.env HTTP/1.1
1 GET /hudson HTTP/1.1
1 GET /index.php?s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1]=HelloThinkPHP21 HTTP/1.1
1 GET /jenkins/login HTTP/1.0
1 GET /laravel/.env HTTP/1.1
1 GET /login HTTP/1.0
1 GET /manager/html HTTP/1.0
101 GET /phpmyadmin/ HTTP/1.1
1 GET /portal/.env HTTP/1.1
1 GET /private/.env HTTP/1.1
2 GET /public/.env HTTP/1.1
1 GET /script HTTP/1.1
1 GET /solr/admin/info/system?wt=json HTTP/1.1
1 GET /storage/.env HTTP/1.1
1 GET /vendor/.env HTTP/1.1
1 GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /wp-content/plugins/wp-file-manager/readme.txt HTTP/1.1
1 GET http[:]//dongtaiwang[.]com/ HTTP/1.1
1 GET http[:]//www[.]epochtimes[.]com/ HTTP/1.1
1 GET http[:]//www[.]minghui[.]org/ HTTP/1.1
1 GET http[:]//www[.]rfa[.]org/english/ HTTP/1.1
1 GET http[:]//www[.]soso[.]com/ HTTP/1.1
1 GET http[:]//www[.]wujieliulan[.]com/ HTTP/1.1
1 HEAD /robots.txt HTTP/1.0
1 HEAD http[:]//110[.]242[.]68[.]4/ HTTP/1.1
1 POST /Autodiscover/Autodiscover.xml HTTP/1.1
1 POST /api/jsonws/invoke HTTP/1.1
1 POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 \xba\xabd\xa1EZC\xdbM\x87\xee^\xfd\xbf\x159 X\xd4>\x12\x98\xc4<\xe0\x13\xcf