Sat Aug 22 06:25:15 MDT 2020
 06:25:15 up 2 days, 17:44,  1 user,  load average: 0.90, 1.43, 1.79
USER     TTY      FROM             LOGIN@   IDLE   JCPU   PCPU WHAT
pi       tty7     :0               Wed12    2days 10:30   0.72s /usr/bin/lxsession -s LXDE-pi -e LXDE
80.191.153.24 - - [22/Aug/2020:12:31:36 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.7"
192.241.235.192 - - [22/Aug/2020:12:33:12 +0000] "GET /hudson HTTP/1.1" 404 0 "" "Mozilla/5.0 zgrab/0.x"
66.249.64.207 - - [22/Aug/2020:13:09:40 +0000] "GET /ac0xl/www/slackbook/vi-configuration.html HTTP/1.1" 304 0 "" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.92 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
66.249.64.205 - - [22/Aug/2020:13:12:46 +0000] "GET /ac0xl/www/2005-museumarchives/Raw-Data/0-Raw-Data/Jim.Misc.2/Mike%2C%20Ruth%20Ann%20Watterson%20Thomson.tif HTTP/1.1" 304 0 "" "Googlebot-Image/1.0"
139.162.119.197 - - [22/Aug/2020:13:41:50 +0000] "GET / HTTP/1.1" 200 25000 "" "HTTP Banner Detection (https://security.ipip.net)"
66.249.64.207 - - [22/Aug/2020:13:44:49 +0000] "GET /ac0xl/www/2005-museumarchives/Charlotte/2005-06-30/100_1175.jpg HTTP/1.1" 304 0 "" "Googlebot-Image/1.0"
66.249.64.207 - - [22/Aug/2020:13:52:46 +0000] "GET /ac0xl/www/2003-ArchHunterBooks/images/1008.jpg HTTP/1.1" 404 0 "" "Googlebot-Image/1.0"
195.54.160.21 - - [22/Aug/2020:14:05:30 +0000] "GET /solr/admin/info/system?wt=json HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
195.54.160.21 - - [22/Aug/2020:14:08:13 +0000] "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
195.54.160.21 - - [22/Aug/2020:14:12:03 +0000] "GET /?a=fetch&content=<php>die(@md5(HelloThinkCMF))</php> HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
195.54.160.21 - - [22/Aug/2020:14:13:01 +0000] "GET /index.php?s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
195.54.160.21 - - [22/Aug/2020:14:55:44 +0000] "POST /api/jsonws/invoke HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
162.243.130.29 - - [22/Aug/2020:15:24:27 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 zgrab/0.x"
185.216.140.6 - - [22/Aug/2020:15:28:24 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 zgrab/0.x"
142.112.113.103 - - [22/Aug/2020:15:45:39 +0000] "POST /boaform/admin/formPing HTTP/1.1" 400 0 "" "polaris botnet"
142.112.113.103 - - [22/Aug/2020:15:45:39 +0000] "UNKNOWN  UNKNOWN" 400 0 "" ""
195.54.160.21 - - [22/Aug/2020:16:45:16 +0000] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
111.225.149.82 - - [22/Aug/2020:16:53:32 +0000] "GET /robots.txt HTTP/1.1" 200 70 "" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; https://zhanzhang.toutiao.com/)"
60.8.123.34 - - [22/Aug/2020:16:53:58 +0000] "GET /ac0xl/www/slackbook/security-depth:6 HTTP/1.1" 404 0 "" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; https://zhanzhang.toutiao.com/)"
195.54.160.21 - - [22/Aug/2020:17:13:52 +0000] "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
66.249.64.207 - - [22/Aug/2020:18:05:22 +0000] "GET /freedom/freedom-2020-01-08/freedom/thttpd-extras/sitemap.xml.txt HTTP/1.1" 304 0 "" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.92 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
66.249.64.205 - - [22/Aug/2020:18:42:09 +0000] "GET /pictures/StMichaelTheArchangelMission/2020-02-25/SANY1000.JPG HTTP/1.1" 200 830738 "" "Googlebot-Image/1.0"
45.148.121.138 - - [22/Aug/2020:18:55:00 +0000] "UNKNOWN  UNKNOWN" 400 0 "" ""
45.148.121.138 - - [22/Aug/2020:18:55:00 +0000] "GET / HTTP/1.1" 200 25000 "" "libwww-perl/6.05"
35.224.100.159 - - [22/Aug/2020:19:10:12 +0000] "UNKNOWN  UNKNOWN" 0 0 "" ""
35.224.100.159 - - [22/Aug/2020:19:10:12 +0000] "HEAD /robots.txt HTTP/1.0" 200 0 "" ""
195.230.113.99 - - [22/Aug/2020:19:15:54 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36"
178.187.239.220 - - [22/Aug/2020:19:49:21 +0000] "GET /adv,/cgi-bin/weblogin.cgi?username=admin%27%3Bls%20%23&password=asdf HTTP/1.1" 404 0 "" "Mozilla/5.0"
178.187.239.220 - - [22/Aug/2020:19:49:22 +0000] "UNKNOWN  UNKNOWN" 400 0 "" ""
66.249.64.205 - - [22/Aug/2020:20:02:07 +0000] "GET /ac0xl/www/2005-museumarchives/Charlotte/2005-06-11/100_1023s.jpg HTTP/1.1" 200 15700 "" "Googlebot-Image/1.0"
35.205.86.202 - - [22/Aug/2020:21:45:33 +0000] "GET / HTTP/1.1" 200 25000 "" "python-requests/2.18.4"
185.39.11.105 - - [22/Aug/2020:22:02:45 +0000] "POST /boaform/admin/formLogin HTTP/1.1" 404 0 "http://162.250.19.7:80/admin/login.asp" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0"
176.117.224.116 - - [22/Aug/2020:23:13:16 +0000] "UNKNOWN  UNKNOWN" 400 0 "" ""
185.39.11.105 - - [23/Aug/2020:00:02:10 +0000] "GET /config/getuser?index=0 HTTP/1.1" 404 0 "" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0"
177.102.39.42 - - [23/Aug/2020:00:22:57 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36"
80.82.78.85 - - [23/Aug/2020:01:26:59 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0"
162.243.130.6 - - [23/Aug/2020:01:39:03 +0000] "GET /portal/redlion HTTP/1.1" 404 0 "" "Mozilla/5.0 zgrab/0.x"
102.165.30.53 - - [23/Aug/2020:01:54:47 +0000] "GET / HTTP/1.0" 200 25000 "" "NetSystemsResearch studies the availability of various services across the internet. Our website is netsystemsresearch.com"
170.84.94.18 - - [23/Aug/2020:01:55:02 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36"
66.249.69.238 - - [23/Aug/2020:02:13:01 +0000] "GET /ac0xl/logs/2019.11.23 HTTP/1.1" 304 0 "" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.92 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
92.241.19.127 - - [23/Aug/2020:02:16:55 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36"
190.94.136.104 - - [23/Aug/2020:02:39:58 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36"
178.93.60.68 - - [23/Aug/2020:02:41:06 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36"
143.255.242.199 - - [23/Aug/2020:02:50:19 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36"
66.249.69.236 - - [23/Aug/2020:03:21:51 +0000] "GET /ac0xl/Dont-Be-Evil/Hiring%20Practices/go_diversity%20-%20OUR%20STRATEGY_files/unnamed(2).png HTTP/1.1" 200 8557 "" "Googlebot-Image/1.0"
221.227.31.2 - - [23/Aug/2020:04:10:05 +0000] "GET /phpmyadmin/ HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36"
185.150.189.165 - - [23/Aug/2020:04:16:28 +0000] "POST /boaform/admin/formLogin HTTP/1.1" 404 0 "http://162.250.19.7:80/admin/login.asp" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0"
66.249.69.238 - - [23/Aug/2020:05:21:51 +0000] "GET /ac0xl/www/2005-museumarchives/Raw-Data/0-Raw-Data/Jim.Misc.2/Awards%20Night%201983.tif HTTP/1.1" 304 0 "" "Googlebot-Image/1.0"
185.150.189.165 - - [23/Aug/2020:05:54:13 +0000] "GET /config/getuser?index=0 HTTP/1.1" 404 0 "" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0"
83.97.20.21 - - [23/Aug/2020:06:12:30 +0000] "GET / HTTP/1.0" 200 25000 "" ""
71.58.213.61 - - [23/Aug/2020:06:39:51 +0000] "UNKNOWN  UNKNOWN" 400 0 "" ""
71.58.213.61 - - [23/Aug/2020:06:39:52 +0000] "GET / HTTP/1.1" 200 25000 "" ""
185.150.189.165 - - [23/Aug/2020:06:40:28 +0000] "GET /config/getuser?index=0 HTTP/1.1" 404 0 "" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:76.0) Gecko/20100101 Firefox/76.0"
112.126.66.66 - - [23/Aug/2020:06:47:13 +0000] "UNKNOWN  UNKNOWN" 400 0 "" ""
112.126.66.66 - - [23/Aug/2020:06:47:14 +0000] "GET /TP/public/index.php HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)"
112.126.66.66 - - [23/Aug/2020:06:47:15 +0000] "GET /TP/index.php HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)"
112.126.66.66 - - [23/Aug/2020:06:47:15 +0000] "GET /thinkphp/html/public/index.php HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)"
112.126.66.66 - - [23/Aug/2020:06:47:16 +0000] "GET /html/public/index.php HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)"
112.126.66.66 - - [23/Aug/2020:06:47:17 +0000] "GET /public/index.php HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)"
112.126.66.66 - - [23/Aug/2020:06:47:17 +0000] "GET /TP/html/public/index.php HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)"
112.126.66.66 - - [23/Aug/2020:06:47:18 +0000] "GET /elrekt.php HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)"
112.126.66.66 - - [23/Aug/2020:06:47:18 +0000] "GET /index.php HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)"
112.126.66.66 - - [23/Aug/2020:06:47:19 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)"
66.249.69.238 - - [23/Aug/2020:07:21:51 +0000] "GET /ac0xl/Dont-Be-Evil/Hiring%20Practices/Cloud%20Tech%202017%20Slides/cloud_26.png HTTP/1.1" 200 50744 "" "Googlebot-Image/1.0"
223.71.167.165 - - [23/Aug/2020:08:57:31 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:47.0) Gecko/20100101 Firefox/47.0"
50.192.43.149 - - [23/Aug/2020:09:15:41 +0000] "POST /boaform/admin/formPing HTTP/1.1" 400 0 "" "polaris botnet"
50.192.43.149 - - [23/Aug/2020:09:15:41 +0000] "UNKNOWN  UNKNOWN" 400 0 "" ""
195.54.160.21 - - [23/Aug/2020:09:18:41 +0000] "GET /solr/admin/info/system?wt=json HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
195.54.160.21 - - [23/Aug/2020:09:35:57 +0000] "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
61.219.11.153 - - [23/Aug/2020:09:41:18 +0000] "UNKNOWN  UNKNOWN" 0 0 "" ""
195.54.160.21 - - [23/Aug/2020:09:54:55 +0000] "GET /?a=fetch&content=<php>die(@md5(HelloThinkCMF))</php> HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
195.54.160.21 - - [23/Aug/2020:10:03:50 +0000] "GET /index.php?s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP HTTP/1.1" 404 0 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
66.249.69.240 - - [23/Aug/2020:10:17:05 +0000] "GET /robots.txt HTTP/1.1" 200 70 "" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
66.249.69.236 - - [23/Aug/2020:10:17:05 +0000] "GET /ac0xl/logs/2019.09.07 HTTP/1.1" 304 0 "" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.92 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
66.249.69.236 - - [23/Aug/2020:10:19:38 +0000] "GET /ac0xl/www/2005-museumarchives/Raw-Data/0-Raw-Data/Jim.Misc.2/Peggy%20%26%20Pat%204.tif HTTP/1.1" 304 0 "" "Googlebot-Image/1.0"
66.249.69.236 - - [23/Aug/2020:10:41:12 +0000] "GET /ac0xl/Dont-Be-Evil/Fake%20News/Twiddler%20Quick%20Start%20Guide%20-%20Superroot.pdf HTTP/1.1" 200 266240 "" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
96.9.77.56 - - [23/Aug/2020:10:48:01 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36"
180.254.38.120 - - [23/Aug/2020:11:28:13 +0000] "GET / HTTP/1.1" 200 25000 "" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36"
86.178.61.11 - - [23/Aug/2020:12:03:42 +0000] "GET /favicon.ico HTTP/1.1" 200 533 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0"
86.178.61.11 - - [23/Aug/2020:12:03:43 +0000] "GET /ac0xl/logs/2020.07.03 HTTP/1.1" 200 463447 "https://www.google.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0"
Sun Aug 23 06:25:13 MDT 2020
 06:25:13 up 3 days, 17:44,  1 user,  load average: 1.47, 1.95, 2.00
USER     TTY      FROM             LOGIN@   IDLE   JCPU   PCPU WHAT
pi       tty7     :0               Wed12    3days 13:50   0.72s /usr/bin/lxsession -s LXDE-pi -e LXDE