1. Home
  2. Forums Index
  3. Server Side / Content Management 7:12 am May 18, 2026

Forum Moderators: open

Message Too Old, No Replies

Beware of what you leave on your website

         

Kendo

4:34 am on Nov 5, 2014 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member Top Contributors Of The Month



I have recently completed a new forum script written in Classic ASP and just the way I like it... no unnecessary bells and whistles. Security is always the major concern when allowing access to forum scripts so I was checking the logs for suspicious requests when I came across this wish list...

2014-11-03 05:26:15 HEAD /_admin/ - 89.207.128.241 HTTP/1.1 - - 404 220
2014-11-03 05:26:16 HEAD /_api/ - 89.207.128.241 HTTP/1.1 - - 404 220
2014-11-03 05:26:16 HEAD /_API/ - 89.207.128.241 HTTP/1.1 - - 404 220
2014-11-03 05:26:16 HEAD /_apikey/ - 89.207.128.241 HTTP/1.1 - - 404 220
2014-11-03 05:26:16 HEAD /_apikeys/ - 89.207.128.241 HTTP/1.1 - - 404 220
2014-11-03 05:26:16 HEAD /_backup.tar.gz - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:17 HEAD /_backup.tgz - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:17 HEAD /_backup.zip - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:17 HEAD /_backup/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:17 HEAD /_base.sql - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:17 HEAD /_base/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:18 HEAD /_bdd/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:18 HEAD /_crypto/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:18 HEAD /_Crypto/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:18 HEAD /_cryptokeys/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:18 HEAD /_CryptoKeys/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:18 HEAD /_data/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:18 HEAD /_database.sql - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:20 HEAD /_database.tar.gz - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:20 HEAD /_database.tgz - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:20 HEAD /_database.zip - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:20 HEAD /_database/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:21 HEAD /_db.sql - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:21 HEAD /_db.tar.gz - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:21 HEAD /_db.tgz - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:21 HEAD /_db.zip - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:21 HEAD /_db/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:22 HEAD /_DB/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:22 HEAD /_dbs/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:22 HEAD /_dump.sql - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:23 HEAD /_dump/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:23 HEAD /_dynamic/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:23 HEAD /_facebook/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:23 HEAD /_fb/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:24 HEAD /_ftp/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:24 HEAD /_inc/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:24 HEAD /_include/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:24 HEAD /_includes/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:24 HEAD /_key/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:24 HEAD /_keys/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:24 HEAD /_mysql.sql - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:25 HEAD /_pages/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:25 HEAD /_priv/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:25 HEAD /_privat/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:25 HEAD /_prv/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:26 HEAD /_save.sql - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:26 HEAD /_save.tar.gz - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:26 HEAD /_save.tgz - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:26 HEAD /_save.zip - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:27 HEAD /_save/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:27 HEAD /_saved/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:27 HEAD /_sql-dump/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:28 HEAD /_sql.sql - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:28 HEAD /_sql-dumps/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:28 HEAD /_sql/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:28 HEAD /_SQL/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:28 HEAD /_sqlbackup/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:29 HEAD /_sqlbackups/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:29 HEAD /_sqldump/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:29 HEAD /_sqldumps/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:31 HEAD /_tmp/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:31 HEAD /_trans/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:31 HEAD /_transfer/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:31 HEAD /_up/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:31 HEAD /_upl/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:32 HEAD /_upload/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:32 HEAD /_uploaded/ - 96.47.226.21 HTTP/1.1 - - 404 220
2014-11-03 05:26:32 HEAD /_uploads/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:32 HEAD /_www-sql/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:33 HEAD /_www.tar.gz - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:33 HEAD /_www.tgz - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:33 HEAD /_www.zip - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:34 HEAD /_www/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:34 HEAD /_xml/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:35 HEAD /_zip/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:35 HEAD /_zipfiles/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:35 HEAD /adm/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:37 HEAD /admin/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:37 HEAD /api-key/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:38 HEAD /api/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:38 HEAD /API/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:39 HEAD /apikey/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:41 HEAD /ApiKey/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:41 HEAD /apikeys/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:41 HEAD /ApiKeys/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:43 HEAD /back/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:43 HEAD /BACK/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:45 HEAD /backoffice/ - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:45 HEAD /backup.rar - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:46 HEAD /backup.sql - 37.221.162.226 HTTP/1.1 - - 404 220
2014-11-03 05:26:46 HEAD /backup.tar.gz - 77.95.229.11 HTTP/1.1 - - 404 220
2014-11-03 05:26:48 HEAD /backup.tgz - 77.95.229.11 HTTP/1.1 - - 404 220
2014-11-03 05:26:48 HEAD /backup.txt - 77.95.229.11 HTTP/1.1 - - 404 220
2014-11-03 05:26:48 HEAD /backup.zip - 77.95.229.11 HTTP/1.1 - - 404 220
2014-11-03 05:26:48 HEAD /backup/ - 77.95.229.11 HTTP/1.1 - - 404 220
2014-11-03 05:26:49 HEAD /Backup/ - 77.95.229.11 HTTP/1.1 - - 404 220
2014-11-03 05:26:49 HEAD /BACKUP/ - 77.95.229.11 HTTP/1.1 - - 404 220
2014-11-03 05:26:59 HEAD /bak/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:01 HEAD /base.sql - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:01 HEAD /base.tar.gz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:02 HEAD /base.tgz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:02 HEAD /base.txt - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:02 HEAD /base.zip - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:04 HEAD /base/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:04 HEAD /BASE/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:04 HEAD /bd.txt - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:04 HEAD /BD.txt - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:04 HEAD /bd/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:05 HEAD /bdd.sql - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:05 HEAD /bdd.tar.gz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:05 HEAD /bdd.tgz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:06 HEAD /bdd.txt - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:06 HEAD /bdd.zip - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:06 HEAD /bdd/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:06 HEAD /BDD/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:06 HEAD /bkp/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:07 HEAD /BKP/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:07 HEAD /conf/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:07 HEAD /config/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:07 HEAD /crypto/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:08 HEAD /Crypto/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:08 HEAD /cryptokeys/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:08 HEAD /CryptoKeys/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:09 HEAD /dat/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:09 HEAD /data/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:09 HEAD /data.sql - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:09 HEAD /Data/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:09 HEAD /DATA/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:09 HEAD /database.sql - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:09 HEAD /database.tar.gz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:10 HEAD /database.tgz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:10 HEAD /database.txt - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:10 HEAD /database.zip - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:10 HEAD /database/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:11 HEAD /Database/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:11 HEAD /datas.sql - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:11 HEAD /datas.tgz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:11 HEAD /datas.tar.gz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:11 HEAD /datas.txt - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:13 HEAD /datas.zip - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:14 HEAD /datas/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:14 HEAD /db.sql - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:15 HEAD /db.tar.gz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:15 HEAD /db.tgz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:16 HEAD /db.txt - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:16 HEAD /db.zip - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:16 HEAD /db/ - 66.230.230.230 HTTP/1.1 - - 403 219
2014-11-03 05:27:16 HEAD /DB/ - 66.230.230.230 HTTP/1.1 - - 403 219
2014-11-03 05:27:17 HEAD /dbase/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:17 HEAD /DBase/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:17 HEAD /dbdump.sql - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:17 HEAD /dbdump.tar.gz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:18 HEAD /dbdump.tgz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:18 HEAD /dbdump.txt - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:18 HEAD /dbdump.zip - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:18 HEAD /dbs/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:20 HEAD /dl/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:21 HEAD /doc/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:21 HEAD /docs/ - 66.230.230.230 HTTP/1.1 - - 403 219
2014-11-03 05:27:22 HEAD /documents/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:22 HEAD /Documents/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:23 HEAD /donnees.sql - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:23 HEAD /donnees.txt - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:23 HEAD /donnees.zip - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:24 HEAD /donnees/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:24 HEAD /download/ - 66.230.230.230 HTTP/1.1 - - 403 219
2014-11-03 05:27:24 HEAD /downloads/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:25 HEAD /dump.sql - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:25 HEAD /dump.tar.gz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:25 HEAD /dump.tgz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:27 HEAD /dump.txt - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:27 HEAD /dump.txt - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:27 HEAD /dump.zip - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:28 HEAD /dump/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:28 HEAD /DUMP/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:28 HEAD /dumped.sql - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:29 HEAD /dumped.tar.gz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:29 HEAD /dumped.tgz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:29 HEAD /dumped.txt - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:31 HEAD /dumped.zip - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:31 HEAD /dumped/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:31 HEAD /dumps/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:31 HEAD /DUMPS/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:32 HEAD /dynamic/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:32 HEAD /echange/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:32 HEAD /echanges/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:33 HEAD /email/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:33 HEAD /emails/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:35 HEAD /exchange/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:35 HEAD /export.csv - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:35 HEAD /export.sql - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:35 HEAD /export.txt - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:36 HEAD /export.zip - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:36 HEAD /export/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:36 HEAD /exported.sql - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:36 HEAD /exported.tar.gz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:38 HEAD /exported.txt - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:38 HEAD /exported.zip - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:38 HEAD /exported/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:39 HEAD /exports/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:39 HEAD /extern/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:39 HEAD /extranet/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:39 HEAD /facebook/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:40 HEAD /fb/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:48 HEAD /fichier/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:49 HEAD /fichiers/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:50 HEAD /fileadmin/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:50 HEAD /files/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:50 HEAD /Files/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:51 HEAD /folder/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:51 HEAD /Folder/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:51 HEAD /frontpage/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:51 HEAD /ftp/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:51 HEAD /FTP/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:53 HEAD /htdocs.tar.gz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:54 HEAD /htdocs.tgz - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:54 HEAD /id/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:55 HEAD /IDs/ - 66.230.230.230 HTTP/1.1 - - 404 220
2014-11-03 05:27:55 HEAD /import.csv - 62.210.74.186 HTTP/1.1 - - 404 220
2014-11-03 05:27:55 HEAD /import.sql - 62.210.74.186 HTTP/1.1 - - 404 220
2014-11-03 05:27:57 HEAD /import.txt - 62.210.74.186 HTTP/1.1 - - 404 220
2014-11-03 05:27:57 HEAD /import/ - 62.210.74.186 HTTP/1.1 - - 404 220
2014-11-03 05:27:57 HEAD /imports.csv - 62.210.74.186 HTTP/1.1 - - 404 220
2014-11-03 05:27:57 HEAD /imports.sql - 62.210.74.186 HTTP/1.1 - - 404 220
2014-11-03 05:27:57 HEAD /imports/ - 62.210.74.186 HTTP/1.1 - - 404 220
2014-11-03 05:27:59 HEAD /in/ - 62.210.74.186 HTTP/1.1 - - 404 220
2014-11-03 05:27:59 HEAD /inc/ - 62.210.74.186 HTTP/1.1 - - 404 220
2014-11-03 05:27:59 HEAD /incl/ - 62.210.74.186 HTTP/1.1 - - 404 220
2014-11-03 05:27:59 HEAD /include/ - 62.210.74.186 HTTP/1.1 - - 404 220
2014-11-03 05:27:59 HEAD /includes/ - 62.210.74.186 HTTP/1.1 - - 404 220
2014-11-03 05:28:26 HEAD /intern/ - 37.221.161.235 HTTP/1.1 - - 404 220
2014-11-03 05:28:40 HEAD /internal/ - 77.247.181.164 HTTP/1.1 - - 404 220
2014-11-03 05:28:40 HEAD /intra/ - 77.247.181.164 HTTP/1.1 - - 404 220
2014-11-03 05:28:40 HEAD /intranet/ - 77.247.181.164 HTTP/1.1 - - 404 220
2014-11-03 05:28:42 HEAD /key/ - 77.247.181.164 HTTP/1.1 - - 404 220
2014-11-03 05:28:43 HEAD /Key/ - 77.247.181.164 HTTP/1.1 - - 404 220
2014-11-03 05:28:43 HEAD /keys/ - 77.247.181.164 HTTP/1.1 - - 404 220
2014-11-03 05:28:45 HEAD /Keys/ - 77.247.181.164 HTTP/1.1 - - 404 220
2014-11-03 05:28:45 HEAD /log/ - 77.247.181.164 HTTP/1.1 - - 404 220
2014-11-03 05:28:45 HEAD /logs/ - 77.247.181.164 HTTP/1.1 - - 404 220
2014-11-03 05:28:47 HEAD /mdb/ - 5.135.158.101 HTTP/1.1 - - 404 220
2014-11-03 05:28:47 HEAD /mailbox/ - 5.135.158.101 HTTP/1.1 - - 404 220
2014-11-03 05:28:47 HEAD /mailboxes/ - 5.135.158.101 HTTP/1.1 - - 404 220
2014-11-03 05:28:48 HEAD /mails.txt - 5.135.158.101 HTTP/1.1 - - 404 220
2014-11-03 05:28:49 HEAD /mails/ - 5.135.158.101 HTTP/1.1 - - 404 220
2014-11-03 05:28:53 HEAD /mssql/ - 81.89.96.88 HTTP/1.1 - - 404 220
2014-11-03 05:28:53 HEAD /mdb/ - 5.135.158.101 HTTP/1.1 - - 404 220
2014-11-03 05:29:07 HEAD /mdbs/ - 77.109.141.138 HTTP/1.1 - - 404 220
2014-11-03 05:29:17 HEAD /message/ - 81.89.96.88 HTTP/1.1 - - 404 220
2014-11-03 05:29:17 HEAD /messagerie/ - 81.89.96.88 HTTP/1.1 - - 404 220
2014-11-03 05:29:17 HEAD /messages/ - 81.89.96.88 HTTP/1.1 - - 404 220
2014-11-03 05:29:19 HEAD /ms-sql/ - 81.89.96.88 HTTP/1.1 - - 404 220
2014-11-03 05:29:19 HEAD /mssql.sql - 81.89.96.88 HTTP/1.1 - - 404 220
2014-11-03 05:29:19 HEAD /mssql.txt - 81.89.96.88 HTTP/1.1 - - 404 220
2014-11-03 05:29:20 HEAD /mssql.zip - 81.89.96.88 HTTP/1.1 - - 404 220
2014-11-03 05:29:21 HEAD /mssql/ - 81.89.96.88 HTTP/1.1 - - 404 220
2014-11-03 05:29:24 HEAD /mysql-data.sql - 81.89.96.88 HTTP/1.1 - - 404 220
2014-11-03 05:29:24 HEAD /mysql-data.tar.gz - 81.89.96.88 HTTP/1.1 - - 404 220
2014-11-03 05:29:27 HEAD /mysql-data.tgz - 81.89.96.88 HTTP/1.1 - - 404 220
2014-11-03 05:29:29 HEAD /mysql-data.zip - 77.95.224.187 HTTP/1.1 - - 404 220
2014-11-03 05:29:33 HEAD /mysql.sql - 77.95.224.187 HTTP/1.1 - - 404 220
2014-11-03 05:29:56 HEAD /mysql.tar.gz - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:29:56 HEAD /mysql.tgz - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:29:56 HEAD /mysql.txt - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:29:56 HEAD /mysql.zip - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:29:57 HEAD /mysql/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:29:57 HEAD /out/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:29:57 HEAD /pages/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:29:59 HEAD /php.rar - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:29:59 HEAD /php.tar.gz - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:00 HEAD /php.tgz - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:00 HEAD /php.zip - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:00 HEAD /php/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:00 HEAD /priv/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:01 HEAD /privat/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:01 HEAD /private/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:02 HEAD /protected/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:04 HEAD /prv/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:04 HEAD /sauv/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:05 HEAD /sauve/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:05 HEAD /sauvegarde.rar - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:05 HEAD /sauvegarde.sql - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:05 HEAD /sauvegarde.tar.gz - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:06 HEAD /sauvegarde.tgz - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:06 HEAD /sauvegarde.txt - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:06 HEAD /sauvegarde.zip - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:08 HEAD /sauvegarde/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:08 HEAD /sauvegardes/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:08 HEAD /save.rar - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:08 HEAD /save.sql - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:08 HEAD /save.tar.gz - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:09 HEAD /save.tgz - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:09 HEAD /save.txt - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:09 HEAD /save.zip - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:11 HEAD /save/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:11 HEAD /saved/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:12 HEAD /site.rar - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:12 HEAD /site.tar.gz - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:12 HEAD /site.tgz - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:12 HEAD /site.zip - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:16 HEAD /site/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:16 HEAD /spare/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:16 HEAD /sql-dump/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:17 HEAD /sql-dumps/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:17 HEAD /sql-file/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:18 HEAD /sql-files/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:18 HEAD /sql.sql - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:19 HEAD /sql.txt - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:19 HEAD /sql/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:19 HEAD /SQL/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:19 HEAD /sqlbackup/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:21 HEAD /sqlbackups/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:21 HEAD /sqldump.sql - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:21 HEAD /sqldump.tar.gz - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:22 HEAD /sqldump.tgz - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:22 HEAD /sqldump.txt - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:22 HEAD /sqldump.zip - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:22 HEAD /sqldump/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:22 HEAD /sqldumps/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:23 HEAD /sqlfile/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:23 HEAD /sqlfiles/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:23 HEAD /staging/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:23 HEAD /static/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:24 HEAD /temp/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:24 HEAD /tempo/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:25 HEAD /test/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:25 HEAD /tests/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:25 HEAD /tmp/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:25 HEAD /trans/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:26 HEAD /transfer/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:26 HEAD /up/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:26 HEAD /upl/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:27 HEAD /upload/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:27 HEAD /uploaded/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:27 HEAD /uploads/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:27 HEAD /work/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:29 HEAD /www-sql/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:29 HEAD /www.rar - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:29 HEAD /www.tar.gz - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:30 HEAD /www.tgz - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:30 HEAD /www.zip - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:30 HEAD /www/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:30 HEAD /xml/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:30 HEAD /zip/ - 85.93.218.204 HTTP/1.1 - - 404 220
2014-11-03 05:30:30 HEAD /zipfiles/ - 85.93.218.204 HTTP/1.1 - - 404 220

It is the same entity making all of these requests even though there are several IP addresses. But no use in tracing the IP addresses as they use TOR.

Other suspect requests include a list of calls to scripts found in CKeditor, so I assume that there may be possible exploits there that are tempting as well. However the most common request we get is for WP login pages and there are no WP sites on our server.

ergophobe

5:19 am on Nov 5, 2014 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member Top Contributors Of The Month



Wow... great list

I guess one lesson is that if you have to leave something like this on your server, add a timestamp and some random string.

The internet is a scary place!

not2easy

6:38 am on Nov 5, 2014 (gmt 0)

WebmasterWorld Administrator 10+ Year Member Top Contributors Of The Month



This does not look like a list left on a website, it is a list from the access logs showing bogus file requests apparently from a bot set up to look for vulnerable files to exploit. Good thing they got a stack of 404s for their troubles.

lucy24

7:13 am on Nov 5, 2014 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member Top Contributors Of The Month



Yeah, I was thinking it looks like a lazy robot. Or do I mean an efficient one? First check whether this set of files even exists. Then come back for a more targeted attack.

the most common request we get is for WP login pages

Robots don't know what you have or don't have. They just come in with a master list of domain names followed by a shopping list of the 87 most common variations of "wp-admin". But most of them must live on Ukrainian server farms; I haven't seen a wp-admin request in a long time. ("Seen" in this context = request that did not get a 403.)

ergophobe

7:15 pm on Nov 5, 2014 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member Top Contributors Of The Month



not2easy - yes, exactly. Kendo's point is that if you leave these common files on your site, you're vulernable.

The interesting thing to me is how many tar archives they were looking for. If they get that on a Wordpress or Drupal install or any manner of site, they will commonly have the name, username and password for your database.

not2easy

7:36 pm on Nov 5, 2014 (gmt 0)

WebmasterWorld Administrator 10+ Year Member Top Contributors Of The Month



I purposely leave them a nice juicy wp-login.php on my non-WP sites, it is an old spider trap from here on the forums that sends me an email after locking out that IP so I can look up the whois and lock out the same server farms from real WP sites.

File permissions are an underused tool to help safeguard sensitive files, too. Many of the requests are for folders that are part of tools and apps in common use. Unfortunately when multi IPs indicate compromised computers as shown here, you don't want to use IP blocking when it blocks actual people.

ergophobe

5:02 pm on Nov 10, 2014 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member Top Contributors Of The Month



I love that idea. Every site is probed for WP files so if you're not a WP site that's a great honeypot.

lucy24

9:08 pm on Nov 10, 2014 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member Top Contributors Of The Month



But, but, but, the file doesn't have to physically exist. They'll ask for it either way, and then it jumps up as a 404.

At one stage in my log-processing I flag 404s. Anything other than google's soft-404 tester is likely to end in a lockout. Conversely I look for any request for the stylesheet that goes out with most error documents, including 403. It might be an infected machine-- by this point I've already filtered out things like semalt referers-- but it might also be an IP that was blocked in error.

Are some countries really more infection-prone than others? Or does it just seem that way because I don't have any content that would attract bona fide humans from Brazil or Russia, so if I see them at all it's most likely a robotic infection?
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

  1. Home
  2. Forums Index
  3. Server Side / Content Management 7:12 am May 18, 2026