Sunday, July 02, 2006

The Boyz From Brazil Want to Crack Your Site

The XML-RPC exploit for PHP must be very popular in Latin America as these Brazilian IPs just don't fucking give up trying.

02/27/2006 20:45:58 201.0.61.144 "" "//xmlrpc.php"
04/20/2006 00:45:23 201.6.7.70 "" "/xmlrpc.php"
04/20/2006 01:40:39 201.6.7.70 "" "/xmlrpc.php"
04/20/2006 01:40:39 201.6.7.70 "" "/xmlrpc.php"
04/20/2006 20:31:07 201.6.7.70 "" "/xmlrpc.php"
04/20/2006 22:52:14 201.6.7.70 "" "/xmlrpc.php"
04/20/2006 23:26:11 201.6.7.70 "" "/xmlrpc.php"
04/20/2006 23:53:55 201.6.7.70 "" "/xmlrpc.php"
04/21/2006 13:26:20 201.6.7.70 "" "/xmlrpc.php"
04/21/2006 13:49:21 201.6.7.70 "" "/xmlrpc.php"
04/21/2006 17:21:46 201.6.7.70 "" "/xmlrpc.php"
04/21/2006 18:21:59 201.6.7.70 "" "/xmlrpc.php"
04/21/2006 18:45:47 201.6.7.70 "" "/xmlrpc.php"
04/21/2006 18:45:47 201.6.7.70 "" "/xmlrpc.php"
04/21/2006 20:39:46 201.6.7.70 "" "/xmlrpc.php"
04/21/2006 21:28:56 201.6.7.70 "" "/xmlrpc.php"
04/24/2006 19:51:31 201.6.7.70 "" "/xmlrpc.php"
04/24/2006 22:13:01 201.6.7.70 "" "/xmlrpc.php"
04/24/2006 23:09:54 201.6.7.70 "" "/xmlrpc.php"
04/25/2006 01:47:17 201.6.7.70 "" "/xmlrpc.php"
07/02/2006 13:11:21 201.1.141.75 "" "/xmlrpc.php"
If you haven't upgraded your XMLRPC file yet, you better get it quick before these fuckers nail your server.

No comments: