tag:blogger.com,1999:blog-19248375.post5648091967024840629..comments2023-10-18T05:54:12.748-07:00Comments on IncrediBILL's Random Rants: Hackers Try Another Botnet AttackIncrediBILLhttp://www.blogger.com/profile/14244934627308399202noreply@blogger.comBlogger4125tag:blogger.com,1999:blog-19248375.post-21750022315569696892007-11-14T11:36:00.000-08:002007-11-14T11:36:00.000-08:00Google Wireless Transcoder being used in a hacking...Google Wireless Transcoder being used in a hacking attempt.<BR/><BR/><B><BR/>Log File<BR/>- Request contained a malicious JavaScript or SQL injection attack<BR/><BR/>Header<BR/>- GET /node/4124#comment-501 HTTP/1.1 Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, */* Accept-Encoding: gzip Accept-Language: en-us Cookie: PHPSESSID=Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-19248375.post-35396379709934622722007-10-29T12:42:00.000-07:002007-10-29T12:42:00.000-07:00I ran this search else { $xeQt="id"; }. I'm very c...I ran this search <A HREF="http://www.google.com/search?hl=en&q=else+%7B+%24xeQt%3D%22id%22%3B+%7D&btnG=Google+Search" REL="nofollow">else { $xeQt="id"; }</A>.<BR/><BR/> I'm very curious what OS those hacked boxes are running.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-19248375.post-83954874371371328522007-10-29T02:43:00.000-07:002007-10-29T02:43:00.000-07:00The site was hacked, they weren't involved.The scr...The site was hacked, they weren't involved.<BR/><BR/>The script is a type of shell script, the entry way into the server, it's a probe.IncrediBILLhttps://www.blogger.com/profile/14244934627308399202noreply@blogger.comtag:blogger.com,1999:blog-19248375.post-40080117909757953452007-10-28T23:29:00.000-07:002007-10-28T23:29:00.000-07:00What did the script do?What kind of site was it?What did the script do?<BR/><BR/>What kind of site was it?Jeremyhttps://www.blogger.com/profile/13473131931472858184noreply@blogger.com