| cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php | 188.114.97.1 | | 8.1 kB |
URL User Request GET cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php IP188.114.97.1:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 Hash2d424a345d45863f022ba508369ec353 86a6d8b831a90d531a68b9a8df858a25f6cf5bb7 27c881dac0bb2597f92810fbf8547149b700065cd0aedc6b6cb1589613a98a02
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php HTTP/1.1
Host: cashcomeclm.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 20 Apr 2024 10:28:48 GMT
content-type: text/html;charset=utf-8
location: ./login.php
set-cookie: loclang=en; expires=Tue, 23-Apr-2024 10:28:48 GMT; Max-Age=259200; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sezm6F2pcbJn8itNuwTB96m2OTnMuIcQ5Spzey%2BLPaaaGQHTFsWBzp5wTmhUYg6L%2BxaIxX70gu241E%2Fidrj0TSoCxv411fJCmGJq18AVMggICsuWRQIU%2Buk2yS4DrW2%2FP9LX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87747319fee55687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php | 188.114.97.1 | | 4.8 kB |
URL User Request GET cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php IP188.114.97.1:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 Hash67938a20e9edba9856e812ffe4699178 377df890def5e4b5d4160de9f87602af8619642d b7ff258c5bcdb076c7fa4dc057b5c6397bd935ce8d0b2246ba19078083d6d8e5
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php HTTP/1.1
Host: cashcomeclm.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loclang=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Sat, 20 Apr 2024 10:28:48 GMT
content-type: text/html;charset=utf-8
location: ./login.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NQKzc5bsuH%2BRphljlCX4pIIj9OVZHX%2BZXFBzypgwxDWZv4YjJTAtf1deeXjrlAJqboPiUCQuEiCNSBeugGo7FwessQ0XUwZ4%2Fw4qwFFM1Driyhl3zjN%2FP5x29i1Hn1OnYGvm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8774731b78a55687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php | 188.114.97.1 | | 4.5 kB |
URL User Request GET cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php IP188.114.97.1:0
File typegzip compressed data, from Unix Hashd46907a6775e5e0c061f6c05429ebef5 eecdd90142c2f21a560dd7634e38fe8beb0e2702 5414d9640f2b96d3c2ebd158fa7a8622aa80b363f3e87e2489fcd5db6541e098
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php HTTP/1.1
Host: cashcomeclm.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loclang=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 20 Apr 2024 10:28:51 GMT
content-type: text/html;charset=utf-8
location: ./login.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Eoz28WhZO%2F0D1j6jea%2ByFz4iKv4uE31LEbLC%2B6F%2BGpUyJpwCp5SwelyaZJQcVXHwEBNhwjUw4RSOYwuievfg8f1bUcAJTFjHyFzP0ZnJOjWllZSc1JUK0XVzNbZOxgrU0%2FW%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8774732a59261bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php | 188.114.97.1 | | 0 B |
URL User Request GET cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php IP188.114.97.1:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php HTTP/1.1
Host: cashcomeclm.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loclang=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 20 Apr 2024 10:28:49 GMT
content-type: text/html;charset=utf-8
location: ./login.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0EOp%2FoeAq92tGMiKEXeUzell2BU7U0ZdVZIgwaHzG8kSBV54GmktmJEhZNaQRPt344fnT60fLvrhINkhhvv%2Fmi%2F3rUyP5LJBa4QEFjZh9rlHAIQRYXX2zED3XBIZz7HwJmk9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87747322ed3a1bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php | 188.114.97.1 | | 9.0 kB |
URL User Request GET cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php IP188.114.97.1:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 Hashcd1b0001c2baad2826c9aa4369e5f8e4 c75672378d792ce82efb471affe690c043058dec ae02f04d922a549ff797050a3dec2e0d223003c8c2b758a2e5c768f35048a631
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php HTTP/1.1
Host: cashcomeclm.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loclang=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 20 Apr 2024 10:28:50 GMT
content-type: text/html;charset=utf-8
location: ./login.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F2PXhGkAc6QGSAGA9KIg515MaqFIzF%2BHimyWqbJlLwXTYhPT04h%2BlhAKJJhcvIfz9vwOK1Kw25ZJ9WbuSBFguAQazecsvwpZFwWatwPl9vkJlv4COZnXrG2VEBCve8AKw3EX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 877473246df61bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php | 188.114.96.1 | | 0 B |
URL User Request GET cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php IP188.114.96.1:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php HTTP/1.1
Host: cashcomeclm.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: loclang=en
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Sat, 20 Apr 2024 10:28:57 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: ./login.php
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wEi0knP0%2Bus%2FM3aC0zDMF8Z3U%2F0OC2ZyxiaF8Ap7BUpa8TB3BJrn2F4Ft5TmRV%2BIzXtozIOXQMHL%2BxIbaHmt5VPYYgDPL%2FRHplfjNVJ%2FKUqip9RgGhvGjOBFfV1%2FakDuGrg1"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8774734fce89568a-OSL
alt-svc: h2=":443"; ma=60
|
|
| cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php | 188.114.97.1 | | 7.4 kB |
URL User Request GET cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php IP188.114.97.1:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 Hashee8abd89e8e5ef1e1f7762e628fae200 4e3215094dac6bbe5add6dd68eaeefc62a032591 acb895181c30a1939bff6df38322e32f44fc3a3fe03f3278aa83f25c074989d2
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php HTTP/1.1
Host: cashcomeclm.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loclang=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 20 Apr 2024 10:28:50 GMT
content-type: text/html;charset=utf-8
location: ./login.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dC0OsGeanUgHwdnenTgkmPZ2e7HQMZcOclUp%2B0%2FenqwLdbYfdk3j4gueA5ghndD0arvJdudfeagABYYMjlqu47rzq6%2FjUWfYsHWAv7Rhdndndf56FTNAcpgmIVruag4r2kqT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87747325ee931bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php | 188.114.97.1 | | 6.8 kB |
URL User Request GET cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php IP188.114.97.1:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 Hash0ad231900b116c8b119d33a6651cf85b ce5ce160f748702407b30be2496dcf8f6ee307bb 5acf947ace271c73779c8b90d4108b311596c2b53c80b89b1a50b942928cd488
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php HTTP/1.1
Host: cashcomeclm.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loclang=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 20 Apr 2024 10:28:51 GMT
content-type: text/html;charset=utf-8
location: ./login.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8OvfB9VZP3gIEx9R7b9tmQ78S4xwbYd8QQAL7lljhLk2UCS6igb5OO52D7NlHbQR%2Bif7wF9q%2BMZ%2FAt3XcUZ8JnvS6wcnH2U80OiF%2FtMt8EQzcfylvEIoo9dvkimOGGefIQM8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8774732d5aef1bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php | 188.114.97.1 | | 5.8 kB |
URL User Request GET cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php IP188.114.97.1:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 Hash4b167e05223820d131ba8bb445bd7f70 29693597b5bb6d78db2c26621c22ebbae2426825 8960c7d93eef123c5b912386cf35c1d0b8407b3592d29a47b84c3def27e72d2e
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php HTTP/1.1
Host: cashcomeclm.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loclang=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 20 Apr 2024 10:28:59 GMT
content-type: text/html;charset=utf-8
location: ./login.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jmKbsitEWPbCHm%2FbjZt8RVLpA4a2xBFIpU1aFdvpczaIyPaf0jYqKimuYgfGu4PX0%2B%2FOVdWT0v8hCO5jry9NgoDJYXK4yYBwR0eQOGAG0tGc2qq8O%2Fdr3uI1s%2Bl7HawngQVu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 877473603ac11bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php | 188.114.97.1 | | 11 kB |
URL User Request GET cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php IP188.114.97.1:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 Hash1a3f78a19c2c4c0df81ef0d86aadf849 5d87ca00ed5bef56b467e89195de5e79ef648e21 ae4d70c91806ad3ee6759e3786516352cdb830358d89002140aae945d37924b2
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php HTTP/1.1
Host: cashcomeclm.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: loclang=en
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 20 Apr 2024 10:28:52 GMT
content-type: text/html;charset=utf-8
location: ./login.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cyzh5cwkHx%2BgRQ65%2FD4gJu9JX%2FDKTsE1GhOkP4kcW4fo9yzM9FRbgh5nRh%2FdjuKRPHb5YnnISBKG5jT5wAZH1pdCBHxzOPQRsxpZksUl3YE7Fl2kldjzurLCGfEjxbDHnQpk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 877473333e451bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php | 188.114.97.1 | | 0 B |
URL User Request GET cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php IP188.114.97.1:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php HTTP/1.1
Host: cashcomeclm.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loclang=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 20 Apr 2024 10:28:49 GMT
content-type: text/html;charset=utf-8
location: ./login.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JEI8xqozR2oHOThHHRIcAQBB9M3V2ucwkwTgyv0Oh4747Uvkb2C59pGWzZiiUqr7r2HhVOprnqzpRK1vaX%2F%2Fz%2Fex8toYbmPYusQ%2BwgnYKQ40mluVgBDb7ioDOpWs%2FFj1VIQI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 877473217bef1bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php | 188.114.96.1 | | 0 B |
URL User Request GET cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php IP188.114.96.1:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php HTTP/1.1
Host: cashcomeclm.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: loclang=en
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Sat, 20 Apr 2024 10:29:06 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: ./login.php
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FZJ8Id5soVl5wGRLsuB5iVz7gEIL2C4Qend%2BUk%2F4RZ9TeKdbKAZbDBdwZCqIB7XR5X%2Fq0Hl%2F83FrUAVeq5XzAlnRaiI6Nx2uBhCaXOxzSJRUqAoMg8Ook2Uf71dDDq3zt3zb"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8774738bdace568a-OSL
alt-svc: h2=":443"; ma=60
|
|
| cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php | 188.114.97.1 | | 0 B |
URL User Request GET cashcomeclm.buzz/dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php IP188.114.97.1:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain | suricata | medium | ET INFO HTTP Request to a *.buzz domain |
GET /dashboard.php/login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php./login.php HTTP/1.1
Host: cashcomeclm.buzz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loclang=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 20 Apr 2024 10:28:54 GMT
content-type: text/html;charset=utf-8
location: ./login.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hIoj6VJ1XbCE7OgriA2EqvXDOqxfFWeG51E%2FaL5PCa%2BlJJdxHEpO6U%2B7835P%2Bpw5lAdzURaVftnBV1Vj6zpAzwQ2YpqTyZy%2FbcHGcCJ3aMv1EzEkDpBngeRZYDc2UD6Yfr8d"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 877473409e051bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|