• This forum has a zero tolerance policy regarding spam. If you register here to publish advertising, your user account will be deleted without further questions.

Logwatch schickt komische Einträge

martinj

New Member
Hi,
heute morgen kam wieder mal die Logwatch zusammenfassung an.

Dort ist die Rede von "successful probes" etc.

Hat jemand Ahnung, was da bedeutet?

Hier mal ein Ausschnitt:

Code:
 --------------------- httpd Begin ------------------------ 

1.03 MB transfered in 288 responses  (1xx 0, 2xx 220, 3xx 61, 4xx 7, 5xx 0) 
 161 Images (0.09 MB),
 120 Content pages (0.94 MB),
 3 Redirects (0.00 MB),
 4 Other (0.00 MB) 

Attempts to use 4 known hacks were logged 251 time(s)
  \\x90\\x90\\x90\\x90  
  \\x02\\xb1  
  \\x90\\x02\\xb1\\x02\\xb1  
  phpmyadmin  

A total of 3 sites probed the server 
  62.57.226.149  
  62.139.167.24  
  80.143.207.168  

!!!! 91 possible successful probes 
 /phpmyadmin/themes/original/img/s_asc.png HTTP Response 304 
 /phpmyadmin/themes/original/img/b_tblanalyse.png HTTP Response 200 
 /phpmyadmin/themes/original/img/b_select.png HTTP Response 200 
 /phpmyadmin/sql.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=999&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60&disp_message=+Betroffene+Datens%E4tze%3A+%26nbsp%3B1&disp_query=UPDATE+%60bb1_jgs_galerie_bilder%60+SET+%60groesse%60+%3D+%271%27+WHERE+%60bild_id%60+%3D+%2741%27+LIMIT+1%3B HTTP Response 200 
 /phpmyadmin/tbl_change.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=999&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&primary_key=+%60bild_id%60+%3D+%2744%27&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60&goto=sql.php HTTP Response 200 
 /phpmyadmin/sql.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60&pos=0&goto=tbl_properties_structure.php HTTP Response 200 
 /phpmyadmin/themes/original/img/b_props.png HTTP Response 304 
 /phpmyadmin/tbl_change.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=999&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&primary_key=+%60bild_id%60+%3D+%2739%27&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60&goto=sql.php HTTP Response 200 
 /phpmyadmin/themes/original/img/logo_right.png HTTP Response 200 
 /phpmyadmin/tbl_change.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=30&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&primary_key=+%60bild_id%60+%3D+%272%27&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60++ORDER+BY+%60user_id%60+ASC&goto=sql.php HTTP Response 200 
 /phpmyadmin/themes/original/img/b_search.png HTTP Response 304 
 /phpmyadmin/db_details_structure.php?lang=de-iso-8859-1&server=1&db=usr_web1_1 HTTP Response 200 
 /phpmyadmin/themes/original/img/b_sbrowse.png HTTP Response 200 
 /phpmyadmin/themes/original/img/b_deltbl.png HTTP Response 304 
 /phpmyadmin/themes/original/img/b_tblexport.png HTTP Response 304 
 /phpmyadmin/themes/original/img/b_print.png HTTP Response 304 
 /phpmyadmin/themes/original/img/b_selboard.png HTTP Response 200 
 /phpmyadmin/libraries/functions.js HTTP Response 304 
 /phpmyadmin/themes/original/img/s_host.png HTTP Response 304 
 /phpmyadmin/index.php?lang=de-iso-8859-1&server=1 HTTP Response 200 
 /phpmyadmin/ HTTP Response 200 
 /phpmyadmin/css/phpmyadmin.css.php?lang=de-iso-8859-1&js_frame=left&num_dbs=0 HTTP Response 200 
 /phpmyadmin/queryframe.php?lang=de-iso-8859-1&server=1&hash=587760ed9b556ccbc42a8c0d0220a26f1104077916 HTTP Response 200 
 /phpmyadmin/tbl_change.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=999&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&primary_key=+%60bild_id%60+%3D+%2743%27&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60&goto=sql.php HTTP Response 200 
 /phpmyadmin/libraries/tbl_change.js HTTP Response 200 
 /phpmyadmin/themes/original/img/vertical_line.png HTTP Response 304 
 /phpmyadmin/themes/original/img/b_newdb.png HTTP Response 200 
 /phpmyadmin/themes/original/img/s_lang.png HTTP Response 200 
 /phpmyadmin/themes/original/img/b_tblops.png HTTP Response 304 
 /phpmyadmin/themes/original/img/b_sql.png HTTP Response 304 
 /phpmyadmin/css/phpmyadmin.css.php?lang=de&js_frame=right&js_isDOM=1 HTTP Response 200 
 /phpmyadmin/read_dump.php HTTP Response 200 
 /phpmyadmin/index.php?lang=de-iso-8859-1&server=1&old_usr=web1 HTTP Response 200 
 /phpmyadmin/themes/original/img/s_tbl.png HTTP Response 304 
 /phpmyadmin/themes/original/img/item_ltr.png HTTP Response 304 
 /phpmyadmin/themes/original/img/b_docs.png HTTP Response 200 
 /phpmyadmin/sql.php HTTP Response 200 
 /phpmyadmin/tbl_change.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=999&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&primary_key=+%60bild_id%60+%3D+%2740%27&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60&goto=sql.php HTTP Response 200 
 /phpmyadmin/themes/original/img/s_theme.png HTTP Response 200 
 /phpmyadmin/sql.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=30&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60++ORDER+BY+%60user_id%60+ASC&disp_message=+Betroffene+Datens%E4tze%3A+%26nbsp%3B1&disp_query=UPDATE+%60bb1_jgs_galerie_bilder%60+SET+%60groesse%60+%3D+%271%27+WHERE+%60bild_id%60+%3D+%276%27+LIMIT+1%3B HTTP Response 200 
 /phpmyadmin/queryframe.php?lang=de-iso-8859-1&server=1&hash=2aa7af6cc64b578b2265479c01144c9e1104088541 HTTP Response 200 
 /phpmyadmin/themes/original/img/logo_left.png HTTP Response 200 
 /phpmyadmin/themes/original/img/bd_browse.png HTTP Response 200 
 /phpmyadmin/themes/original/img/s_error.png HTTP Response 200 
 /phpmyadmin/css/phpmyadmin.css.php?js_frame=left&num_dbs=0 HTTP Response 200 
 /phpmyadmin/sql.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=999&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60&disp_message=+Betroffene+Datens%E4tze%3A+%26nbsp%3B1&disp_query=UPDATE+%60bb1_jgs_galerie_bilder%60+SET+%60groesse%60+%3D+%271%27+WHERE+%60bild_id%60+%3D+%2743%27+LIMIT+1%3B HTTP Response 200 
 /phpmyadmin/themes/original/img/s_fulltext.png HTTP Response 304 
 /phpmyadmin/sql.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=999&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60&disp_message=+Betroffene+Datens%E4tze%3A+%26nbsp%3B1&disp_query=UPDATE+%60bb1_jgs_galerie_bilder%60+SET+%60groesse%60+%3D+%271%27+WHERE+%60bild_id%60+%3D+%2742%27+LIMIT+1%3B HTTP Response 200 
 /phpmyadmin/css/phpmyadmin.css.php?lang=de-iso-8859-1&js_frame=right&js_isDOM=1 HTTP Response 200 
 /phpmyadmin/sql.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=30&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60++ORDER+BY+%60user_id%60+ASC&disp_message=+Betroffene+Datens%E4tze%3A+%26nbsp%3B1&disp_query=UPDATE+%60bb1_jgs_galerie_bilder%60+SET+%60groesse%60+%3D+%271%27+WHERE+%60bild_id%60+%3D+%272%27+LIMIT+1%3B HTTP Response 200

kann ich die Meldungen einfach ignorieren oder sollte ich denen eine hohe Priorität zuordnen?

Grüße,
Martin

Der 2. Ausschnitt kommt, der passte nicht in einen Beitrag!
 
hier der 2. teil:
Code:
/phpmyadmin/sql.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=30&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60++ORDER+BY+%60user_id%60+ASC&disp_message=+Betroffene+Datens%E4tze%3A+%26nbsp%3B1&disp_query=UPDATE+%60bb1_jgs_galerie_bilder%60+SET+%60groesse%60+%3D+%271%27+WHERE+%60bild_id%60+%3D+%273%27+LIMIT+1%3B HTTP Response 200 
 /phpmyadmin/tbl_change.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=999&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&primary_key=+%60bild_id%60+%3D+%2742%27&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60&goto=sql.php HTTP Response 200 
 /phpmyadmin/tbl_change.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=30&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&primary_key=+%60bild_id%60+%3D+%273%27&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60++ORDER+BY+%60user_id%60+ASC&goto=sql.php HTTP Response 200 
 /phpmyadmin/css/phpmyadmin.css.php?lang=de-iso-8859-1&js_frame=right HTTP Response 200 
 /phpmyadmin/themes/original/img/bd_empty.png HTTP Response 200 
 /phpmyadmin/themes/original/img/s_desc.png HTTP Response 200 
 /phpmyadmin/left.php?lang=de-iso-8859-1&server=1&hash=587760ed9b556ccbc42a8c0d0220a26f1104077916 HTTP Response 200 
 /phpmyadmin/themes/original/img/b_sqlhelp.png HTTP Response 200 
 /phpmyadmin/left.php?lang=de-iso-8859-1&server=1&hash=2aa7af6cc64b578b2265479c01144c9e1104088541 HTTP Response 200 
 /phpmyadmin/sql.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&goto=db_details_structure.php&table=bb1_jgs_galerie_bilder&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60&pos=0 HTTP Response 200 
 /phpmyadmin/themes/original/img/b_tipp.png HTTP Response 200 
 /phpmyadmin/tbl_change.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=999&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&primary_key=+%60bild_id%60+%3D+%2741%27&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60&goto=sql.php HTTP Response 200 
 /phpmyadmin/main.php?lang=de-iso-8859-1&server=1 HTTP Response 200 
 /phpmyadmin/tbl_properties.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&goto=tbl_properties.php&back=tbl_properties.php HTTP Response 200 
 /phpmyadmin/sql.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=999&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60&disp_message=+Betroffene+Datens%E4tze%3A+%26nbsp%3B1&disp_query=UPDATE+%60bb1_jgs_galerie_bilder%60+SET+%60groesse%60+%3D+%271%27+WHERE+%60bild_id%60+%3D+%2739%27+LIMIT+1%3B HTTP Response 200 
 /phpmyadmin/themes/original/img/s_process.png HTTP Response 200 
 /phpmyadmin/themes/original/img/spacer.png HTTP Response 304 
 /phpmyadmin/themes/original/img/b_drop.png HTTP Response 304 
 /phpmyadmin/sql.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=30&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60++ORDER+BY+%60user_id%60+ASC HTTP Response 200 
 /phpmyadmin/themes/original/img/b_export.png HTTP Response 200 
 /phpmyadmin/themes/original/img/b_help.png HTTP Response 200 
 /phpmyadmin/themes/original/img/s_error2.png HTTP Response 200 
 /phpmyadmin/themes/original/img/arrow_ltr.png HTTP Response 304 
 /phpmyadmin/themes/original/img/b_edit.png HTTP Response 304 
 /phpmyadmin/themes/original/img/b_info.png HTTP Response 200 
 /phpmyadmin/themes/original/img/b_insrow.png HTTP Response 304 
 /phpmyadmin/themes/original/img/b_empty.png HTTP Response 304 
 /phpmyadmin/themes/original/img/s_loggoff.png HTTP Response 200 
 /phpmyadmin/sql.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=999&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60&disp_message=+Betroffene+Datens%E4tze%3A+%26nbsp%3B1&disp_query=UPDATE+%60bb1_jgs_galerie_bilder%60+SET+%60groesse%60+%3D+%271%27+WHERE+%60bild_id%60+%3D+%2744%27+LIMIT+1%3B HTTP Response 200 
 /phpmyadmin/tbl_replace.php HTTP Response 302 
 /phpmyadmin/left.php HTTP Response 200 
 /phpmyadmin/tbl_change.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=30&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&primary_key=+%60bild_id%60+%3D+%276%27&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60++ORDER+BY+%60user_id%60+ASC&goto=sql.php HTTP Response 200 
 /phpmyadmin HTTP Response 301 
 /phpmyadmin/themes/original/img/b_newtbl.png HTTP Response 200 
 /phpmyadmin/themes/original/img/b_browse.png HTTP Response 304 
 /phpmyadmin/themes/original/img/bd_select.png HTTP Response 200 
 /phpmyadmin/themes/original/img/b_tblimport.png HTTP Response 200 
 /phpmyadmin/themes/original/img/s_db.png HTTP Response 304 
 /phpmyadmin/themes/original/img/b_home.png HTTP Response 200 
 /phpmyadmin/index.php HTTP Response 302 
 /phpmyadmin/sql.php?lang=de-iso-8859-1&server=1&db=usr_web1_1&table=bb1_jgs_galerie_bilder&pos=0&session_max_rows=999&disp_direction=horizontal&repeat_cells=100&dontlimitchars=0&sql_query=SELECT+%2A+FROM+%60bb1_jgs_galerie_bilder%60&disp_message=+Betroffene+Datens%E4tze%3A+%26nbsp%3B1&disp_query=UPDATE+%60bb1_jgs_galerie_bilder%60+SET+%60groesse%60+%3D+%271%27+WHERE+%60bild_id%60+%3D+%2740%27+LIMIT+1%3B HTTP Response 200 

A total of 2 unidentified 'other' records logged
  GET /cgi-bin/cgiproxy/nph-proxy.pl/010111A/687474702s70656s706p652r667265656r65742r64652s766873732s74657373696r2s696r6465782r68746q6p HTTP/1.0 with response code(s) 1 404 responses
  GET /cgi-bin/cgiproxy/nph-proxy.pl/010111A/687474702s686s6q652r6172636s722r64652s68616n6s742s746573742s70616765312s6275747465722r6n7067 HTTP/1.0 with response code(s) 1 404 responses

 ---------------------- httpd End -------------------------
 
Last edited by a moderator:
martinj said:
kann ich die Meldungen einfach ignorieren oder sollte ich denen eine hohe Priorität zuordnen?
Kannst Du ignorieren, da hier nur Zugriffe auf phpMyAdmin drin steht. Das warst wahrscheinlich Du selbst. Falls Du aber nie in phpMyAdmin warst, dann könntest Du Dir sorgen machen... ;)

huschi.
 
ok, ich war drin.

mich wunderte nur
Attempts to use 4 known hacks were logged 251 time(s)

das hängt aber scheinbar mit phpMyAdmin zusammen!
 
Back
Top