The last 50 game events

DATE HOST Event
2017-03-26 04:14:58.588DMZ-Apache-FTP-DebianSERVER-WEBAPP /etc/passwd file access attempt
- DMZ-Apache-FTP-Debian Previous message repeated 1 times
2017-03-26 00:18:57.486reidEXPLOIT-KIT Blackholev2/Darkleech exploit kit landing page request
2017-03-26 00:15:02.568reidSQL 1 = 1 - possible sql injection attempt
2017-03-25 12:28:27.166ViraSQL 1 = 1 - possible sql injection attempt
2017-03-24 18:33:34.925AcmePowerGameControllerOS-WINDOWS DCERPC NCACN-IP-TCP srvsvc NetrpPathCanonicalize path canonicalization stack overflow attempt
- AcmePowerGameController Previous message repeated 1 times
2017-03-24 12:03:02.041srieszEXPLOIT-KIT Blackholev2/Darkleech exploit kit landing page request
2017-03-24 12:01:44.353srieszSERVER-WEBAPP JBoss web console access attempt
2017-03-24 12:00:40.235srieszOS-OTHER Bash CGI environment variable injection attempt
- sriesz Previous message repeated 60 times
2017-03-24 11:59:47.452srieszSQL 1 = 1 - possible sql injection attempt
- sriesz Previous message repeated 21 times
2017-03-24 11:47:08.743srieszMALWARE-CNC Win.Trojan.Zbot variant outbound connection
2017-03-24 11:45:55.479srieszOS-OTHER Bash CGI environment variable injection attempt
- sriesz Previous message repeated 2 times
2017-03-24 11:45:46.732srieszSERVER-WEBAPP JBoss JMXInvokerServlet access attempt
2017-03-24 11:45:46.721srieszSERVER-WEBAPP JBoss JMX console access attempt
2017-03-24 11:45:46.688srieszSERVER-WEBAPP JBoss admin-console access
2017-03-24 11:45:46.683srieszSERVER-WEBAPP JBoss web console access attempt
2017-03-24 11:40:42.641srieszSQL 1 = 1 - possible sql injection attempt
2017-03-24 11:38:43.389srieszSQL url ending in comment characters - possible sql injection attempt
- sriesz Previous message repeated 9 times
2017-03-24 11:35:32.89srieszSQL 1 = 1 - possible sql injection attempt
- sriesz Previous message repeated 1 times
2017-03-23 14:03:02.675DurranOS-OTHER Bash CGI environment variable injection attempt
- Durran Previous message repeated 3 times
2017-03-23 12:50:28.491DurranSERVER-WEBAPP JBoss web console access attempt
2017-03-23 12:50:15.053DurranSERVER-WEBAPP JBoss JMX console access attempt
2017-03-23 11:47:30.918DurranOS-OTHER Bash CGI environment variable injection attempt
- Durran Previous message repeated 15 times
2017-03-23 08:45:23.606DurranSQL 1 = 1 - possible sql injection attempt
- Durran Previous message repeated 1 times
2017-03-23 08:44:40.078DurranSQL url ending in comment characters - possible sql injection attempt
- Durran Previous message repeated 9 times
2017-03-23 08:44:37.355DurranSQL 1 = 1 - possible sql injection attempt
2017-03-23 07:52:52.186DurranOS-OTHER Bash CGI environment variable injection attempt
- Durran Previous message repeated 4 times
2017-03-23 07:48:32.568DurranSERVER-WEBAPP JBoss web console access attempt
2017-03-23 07:48:27.233DurranSERVER-WEBAPP JBoss JMX console access attempt
2017-03-23 07:39:34.247DurranOS-OTHER Bash CGI environment variable injection attempt
- Durran Previous message repeated 6 times
2017-03-23 07:33:35.661DurranSERVER-WEBAPP JBoss web console access attempt
2017-03-23 07:33:29.069DurranSERVER-WEBAPP JBoss JMX console access attempt
2017-03-19 17:50:34.629DurranSERVER-WEBAPP JBoss web console access attempt
2017-03-19 17:50:22.015DurranSERVER-WEBAPP JBoss JMX console access attempt
2017-03-19 15:18:14.328DurranOS-OTHER Bash CGI environment variable injection attempt
- Durran Previous message repeated 7 times
2017-03-19 15:12:37.177DurranSERVER-APACHE Apache Struts remote code execution attempt - GET parameter
- Durran Previous message repeated 1 times
2017-03-19 10:15:21.05DurranSERVER-WEBAPP JBoss web console access attempt
2017-03-19 10:15:15.537DurranSERVER-WEBAPP JBoss JMX console access attempt
2017-03-19 10:13:22.107DurranSERVER-WEBAPP JBoss web console access attempt
2017-03-19 10:13:16.274DurranSERVER-WEBAPP JBoss JMX console access attempt
2017-03-19 08:43:30.172DMZ-Apache-FTP-DebianSERVER-WEBAPP /etc/passwd file access attempt
2017-03-19 08:33:17.707DurranPOLICY-OTHER Adobe ColdFusion admin API access attempt
- Durran Previous message repeated 4 times
2017-03-19 08:31:12.103DurranMALWARE-OTHER Horde javascript.php href backdoor
- Durran Previous message repeated 4 times
2017-03-19 08:30:04.305DurranSERVER-WEBAPP WebTester install2.php arbitrary command execution attempt
2017-03-19 08:29:55.436DurranSERVER-WEBAPP JBoss web console access attempt
2017-03-19 08:29:52.242DurranSERVER-WEBAPP WebTester install2.php arbitrary command execution attempt
2017-03-19 08:29:50.234DurranSERVER-WEBAPP JBoss JMX console access attempt
2017-03-19 08:29:36.115DurranMALWARE-CNC Win.Trojan.Dexter CasinoLoader SQL injection
2017-03-19 08:29:36.115DurranMALWARE-CNC Win.Trojan.Dexter variant outbound connection
2017-03-19 08:29:35.559DurranMALWARE-CNC Win.Trojan.Dexter CasinoLoader SQL injection
2017-03-19 08:29:35.559DurranMALWARE-CNC Win.Trojan.Dexter variant outbound connection
2017-03-19 08:29:35.37DurranMALWARE-CNC Win.Trojan.Dexter CasinoLoader SQL injection
2017-03-19 08:29:35.37DurranMALWARE-CNC Win.Trojan.Dexter variant outbound connection
2017-03-19 08:29:34.875DurranMALWARE-CNC Win.Trojan.Dexter CasinoLoader SQL injection
2017-03-19 08:29:34.875DurranMALWARE-CNC Win.Trojan.Dexter variant outbound connection
- Durran Previous message repeated 1 times
2017-03-19 08:29:32.879DurranMALWARE-CNC Win.Trojan.Dexter CasinoLoader SQL injection
2017-03-19 08:28:55.262DurranOS-OTHER Bash environment variable injection attempt
- Durran Previous message repeated 1 times
2017-03-19 08:28:01.108DurranSERVER-WEBAPP Joomla JDatabaseDriverMysqli unserialize code execution attempt
- Durran Previous message repeated 3 times
2017-03-18 14:37:26.922DurranOS-OTHER Bash environment variable injection attempt
2017-03-18 14:29:31.821DurranMALWARE-CNC Win.Trojan.Dexter variant outbound connection
2017-03-18 14:29:31.821DurranMALWARE-CNC Win.Trojan.Dexter CasinoLoader SQL injection
2017-03-18 14:29:24.029DurranPOLICY-OTHER Adobe ColdFusion admin interface access attempt
2017-03-18 13:25:55.991DurranOS-OTHER Bash CGI environment variable injection attempt
- Durran Previous message repeated 377 times
2017-03-18 08:04:31.805DurranPOLICY-OTHER Adobe ColdFusion admin interface access attempt
2017-03-18 08:04:31.805DurranOS-OTHER Bash CGI environment variable injection attempt
- Durran Previous message repeated 4 times
2017-03-18 08:04:31.747DurranPOLICY-OTHER Adobe ColdFusion admin interface access attempt
2017-03-18 08:04:31.742DurranOS-OTHER Bash CGI environment variable injection attempt
- Durran Previous message repeated 183 times
2017-03-18 08:04:29.384DurranPOLICY-OTHER Adobe ColdFusion admin interface access attempt
2017-03-18 08:04:29.358DurranOS-OTHER Bash CGI environment variable injection attempt
- Durran Previous message repeated 64 times
2017-03-18 08:04:28.087DurranPOLICY-OTHER Adobe ColdFusion admin interface access attempt
2017-03-18 08:04:28.03DurranOS-OTHER Bash CGI environment variable injection attempt
- Durran Previous message repeated 85 times
2017-03-18 08:03:25.793DurranSERVER-WEBAPP JBoss JMXInvokerServlet access attempt
- Durran Previous message repeated 1 times
2017-03-18 08:03:18.751DurranOS-OTHER Bash CGI environment variable injection attempt
- Durran Previous message repeated 29 times
2017-03-18 08:03:12.323DurranSERVER-WEBAPP JBoss JMXInvokerServlet access attempt
- Durran Previous message repeated 1 times
2017-03-18 08:03:11.824DurranOS-OTHER Bash CGI environment variable injection attempt
- Durran Previous message repeated 22 times
2017-03-18 08:03:08.212DurranSERVER-WEBAPP JBoss web console access attempt
2017-03-18 08:03:08.185DurranOS-OTHER Bash CGI environment variable injection attempt
- Durran Previous message repeated 1 times
2017-03-18 08:03:08.118DurranSERVER-WEBAPP JBoss web console access attempt
2017-03-18 08:03:08.06DurranOS-OTHER Bash CGI environment variable injection attempt