Hey guys, thought I'd share this with you... I only recently started my site, Make Bitcoins Fast
, and already I've been... pen tested? It looks more like they were testing to see if I was related to some other sites like the Bitcoin Faucet, MineField, and a lotto game. Anyway, here's the pages they tried requesting (which resulted in a 404):
The requesting IP address was 18.104.22.168.
I'm not worried or anything, I'm just curious what you guys think this might be? Why would people be testing to see if my site is one of those sites?
I looked through the FeedZebirds logs, and found a single reference to said IP address. It looks like a Java-based crawler.
22.214.171.124 - - [16/May/2012:12:00:48 +0400] "GET / HTTP/1.1" 200 10678 "-" "Java/1.6.0_31"
Everything looks fine. I guess it is just some bot, looking for vulnerabilities. Wonder why it would look for some FeedZeBirds specific URLs on your site (i.e. http://www.feedzebirds.com/9bxta
). Others are completely unrelated. We use no ASP whatsoever, for instance. Regardless, I suspect it found no vulnerabilities here, as everything looks in order. Such bots are not uncommon, after all.
I'll add that looking through the 404s resulted in nothing unusual. A few futile attempts at finding a phpmyadmin instance and a ton of misspellings.