Why is 50.22.53.71 hitting my localhost node.js in an attempt to find a php setup

Posted by laggingreflex on Super User See other posts from Super User or by laggingreflex
Published on 2014-08-15T01:19:03Z Indexed on 2014/08/25 4:24 UTC
Read the original article Hit count: 488

Filed under:
|
|
|

I just created a new app using angular-fullstack yeoman generator, edited it a bit to my liking, and ran it with grunt on my localhost, and immediately upon starting up I get this flood of requests to paths that I haven't even defined.

Is this a hacking attempt? And if so, how does the hacker (human or bot) immediately know where my server is and when it came online? Note that I haven't made anything online, it's just a localhost setup and I'm merely connected to the internet. (Although my router does allow 80 port incoming.)

Whois shows that the IP address belongs to a SoftLayer Technologies. Never heard of it.

Express server listening on 80, in development mode
GET / [200] | 127.0.0.1 (Chrome 31.0.1650)
GET /w00tw00t.at.blackhats.romanian.anti-sec:) [404] | 50.22.53.71 (Other)
GET /scripts/setup.php [404] | 50.22.53.71 (Other)
GET /admin/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /admin/pma/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /admin/phpmyadmin/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /db/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /dbadmin/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /myadmin/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /mysql/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /mysqladmin/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /typo3/phpmyadmin/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /phpadmin/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /phpMyAdmin/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /phpmyadmin/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /phpmyadmin1/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /phpmyadmin2/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /pma/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /web/phpMyAdmin/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /xampp/phpmyadmin/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /web/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /php-my-admin/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /websql/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /phpmyadmin/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /phpMyAdmin/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /phpMyAdmin-2/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /php-my-admin/scripts/setup.php [404] | 50.22.53.71 (Other)
GET /phpMyAdmin-2.5.5/index.php [404] | 50.22.53.71 (Other)
GET /phpMyAdmin-2.5.5-pl1/index.php [404] | 50.22.53.71 (Other)
GET /phpMyAdmin/ [404] | 50.22.53.71 (Other)
GET /phpmyadmin/ [404] | 50.22.53.71 (Other)
GET /mysqladmin/ [404] | 50.22.53.71 (Other)

© Super User or respective owner

Related posts about security

Related posts about php