I would advise you to read the article carefully and consider it. All attacks come from the inetnum: 106.12.0.0 - 106.13.255.255
netname: Baidu
descr: Beijing Baidu Netcom Science and Technology Co., Ltd.
descr: Baidu Plaza, No.10, Shangdi 10th street,
Could be traced back until then, on a web server alone, almost 1800 supposed scanner scans were carried out in one day, including the alleged data such as /backup.zip and /web.zip, /configuration.php.swp, / configuration. Find php ~, /configuration.php.bak, especially since these files never existed! Furthermore, the logs rose from approx. 10MB per month to 625 MB in just 20 days.
All log files
I will not publish any logs here, especially not live, because these are customer data. Recommend to look at your logs and especially on the IPs 106.12.0.0 to
106.13.255.255, also other networks from Baidu Plaza and the surrounding area and then everyone can decide for themselves. We will first take aaPanel from our servers and revise it ourselves.
