ハニーポット(仮) 観測記録 2019/07/15分です。
APでは
Adobe ColdFusionの脆弱性を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
を確認しました。
USでは
IPを指定した/testget?q=23333&port=80というアクセス
を確認しました。
EUでは
IPを指定した/testget?q=23333&port=80というアクセス
を確認しました。
アクセス数推移
AP:総アクセス数:119 (前日比:+104)
US:総アクセス数:7 (前日比:-7)
EU:総アクセス数:11 (前日比:-10)
都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。
Region:AP
送信元IPアドレス一覧
件数 | 送信元IPアドレス | 国 |
---|---|---|
3 | 110.249.212.46 | China |
1 | 157.55.39.49 | United States |
1 | 176.31.240.172 | France |
2 | 185.53.88.40 | Estonia |
4 | 43.245.186.236 | Indonesia |
1 | 54.36.148.255 | France |
1 | 54.36.148.30 | France |
103 | 62.173.140.192 | Russia |
3 | 77.247.110.219 | Netherlands |
UserAgent一覧
件数 | UserAgent |
---|---|
9 | - |
1 | Go-http-client/1.1 |
2 | Mozilla/5.0 (compatible; AhrefsBot/6.1; +http://ahrefs.com/robot/) |
1 | Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) |
103 | Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:56.0) Gecko/20100101 Firefox/56.0 |
3 | Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6) |
リクエスト内容一覧
件数 | Method | Request | Protocol |
---|---|---|---|
1 | GET | /8180/ | HTTP/1.1 |
1 | GET | /aastra/ | HTTP/1.1 |
1 | GET | /ag198/ | HTTP/1.1 |
1 | GET | /algo/ | HTTP/1.1 |
1 | GET | /algom/ | HTTP/1.1 |
1 | GET | /app/provision/ | HTTP/1.1 |
1 | GET | /asterisk/ | HTTP/1.1 |
1 | GET | /atacom/ | HTTP/1.1 |
1 | GET | /atcom/ag198/ | HTTP/1.1 |
1 | GET | /atcom/ | HTTP/1.1 |
1 | GET | /autoload_configs/ | HTTP/1.1 |
1 | GET | /backup/ | HTTP/1.1 |
1 | GET | /baFirmware/ | HTTP/1.1 |
1 | GET | /boot/ | HTTP/1.1 |
1 | GET | /bub2/ | HTTP/1.1 |
1 | GET | /bub/ | HTTP/1.1 |
1 | GET | /bw/ | HTTP/1.1 |
1 | GET | /cfg/ | HTTP/1.1 |
1 | GET | /CFIDE/administrator/ | HTTP/1.1 |
1 | GET | /cisco | HTTP/1.1 |
1 | GET | /cisco/ | HTTP/1.1 |
1 | GET | /conf/ | HTTP/1.1 |
1 | GET | /config/ | HTTP/1.1 |
1 | GET | /configs/ | HTTP/1.1 |
1 | GET | /configuration/ | HTTP/1.1 |
1 | GET | /cp860/ | HTTP/1.1 |
1 | GET | /d50/ | HTTP/1.1 |
1 | GET | /default/ | HTTP/1.1 |
1 | GET | /devicecfg/ | HTTP/1.1 |
1 | GET | /digium/d50/ | HTTP/1.1 |
1 | GET | /digium/ | HTTP/1.1 |
1 | GET | /directory/ | HTTP/1.1 |
1 | GET | /dms/ | HTTP/1.1 |
1 | GET | /download/ | HTTP/1.1 |
1 | GET | /e3xx/ | HTTP/1.1 |
1 | GET | /engine/smarty/ | HTTP/1.1 |
1 | GET | /escene/e3xx/ | HTTP/1.1 |
1 | GET | /escene/ | HTTP/1.1 |
1 | GET | /etc/ | HTTP/1.1 |
1 | GET | /exec/ | HTTP/1.1 |
1 | GET | /extensions.conf | HTTP/1.1 |
1 | GET | /extensions/ | HTTP/1.1 |
1 | GET | /fanvil/ | HTTP/1.1 |
1 | GET | /fax/ | HTTP/1.1 |
1 | GET | /fifo/ | HTTP/1.1 |
1 | GET | /firmware | HTTP/1.1 |
1 | GET | /firmware/ | HTTP/1.1 |
1 | GET | /folder/ | HTTP/1.1 |
1 | GET | /fpbx/ | HTTP/1.1 |
1 | GET | /freeswitch.xml/ | HTTP/1.1 |
1 | GET | /freetdm.conf/ | HTTP/1.1 |
1 | GET | /ftp/ | HTTP/1.1 |
1 | GET | /fw/ | HTTP/1.1 |
1 | GET | /gateway | HTTP/1.1 |
1 | GET | /gateways/ | HTTP/1.1 |
1 | GET | /grandstream/ | HTTP/1.1 |
1 | GET | /gs/ | HTTP/1.1 |
1 | GET | /gswave/ | HTTP/1.1 |
1 | GET | /home/ | HTTP/1.1 |
1 | GET | /htek/ | HTTP/1.1 |
3 | GET | http://110[.]249[.]212[.]46/testget?q=23333&port=80 | HTTP/1.1 |
1 | GET | /line/ | HTTP/1.1 |
1 | GET | /linksys/ | HTTP/1.1 |
1 | GET | /manger/ | HTTP/1.1 |
1 | GET | /master/ | HTTP/1.1 |
1 | GET | /MikroTik/ | HTTP/1.1 |
1 | GET | /mitel/ | HTTP/1.1 |
1 | GET | /obihai/ | HTTP/1.1 |
1 | GET | /overides/ | HTTP/1.1 |
1 | GET | /panasonic/ | HTTP/1.1 |
1 | GET | /pbx/ | HTTP/1.1 |
1 | GET | /phone/ | HTTP/1.1 |
1 | GET | /phones/ | HTTP/1.1 |
1 | GET | /polycom/ | HTTP/1.1 |
1 | GET | /prov/ | HTTP/1.1 |
1 | GET | /provisioner/ | HTTP/1.1 |
1 | GET | /provision/ | HTTP/1.1 |
1 | GET | /provisioning/ | HTTP/1.1 |
1 | GET | /ps/ | HTTP/1.1 |
1 | GET | /pub/ | HTTP/1.1 |
1 | GET | /recordings/atmin/ | HTTP/1.1 |
1 | GET | /recordings/ | HTTP/1.1 |
1 | GET | /reg | HTTP/1.1 |
3 | GET | /robots.txt | HTTP/1.1 |
1 | GET | /sangoma/ | HTTP/1.1 |
1 | GET | /sip/ | HTTP/1.1 |
1 | GET | /sipphone/ | HTTP/1.1 |
1 | GET | /smart/ | HTTP/1.1 |
1 | GET | /smarty/ | HTTP/1.1 |
1 | GET | /snom/ | HTTP/1.1 |
1 | GET | /spa/ | HTTP/1.1 |
1 | GET | /spectralink/ | HTTP/1.1 |
1 | GET | /sys/ | HTTP/1.1 |
1 | GET | /temp/ | HTTP/1.1 |
1 | GET | /text/ | HTTP/1.1 |
1 | GET | /TP/index.php | HTTP/1.1 |
1 | GET | /TP/index.php?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1 | HTTP/1.1 |
1 | GET | /TP/public/index.php | HTTP/1.1 |
1 | GET | /trunks/ | HTTP/1.1 |
1 | GET | /Trunks/ | HTTP/1.1 |
1 | GET | /vcs754/ | HTTP/1.1 |
1 | GET | /vodafone/ | HTTP/1.1 |
1 | GET | /voice/ | HTTP/1.1 |
1 | GET | /voip/ | HTTP/1.1 |
1 | GET | /vpn/ | HTTP/1.1 |
1 | GET | /vtech/ | HTTP/1.1 |
1 | GET | /vtech/vcs754/ | HTTP/1.1 |
1 | GET | /yealink/ | HTTP/1.1 |
1 | GET | /yeastar/ | HTTP/1.1 |
1 | HEAD | /robots.txt | HTTP/1.0 |
4 | HEAD | /robots.txt | HTTP/1.1 |
1 | POST | /TP/index.php?s=captcha | HTTP/1.1 |
Region:US
送信元IPアドレス一覧
件数 | 送信元IPアドレス | 国 |
---|---|---|
3 | 110.249.212.46 | China |
1 | 132.145.16.112 | United States |
1 | 61.219.11.153 | Taiwan |
1 | 77.247.110.219 | Netherlands |
1 | 80.24.191.81 | Spain |
UserAgent一覧
件数 | UserAgent |
---|---|
5 | - |
1 | Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; WOW64; Trident/6.0) |
1 | Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6) |
リクエスト内容一覧
件数 | Method | Request | Protocol |
---|---|---|---|
1 | - | ||
3 | GET | http://110[.]249[.]212[.]46/testget?q=23333&port=80 | HTTP/1.1 |
1 | GET | /manager/html | HTTP/1.1 |
1 | GET | /TP/public/index.php | HTTP/1.1 |
1 | HEAD | /robots.txt | HTTP/1.0 |
Region:EU
送信元IPアドレス一覧
件数 | 送信元IPアドレス | 国 |
---|---|---|
6 | 110.249.212.46 | China |
3 | 185.53.88.40 | Estonia |
1 | 5.188.210.101 | Russia |
1 | 61.219.11.153 | Taiwan |
UserAgent一覧
件数 | UserAgent |
---|---|
10 | - |
1 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36 |
リクエスト内容一覧
件数 | Method | Request | Protocol |
---|---|---|---|
1 | - | ||
6 | GET | http://110[.]249[.]212[.]46/testget?q=23333&port=80 | HTTP/1.1 |
1 | GET | http://5[.]188[.]210[.]101/echo.php | HTTP/1.1 |
3 | HEAD | /robots.txt | HTTP/1.0 |