ハニーポット(仮) 観測記録 2019/07/15分です。

APでは
Adobe ColdFusionの脆弱性を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
を確認しました。

USでは
IPを指定した/testget?q=23333&port=80というアクセス
を確認しました。

EUでは
IPを指定した/testget?q=23333&port=80というアクセス
を確認しました。

アクセス数推移

AP：総アクセス数：119 (前日比：+104)
US：総アクセス数：7 (前日比：-7)
EU：総アクセス数：11 (前日比：-10)

都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。

Region：AP

送信元IPアドレス一覧

件数	送信元IPアドレス	国
3	110.249.212.46	China
1	157.55.39.49	United States
1	176.31.240.172	France
2	185.53.88.40	Estonia
4	43.245.186.236	Indonesia
1	54.36.148.255	France
1	54.36.148.30	France
103	62.173.140.192	Russia
3	77.247.110.219	Netherlands

UserAgent一覧

件数	UserAgent
9	-
1	Go-http-client/1.1
2	Mozilla/5.0 (compatible; AhrefsBot/6.1; +http://ahrefs.com/robot/)
1	Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)
103	Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:56.0) Gecko/20100101 Firefox/56.0
3	Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)

リクエスト内容一覧

件数	Method	Request	Protocol
1	GET	/8180/	HTTP/1.1
1	GET	/aastra/	HTTP/1.1
1	GET	/ag198/	HTTP/1.1
1	GET	/algo/	HTTP/1.1
1	GET	/algom/	HTTP/1.1
1	GET	/app/provision/	HTTP/1.1
1	GET	/asterisk/	HTTP/1.1
1	GET	/atacom/	HTTP/1.1
1	GET	/atcom/ag198/	HTTP/1.1
1	GET	/atcom/	HTTP/1.1
1	GET	/autoload_configs/	HTTP/1.1
1	GET	/backup/	HTTP/1.1
1	GET	/baFirmware/	HTTP/1.1
1	GET	/boot/	HTTP/1.1
1	GET	/bub2/	HTTP/1.1
1	GET	/bub/	HTTP/1.1
1	GET	/bw/	HTTP/1.1
1	GET	/cfg/	HTTP/1.1
1	GET	/CFIDE/administrator/	HTTP/1.1
1	GET	/cisco	HTTP/1.1
1	GET	/cisco/	HTTP/1.1
1	GET	/conf/	HTTP/1.1
1	GET	/config/	HTTP/1.1
1	GET	/configs/	HTTP/1.1
1	GET	/configuration/	HTTP/1.1
1	GET	/cp860/	HTTP/1.1
1	GET	/d50/	HTTP/1.1
1	GET	/default/	HTTP/1.1
1	GET	/devicecfg/	HTTP/1.1
1	GET	/digium/d50/	HTTP/1.1
1	GET	/digium/	HTTP/1.1
1	GET	/directory/	HTTP/1.1
1	GET	/dms/	HTTP/1.1
1	GET	/download/	HTTP/1.1
1	GET	/e3xx/	HTTP/1.1
1	GET	/engine/smarty/	HTTP/1.1
1	GET	/escene/e3xx/	HTTP/1.1
1	GET	/escene/	HTTP/1.1
1	GET	/etc/	HTTP/1.1
1	GET	/exec/	HTTP/1.1
1	GET	/extensions.conf	HTTP/1.1
1	GET	/extensions/	HTTP/1.1
1	GET	/fanvil/	HTTP/1.1
1	GET	/fax/	HTTP/1.1
1	GET	/fifo/	HTTP/1.1
1	GET	/firmware	HTTP/1.1
1	GET	/firmware/	HTTP/1.1
1	GET	/folder/	HTTP/1.1
1	GET	/fpbx/	HTTP/1.1
1	GET	/freeswitch.xml/	HTTP/1.1
1	GET	/freetdm.conf/	HTTP/1.1
1	GET	/ftp/	HTTP/1.1
1	GET	/fw/	HTTP/1.1
1	GET	/gateway	HTTP/1.1
1	GET	/gateways/	HTTP/1.1
1	GET	/grandstream/	HTTP/1.1
1	GET	/gs/	HTTP/1.1
1	GET	/gswave/	HTTP/1.1
1	GET	/home/	HTTP/1.1
1	GET	/htek/	HTTP/1.1
3	GET	http://110[.]249[.]212[.]46/testget?q=23333&port=80	HTTP/1.1
1	GET	/line/	HTTP/1.1
1	GET	/linksys/	HTTP/1.1
1	GET	/manger/	HTTP/1.1
1	GET	/master/	HTTP/1.1
1	GET	/MikroTik/	HTTP/1.1
1	GET	/mitel/	HTTP/1.1
1	GET	/obihai/	HTTP/1.1
1	GET	/overides/	HTTP/1.1
1	GET	/panasonic/	HTTP/1.1
1	GET	/pbx/	HTTP/1.1
1	GET	/phone/	HTTP/1.1
1	GET	/phones/	HTTP/1.1
1	GET	/polycom/	HTTP/1.1
1	GET	/prov/	HTTP/1.1
1	GET	/provisioner/	HTTP/1.1
1	GET	/provision/	HTTP/1.1
1	GET	/provisioning/	HTTP/1.1
1	GET	/ps/	HTTP/1.1
1	GET	/pub/	HTTP/1.1
1	GET	/recordings/atmin/	HTTP/1.1
1	GET	/recordings/	HTTP/1.1
1	GET	/reg	HTTP/1.1
3	GET	/robots.txt	HTTP/1.1
1	GET	/sangoma/	HTTP/1.1
1	GET	/sip/	HTTP/1.1
1	GET	/sipphone/	HTTP/1.1
1	GET	/smart/	HTTP/1.1
1	GET	/smarty/	HTTP/1.1
1	GET	/snom/	HTTP/1.1
1	GET	/spa/	HTTP/1.1
1	GET	/spectralink/	HTTP/1.1
1	GET	/sys/	HTTP/1.1
1	GET	/temp/	HTTP/1.1
1	GET	/text/	HTTP/1.1
1	GET	/TP/index.php	HTTP/1.1
1	GET	/TP/index.php?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1	HTTP/1.1
1	GET	/TP/public/index.php	HTTP/1.1
1	GET	/trunks/	HTTP/1.1
1	GET	/Trunks/	HTTP/1.1
1	GET	/vcs754/	HTTP/1.1
1	GET	/vodafone/	HTTP/1.1
1	GET	/voice/	HTTP/1.1
1	GET	/voip/	HTTP/1.1
1	GET	/vpn/	HTTP/1.1
1	GET	/vtech/	HTTP/1.1
1	GET	/vtech/vcs754/	HTTP/1.1
1	GET	/yealink/	HTTP/1.1
1	GET	/yeastar/	HTTP/1.1
1	HEAD	/robots.txt	HTTP/1.0
4	HEAD	/robots.txt	HTTP/1.1
1	POST	/TP/index.php?s=captcha	HTTP/1.1

Region:US

送信元IPアドレス一覧

件数	送信元IPアドレス	国
3	110.249.212.46	China
1	132.145.16.112	United States
1	61.219.11.153	Taiwan
1	77.247.110.219	Netherlands
1	80.24.191.81	Spain

UserAgent一覧

件数	UserAgent
5	-
1	Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; WOW64; Trident/6.0)
1	Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)

リクエスト内容一覧

件数	Method	Request	Protocol
1	-
3	GET	http://110[.]249[.]212[.]46/testget?q=23333&port=80	HTTP/1.1
1	GET	/manager/html	HTTP/1.1
1	GET	/TP/public/index.php	HTTP/1.1
1	HEAD	/robots.txt	HTTP/1.0

Region:EU

送信元IPアドレス一覧

件数	送信元IPアドレス	国
6	110.249.212.46	China
3	185.53.88.40	Estonia
1	5.188.210.101	Russia
1	61.219.11.153	Taiwan

UserAgent一覧

件数	UserAgent
10	-
1	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36

リクエスト内容一覧

件数	Method	Request	Protocol
1	-
6	GET	http://110[.]249[.]212[.]46/testget?q=23333&port=80	HTTP/1.1
1	GET	http://5[.]188[.]210[.]101/echo.php	HTTP/1.1
3	HEAD	/robots.txt	HTTP/1.0