ハニーポット(仮) 観測記録 2019/09/06分です。
特徴
Region:AP
HiSilicon DVR Devicesの脆弱性を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
112[.]124[.]42[.]80に関する不正通信
を確認しました。
Region:US
HiSilicon DVR Devicesの脆弱性を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
phpMyAdminに対するスキャン行為
110[.]249[.]212[.]46に関する不正通信
を確認しました。
Region:EU
ThinkPHPの脆弱性を狙うアクセス
110[.]249[.]212[.]46に関する不正通信
を確認しました。
他
アクセス数推移
AP:総アクセス数:31 (前日比:-82)
US:総アクセス数:96 (前日比:+67)
EU:総アクセス数:8 (前日比:-9)
都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。
Region:AP
送信元IPアドレス一覧
| 件数 | 送信元IPアドレス | 国 |
|---|---|---|
| 1 | 110.80.155.30 | China |
| 4 | 115.159.122.71 | China |
| 1 | 1.29.243.206 | China |
| 1 | 14.162.74.0 | Vietnam |
| 1 | 157.55.39.24 | United States |
| 1 | 157.55.39.32 | United States |
| 1 | 172.104.242.173 | United States |
| 1 | 178.32.129.16 | France |
| 1 | 179.53.180.242 | Dominican Republic |
| 1 | 182.88.77.60 | China |
| 1 | 187.188.202.70 | Mexico |
| 1 | 190.105.208.114 | Argentina |
| 1 | 193.188.22.56 | Russia |
| 1 | 197.237.178.135 | Kenya |
| 1 | 210.6.156.103 | Hong Kong |
| 2 | 210.86.171.106 | Thailand |
| 4 | 37.193.108.70 | Russia |
| 4 | 47.93.89.239 | China |
| 2 | 60.191.52.254 | China |
| 1 | 85.93.20.170 | Poland |
UserAgent一覧
| 件数 | UserAgent |
|---|---|
| 17 | - |
| 2 | Go-http-client/1.1 |
| 2 | Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) |
| 2 | Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36 |
| 1 | Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.101 Safari/537.36 |
| 1 | Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36Mozilla/5.01732016 Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:55.0) Gecko/20100101 Firefox/55.0 |
| 6 | Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6) |
リクエスト内容一覧
| 件数 | Method | Request | Protocol |
|---|---|---|---|
| 1 | - | ||
| 1 | CONNECT | i.instagram.com:443 | HTTP/1.1 |
| 1 | GET | /english/ | HTTP/1.1 |
| 13 | GET | ../../mnt/custom/ProductDefinition | HTTP |
| 2 | GET | /robots.txt | HTTP/1.1 |
| 2 | GET | /TP/index.php | HTTP/1.1 |
| 2 | GET | /TP/index.php?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1]=1 | HTTP/1.1 |
| 2 | GET | /TP/public/index.php | HTTP/1.1 |
| 2 | HEAD | / | HTTP/1.1 |
| 1 | HEAD | http://112[.]124[.]42[.]80:63435/ | HTTP/1.1 |
| 2 | POST | /TP/index.php?s=captcha | HTTP/1.1 |
| 2 | \x03 |
Region:US
送信元IPアドレス一覧
| 件数 | 送信元IPアドレス | 国 |
|---|---|---|
| 1 | 109.199.93.209 | Poland |
| 1 | 110.249.212.46 | China |
| 1 | 113.172.138.107 | Vietnam |
| 1 | 113.173.87.44 | Vietnam |
| 69 | 119.29.193.122 | China |
| 10 | 124.251.44.18 | China |
| 1 | 14.169.152.192 | Vietnam |
| 1 | 1.53.212.142 | Vietnam |
| 1 | 172.104.242.173 | United States |
| 1 | 176.100.41.129 | Russia |
| 1 | 179.42.219.118 | Belize |
| 1 | 186.212.129.114 | Brazil |
| 1 | 186.55.21.56 | Uruguay |
| 1 | 187.188.185.180 | Mexico |
| 1 | 193.188.22.56 | Russia |
| 1 | 197.247.40.228 | Morocco |
| 1 | 77.247.110.69 | Netherlands |
| 1 | 79.40.109.66 | Italy |
| 1 | 85.93.20.170 | Poland |
UserAgent一覧
| 件数 | UserAgent |
|---|---|
| 17 | - |
| 1 | Go-http-client/1.1 |
| 69 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36 |
| 9 | Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6) |
リクエスト内容一覧
| 件数 | Method | Request | Protocol |
|---|---|---|---|
| 1 | - | ||
| 1 | GET | /2phpmyadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/db/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/phpmyadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/phpMyAdmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/pMA/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/sqladmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/sysadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/web/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /database/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /dbadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/db-admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/dbadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/dbweb/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/myadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/phpmyadmin3/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/phpMyAdmin-3/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/phpMyAdmin3/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/phpmyadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/phpMyAdmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/webadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/webdb/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/websql/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /elrekt.php | HTTP/1.1 |
| 1 | GET | /html/public/index.php | HTTP/1.1 |
| 1 | GET | http://110[.]249[.]212[.]46/testget?q=23333&port=80 | HTTP/1.1 |
| 1 | GET | /index.php | HTTP/1.1 |
| 1 | GET | /index.php?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1]=1 | HTTP/1.1 |
| 12 | GET | ../../mnt/custom/ProductDefinition | HTTP |
| 1 | GET | /myadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /MyAdmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql-admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysqladmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/dbadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/db/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysqlmanager/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/mysqlmanager/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/pma/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/pMA/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/sqlmanager/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/web/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin2/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin3/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin4/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /php-myadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmy-admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyAdmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpMyadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpMyAdmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmy/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phppma/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /pma/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /PMA/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /program/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /public/index.php | HTTP/1.1 |
| 1 | GET | /shopdb/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sqlmanager/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/myadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/phpmanager/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/phpmyadmin2/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/phpMyAdmin2/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/php-myadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/phpmy-admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/phpMyAdmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/sql-admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/sqladmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/sql/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/sqlweb/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/webadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/webdb/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/websql/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /thinkphp/html/public/index.php | HTTP/1.1 |
| 1 | GET | /TP/html/public/index.php | HTTP/1.1 |
| 1 | GET | /TP/index.php | HTTP/1.1 |
| 1 | GET | /TP/public/index.php | HTTP/1.1 |
| 1 | GET | /wp-content/plugins/portable-phpmyadmin/wp-pma-mod/index.php?lang=en | HTTP/1.1 |
| 1 | HEAD | /robots.txt | HTTP/1.0 |
| 1 | POST | /index.php?s=captcha | HTTP/1.1 |
| 2 | \x03 |
Region:EU
送信元IPアドレス一覧
| 件数 | 送信元IPアドレス | 国 |
|---|---|---|
| 4 | 110.249.212.46 | China |
| 1 | 172.104.242.173 | United States |
| 1 | 193.188.22.56 | Russia |
| 1 | 77.247.110.69 | Netherlands |
| 1 | 85.93.20.170 | Poland |
UserAgent一覧
| 件数 | UserAgent |
|---|---|
| 8 | - |
リクエスト内容一覧
| 件数 | Method | Request | Protocol |
|---|---|---|---|
| 1 | - | ||
| 4 | GET | http://110[.]249[.]212[.]46/testget?q=23333&port=80 | HTTP/1.1 |
| 1 | HEAD | /robots.txt | HTTP/1.0 |
| 2 | \x03 |
