ハニーポット(仮) 観測記録 2019/09/22分です。
特徴
Region:AP
HiSilicon DVR Devicesの脆弱性を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
phpMyAdminに対するスキャン行為
を確認しました。
Region:US
ThinkPHPの脆弱性を狙うアクセス
phpMyAdminに対するスキャン行為
zgrabによるスキャン行為
を確認しました。
Region:EU
ThinkPHPの脆弱性を狙うアクセス
を確認しました。
他
アクセス数推移
AP:総アクセス数:31 (前日比:-18)
US:総アクセス数:124 (前日比:-99)
EU:総アクセス数:14 (前日比:+9)
都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。
Region:AP
送信元IPアドレス一覧
| 件数 | 送信元IPアドレス | 国 |
|---|---|---|
| 3 | 103.219.34.72 | China |
| 1 | 104.248.21.85 | United States |
| 1 | 114.115.236.68 | China |
| 1 | 114.32.47.212 | Taiwan |
| 1 | 120.51.201.70 | Japan |
| 1 | 179.222.215.253 | Brazil |
| 2 | 185.234.218.52 | Ireland |
| 1 | 194.93.59.44 | Germany |
| 1 | 195.158.110.186 | Malta |
| 1 | 207.46.13.228 | United States |
| 3 | 39.135.1.163 | China |
| 4 | 39.135.1.165 | China |
| 4 | 59.46.190.24 | China |
| 2 | 66.249.69.16 | United States |
| 5 | 82.17.99.227 | United Kingdom |
UserAgent一覧
| 件数 | UserAgent |
|---|---|
| 6 | - |
| 2 | Go-http-client/1.1 |
| 1 | Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; GTB7.5; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.3; .NET4.0C) |
| 1 | Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) |
| 2 | Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html) |
| 2 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 |
| 5 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36 |
| 12 | Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6) |
リクエスト内容一覧
| 件数 | Method | Request | Protocol |
|---|---|---|---|
| 4 | GET | ../../mnt/custom/ProductDefinition | HTTP |
| 1 | GET | /mysql/admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/dbadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/mysqlmanager/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/sqlmanager/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin/index.php?lang=en | HTTP/1.1 |
| 2 | GET | /PSIA/index | HTTP/1.1 |
| 3 | GET | /robots.txt | HTTP/1.1 |
| 4 | GET | /TP/index.php | HTTP/1.1 |
| 4 | GET | /TP/index.php?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1]=1 | HTTP/1.1 |
| 4 | GET | /TP/public/index.php | HTTP/1.1 |
| 1 | HEAD | / | HTTP/1.1 |
| 2 | POST | /TP/index.php?s=captcha | HTTP/1.1 |
| 1 | POST | /upgrade.aspx?a1=a51599c6 | HTTP/1.1 |
| 1 | \x03 |
Region:US
送信元IPアドレス一覧
| 件数 | 送信元IPアドレス | 国 |
|---|---|---|
| 1 | 159.203.201.40 | United States |
| 1 | 172.104.242.173 | United States |
| 108 | 174.18.122.96 | United States |
| 1 | 194.93.59.44 | Germany |
| 1 | 31.167.37.249 | Saudi Arabia |
| 10 | 36.112.138.185 | China |
| 1 | 73.37.248.211 | United States |
| 1 | 92.63.194.3 | Russia |
UserAgent一覧
| 件数 | UserAgent |
|---|---|
| 3 | - |
| 1 | Go-http-client/1.1 |
| 110 | Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36 |
| 9 | Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6) |
| 1 | Mozilla/5.0 zgrab/0.x |
リクエスト内容一覧
| 件数 | Method | Request | Protocol |
|---|---|---|---|
| 1 | - | ||
| 1 | GET | /2phpmyadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/db/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /administrator/admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /administrator/db/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /administrator/phpmyadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /administrator/phpMyAdmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /administrator/pma/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /administrator/PMA/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /administrator/web/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/phpmyadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/phpMyAdmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/pMA/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/sqladmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/sysadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /admin/web/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /database/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /dbadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/db-admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/dbadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/dbweb/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/myadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/phpmyadmin3/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/phpMyAdmin-3/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/phpMyAdmin3/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/phpmyadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/phpMyAdmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/webadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/webdb/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /db/websql/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /elrekt.php | HTTP/1.1 |
| 1 | GET | /html/public/index.php | HTTP/1.1 |
| 1 | GET | /index.php | HTTP/1.1 |
| 1 | GET | /index.php?lang=en | HTTP/1.1 |
| 1 | GET | /index.php?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1]=1 | HTTP/1.1 |
| 1 | GET | /manager/text/list | HTTP/1.1 |
| 1 | GET | /myadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /MyAdmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql-admin/index.php?lang=en | HTTP/1.1 |
| 3 | GET | /mysql/admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysqladmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/dbadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/db/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysqlmanager/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/mysqlmanager/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/pma/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/pMA/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/sqlmanager/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /mysql/web/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin2011/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin2012/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin2013/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin2014/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin2015/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin2016/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin2017/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin2018/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin2019/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin2/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpMyAdmin2/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin3/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpMyAdmin-3/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpMyAdmin3/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin4/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpMyAdmin4/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /php-my-admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /php-myadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmy-admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmyAdmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpMyadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpMyAdmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phpmy/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /phppma/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /pma2011/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /PMA2011/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /pma2012/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /PMA2012/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /pma2013/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /PMA2013/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /pma2014/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /PMA2014/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /pma2015/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /PMA2015/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /pma2016/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /PMA2016/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /pma2017/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /PMA2017/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /pma2018/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /PMA2018/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /pma2019/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /pma/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /PMA/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /program/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /public/index.php | HTTP/1.1 |
| 1 | GET | /shopdb/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sqlmanager/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/myadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/phpmanager/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/phpmyadmin2/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/phpMyAdmin2/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/php-myadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/phpmy-admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/phpMyAdmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/sql-admin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/sqladmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/sql/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/sqlweb/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/webadmin/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/webdb/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /sql/websql/index.php?lang=en | HTTP/1.1 |
| 1 | GET | /thinkphp/html/public/index.php | HTTP/1.1 |
| 1 | GET | /TP/html/public/index.php | HTTP/1.1 |
| 1 | GET | /TP/index.php | HTTP/1.1 |
| 1 | GET | /TP/public/index.php | HTTP/1.1 |
| 1 | GET | /wp-content/plugins/portable-phpmyadmin/wp-pma-mod/index.php?lang=en | HTTP/1.1 |
| 1 | POST | /index.php?s=captcha | HTTP/1.1 |
| 2 | \x03 |
Region:EU
送信元IPアドレス一覧
| 件数 | 送信元IPアドレス | 国 |
|---|---|---|
| 1 | 172.104.242.173 | United States |
| 1 | 185.222.211.18 | United Kingdom |
| 1 | 185.235.244.251 | Russia |
| 1 | 194.93.59.44 | Germany |
| 10 | 51.83.234.50 | France |
UserAgent一覧
| 件数 | UserAgent |
|---|---|
| 3 | - |
| 1 | Go-http-client/1.1 |
| 1 | Mozilla/5.0 (Windows NT 6.1; WOW64; rv:12.2.1) Gecko/20120616 Firefox/12.2.1 PaleMoon/12.2.1 |
| 9 | Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6) |
リクエスト内容一覧
| 件数 | Method | Request | Protocol |
|---|---|---|---|
| 1 | - | ||
| 1 | GET | /elrekt.php | HTTP/1.1 |
| 1 | GET | /html/public/index.php | HTTP/1.1 |
| 1 | GET | /index.php | HTTP/1.1 |
| 1 | GET | /index.php?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1 | HTTP/1.1 |
| 1 | GET | /login.cgi | HTTP/1.1 |
| 1 | GET | /public/index.php | HTTP/1.1 |
| 1 | GET | /thinkphp/html/public/index.php | HTTP/1.1 |
| 1 | GET | /TP/html/public/index.php | HTTP/1.1 |
| 1 | GET | /TP/index.php | HTTP/1.1 |
| 1 | GET | /TP/public/index.php | HTTP/1.1 |
| 1 | POST | /index.php?s=captcha | HTTP/1.1 |
| 2 | \x03 |
