城市(city): unknown
省份(region): unknown
国家(country): Mexico
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 187.163.90.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57960
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;187.163.90.58. IN A
;; AUTHORITY SECTION:
. 555 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400
;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 15:57:45 CST 2022
;; MSG SIZE rcvd: 106
58.90.163.187.in-addr.arpa domain name pointer 187-163-90-58.static.axtel.net.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
58.90.163.187.in-addr.arpa name = 187-163-90-58.static.axtel.net.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 61.160.221.73 | attack | 61.160.221.73 - - [21/Apr/2019:04:15:36 +0800] "POST /wp-login.php HTTP/1.1" 302 284 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 S afari/537.36 SE 2.X MetaSr 1.0" 61.160.221.73 - - [21/Apr/2019:04:15:43 +0800] "GET /wp-login.php HTTP/1.1" 200 5456 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 S afari/537.36 SE 2.X MetaSr 1.0" 61.160.221.73 - - [21/Apr/2019:04:15:47 +0800] "POST /wp-login.php HTTP/1.1" 302 284 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 S afari/537.36 SE 2.X MetaSr 1.0" |
2019-04-21 06:59:39 |
| 200.72.174.42 | bots | 200.72.174.42 - - [17/Apr/2019:13:57:06 +0800] "GET /index.php/2019/04/17/pinduoduo_2019_04_17_en/ HTTP/1.0" 200 13400 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 200.72.174.42 - - [17/Apr/2019:13:57:13 +0800] "GET /wp-includes/wlwmanifest.xml HTTP/1.0" 200 4214 "https://www.eznewstoday.com/index.php/2019/04/17/pinduoduo_2019_04_17_en/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" |
2019-04-17 14:04:23 |
| 79.127.127.253 | attack | php数据库攻击 79.127.127.253 - - [18/Apr/2019:16:08:43 +0800] "GET /muieblackcat HTTP/1.1" 301 194 "-" "-" 79.127.127.253 - - [18/Apr/2019:16:08:44 +0800] "GET //phpMyAdmin/scripts/setup.php HTTP/1.1" 301 194 "-" "-" 79.127.127.253 - - [18/Apr/2019:16:08:45 +0800] "GET //phpmyadmin/scripts/setup.php HTTP/1.1" 301 194 "-" "-" 79.127.127.253 - - [18/Apr/2019:16:08:45 +0800] "GET //pma/scripts/setup.php HTTP/1.1" 301 194 "-" "-" 79.127.127.253 - - [18/Apr/2019:16:08:47 +0800] "GET //myadmin/scripts/setup.php HTTP/1.1" 301 194 "-" "-" 79.127.127.253 - - [18/Apr/2019:16:08:47 +0800] "GET //MyAdmin/scripts/setup.php HTTP/1.1" 301 194 "-" "-" |
2019-04-18 16:10:30 |
| 5.188.210.101 | botsattack | 5.188.210.101 - - [16/Apr/2019:16:54:38 +0800] "GET http://5.188.210.101/echo.php HTTP/1.1" 404 465 "https://www.google.com/" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" |
2019-04-16 16:55:07 |
| 139.59.23.231 | attack | ZmEu是个phpMyAdmin脆弱性检查工具,可以发现phpMyAdmin的漏洞,从而进行攻击 139.59.23.231 - - [20/Apr/2019:10:24:06 +0800] "GET /w00tw00t.at.blackhats.romanian.anti-sec:) HTTP/1.1" 404 498 "-" "ZmEu" 139.59.23.231 - - [20/Apr/2019:10:24:07 +0800] "GET /phpMyAdmin/setup.php HTTP/1.1" 404 477 "-" "ZmEu" 139.59.23.231 - - [20/Apr/2019:10:24:08 +0800] "GET /phpmyadmin/setup.php HTTP/1.1" 404 477 "-" "ZmEu" 139.59.23.231 - - [20/Apr/2019:10:24:10 +0800] "GET /phpmy/scripts/setup.php HTTP/1.1" 404 480 "-" "ZmEu" 139.59.23.231 - - [20/Apr/2019:10:24:10 +0800] "GET /scripts/setup.php/index.php HTTP/1.1" 404 484 "-" "ZmEu" 139.59.23.231 - - [20/Apr/2019:10:24:11 +0800] "GET HTTP/1.1" 400 0 "-" "-" 139.59.23.231 - - [20/Apr/2019:10:24:12 +0800] "GET HTTP/1.1" 400 0 "-" "-" |
2019-04-20 10:49:01 |
| 46.248.167.73 | bots | 46.248.167.73 - - [13/Apr/2019:10:17:45 +0800] "GET /index.php/category/root/amazon/ HTTP/1.1" 200 21893 "-" "Zend_Http_Client" |
2019-04-13 10:18:13 |
| 27.115.124.6 | attack | 莫名其妙put 27.115.124.6 - - [22/Apr/2019:12:13:32 +0800] "PUT /9082addcc2ac2e12.txt HTTP/1.1" 301 194 "-" "Python-urllib/2.7" |
2019-04-22 12:14:22 |
| 58.251.121.185 | attack | 58.251.121.185 - - [15/Apr/2019:14:51:57 +0800] "GET /wp-content/plugins/portable-phpmyadmin/wp-pma-mod/index.php?lang%3Den HTTP/1.1" 301 194 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" 58.251.121.185 - - [15/Apr/2019:14:51:57 +0800] "GET /wp-content/plugins/portable-phpmyadmin/wp-pma-mod/index.php?lang%3Den HTTP/1.1" 404 209 "http://118.25.52.138/wp-content/plugins/portable-phpmyadmin/wp-pma-mod/index.php?lang%3Den" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" |
2019-04-15 14:52:24 |
| 205.205.150.9 | bots | 205.205.150.9 - - [17/Apr/2019:06:19:22 +0800] "GET / HTTP/1.1" 200 212220 "-" "Mozilla/5.0 (compatible; Nmap Scripting Engine; https://nmap.org/book/nse.html)" |
2019-04-17 08:05:47 |
| 116.7.22.4 | bots | 116.7.22.4 - - [19/Apr/2019:21:44:40 +0800] "GET /index.php/category/root/ HTTP/1.1" 200 74293 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 116.7.22.4 - - [19/Apr/2019:21:44:46 +0800] "GET /index.php/category/root/airbnb/ HTTP/1.1" 200 76208 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 116.7.22.4 - - [19/Apr/2019:21:44:54 +0800] "GET /index.php/category/root/amd/ HTTP/1.1" 200 105403 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 116.7.22.4 - - [19/Apr/2019:21:45:09 +0800] "GET /index.php/category/root/instacart/ HTTP/1.1" 200 54716 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 116.7.22.4 - - [19/Apr/2019:21:45:18 +0800] "GET /index.php/category/root/lyft/ HTTP/1.1" 200 75675 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" |
2019-04-19 21:48:14 |
| 42.86.95.59 | bots | 42.86.95.59 - - [18/Apr/2019:10:45:19 +0800] "GET /otsmobile/app/mds/mgw.htm HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" |
2019-04-18 10:46:06 |
| 123.206.22.203 | attack | 123.206.22.203 - - [19/Apr/2019:14:27:22 +0800] "POST /Moxin.PHP HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:57.0) Gecko/20100101 Firefox/57.0" 123.206.22.203 - - [19/Apr/2019:14:27:26 +0800] "POST /CCCC.PHP HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:57.0) Gecko/20100101 Firefox/57.0" 123.206.22.203 - - [19/Apr/2019:14:27:26 +0800] "POST /mobai.PHP HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:57.0) Gecko/20100101 Firefox/57.0" |
2019-04-19 14:28:25 |
| 183.129.198.99 | botsattack | 183.129.198.99 - - [22/Apr/2019:12:20:12 +0800] "\\x16\\x03\\x01\\x00\\x82\\x01\\x00\\x00~\\x03\\x01\\x5C\\xBD@\\xE9\\x90\\xE7\\xEBu\\xDA\\x0B\\xE1\\x9Ed\\xAB\\xEA@K\\x9C\\xC4\\x18n\\x05 \\xD2\\xB4\\xDD\\x87\\xEF\\xAD\\xA3\\x89\\xBF O1&\\xFE\\xF5\\xCEA\\xBB\\x22U\\xBC\\xFF\\xC0\\x05\\xC9\\x8Dr\\x8E\\x99J\\xD6\\x00\\xFB;\\xE7\\x80\\xAB\\xF9\\x10\\xA05\\xFF\\x00\\x1C\\xC0\\x14\\xC0\\x13\\x009\\x003\\x005\\x00/\\xC0" 400 182 "-" "-" 183.129.198.99 - - [22/Apr/2019:12:20:12 +0800] "\\x16\\x03\\x01\\x00b\\x01\\x00\\x00^\\x03\\x01\\x5C\\xBD@\\xE9PJ\\xA5\\xFAl\\x11\\x90\\xD1/`\\xD7\\x98\\xFF(\\x08\\x85\\xF6\\xDF\\xFC\\xF7\\xF3\\xA5\\x19P)\\xA7\\xF1m\\x00\\x00\\x1C\\xC0\\x14\\xC0\\x13\\x009\\x003\\x005\\x00/\\xC0" 400 182 "-" "-" |
2019-04-22 12:20:43 |
| 216.244.66.245 | bots | 216.244.66.245 - - [12/Apr/2019:21:10:08 +0800] "GET /robots.txt HTTP/1.1" 301 194 "-" "Mozilla/5.0 (compatible; DotBot/1.1; http://www.opensiteexplorer.org/dotbot, help@moz.com)" 216.244.66.245 - - [12/Apr/2019:21:10:12 +0800] "GET /robots.txt HTTP/1.1" 200 292 "-" "Mozilla/5.0 (compatible; DotBot/1.1; http://www.opensiteexplorer.org/dotbot, help@moz.com)" |
2019-04-13 09:20:01 |
| 50.63.197.101 | attack | wordpress检测攻击 50.63.197.101 - - [18/Apr/2019:14:15:48 +0800] "GET /wordpress/wp-admin/ HTTP/1.1" 301 194 "-" "-" |
2019-04-18 14:17:06 |