City: unknown
Region: unknown
Country: Korea Republic of
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.126.90.87
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35472
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;121.126.90.87. IN A
;; AUTHORITY SECTION:
. 251 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022091401 1800 900 604800 86400
;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 15 04:34:04 CST 2022
;; MSG SIZE rcvd: 106Host 87.90.126.121.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 87.90.126.121.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 115.159.185.71 | attack | 攻击IP 可以禁用Invalid user death |
2019-04-19 17:11:05 |
| 123.206.22.203 | attack | 123.206.22.203 - - [19/Apr/2019:14:04:26 +0800] "POST /webslee.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:57.0) Gecko/20100101 Firefox/57.0" 123.206.22.203 - - [19/Apr/2019:14:04:26 +0800] "POST /q.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:57.0) Gecko/20100101 Firefox/57.0" 123.206.22.203 - - [19/Apr/2019:14:04:26 +0800] "POST /pe.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:57.0) Gecko/20100101 Firefox/57.0" 123.206.22.203 - - [19/Apr/2019:14:04:34 +0800] "POST /hm.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:57.0) Gecko/20100101 Firefox/57.0" 123.206.22.203 - - [19/Apr/2019:14:04:42 +0800] "POST /cainiao.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:57.0) Gecko/20100101 Firefox/57.0" 123.206.22.203 - - [19/Apr/2019:14:04:42 +0800] "POST /zuoshou.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:57.0) Gecko/20100101 Firefox/57.0" 123.206.22.203 - - [19/Apr/2019:14:04:46 +0800] "POST /zuo.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:57.0) Gecko/20100101 Firefox/57.0" 123.206.22.203 - - [19/Apr/2019:14:04:47 +0800] "POST /aotu.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:57.0) Gecko/20100101 Firefox/57.0" |
2019-04-19 14:05:13 |
| 82.221.105.7 | bots | 82.221.105.7 - - [19/Apr/2019:14:31:43 +0800] "GET / HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36" 82.221.105.7 - - [19/Apr/2019:14:31:44 +0800] "GET /robots.txt HTTP/1.1" 301 194 "-" "-" 82.221.105.7 - - [19/Apr/2019:14:31:45 +0800] "GET /sitemap.xml HTTP/1.1" 301 194 "-" "-" 82.221.105.7 - - [19/Apr/2019:14:31:46 +0800] "GET /.well-known/security.txt HTTP/1.1" 301 194 "-" "-" 82.221.105.7 - - [19/Apr/2019:14:31:48 +0800] "GET /favicon.ico HTTP/1.1" 301 194 "-" "python-requests/2.10.0" |
2019-04-19 14:32:28 |
| 159.203.169.16 | bots | 端口扫描工具 159.203.169.16 - - [20/Apr/2019:04:41:30 +0800] "GET / HTTP/1.0" 200 24600 "-" "masscan/1.0 (https://github.com/robertdavidgraham/masscan)" |
2019-04-20 05:08:16 |
| 138.91.125.32 | bots | 138.91.125.32 - - [23/Apr/2019:08:10:32 +0800] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 138.91.125.32 - - [23/Apr/2019:08:10:32 +0800] "GET //xmlrpc.php?rsd HTTP/1.1" 308 265 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 138.91.125.32 - - [23/Apr/2019:08:10:32 +0800] "GET / HTTP/1.1" 200 10302 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 138.91.125.32 - - [23/Apr/2019:08:10:33 +0800] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 138.91.125.32 - - [23/Apr/2019:08:10:33 +0800] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" |
2019-04-23 08:11:21 |
| 152.32.69.29 | attack | 152.32.69.29 - - [23/Apr/2019:15:06:14 +0800] "POST https://www.eznewstoday.com/wp-login.php HTTP/1.1" 200 5534 "https://www.eznewstoday.com/wp-login.php" "Mozilla/5.0 (Windows NT 5.0; rv:52.50.97) Gecko/20149211 Firefox/52.50.97" |
2019-04-23 15:36:37 |
| 54.36.127.189 | spambotsattackproxy | 54.36.127.189 - - [19/Apr/2019:14:22:46 +0800] "POST http://gp.snaware.com/judge2/?key=IOdfnl%2fCTnpe%2bgUsWXoxmtdrckp5zwGQDhDM88YeJX2aNAjy0XDwKxanFBTTiMXA&h=3Olzt8rgiM&f=false&t=555525 HTTP/1.1" 301 194 "gatherproxy.com" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.0.04506; .NET CLR 1.1.4322; FDM)" 54.36.127.189 - - [19/Apr/2019:14:22:47 +0800] "CONNECT gp.snaware.com:443 HTTP/1.1" 400 182 "-" "-" |
2019-04-19 14:23:41 |
| 185.255.46.177 | botsattack | 185.255.46.177 - - [21/Apr/2019:07:47:25 +0800] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 185.255.46.177 - - [21/Apr/2019:07:47:25 +0800] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 185.255.46.177 - - [21/Apr/2019:07:47:26 +0800] "GET //wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" |
2019-04-21 07:54:08 |
| 41.242.165.217 | bots | 41.242.165.217 - - [24/Apr/2019:10:15:02 +0800] "GET /check-ip/66.214.40.126 HTTP/1.1" 200 8571 "https://ipinfo.asytech.cn" "acebookexternalhit/1.0 (+http://www.facebook.com/externalhit_uatext.php)" 41.242.165.217 - - [24/Apr/2019:10:15:14 +0800] "GET /check-ip/35.143.225.32 HTTP/1.1" 200 8472 "https://ipinfo.asytech.cn" "acebookexternalhit/1.0 (+http://www.facebook.com/externalhit_uatext.php)" |
2019-04-24 10:16:08 |
| 61.139.73.169 | attack | 61.139.73.169 - - [24/Apr/2019:15:56:55 +0800] "GET //main.do HTTP/1.1" 404 445 "-" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.0.04506; .NET CLR 1.1.4322)" 61.139.73.169 - - [24/Apr/2019:15:56:55 +0800] "GET //console/ HTTP/1.1" 404 446 "-" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.0.04506; .NET CLR 1.1.4322)" 61.139.73.169 - - [24/Apr/2019:15:56:55 +0800] "GET //console/ HTTP/1.1" 404 446 "-" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.0.04506; .NET CLR 1.1.4322)" 61.139.73.169 - - [24/Apr/2019:15:56:55 +0800] "GET //was5/admin/ HTTP/1.1" 404 449 "-" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.0.04506; .NET CLR 1.1.4322)" 61.139.73.169 - - [24/Apr/2019:15:56:55 +0800] "GET //was5/admin/ HTTP/1.1" 404 449 "-" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.0.04506; .NET CLR 1.1.4322)" 61.139.73.169 - - [24/Apr/2019:15:56:55 +0800] "GET //kingdee/login/loginpage.jsp HTTP/1.1" 404 465 "-" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.0.04506; .NET CLR 1.1.4322)" 61.139.73.169 - - [24/Apr/2019:15:56:55 +0800] "GET //kingdee/login/loginpage.jsp HTTP/1.1" 404 465 "-" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.0.04506; .NET CLR 1.1.4322)" |
2019-04-24 16:00:25 |
| 133.175.83.191 | bots | 133.175.83.191 - - [24/Apr/2019:09:17:14 +0800] "GET / HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 133.175.83.191 - - [24/Apr/2019:09:17:15 +0800] "GET / HTTP/1.1" 200 10270 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" |
2019-04-24 09:17:45 |
| 120.26.236.178 | attack | 120.26.236.178 - - [24/Apr/2019:19:30:20 +0800] "GET /TP/public/index.php HTTP/1.1" 404 476 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:20 +0800] "GET /TP/index.php HTTP/1.1" 404 469 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:20 +0800] "GET /thinkphp/html/public/index.php HTTP/1.1" 404 487 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox /3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:20 +0800] "GET /html/public/index.php HTTP/1.1" 404 478 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:21 +0800] "GET /public/index.php HTTP/1.1" 404 473 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:21 +0800] "GET /TP/html/public/index.php HTTP/1.1" 404 481 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:21 +0800] "GET /elrekt.php HTTP/1.1" 404 467 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:22 +0800] "GET /index.php HTTP/1.1" 404 466 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:22 +0800] "GET / HTTP/1.1" 200 24601 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" |
2019-04-25 05:29:09 |
| 52.5.70.31 | spambots | 52.5.70.31 - - [22/Apr/2019:18:27:34 +0800] "GET /index.php/2019/04/19/xiaomi_2019_04_19_en/ HTTP/1.1" 200 13454 "-" "Grammarly/1.0 (http://www.grammarly.com)" |
2019-04-22 18:28:24 |
| 123.206.22.203 | attack | 123.206.22.203 - - [19/Apr/2019:14:27:22 +0800] "POST /Moxin.PHP HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:57.0) Gecko/20100101 Firefox/57.0" 123.206.22.203 - - [19/Apr/2019:14:27:26 +0800] "POST /CCCC.PHP HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:57.0) Gecko/20100101 Firefox/57.0" 123.206.22.203 - - [19/Apr/2019:14:27:26 +0800] "POST /mobai.PHP HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:57.0) Gecko/20100101 Firefox/57.0" |
2019-04-19 14:28:25 |
| 101.226.114.193 | attack | 101.226.114.193 - - [22/Apr/2019:08:26:29 +0800] "GET /web/cgi-bin/hi3510/param.cgi?cmd%253Dgetp2pattr%2526cmd%253Dgetuserattr HTTP/1.1" 301 194 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" 101.226.114.193 - - [22/Apr/2019:08:26:29 +0800] "GET /web/cgi-bin/hi3510/param.cgi?cmd%253Dgetp2pattr%2526cmd%253Dgetuserattr HTTP/1.1" 404 209 "http://118.25.52.138/web/cgi-bin/hi3510/param.cgi?cmd%253Dgetp2pattr%2526cmd%253Dgetuserattr" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" |
2019-04-22 08:28:33 |