City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.43.199.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43774
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;139.43.199.146. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012500 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 26 00:33:14 CST 2025
;; MSG SIZE rcvd: 107Host 146.199.43.139.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 146.199.43.139.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 139.59.23.231 | attack | ZmEu是个phpMyAdmin脆弱性检查工具,可以发现phpMyAdmin的漏洞,从而进行攻击 139.59.23.231 - - [20/Apr/2019:10:24:06 +0800] "GET /w00tw00t.at.blackhats.romanian.anti-sec:) HTTP/1.1" 404 498 "-" "ZmEu" 139.59.23.231 - - [20/Apr/2019:10:24:07 +0800] "GET /phpMyAdmin/setup.php HTTP/1.1" 404 477 "-" "ZmEu" 139.59.23.231 - - [20/Apr/2019:10:24:08 +0800] "GET /phpmyadmin/setup.php HTTP/1.1" 404 477 "-" "ZmEu" 139.59.23.231 - - [20/Apr/2019:10:24:10 +0800] "GET /phpmy/scripts/setup.php HTTP/1.1" 404 480 "-" "ZmEu" 139.59.23.231 - - [20/Apr/2019:10:24:10 +0800] "GET /scripts/setup.php/index.php HTTP/1.1" 404 484 "-" "ZmEu" 139.59.23.231 - - [20/Apr/2019:10:24:11 +0800] "GET HTTP/1.1" 400 0 "-" "-" 139.59.23.231 - - [20/Apr/2019:10:24:12 +0800] "GET HTTP/1.1" 400 0 "-" "-" |
2019-04-20 10:49:01 |
| 185.255.46.177 | botsattack | 185.255.46.177 - - [21/Apr/2019:07:47:25 +0800] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 185.255.46.177 - - [21/Apr/2019:07:47:25 +0800] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 185.255.46.177 - - [21/Apr/2019:07:47:26 +0800] "GET //wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" |
2019-04-21 07:54:08 |
| 106.2.125.215 | botsproxy | 106.2.125.215 - - [23/Apr/2019:11:06:07 +0800] "\\x04\\x01\\x00\\x00\\x00\\x00\\x00\\x00\\x00" 400 182 "-" "-" 106.2.125.215 - - [23/Apr/2019:11:06:07 +0800] "\\x05\\x03\\x00\\x01\\x02" 400 182 "-" "-" 106.2.125.215 - - [23/Apr/2019:11:06:07 +0800] "GET http://baidu.com/ HTTP/1.1" 301 194 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0)" |
2019-04-23 11:08:28 |
| 52.165.19.185 | botsattack | 52.165.19.185 - - [25/Apr/2019:15:51:17 +0800] "GET /check-ip/121.7.73.86%2B%22@singnet.com.sg%22 HTTP/1.1" 200 8186 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Win32)" 52.165.19.185 - - [25/Apr/2019:15:51:17 +0800] "GET /check-ip/121.7.73.86 HTTP/1.1" 200 57126 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Win32)" |
2019-04-25 15:51:59 |
| 27.115.124.6 | attack | 莫名其妙put 27.115.124.6 - - [22/Apr/2019:12:13:32 +0800] "PUT /9082addcc2ac2e12.txt HTTP/1.1" 301 194 "-" "Python-urllib/2.7" |
2019-04-22 12:14:22 |
| 181.209.64.98 | bots | 181.209.64.98 - - [22/Apr/2019:10:38:45 +0800] "GET /check-ip/94.36.13.15 HTTP/1.1" 200 8293 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; pt-BR; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8 GTB7.1" 181.209.64.98 - - [22/Apr/2019:10:39:08 +0800] "GET /check-ip/94.36.13.15 HTTP/1.1" 200 8435 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0; ja; rv:1.9.2.4) Gecko/20100513 Firefox/3.6.4 ( .NET CLR 3.5.30729)" 181.209.64.98 - - [22/Apr/2019:10:39:28 +0800] "GET /check-ip/94.36.13.15 HTTP/1.1" 200 8168 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; de; rv:1.9.2.3) Gecko/20121221 Firefox/3.6.8" 181.209.64.98 - - [22/Apr/2019:10:39:50 +0800] "GET /check-ip/94.36.13.15 HTTP/1.1" 200 8149 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:17.0) Gecko/20100101 Firefox/17.0.6" |
2019-04-22 10:41:06 |
| 220.181.51.109 | bots | 没有百度UA的百度爬虫 220.181.51.109 - - [22/Apr/2019:08:09:25 +0800] "GET / HTTP/1.1" 200 105648 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.93 Safari/537.36" |
2019-04-22 08:10:42 |
| 185.132.133.23 | proxy | 可能是代理检测吧 185.132.133.23 - - [19/Apr/2019:18:21:50 +0800] "CONNECT mobile.chomikuj.pl:80 HTTP/1.1" 400 182 "-" "-" |
2019-04-19 18:22:44 |
| 40.77.188.137 | bots | bingbot |
2019-04-21 08:23:38 |
| 139.59.23.231 | botsattack | 139.59.23.231 - - [24/Apr/2019:19:27:23 +0800] "GET /w00tw00t.at.blackhats.romanian.anti-sec:) HTTP/1.1" 301 194 "-" "ZmEu" 139.59.23.231 - - [24/Apr/2019:19:27:23 +0800] "GET HTTP/1.1" 400 182 "-" "-" 139.59.23.231 - - [24/Apr/2019:19:27:23 +0800] "GET HTTP/1.1" 400 182 "-" "-" |
2019-04-24 19:28:05 |
| 91.242.162.137 | bots | 91.242.162.137 - - [28/Apr/2019:09:53:28 +0800] "GET / HTTP/1.1" 200 10379 "-" "Mozilla/5.0 (compatible; Qwantify/Bleriot/1.1; +https://help.qwant.com/bot)" |
2019-04-28 09:54:28 |
| 101.226.114.193 | attack | 101.226.114.193 - - [22/Apr/2019:08:26:29 +0800] "GET /web/cgi-bin/hi3510/param.cgi?cmd%253Dgetp2pattr%2526cmd%253Dgetuserattr HTTP/1.1" 301 194 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" 101.226.114.193 - - [22/Apr/2019:08:26:29 +0800] "GET /web/cgi-bin/hi3510/param.cgi?cmd%253Dgetp2pattr%2526cmd%253Dgetuserattr HTTP/1.1" 404 209 "http://118.25.52.138/web/cgi-bin/hi3510/param.cgi?cmd%253Dgetp2pattr%2526cmd%253Dgetuserattr" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" |
2019-04-22 08:28:33 |
| 178.128.82.78 | attack | 178.128.82.78 - - [24/Apr/2019:06:39:41 +0800] "POST https://www.eznewstoday.com/wp-login.php HTTP/1.1" 200 5729 "https://www.eznewstoday.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/534.07.54 (KHTML, like Gecko) Chrome/57.5.9652.4380 Safari/534.47" |
2019-04-24 06:40:22 |
| 35.222.72.113 | bots | 35.222.72.113 - - [28/Apr/2019:08:07:30 +0800] "GET /robots.txt HTTP/1.1" 200 472 "-" "ltx71 - (http://ltx71.com/)" |
2019-04-28 08:08:27 |
| 119.74.94.143 | bots | 119.74.94.143 - - [23/Apr/2019:14:42:58 +0800] "GET /check-ip/54.36.127.189 HTTP/1.1" 200 9821 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 119.74.94.143 - - [23/Apr/2019:14:42:58 +0800] "GET /check-ip/222.186.10.54 HTTP/1.1" 200 9398 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 119.74.94.143 - - [23/Apr/2019:14:42:58 +0800] "GET /check-ip/200.53.15.17 HTTP/1.1" 200 8618 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 119.74.94.143 - - [23/Apr/2019:14:42:59 +0800] "GET /check-ip/123.206.44.225 HTTP/1.1" 200 8700 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 119.74.94.143 - - [23/Apr/2019:14:42:59 +0800] "GET /check-ip/156.219.69.226 HTTP/1.1" 200 10018 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 119.74.94.143 - - [23/Apr/2019:14:42:59 +0800] "GET /check-ip/35.200.107.73 HTTP/1.1" 200 9130 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" |
2019-04-23 14:44:49 |