City: unknown
Region: unknown
Country: Côte d'Ivoire
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 196.45.12.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7739
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;196.45.12.12. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012900 1800 900 604800 86400
;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 13:49:13 CST 2025
;; MSG SIZE rcvd: 105
Host 12.12.45.196.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 12.12.45.196.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 196.22.201.51 | attack | 登录攻击 196.22.201.51 - - [22/Apr/2019:12:36:06 +0800] "POST https://www.eznewstoday.com/wp-login.php HTTP/1.1" 200 5534 "https://www.eznewstoday.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.60.13) Gecko/20172285 Firefox/45.60.13" |
2019-04-22 12:37:16 |
| 171.8.219.231 | attack | 171.8.219.231 - - [24/Apr/2019:11:55:49 +0800] "POST /FCKeditor/editor/filemanager/connectors/asp/connector.asp?Command=FileUpload&Type=File&CurrentFolder=%2F HTTP/1.1" 404 557 "http://www.eznewstoday.com/FCKeditor/editor/filemanager/connectors/asp/connect or.asp?Command=FileUpload&Type=File&CurrentFolder=%2F" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2)" 171.8.219.231 - - [24/Apr/2019:11:55:49 +0800] "GET /index.php?m=member&c=index&a=register&siteid=1 HTTP/1.1" 301 329 "http://www.eznewstoday.com/index.php?m=member&c=index&a=register&siteid=1" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2)" 171.8.219.231 - - [24/Apr/2019:11:55:49 +0800] "POST /admin_aspcms/_system/AspCms_SiteSetting.asp HTTP/1.1" 404 542 "http://www.eznewstoday.com/admin_aspcms/_system/AspCms_SiteSetting.asp" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2)" 171.8.219.231 - - [24/Apr/2019:11:55:49 +0800] "GET /plus/moon.php HTTP/1.1" 404 512 "http://www.eznewstoday.com/plus/moon.php" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2)" 171.8.219.231 - - [24/Apr/2019:11:55:50 +0800] "POST /plus/90sec.php HTTP/1.1" 404 513 "http://www.eznewstoday.com/plus/90sec.php" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2)" 171.8.219.231 - - [24/Apr/2019:11:55:50 +0800] "POST /utility/convert/index.php?a=config&source=d7.2_x2.0 HTTP/1.1" 404 524 "http://www.eznewstoday.com/utility/convert/index.php?a=config&source=d7.2_x2.0" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2 )" |
2019-04-24 12:21:27 |
| 111.206.36.142 | bots | 111.206.36.142 - - [24/Apr/2019:08:50:04 +0800] "GET /index.php/category/root/apple/ HTTP/1.1" 200 20644 "http://www.baidu.com/s?wd=sleptij3" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:43.0) Gecko/20100101 Firefox/43.0" 111.206.36.142 - - [24/Apr/2019:08:50:05 +0800] "GET /wp-includes/js/wp-emoji-release.min.js?ver=5.1.1 HTTP/1.1" 200 4855 "https://www.eznewstoday.com/index.php/category/root/apple/" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:43.0) Gecko/20100101 Firefox/43.0 " 111.206.36.142 - - [24/Apr/2019:08:50:05 +0800] "GET /wp-content/plugins/wp-quicklatex/css/quicklatex-format.css?ver=5.1.1 HTTP/1.1" 200 1032 "https://www.eznewstoday.com/index.php/category/root/apple/" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:43.0) Gecko/2 0100101 Firefox/43.0" 111.206.36.11 - - [24/Apr/2019:08:50:05 +0800] "GET /wp-content/themes/twentyfifteen/genericons/genericons.css?ver=3.2 HTTP/1.1" 200 17235 "https://www.eznewstoday.com/index.php/category/root/apple/" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:43.0) Gecko/2010 |
2019-04-24 12:24:25 |
| 111.183.231.29 | attackproxy | 伪装爬虫攻击 111.183.231.29 - - [23/Apr/2019:06:02:57 +0800] "HEAD / HTTP/1.1" 200 328 "http://118.24.13.245" "Mozilla/5.0 (compatible; Baiduspider/2.0; +http://www.baidu.com/search/spider.html" 111.183.231.29 - - [23/Apr/2019:06:02:57 +0800] "HEAD /alipay.html HTTP/1.1" 404 140 "http://118.24.13.245/alipay.html" "Mozilla/5.0 (compatible; Baiduspider/2.0; +http://www.baidu.com/search/spider.html" 111.183.231.29 - - [23/Apr/2019:06:02:57 +0800] "HEAD /88888888 HTTP/1.1" 404 140 "http://118.24.13.245/88888888" "Mozilla/5.0 (compatible; Baiduspider/2.0; +http://www.baidu.com/search/spider.html" 111.183.231.29 - - [23/Apr/2019:06:02:57 +0800] "GET /88888888 HTTP/1.1" 404 446 "http://118.24.13.245/88888888" "Mozilla/5.0 (compatible; Baiduspider/2.0; +http://www.baidu.com/search/spider.html" |
2019-04-23 08:09:54 |
| 124.89.119.11 | bots | 124.89.119.11 - - [23/Apr/2019:13:55:45 +0800] "GET /view/img/favicon.ico HTTP/1.1" 404 209 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36" 112.80.137.106 - - [23/Apr/2019:13:55:45 +0800] "GET /home/favicon.ico HTTP/1.1" 404 209 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Firefox/45.0" 121.57.228.33 - - [23/Apr/2019:13:55:46 +0800] "GET /view/img/favicon.ico HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Firefox/45.0" 121.57.228.33 - - [23/Apr/2019:13:55:46 +0800] "GET /view/img/favicon.ico HTTP/1.1" 404 209 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Firefox/45.0" |
2019-04-23 13:58:05 |
| 81.92.203.247 | spam | 81.92.203.247 - - [21/Apr/2019:05:49:50 +0800] "GET /index.php/2018/12/14/bert-transformer/ HTTP/1.0" 200 44744 "https://www.eznewstoday.com/index.php/2018/12/14/bert-transformer/" "Mozil la/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.87 Safari/537.36" 81.92.203.247 - - [21/Apr/2019:05:49:51 +0800] "POST /wp-comments-post.php HTTP/1.0" 302 4143 "https://www.eznewstoday.com/index.php/2018/12/14/bert-transformer/" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.87 Safari/537.36" 81.92.203.247 - - [21/Apr/2019:05:49:51 +0800] "GET /index.php/2018/12/14/bert-transformer/ HTTP/1.0" 200 44744 "https://www.eznewstoday.com/index.php/2018/12/14/bert-transformer/#comment -14272" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.87 Safari/537.36" |
2019-04-21 06:58:05 |
| 5.188.44.47 | spam | 5.188.44.47 - - [19/Apr/2019:13:11:26 +0800] "GET /index.php/2018/08/29/jack_ma_2018_08_29_en/ HTTP/1.1" 200 13881 "https://eznewstoday.com/index.php/2018/08/29/jack_ma_2018_08_29_en/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.88 Safari/537.36" 5.188.44.47 - - [19/Apr/2019:13:11:27 +0800] "GET /index.php/2018/08/29/jack_ma_2018_08_29_en/ HTTP/1.1" 200 13881 "https://eznewstoday.com/index.php/2018/08/29/jack_ma_2018_08_29_en/" "Opera/9.80 (Windows NT 6.2; Win64; x64) Presto/2.12.388 Version/12.17" 5.188.44.47 - - [19/Apr/2019:13:11:28 +0800] "GET /index.php/2018/08/29/jack_ma_2018_08_29_en/ HTTP/1.1" 200 13881 "https://eznewstoday.com/index.php/2018/08/29/jack_ma_2018_08_29_en/" "Opera/9.80 (Windows NT 6.2; Win64; x64) Presto/2.12.388 Version/12.17" |
2019-04-19 14:01:19 |
| 183.129.198.99 | botsattack | 183.129.198.99 - - [22/Apr/2019:12:20:12 +0800] "\\x16\\x03\\x01\\x00\\x82\\x01\\x00\\x00~\\x03\\x01\\x5C\\xBD@\\xE9\\x90\\xE7\\xEBu\\xDA\\x0B\\xE1\\x9Ed\\xAB\\xEA@K\\x9C\\xC4\\x18n\\x05 \\xD2\\xB4\\xDD\\x87\\xEF\\xAD\\xA3\\x89\\xBF O1&\\xFE\\xF5\\xCEA\\xBB\\x22U\\xBC\\xFF\\xC0\\x05\\xC9\\x8Dr\\x8E\\x99J\\xD6\\x00\\xFB;\\xE7\\x80\\xAB\\xF9\\x10\\xA05\\xFF\\x00\\x1C\\xC0\\x14\\xC0\\x13\\x009\\x003\\x005\\x00/\\xC0" 400 182 "-" "-" 183.129.198.99 - - [22/Apr/2019:12:20:12 +0800] "\\x16\\x03\\x01\\x00b\\x01\\x00\\x00^\\x03\\x01\\x5C\\xBD@\\xE9PJ\\xA5\\xFAl\\x11\\x90\\xD1/`\\xD7\\x98\\xFF(\\x08\\x85\\xF6\\xDF\\xFC\\xF7\\xF3\\xA5\\x19P)\\xA7\\xF1m\\x00\\x00\\x1C\\xC0\\x14\\xC0\\x13\\x009\\x003\\x005\\x00/\\xC0" 400 182 "-" "-" |
2019-04-22 12:20:43 |
| 1.10.189.153 | attack | 1.10.189.153 - - [23/Apr/2019:15:23:39 +0800] "POST https://www.eznewstoday.com/wp-login.php HTTP/1.1" 200 5729 "https://www.eznewstoday.com/wp-login.php" "Mozilla/5.0 (Windows NT 5.2; WOW64; x64) AppleWebKit/532.89.36 (KHTML, like Gecko) Version/5.2.7 Safari/530.61" |
2019-04-23 15:33:26 |
| 54.157.229.122 | bots | 54.157.229.122 - - [27/Apr/2019:12:16:03 +0800] "GET /check-ip/2.40.198.194 HTTP/1.1" 200 10239 "-" "Mozilla/5.0 (Windows; Crawler; U; Windows NT 6.0; en-US; rv:1.9.0.7) Gecko/2009021910 Firefox/3.0.7 (.NET CLR 3.5.30729)" 54.157.229.122 - - [27/Apr/2019:12:16:10 +0800] "GET /check-ip/186.193.133.98 HTTP/1.1" 200 9760 "-" "Mozilla/5.0 (Windows; Crawler; U; Windows NT 6.0; en-US; rv:1.9.0.7) Gecko/2009021910 Firefox/3.0.7 (.NET CLR 3.5.30729)" 54.157.229.122 - - [27/Apr/2019:12:16:18 +0800] "GET /check-ip/192.141.74.34 HTTP/1.1" 200 10410 "-" "Mozilla/5.0 (Windows; Crawler; U; Windows NT 6.0; en-US; rv:1.9.0.7) Gecko/2009021910 Firefox/3.0.7 (.NET CLR 3.5.30729)" 54.157.229.122 - - [27/Apr/2019:12:16:24 +0800] "GET /check-ip/117.8.173.184 HTTP/1.1" 200 10654 "-" "Mozilla/5.0 (Windows; Crawler; U; Windows NT 6.0; en-US; rv:1.9.0.7) Gecko/2009021910 Firefox/3.0.7 (.NET CLR 3.5.30729)" 54.157.229.122 - - [27/Apr/2019:12:16:30 +0800] "GET /check-ip/180.77.146.49 HTTP/1.1" 200 9811 "-" "Mozilla/5.0 (Windows; Crawler; U; Windows NT 6.0; en-US; rv:1.9.0.7) Gecko/2009021910 Firefox/3.0.7 (.NET CLR 3.5.30729)" |
2019-04-27 12:18:17 |
| 35.222.72.113 | bots | 35.222.72.113 - - [28/Apr/2019:08:07:30 +0800] "GET /robots.txt HTTP/1.1" 200 472 "-" "ltx71 - (http://ltx71.com/)" |
2019-04-28 08:08:27 |
| 200.53.15.17 | attack | 200.53.15.17 - - [21/Apr/2019:04:56:51 +0800] "GET /wp-login.php HTTP/1.1" 302 284 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 200.53.15.17 - - [21/Apr/2019:04:56:52 +0800] "GET /wp-login.php HTTP/1.1" 200 7801 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 200.53.15.17 - - [21/Apr/2019:04:56:52 +0800] "GET / HTTP/1.1" 301 283 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 200.53.15.17 - - [21/Apr/2019:04:56:53 +0800] "GET / HTTP/1.1" 200 93842 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" |
2019-04-21 06:59:00 |
| 123.206.22.203 | attack | 123.206.22.203 - - [19/Apr/2019:13:57:02 +0800] "GET /d7.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" 123.206.22.203 - - [19/Apr/2019:13:57:02 +0800] "GET /rxr.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" 123.206.22.203 - - [19/Apr/2019:13:57:02 +0800] "GET /1x.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" 123.206.22.203 - - [19/Apr/2019:13:57:02 +0800] "GET /home.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" 123.206.22.203 - - [19/Apr/2019:13:57:02 +0800] "GET /undx.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" 123.206.22.203 - - [19/Apr/2019:13:57:02 +0800] "GET /spider.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" |
2019-04-19 14:00:22 |
| 220.181.51.109 | bots | 没有百度UA的百度爬虫 220.181.51.109 - - [22/Apr/2019:08:09:25 +0800] "GET / HTTP/1.1" 200 105648 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.93 Safari/537.36" |
2019-04-22 08:10:42 |
| 115.159.185.71 | attack | 攻击IP 可以禁用Invalid user death |
2019-04-19 17:11:05 |