サーバー攻撃?の足跡を発見

本日、なんとなくこのブログを乗せているサーバーのアクセスログを覗いたところ、何やら面白いログを発見しました! なんでもmuieblackcatと言うボットの足跡だったようです。

どうやらこのボットは、phpMyAdminの実態やsetup.phpを探るようです。 phpMyAdminなどのアクセスは外から見えない場所へ追いやっていた為被害はありませんでしたが、なんとおも恐ろしいものです…。

詳しい情報は以下をご覧ください。 Muieblackcat setup.php Web Scanner/Robot

と言う事で、何はともあれログを載せます。 皆さんもお気をつけて!!


2012-02-22 03:20:49 senta.me "GET /muieblackcat HTTP/1.1" 404 210 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:49 senta.me "GET //index.php HTTP/1.1" 200 964 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:49 senta.me "GET //admin/index.php HTTP/1.1" 404 213 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:49 senta.me "GET //admin/pma/index.php HTTP/1.1" 404 217 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:49 senta.me "GET //admin/phpmyadmin/index.php HTTP/1.1" 404 224 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:49 senta.me "GET //db/index.php HTTP/1.1" 404 210 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:49 senta.me "GET //dbadmin/index.php HTTP/1.1" 404 215 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:50 senta.me "GET //myadmin/index.php HTTP/1.1" 404 215 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:50 senta.me "GET //mysql/index.php HTTP/1.1" 404 213 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:50 senta.me "GET //mysqladmin/index.php HTTP/1.1" 404 218 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:50 senta.me "GET //typo3/phpmyadmin/index.php HTTP/1.1" 404 224 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:51 senta.me "GET //phpadmin/index.php HTTP/1.1" 404 216 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:51 senta.me "GET //phpMyAdmin/index.php HTTP/1.1" 404 218 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:51 senta.me "GET //phpmyadmin/index.php HTTP/1.1" 404 218 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:51 senta.me "GET //phpmyadmin1/index.php HTTP/1.1" 404 219 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:51 senta.me "GET //phpmyadmin2/index.php HTTP/1.1" 404 219 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:51 senta.me "GET //pma/index.php HTTP/1.1" 404 211 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:51 senta.me "GET //web/phpMyAdmin/index.php HTTP/1.1" 404 222 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:51 senta.me "GET //xampp/phpmyadmin/index.php HTTP/1.1" 404 224 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:51 senta.me "GET //web/index.php HTTP/1.1" 404 211 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:52 senta.me "GET //php-my-admin/index.php HTTP/1.1" 404 220 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:52 senta.me "GET //websql/index.php HTTP/1.1" 404 214 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:52 senta.me "GET //phpmyadmin/index.php HTTP/1.1" 404 218 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:52 senta.me "GET //phpMyAdmin/index.php HTTP/1.1" 404 218 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:52 senta.me "GET //phpMyAdmin-2/index.php HTTP/1.1" 404 220 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:52 senta.me "GET //php-my-admin/index.php HTTP/1.1" 404 220 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:52 senta.me "GET //phpMyAdmin-2.2.3/index.php HTTP/1.1" 404 224 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:52 senta.me "GET //phpMyAdmin-2.2.6/index.php HTTP/1.1" 404 224 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:53 senta.me "GET //phpMyAdmin-2.5.1/index.php HTTP/1.1" 404 224 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:53 senta.me "GET //phpMyAdmin-2.5.4/index.php HTTP/1.1" 404 224 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:53 senta.me "GET //phpMyAdmin-2.5.5-rc1/index.php HTTP/1.1" 404 228 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:53 senta.me "GET //phpMyAdmin-2.5.5-rc2/index.php HTTP/1.1" 404 228 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:53 senta.me "GET //phpMyAdmin-2.5.5/index.php HTTP/1.1" 404 224 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:53 senta.me "GET //phpMyAdmin-2.5.5-pl1/index.php HTTP/1.1" 404 228 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:53 senta.me "GET //phpMyAdmin-2.5.6-rc1/index.php HTTP/1.1" 404 228 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:53 senta.me "GET //phpMyAdmin-2.5.6-rc2/index.php HTTP/1.1" 404 228 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:53 senta.me "GET //phpMyAdmin-2.5.6/index.php HTTP/1.1" 404 224 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:53 senta.me "GET //phpMyAdmin-2.5.7/index.php HTTP/1.1" 404 224 59.106.173.161 59.106.179.206 "-" "-" "-" "-"
2012-02-22 03:20:53 senta.me "GET //phpMyAdmin-2.5.7-pl1/index.php HTTP/1.1" 404 228 59.106.173.161 59.106.179.206 "-" "-" "-" "-"

SHOTA

I'm WEB developer

Tokyo, Japan http://senta.me/