使用了1盾(一个小厂cdn),旗下域名均用whois隐藏
通过查看文章发现,有一个时光邮局,唉,一看,一样的套路,cdn使用的是cloudflare,但是
但是他的发件邮箱会把自己的源站ip发送出来,于是乎
Received: from qq.com (smtpbg473.qq.com [59.36.132.72])
by newxmmxsza31.qq.com (NewMX) with SMTP id 26364E9
for 1526147838@qq.com; Thu, 25 Nov 2021 10:00:38 +0800
X-QQ-mid: xmmxsza31t1637805638ty85x1063
X-QQ-XMAILINFO: MrrOTNkTKUehfsBpuG86nvhvFAcJer57Q2eW0dCLT/OPvcvywQOp0gr8zrQjwT
xMCMuxfxrBCYoZ7rRKeLjNtzQMzmWYuzWJbxF/RLs/vQuxMZOmloaDcaxQ2tuFcvzdDN6WrFb6dQ
Y8v/a0FdniSMhwfJU2NWGIZW+bx7KWizCcwk+38K1eXeVcmTpJK6lsdHXoIuWro/j57I/MWqnDcY
BRmMihuRTsM6tpU8WWn9tJnWyOyUyWgfZlQt3v0DlN1/p1D6sJn7lcqOBUQW9wuWwjEk4uGlLwLF
ii9jsQ1eWo+H6GBZx5qDsnnL1MPCLPLOah/DDnu2KTOwrp7fGaOLAe+u/yQFcy+D9YSHwM6imoDY
VreCF7ys0XHnyjSgeiatCAgEoDalX0sYqu32NihL/tu46exwmEeCY1yz9T2yMyCfZPhBjyYvYH6p
yCzrdwXA3a1Wd0cC5pVoYfTQ9Dcaz9s8KGN90KLAFZzaB9j7r/EJwsrXDkrrbzssMSrBICIZ9EdI
w88rmxZxtkjfTxkVShGcEbH4KqMcfCS4HUrTXpzhE9EQrTZXNW0ymZ+mjiN4evpfafZHg6LeJMs6
B9HGhDF50VZXleq5+7eWE+tssNH1AVwH13mgx6JUv9e0Mm+PMmjJOWqPw3oyu1l67Sp8CON/5mug
9kHCC583TBdp+b33m1wIa30kdp+KB87DblxNKwZeeJxeXUvDFZMadZdedEP4uT+pSUhPo1d0cm1i
YypVUOBx51OzI0ZAncqvpNZgnl9nCBdIEE5vIsAlC3CBQBvoTlJWye09ikpcens42/O1fqtt7u8u
S3fpMJhue18An3FW8V5l4QJPyZGsPBb6Xd1ibFvZMZWY/5ZfAcY8bfMnS2Vj2RAtM7qvUytFeWFk
SlrLu4sm/yEj8UM06rZfBYz9+OgrQThgrXjvfXGWXD0sw1GePb95vY/RK3/a3k1jpRv7GDLOdHQe
JT4e7UdaacXD1RsV4IWw==
X-BQ-mid: bizesmtp44t1637805635tehe1xjf
Received: from www.timemailer.cn (unknown 103.72.xxx.xxx
])
by esmtp6.qq.com (ESMTP) with SMTP id 0
for 1526147838@qq.com; Thu, 25 Nov 2021 10:00:34 +0800 (CST)
X-BQ-SSF: A0000000000000100000B00A0000000
X-BQ-FEAT: ind57RUHy5ZgKTirwUh6lvDGPEZ9/09bqcYW4ZHXsDDfOyWrLQ0wWB2PWPxSN
M4SqiFJ6/noAhLF1EA1J0uzazTB5+5ssVy6Zasb3MKO9ZRHZhb0Tl/ivTWCu/uGjIETefi9
4GzI3TSKjBJBrC8i/CfMCPf3hMSQqQsg76N4ykWfsJz3wl6NN6rg0TrM+AX8+5xjiVdCdEm
JDTB6yhpaCGz+f99uzCeaxBHJ4keAA304ihkUUgHJDI+jM59qMOlpUNw0QE6U4FoE+/8eoX
LZ4xCQ5xx3FsNPA/IuWrVN72l0KZ6j4UY3IH1ViIOGo+R3KHqmc+QpiiiU/D3PG0lKv+ydL
0o3nFoqIEDgPJFVQcqsb06rLRrIXmli70Yz+S4bXXxwKynCOS8aq/9HxjhP5Q==
Date: Thu, 25 Nov 2021 10:00:34 +0800
嘿嘿嘿...最后一发dd打成502
8 comments
能帮我找找starssr.com的源站IP么?蟹蟹!
这玩意直接解析到的啊。。
81.70.89.110
原来他关了cdn,帮我dd呗OωO
原来是你攻击我的?!可恶
鹅(⊙o⊙)…把我的源站ip放出来不太好吧...(´இ皿இ`)
好的好的
谢谢