关于小屁blog的源站查找过程

Author： Alpha
发布时间：November 26, 2021
550 views
8 comments
2209 words
Categories：首页编程技术杂项

https://www.xpblog.cn/

<div class="hideContent">该部分仅登录用户可见</div>

使用了1盾（一个小厂cdn），旗下域名均用whois隐藏

通过查看文章发现，有一个时光邮局，唉，一看，一样的套路，cdn使用的是cloudflare，但是

但是他的发件邮箱会把自己的源站ip发送出来，于是乎

Received: from qq.com (smtpbg473.qq.com [59.36.132.72])
by newxmmxsza31.qq.com (NewMX) with SMTP id 26364E9
for <1526147838@qq.com>; Thu, 25 Nov 2021 10:00:38 +0800
X-QQ-mid: xmmxsza31t1637805638ty85x1063
X-QQ-XMAILINFO: MrrOTNkTKUehfsBpuG86nvhvFAcJer57Q2eW0dCLT/OPvcvywQOp0gr8zrQjwT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X-BQ-mid: bizesmtp44t1637805635tehe1xjf
Received: from www.timemailer.cn (unknown <span style='color:#DC143C'>103.72.xxx.xxx</span>
])
by esmtp6.qq.com (ESMTP) with SMTP id 0
for <1526147838@qq.com>; Thu, 25 Nov 2021 10:00:34 +0800 (CST)
X-BQ-SSF: A0000000000000100000B00A0000000
X-BQ-FEAT: ind57RUHy5ZgKTirwUh6lvDGPEZ9/09bqcYW4ZHXsDDfOyWrLQ0wWB2PWPxSN
M4SqiFJ6/noAhLF1EA1J0uzazTB5+5ssVy6Zasb3MKO9ZRHZhb0Tl/ivTWCu/uGjIETefi9
4GzI3TSKjBJBrC8i/CfMCPf3hMSQqQsg76N4ykWfsJz3wl6NN6rg0TrM+AX8+5xjiVdCdEm
JDTB6yhpaCGz+f99uzCeaxBHJ4keAA304ihkUUgHJDI+jM59qMOlpUNw0QE6U4FoE+/8eoX
LZ4xCQ5xx3FsNPA/IuWrVN72l0KZ6j4UY3IH1ViIOGo+R3KHqmc+QpiiiU/D3PG0lKv+ydL
0o3nFoqIEDgPJFVQcqsb06rLRrIXmli70Yz+S4bXXxwKynCOS8aq/9HxjhP5Q==
Date: Thu, 25 Nov 2021 10:00:34 +0800

嘿嘿嘿...最后一发dd打成502

Last modification：December 12, 2021

如果觉得我的内容对你有用，请随意赞赏

8 comments

dogeon
December 12th, 2021 at 08:40 pm

能帮我找找starssr.com的源站IP么？蟹蟹！

Reply
1. Alpha
  December 17th, 2021 at 08:23 pm
  
  @dogeon
  
  这玩意直接解析到的啊。。
  
  Reply
2. Alpha
  December 17th, 2021 at 08:22 pm
  
  @dogeon
  
  81.70.89.110
  
  Reply
  1. dogeon
    December 26th, 2021 at 01:21 pm
    
    @Alpha
    
    原来他关了cdn，帮我dd呗OωO
    
    Reply
小屁的博客
December 11th, 2021 at 01:21 pm

原来是你攻击我的？！可恶

Reply
小屁的博客
December 11th, 2021 at 01:19 pm

鹅(⊙o⊙)…把我的源站ip放出来不太好吧...(´இ皿இ｀)

Reply
1. Alpha
  December 12th, 2021 at 07:22 am
  
  @小屁的博客
  
  好的好的
  
  Reply
  1. 小屁的博客
    December 12th, 2021 at 03:13 pm
    
    @Alpha
    
    谢谢
    
    Reply

关于小屁blog的源站查找过程

Alpha • 2021 年 11 月 26 日

https://www.xpblog.cn/

<div class="hideContent">该部分仅登录用户可见</div>

使用了1盾（一个小厂cdn），旗下域名均用whois隐藏

通过查看文章发现，有一个时光邮局，唉，一看，一样的套路，cdn使用的是cloudflare，但是

但是他的发件邮箱会把自己的源站ip发送出来，于是乎

嘿嘿嘿...最后一发dd打成502

8 comments