Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

可疑的peer id -DE1360- #70

Open
blackgear opened this issue May 6, 2024 · 2 comments
Open

可疑的peer id -DE1360- #70

blackgear opened this issue May 6, 2024 · 2 comments

Comments

@blackgear
Copy link

blackgear commented May 6, 2024
edited 

qbitmonitor  | 2024-05-05 15:28:22,795 INFO: unknown 77.68.37.246:51500: (BitTorrent 7.6, -DE1360-)
qbitmonitor  | 2024-05-05 15:45:35,073 INFO: unknown 77.68.41.119:51500: (Transmission 2.52, -DE1360-)
qbitmonitor  | 2024-05-05 15:45:35,077 INFO: unknown 88.208.201.96:51500: (Vuze 5.0.0.0, -DE1360-)
qbitmonitor  | 2024-05-05 15:46:06,331 INFO: unknown 88.208.201.96:51500: (Vuze 5.0.0.0, -DE1360-)
qbitmonitor  | 2024-05-05 15:53:55,533 INFO: unknown 88.208.228.143:51500: (Freebox BitTorrent 1.1, -DE1360-)
qbitmonitor  | 2024-05-05 16:40:52,732 INFO: unknown 185.107.94.62:51500: (BitLord 2.3.2-254, -DE1360-)
qbitmonitor  | 2024-05-05 16:41:23,994 INFO: unknown 185.107.94.62:51500: (BitLord 2.3.2-254, -DE1360-)
qbitmonitor  | 2024-05-05 16:42:26,549 INFO: unknown 185.107.94.62:51500: (BitLord 2.3.2-254, -DE1360-)
qbitmonitor  | 2024-05-05 18:02:55,142 INFO: unknown 88.208.208.22:51500: (Vuze 5.2.0.1_CVS, -DE1360-)
qbitmonitor  | 2024-05-05 19:49:54,408 INFO: unknown 77.68.41.115:51500: (uTorrent Mac 1.8.4, -DE1360-)
qbitmonitor  | 2024-05-05 20:12:19,091 INFO: unknown 88.208.218.118:51500: (uTorrent 2.2.1, -DE1360-)
qbitmonitor  | 2024-05-05 23:03:29,529 INFO: unknown 77.68.41.86:51500: (Transmission 2.61, -DE1360-)
qbitmonitor  | 2024-05-05 23:30:36,111 INFO: unknown 77.68.41.88:51500: (Transmission 2.77, -DE1360-)
qbitmonitor  | 2024-05-06 00:13:51,902 INFO: unknown 88.208.208.25:51500: (uTorrent 3.1.3, -DE1360-)
qbitmonitor  | 2024-05-06 00:54:31,002 INFO: unknown 88.208.228.143:51500: (Azureus 4.8.0.0, -DE1360-)
qbitmonitor  | 2024-05-06 01:41:26,462 INFO: unknown 185.107.94.5:51500: (BitLord 2.3.2-254, -DE1360-)
qbitmonitor  | 2024-05-06 01:42:29,102 INFO: unknown 88.208.208.25:51500: (BitComet 1.36, -DE1360-)
qbitmonitor  | 2024-05-06 02:16:21,716 INFO: unknown 88.208.228.110:51500: (Transmission 2.42, -DE1360-)
qbitmonitor  | 2024-05-06 02:56:31,407 INFO: unknown 185.107.94.14:51500: (Transmission 2.51, -DE1360-)
qbitmonitor  | 2024-05-06 05:46:29,165 INFO: unknown 185.107.94.13:51500: (Transmission 2.42, -DE1360-)
qbitmonitor  | 2024-05-06 05:47:00,694 INFO: unknown 185.107.94.13:51500: (Transmission 2.42, -DE1360-)
qbitmonitor  | 2024-05-06 05:50:08,455 INFO: unknown 185.107.94.13:51500: (Transmission 2.42, -DE1360-)
qbitmonitor  | 2024-05-06 05:50:39,773 INFO: unknown 185.107.94.13:51500: (Transmission 2.42, -DE1360-)
qbitmonitor  | 2024-05-06 07:05:13,075 INFO: unknown 88.208.229.138:51500: (uTorrent 3.3.1, -DE1360-)
qbitmonitor  | 2024-05-06 07:06:47,103 INFO: unknown 88.208.229.138:51500: (uTorrent 3.3.1, -DE1360-)
qbitmonitor  | 2024-05-06 07:10:26,509 INFO: unknown 88.208.229.138:51500: (uTorrent 3.3.1, -DE1360-)
qbitmonitor  | 2024-05-06 09:28:46,843 INFO: unknown 88.208.218.105:51500: (BitTorrent 7.6, -DE1360-)
qbitmonitor  | 2024-05-06 09:30:52,289 INFO: unknown 77.68.41.118:51500: (BitComet 1.36, -DE1360-)
qbitmonitor  | 2024-05-06 09:51:13,849 INFO: unknown 77.68.37.246:51500: (Azureus 5.2.0, -DE1360-)
qbitmonitor  | 2024-05-06 10:48:37,136 INFO: unknown 185.107.94.29:51500: (Freebox BitTorrent 1.1, -DE1360-)
qbitmonitor  | 2024-05-06 11:47:03,944 INFO: unknown 185.107.94.13:51500: (Freebox BitTorrent 1.1, -DE1360-)

最近使用自制工具分析时,发现了某种相同peer id、相同网段、相同端口,不同的client,疑似某种在随机模拟流行torrent客户端的新工具
@Simple-Tracker
Copy link
Owner

感谢反馈!

这是一个不好的现象, 不过, 其 IP 仍然相对固定, 因此在伪造 Peer ID 的情况下封禁 IP 是更好的选择.

类似现象还有近期的 -BC0204-

@JockeyWang
Copy link

看了下,这批IP都是欧洲的

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@blackgear @JockeyWang @Simple-Tracker