weblog中出現了這些奇怪的連結, 使用少見的Java瀏覽器? :
218.172.10.87 - - [08/Nov/2022:14:20:42 +0800] "GET /cgi-bin/snapshot.cgi?chn=0&u=admin&p=&q=0&COUNTER&d=0 HTTP/1.1" 403 229 "-" "Java/1.8.0_131"218.172.10.87 - - [08/Nov/2022:14:20:42 +0800] "GET /cgi-bin/viewer/video.jpg?r=COUNTER HTTP/1.1" 403 233 "-" "Java/1.8.0_131"218.172.10.87 - - [08/Nov/2022:14:20:42 +0800] "GET /cgi-bin/camera?resolution=640&quality=1&Language=0&COUNTER HTTP/1.1" 403 223 "-" "Java/1.8.0_131"218.172.10.87 - - [08/Nov/2022:14:20:42 +0800] "GET /cgi-bin/faststream.jpg?stream=half&fps=15&rand=COUNTER HTTP/1.1" 403 231 "-" "Java/1.8.0_131"218.172.10.87 - - [08/Nov/2022:14:20:42 +0800] "GET /IMAGE.JPG HTTP/1.1" 404 207 "-" "Java/1.8.0_131"218.172.10.87 - - [08/Nov/2022:14:20:45 +0800] "GET /videostream.cgi?user=admin&pwd= HTTP/1.1" 404 213 "-" "Java/1.8.0_131"218.172.10.87 - - [08/Nov/2022:14:20:45 +0800] "GET /snap.jpg HTTP/1.1" 404 206 "-" "Java/1.8.0_131"218.172.10.87 - - [08/Nov/2022:14:20:45 +0800] "GET /cam_1.cgi HTTP/1.1" 404 207 "-" "Java/1.8.0_131"218.172.10.87 - - [08/Nov/2022:14:20:51 +0800] "GET /videostream.cgi?loginuse=admin&loginpas= HTTP/1.1" 404 213 "-" "Java/1.8.0_131"218.172.10.87 - - [08/Nov/2022:14:20:51 +0800] "GET /-wvhttp-01-/GetOneShot?image_size=640x480&frame_count=1000000000 HTTP/1.1" 404 220 "-" "Java/1.8.0_131"218.172.10.87 - - [08/Nov/2022:14:20:51 +0800] "GET /webcapture.jpg?command=snap&channel=1 HTTP/1.1" 404 212 "-" "Java/1.8.0_131"218.172.10.87 - - [08/Nov/2022:14:20:51 +0800] "GET /mjpg/video.mjpg HTTP/1.1" 404 213 "-" "Java/1.8.0_131"218.172.10.87 - - [08/Nov/2022:14:20:51 +0800] "GET /axis-cgi/mjpg/video.cgi?camera=&resolution=640x480 HTTP/1.1" 404 221 "-" "Java/1.8.0_131"
查詢一下來源IP居然是從台灣的中央山脈那邊跑來的?! (雖然這個地點不一定正確)
再稍作估狗之後得知這個似乎是某個網路監視器的影像控制軟體, 不過為什麼連到我這來? 或許是利用軟體的漏洞來做網路攻擊?
沒有留言:
張貼留言