【已完成】这种日志是要攻击我吗

大佬们帮我分析下
有很长一段都是这个

.173.14.172 - - [26/Mar/2022:07:24:14 +0800] "HEAD /b.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
173.14.172 - - [26/Mar/2022:07:24:14 +0800] "HEAD /template.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
173.14.172 - - [26/Mar/2022:07:24:14 +0800] "HEAD /install.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
.173.14.172 - - [26/Mar/2022:07:24:14 +0800] "HEAD /core.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
.173.14.172 - - [26/Mar/2022:07:24:15 +0800] "HEAD /about.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
.173.14.172 - - [26/Mar/2022:07:24:15 +0800] "HEAD /download.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
220.173.14.172 - - [26/Mar/2022:07:24:15 +0800] "HEAD /runtime.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
2173.14.172 - - [26/Mar/2022:07:24:15 +0800] "HEAD /a.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
173.14.172 - - [26/Mar/2022:07:24:15 +0800] "HEAD /img.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
220.173.14.172 - - [26/Mar/2022:07:24:16 +0800] "HEAD /000.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
220.173.14.172 - - [26/Mar/2022:07:24:16 +0800] "HEAD /00.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
220.173.14.172 - - [26/Mar/2022:07:24:16 +0800] "HEAD /0.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
220.173.14.172 - - [26/Mar/2022:07:24:16 +0800] "HEAD /012.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
220.173.14.172 - - [26/Mar/2022:07:24:16 +0800] "HEAD /application.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
0.173.14.172 - - [26/Mar/2022:07:24:16 +0800] "HEAD /servertar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
220.173.14.172 - - [26/Mar/2022:07:24:16 +0800] "HEAD /extend.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
220.173.14.172 - - [26/Mar/2022:07:24:17 +0800] "HEAD /vendor.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
0.173.14.172 - - [26/Mar/2022:07:24:17 +0800] "HEAD /app.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
220.173.14.172 - - [26/Mar/2022:07:24:17 +0800] "HEAD /public.bf.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"
220.173.14.172 - - [26/Mar/2022:07:24:17 +0800] "HEAD /com.tar.gz HTTP/1.1" 404 0 "-" "python-requests/2.27.1"

大炮运维V587 · 发表于 2022-3-26 10:06:39

您好，这种是类似于忙扫，扫描你的网站目录中是否带有访问的压缩包，如果有的话，就直接下载了。建议安装宝塔软件商店中的Nginx或者apache防火墙来拦截这样的扫描。

宝塔用户_ddqjvm · 发表于 2022-3-26 10:51:15

那是不是恶意的呢？

宝塔用户_ddqjvm · 发表于 2022-3-26 17:51:14

还有大佬吗

大炮运维V587 · 发表于 2022-3-26 17:54:19

宝塔用户_ddqjvm 发表于 2022-3-26 10:51
那是不是恶意的呢？

是恶意的

【菠萝云】免费装宝塔,4G内存68	★美国CN2高防服务器★打死退款★	★香港CN2云/站群/高防/特价机★	【滴盾】高防服务器专抗DDOS	【多途云】高防CDN
高防服务器，无视一切流量攻击	SSL证书，防止数据被劫持	OV/EV SSL证书，可当日签发	宝塔一键部署DV,EV,OV,SSL证书	A10招租，联系qq394030111
★易探云.香港/美国/国内/游戏云★	【苍穹云】高性能云服务器 1.2折起	【迅线云盒】内网穿透-固定公网IP	高防服务器40核 64G 20M 199/月	【恒爱云】香港低至8元1核1G2M

【已完成】这种日志是要攻击我吗

相关帖子