今天我在我的服务器日志中发现了这一点:
66.249.64.140 crawl-66-249-64-140.googlebot.com [22/Sep/2016:11:23:30 +0300] "GET /C/Users/%EF%BF%BD%C3%8A/Documents/%EF%BF%BD%EF%BF%BD%EF%BF%BD%C3%AF/Documents/26.05.2013/Major%2026.05.2013/Listpub+/No%2012,%20juin%202009 HTTP/1.1" 302 227 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)“文本/html”
我甚至无法正确地对请求的编码部分进行反转义...请帮忙。您觉得这是一次黑客攻击吗?
附言:我根据建议从 stackoverflow 移植了此主题。抱歉,我不知道这里有如此等级的问题。
答案1
该 IP 地址属于 google.com。我不确定他们为什么要抓取这个奇怪的请求。也许是您的网站上有什么东西?
$ whois 66.249.64.140
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/public/whoisinaccuracy/index.xhtml
#
#
# The following results may also be obtained via:
# https://whois.arin.net/rest/nets;q=66.249.64.140?showDetails=true&showARIN=false&showNonArinTopLevelNet=false&ext=netref2
#
NetRange: 66.249.64.0 - 66.249.95.255
CIDR: 66.249.64.0/19
NetName: GOOGLE
NetHandle: NET-66-249-64-0-1
Parent: NET66 (NET-66-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Google Inc. (GOGL)
RegDate: 2004-03-05
Updated: 2012-02-24
Ref: https://whois.arin.net/rest/net/NET-66-249-64-0-1
即使它来自 Google IP 以外的其他地方,我也不会太担心。面向互联网的服务会受到机器人/病毒/任何不断寻找漏洞的攻击(您会经常看到这种情况)。您的网络服务器是否允许访问您希望它提供的文件以外的文件?