一些常见黑客漏洞扫描

从日志中摘取的扫描信息：大部分是js，还有ThinkPHP，Apache，rockmongo，weblogic，jenkins，solr...

59.36.132.140 - - [:05:34:04 +0800] "GET /wp-includes/js/comment-reply.min.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:04 +0800] "GET /skins/vector/csshover.htc HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:04 +0800] "GET /misc/states.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:04 +0800] "GET /static/js/md5.js HTTP/1.1" 200 2954 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:04 +0800] "GET /include/js/md5.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:04 +0800] "GET /include/js/common.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:04 +0800] "GET /include/js/ajax.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:05 +0800] "GET /res/js/dev/pages/common/global.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:05 +0800] "GET /js/wind_editor.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:05 +0800] "GET /styles/prosilver/template/forum_fn.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:05 +0800] "GET /styles/prosilver/template/styleswitcher.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:05 +0800] "GET /editor/ubb/uploader.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:05 +0800] "GET /template/default/style.css HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:05 +0800] "GET /static/js/reset.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:05 +0800] "GET /images/js/common.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:05 +0800] "GET /templets/style/dede.css HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:05 +0800] "GET /include/dedeajax2.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:05 +0800] "GET /images/default/inc.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:05 +0800] "GET /js/lang/core/zh-cn.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:05 +0800] "GET /js/lang/cms/zh-cn.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:06 +0800] "GET /d/js/acmsd/ecms_dialog.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:06 +0800] "GET /skin/default/js/tabs.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:06 +0800] "GET /media/system/js/tab.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:06 +0800] "GET /media/system/css/mootree.css HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:06 +0800] "GET /lang/zh/front.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:06 +0800] "GET /style/default/content.css HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:06 +0800] "GET /lang/zh/edit.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:06 +0800] "GET /rockmongo/ HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:06 +0800] "GET /server-status HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:06 +0800] "GET /ueditor.all.js HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:06 +0800] "GET /wikilib.d/PmWiki.ChangeLog HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:06 +0800] "GET /4e5e5d7364f443e28fbf0d3ae744a59a HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:07 +0800] "GET /jenkins/ HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:07 +0800] "GET /console/login/LoginForm.jsp HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:07 +0800] "GET /solr/ HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:07 +0800] "GET / HTTP/1.1" 502 568 "https://10.0.0.1/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" "-"

59.36.132.140 - - [:05:34:07 +0800] "GET / HTTP/1.1" 502 166 "-" "python-requests/2.19.1" "-"