access.log记录分析

yifan600

UID: 42259
帖子: 64
积分: 147
在线时间: 5 小时

1^# yifan600 发表于 2008-07-21 19:22

access.log记录分析

92.48.122.144 - - [21/Jul/2008:12:52:22 +0800] "POST http://92.48.122.144/~user/ura/proxy.php HTTP/1.1" 500 537
92.48.122.144 - - [21/Jul/2008:12:52:22 +0800] "POST http://92.48.122.144/~user/ura/proxy.php HTTP/1.1" 500 537
92.48.122.144 - - [21/Jul/2008:12:52:22 +0800] "POST http://92.48.122.144/~user/ura/proxy.php HTTP/1.1" 500 537
92.48.122.144 - - [21/Jul/2008:12:52:22 +0800] "POST http://92.48.122.144/~user/ura/proxy.php HTTP/1.1" 500 537
92.48.122.144 - - [21/Jul/2008:12:52:22 +0800] "POST http://92.48.122.144/~user/ura/proxy.php HTTP/1.1" 500 537
92.48.122.144 - - [21/Jul/2008:12:52:23 +0800] "POST http://92.48.122.144/~user/ura/proxy.php HTTP/1.1" 500 537
92.48.122.144 - - [21/Jul/2008:12:52:23 +0800] "POST http://92.48.122.144/~user/ura/proxy.php HTTP/1.1" 500 537
92.48.122.144 - - [21/Jul/2008:12:52:23 +0800] "POST http://92.48.122.144/~user/ura/proxy.php HTTP/1.1" 500 537
124.234.65.41 - - [21/Jul/2008:12:52:23 +0800] "GET http://cpro.baidu.com/cpro/ui/uijs.php?fv=9&tn=text_default_728_90&n=bdwxl_106575ahm_cpr&rsi1=90&rsi0=728&rad=&rss0=%23FFFFFF&rss1=%23FFFFFF&rss2=%230000ff&rss3=%23444444&rss4=%23008000&rss5=&rss6=%23e10900&rsi5=4&ts=1&at=3&cn=1&if=0&word=http%3A%2F%2Fwww.f1212.com%2F&refer=&ev=67108864&ch=0&lmt=1215841121&csp=1024,768&ccd=32&chi=0&cja=true&cpl=0&cmi=0&cce=true&csl=zh-cn&rt=93&cad=1&aurl=&rss7=&cpa=1 HTTP/1.0" 500 537
92.48.122.144 - - [21/Jul/2008:12:52:23 +0800] "POST http://92.48.122.144/~user/ura/proxy.php HTTP/1.1" 500 537
66.232.113.224 - - [21/Jul/2008:12:52:23 +0800] "POST http://chevys-truck.info/p/p.php HTTP/1.0" 500 537
92.48.122.144 - - [21/Jul/2008:12:52:23 +0800] "POST http://92.48.122.144/~user/ura/proxy.php HTTP/1.1" 500 537
69.31.91.107 - - [21/Jul/2008:12:52:23 +0800] "GET http://www.google.com/ HTTP/1.1" 500 537
92.48.122.144 - - [21/Jul/2008:12:52:23 +0800] "POST http://92.48.122.144/~user/ura/proxy.php HTTP/1.1" 500 537

大概内容如上,我只在服务器上装了个Apahce2.2.9,在上面配置了ajp代理以访问内网资源,出现上面log,不知道为什么会出现??我查过病毒和木马,都没有找到.另外,说一句,此服务器放置在DMZ区.

redcn2004

UID: 13328
帖子: 102
积分: 234
在线时间: 14 小时

2^# redcn2004 发表于 2008-07-22 09:33

500 错误，就是系统页面出现故障了咯

iisbsd

UID: 28933
帖子: 160
积分: 368
在线时间: 1 天 11 小时

3^# iisbsd 发表于 2008-11-09 13:36

看一下error.log，通常里面会告诉你错误是什么。