Checked my Apache access logs and found
ip of machine with Avast- - [19/Oct/2019:11:01:49 -0400] “GET / HTTP/1.1” 302 480 “-” “avast! Antivirus”
-
- [19/Oct/2019:11:01:49 -0400] “GET / HTTP/1.1” 401 2532 “-” “avast! Antivirus”
-
- [19/Oct/2019:11:01:50 -0400] “GET /HNAP1/ HTTP/1.1” 302 511 “-” “avast! Antivirus”
-
- [19/Oct/2019:11:01:51 -0400] “GET /HNAP1/ HTTP/1.1” 401 2564 “-” “avast! Antivirus”
redirected to HTTPS and blocked due to password protection.
- [19/Oct/2019:11:01:51 -0400] “GET /HNAP1/ HTTP/1.1” 401 2564 “-” “avast! Antivirus”
Question is why is Avast trying to hack my web server with Home Network Administration Protocol.
HNAP1 is a problem and should not be used.
Is it really intrusion testing it for me? I would be impressed if this is the case