Very common for most webservers. The bit you showed is clearly the normal Script Kiddy attack attampting to check for a runnable cmd.exe on IIS servers (Tries out different combinations of directories). You will also find attacks on cgi directories. Whats funny is that a lot of the scripts are attacks on IIS and not apache lol.
Mike On Wed, 2002-12-18 at 00:24, Shane&Lisa wrote: > Hi All. > Not really a question, but kind of an interesting situation. I was > going thru /var/log/http-errors and checking it out and saw all kinds of > listings like: > > [date] [error] [client xxx.xxx.xxx.xx (ip of hosts--a lot from > shaw...ha) file not found: /path/to /html/..../cmd.exe > [date] file not found: /path/to /html/.../scrpts/winnt/system > > on and on.... > > Does that mean what it looks like it means? > > Shane -- Michael Petch <[EMAIL PROTECTED]> CApp::Sysware Consulting Ltd.
signature.asc
Description: This is a digitally signed message part
