We help IT Professionals succeed at work.

Urgent: Posible Dictionary Attack Every 3 Sec, Logging not caching IP

speednow
speednow asked
on
181 Views
Last Modified: 2013-12-24
Im trying to track some 404 errors that are popping up every 3 seconds on my cold fusion "webserver.log" file.

Someone or something is trying to pull this non-existant files. Example of this log file:
---------------------------------------------------
"Error","TID=952","10/05/07","12:35:55","HTTP/1.0 404 Object Not Found. The template specified, D:\www\domain.com\Suzuki_Dealership.cfm, does not exist on the specified server."
"Error","TID=652","10/05/07","12:37:55","HTTP/1.0 404 Object Not Found. The template specified, D:\www\domain.com\Austin_Mini.cfm, does not exist on the specified server."
"Error","TID=612","10/05/07","12:40:03","HTTP/1.0 404 Object Not Found. The template specified, D:\www\domain.com\Burlington_Car_Dealers.cfm, does not exist on the specified server."

------------------------------------------------------
Like mentioned before, multiple lines every 3 sec, for different files.

Problem is also that i am logging also to NT and i can't seem to log this errors in particular on the iis logs, but if i try to access a non existing cfm from the outside world, it will be logged. Strange.

I'm trying to pin point the source.

Cold Fusion is also not logging the ip or hostname. Can this also me accomplished?
Comment
Watch Question

Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION
CERTIFIED EXPERT
Commented:
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION

Author

Commented:
The files haven't existed at anytime.  How can i check on those cfhttp's.

Im still unable to log.

Author

Commented:
Still unknown what is causing this.
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a sample view!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.