httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Issa Mbodji <issambo...@yahoo.com>
Subject [users@httpd] My Apache Access Log
Date Sun, 22 Jun 2003 02:57:41 GMT
Hello:

I am running the Apache web server at home (just for
testing purposes). I do not even has a web site. I am
running localhost. I was surprised to see today when I
opened the log access file some very strange messages
like the one below:

68.50.3.144 - - [21/Jun/2003:22:49:07 -0400] "GET
/default.ida?XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX%u9090%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u9090%u8190%u00c3%u0003%u8b00%u531b%u53ff%u0078%u0000%u00=a
 HTTP/1.0" 404 309

or this one

68.50.52.117 - - [16/Jun/2003:17:25:57 -0400] "GET
/c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 322

I really do not understand these messages and to me it
seems that I am under attack.

Does anyone knows what this could mean? and probably
if it is an attack, how do I stop it.

I am running windows XP Professional Edition.

Thanks. -Mame Mbodji

__________________________________
Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month!
http://sbc.yahoo.com

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message