any thoughts on what i could do about it?
on a side note, i love this guy http://grc.com/
this is somebody trying to get at my cmd. (?) (i'm correct?)
this is the IP.
#Software: Microsoft Internet Information Services 5.0
#Version: 1.0
#Date: 2001-06-12 23:56:42
#Fields: date time c-ip cs-username s-ip s-port cs-method cs-uri-stem cs-uri-query sc-status cs(User-Agent)
2001-06-12 23:56:42 61.134.126.138 - 64.xx.xx.xx 80 GET /winnt/system32/cmd.exe /c+dir 404 -
all these, i dunno:
this one, now, could just be a mistake... btw y is a diff IP on same computer
[below here explained. or could it a hackerwebbot?(paranoia? my computer was raped!!!)] [webcrawler@www.xxxxxxxxx.com]
#Software: Microsoft Internet Information Services 5.0
#Version: 1.0
#Date: 2001-06-18 06:58:16
#Fields: date time c-ip cs-username s-ip s-port cs-method cs-uri-stem cs-uri-query sc-status cs(User-Agent)
2001-06-18 06:58:16 64.55.148.54 - 64.yy.yy.yy 80 GET /robots.txt - 404 Mozilla/2.0+(compatible;+Ask+Jeeves)
this beats me, about the java1.3.0
#Software: Microsoft Internet Information Services 5.0
#Version: 1.0
#Date: 2001-06-16 03:51:55
#Fields: date time c-ip cs-username s-ip s-port cs-method cs-uri-stem cs-uri-query sc-status cs(User-Agent)
2001-06-16 03:51:55 207.253.45.199 - 64.yy.yy.yy 80 GET /iisstart.asp - 200 Java1.3.0
2001-06-16 03:51:55 207.253.45.199 - 64.yy.yy.yy 80 GET /iisstart.asp - 200 Java1.3.0
2001-06-16 03:52:55 207.253.45.199 - 64.yy.yy.yy 80 GET /iisstart.asp - 200 Java1.3.0
what's this? our survey says! (never heard of em, SEEMS innocent...)
#Software: Microsoft Internet Information Services 5.0
#Version: 1.0
#Date: 2001-06-18 22:50:20
#Fields: date time c-ip cs-username s-ip s-port cs-method cs-uri-stem cs-uri-query sc-status cs(User-Agent)
2001-06-18 22:50:20 195.92.95.61 - 64.xx.xx.xx 80 HEAD /Default.htm - 200 Mozilla/4.0+(compatible;+Netcraft+Web+Server+Survey)
[i just read an ms technet article about isapi security issue ithink?]
#Software: Microsoft Internet Information Services 5.0
#Version: 1.0
#Date: 2001-06-21 04:58:06
#Fields: date time c-ip cs-username s-ip s-port cs-method cs-uri-stem cs-uri-query sc-status cs(User-Agent)
2001-06-21 04:58:06 12.31.208.217 - 64.xx.xx.xx 80 GET /Default.asp Out-of-process+ISAPI+extension+request+failed. 500 Mozilla/4.0+(compatible;+MSIE+5.01;+Windows+NT+5.0)
on a side note, i love this guy http://grc.com/
this is somebody trying to get at my cmd. (?) (i'm correct?)
this is the IP.
#Software: Microsoft Internet Information Services 5.0
#Version: 1.0
#Date: 2001-06-12 23:56:42
#Fields: date time c-ip cs-username s-ip s-port cs-method cs-uri-stem cs-uri-query sc-status cs(User-Agent)
2001-06-12 23:56:42 61.134.126.138 - 64.xx.xx.xx 80 GET /winnt/system32/cmd.exe /c+dir 404 -
all these, i dunno:
this one, now, could just be a mistake... btw y is a diff IP on same computer
[below here explained. or could it a hackerwebbot?(paranoia? my computer was raped!!!)] [webcrawler@www.xxxxxxxxx.com]
#Software: Microsoft Internet Information Services 5.0
#Version: 1.0
#Date: 2001-06-18 06:58:16
#Fields: date time c-ip cs-username s-ip s-port cs-method cs-uri-stem cs-uri-query sc-status cs(User-Agent)
2001-06-18 06:58:16 64.55.148.54 - 64.yy.yy.yy 80 GET /robots.txt - 404 Mozilla/2.0+(compatible;+Ask+Jeeves)
this beats me, about the java1.3.0
#Software: Microsoft Internet Information Services 5.0
#Version: 1.0
#Date: 2001-06-16 03:51:55
#Fields: date time c-ip cs-username s-ip s-port cs-method cs-uri-stem cs-uri-query sc-status cs(User-Agent)
2001-06-16 03:51:55 207.253.45.199 - 64.yy.yy.yy 80 GET /iisstart.asp - 200 Java1.3.0
2001-06-16 03:51:55 207.253.45.199 - 64.yy.yy.yy 80 GET /iisstart.asp - 200 Java1.3.0
2001-06-16 03:52:55 207.253.45.199 - 64.yy.yy.yy 80 GET /iisstart.asp - 200 Java1.3.0
what's this? our survey says! (never heard of em, SEEMS innocent...)
#Software: Microsoft Internet Information Services 5.0
#Version: 1.0
#Date: 2001-06-18 22:50:20
#Fields: date time c-ip cs-username s-ip s-port cs-method cs-uri-stem cs-uri-query sc-status cs(User-Agent)
2001-06-18 22:50:20 195.92.95.61 - 64.xx.xx.xx 80 HEAD /Default.htm - 200 Mozilla/4.0+(compatible;+Netcraft+Web+Server+Survey)
[i just read an ms technet article about isapi security issue ithink?]
#Software: Microsoft Internet Information Services 5.0
#Version: 1.0
#Date: 2001-06-21 04:58:06
#Fields: date time c-ip cs-username s-ip s-port cs-method cs-uri-stem cs-uri-query sc-status cs(User-Agent)
2001-06-21 04:58:06 12.31.208.217 - 64.xx.xx.xx 80 GET /Default.asp Out-of-process+ISAPI+extension+request+failed. 500 Mozilla/4.0+(compatible;+MSIE+5.01;+Windows+NT+5.0)