Acces log

[jvdboom]

I always get this a lot of ties in my acces log always from another IP.Is this a kind of virus like I once had
"GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 813
a lot of times?

80.11.65.104 - - [17/Aug/2002:19:49:23 +0200] "GET /default.ida?NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN%u9090%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u9090%u8190%u00c3%u0003%u8b00%u531b%u53ff%u0078%u0000%u00=a HTTP/1.0" 400 342

 

[danielhozac]

There has been plenty of threads about this lately. It is a worm that attacks IIS servers, since you're using Apache you're safe. //Daniel

 

[jpl931]

I receive these requests daily from all over the world..it is more annoying than anything. Many of these sysadmins probably aren't aware or don't care because they haven't downloaded th MS patch for IIS servers.

 

[jvdboom]

well does apache haves a weak place in it too?