Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Possible Intrusion Scan

Status
Not open for further replies.
jheaton

jheaton

IS-IT--Management
Jun 6, 2003
23
US
I host our company web site on a W2k server running IIS. Upon review of the log files, I discovered lines similar to the following occuring several times a night.

61.248.35.135, -, 10/24/2003, 7:54:37, W3SVC1, SVRWEB01, 192.168.2.5, 15, 111, 50, 501, 0, get, /winnt/system32/cmd.exe, /c%20dir,

My theory is that this is someone (probably a script that scans a range of IP addresses, and mine just happen to be in that range) scanning my server for known vuneribilities. It looks as though they are trying to list and/or change directories. Is this a correct assumption?


 
Sort by date Sort by votes
yep just one of many directory traversal script attacks that happen, sometimes several a day. So long at the status code is a 500 error it shouldn't be a major cause for concern.


Chris.

Indifference will be the downfall of mankind, but who cares?
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

AndyH1
  • Locked
  • Question
BMC SDE on win 2010/win 2012 is it possible
Replies
0
Views
31
AndyH1
AndyH1
scorney
  • Locked
  • Question
Is it possible to have RDP server co-exist within a Web Server ? 1
Replies
3
Views
55
strongm
strongm
raphael75
  • Locked
  • Question
Possible to schedule a task to the second with schtasks?
Replies
4
Views
81
raphael75
raphael75
1DMF
  • Locked
  • Question
Is it possible or safe to install an email viewer on the server?
Replies
3
Views
52
1DMF
1DMF
kurio71
  • Locked
  • Question
Faxes not showing in Inbox on Windows 7 Fax and Scan client 1
Replies
4
Views
34
kurio71
kurio71

Part and Inventory Search

Sponsor

Back
Top