Looks like an attempt to see if they could run cmd.exe on your server. In otherwords, a hack attempt. :) Isn't that special. At least the first one. The second one looks like output of a query.
In the first attempt, it looks like they were trying to run the application cmd.exe to get a listing of your directory. An example and explination can be found here: [securiteam.com...] and here: [packetstorm.securify.com...]
Heh, probably just some script-kiddie tryin' to run it on whatever server s/he could find. :) Wouldn't be hard to write somethin' that scanned for webservers in an address block and tried various exploits.