Este vorba de virusul Nimda de pe masini ce ruleaza server IIS al Micro$oft > Salutare, > > Am gasit in access_log pt. httpd niste linii de genu: > > "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 283 "-" "-" > "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir > HTTP/1.0" 404 322 "-" "-" > "GET /scripts/..%%35c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 288 "-" > "-" > "GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 281 "-" "-" > "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir > HTTP/1.0" 404 322 "-" "-" > > Imi spune cineva ce inseamna de fapt ... Vrea cineva ceva de la linuxul meu > accesand cmd.exe??? > Ce ma mira ii si faptul ca cererile vin de la mai multe adrese IP (vreo 10) > > Merci, > Sebi > > --- > Send e-mail to '[EMAIL PROTECTED]' with 'unsubscribe rlug' to > unsubscribe from this list.
--- Send e-mail to '[EMAIL PROTECTED]' with 'unsubscribe rlug' to unsubscribe from this list.
