Apache Access Log

External Since: Jul 02, 2004 Posts: 3

Can anyone tell me what these type of entries in my log are :-

216.232.142.206 - - [05/Jul/2004:07:12:45 +0100] "SEARCH
/\x90\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb
1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x0
2\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb
1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x0
2\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb
1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x0
2\xb1\x02\xb1\x02 etc etc etc

External Since: Oct 31, 2003 Posts: 86

*** Mike wrote/escribió (Mon, 05 Jul 2004 07:39:48 GMT):
> Can anyone tell me what these type of entries in my log are :-
>
> 216.232.142.206 - - [05/Jul/2004:07:12:45 +0100] "SEARCH
> /\x90\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb

They're normally attempts to use known IIS exploits.

--
--
-- Álvaro G. Vicario - Burgos, Spain
--