what is this crap? - GoFuckYourself.com

Dawgy · 10-22-2003, 07:03 AM

i keep seeing this in my server error logs as 'file not found'

htdocs/_vti_bin/owssvr.dll
htdocs/MSOffice/cltreq.asp

obviously neither of those exists, why are they being called 100's of times a day?

RedBumper · 10-22-2003, 07:04 AM

Quote:

Originally posted by Dawgy
i keep seeing this in my server error logs as 'file not found'

htdocs/_vti_bin/owssvr.dll
htdocs/MSOffice/cltreq.asp

obviously neither of those exists, why are they being called 100's of times a day?

Frontpage :-)

Dawgy · 10-22-2003, 07:06 AM

frontpage? i dont use frontpage and the IPs are not mine...

someone tryin to hack my shit with frontpage?

how lame...

RedBumper · 10-22-2003, 07:07 AM

Quote:

Originally posted by Dawgy
frontpage? i dont use frontpage and the IPs are not mine...

someone tryin to hack my shit with frontpage?

how lame...

Well, that vti shit thing is created when you design a page/site using frontpage i think.

Juicy D. Links · 10-22-2003, 07:17 AM

Dawgy I had that show up a few times also no clue what it is

psili · 10-22-2003, 07:18 AM

Yea, we see those hits in our logs too. Many dumb people who don't know how to http://www.netcraft.com/ a target to see the OS before trying a hack.

jact · 10-22-2003, 07:21 AM

It's likely a worm similar to Red Alert that targets vulnerabilities in NT servers. Certain files in unpatched Windows servers will give them full access. Nothing to worry about as long as you're on *nix

10-22-2003, 07:03 AM	#1
Dawgy Confirmed User Join Date: Jul 2001 Posts: 5,856	what is this crap? i keep seeing this in my server error logs as 'file not found' htdocs/_vti_bin/owssvr.dll htdocs/MSOffice/cltreq.asp obviously neither of those exists, why are they being called 100's of times a day? __________________ the revolution is coming.

10-22-2003, 07:06 AM	#3
Dawgy Confirmed User Join Date: Jul 2001 Posts: 5,856	frontpage? i dont use frontpage and the IPs are not mine... someone tryin to hack my shit with frontpage? how lame... __________________ the revolution is coming.

10-22-2003, 07:18 AM	#6
psili Confirmed User Join Date: Apr 2003 Location: Loveland, CO Posts: 5,526	Yea, we see those hits in our logs too. Many dumb people who don't know how to http://www.netcraft.com/ a target to see the OS before trying a hack. __________________ Your post count means nothing.

10-22-2003, 07:21 AM	#7
jact Confirmed User Join Date: Sep 2002 Location: Oakville, Canada Posts: 9,134	It's likely a worm similar to Red Alert that targets vulnerabilities in NT servers. Certain files in unpatched Windows servers will give them full access. Nothing to worry about as long as you're on *nix __________________ Free agent

10-22-2003, 07:17 AM	#5
Juicy D. Links So Fucking Banned Industry Role: Join Date: Apr 2001 Location: N.Y. -Long Island -- Posts: 122,992	Dawgy I had that show up a few times also no clue what it is