[Dshield] IIS Logs

Richard Golodner RGolodner at Aetea.com
Tue Feb 3 02:56:01 GMT 2004


This looks like a piece of an old IIS trick messing with the dll that allows
active x to interact with odbc. Look to see if you have these files
installed. I think also that if you removed those files you would no longer
be vulnerable, but you lost the active x odbc feature. 
                                   Richard

-----Original Message-----
From: walter woodrow [mailto:oopicwow at yahoo.com]
Sent: Monday, February 02, 2004 9:45 PM
To: list at dshield.org
Subject: [Dshield] IIS Logs


Can anyone help explain these log entries I found in my IIS logs?
 
81.210.28.52  -  2/2/2004 3:12:38 AM 700 719 200 OK POST  /msadc/msadcs.dll
hr=80020009,CSoapStub::HttpExtensionProc,  
81.210.28.52  -  2/2/2004 3:12:34 AM 32 186 200 OK GET  /msadc/msadcs.dll
hr=80070057,CSoapStub::HttpExtensionProc, 
 
Thanks.


---------------------------------
Do you Yahoo!?
Yahoo! SiteBuilder - Free web site building tool. Try it!
_______________________________________________
list mailing list
list at dshield.org
To change your subscription options (or unsubscribe), see:
http://www.dshield.org/mailman/listinfo/list




More information about the list mailing list