When I look at the server logs – or rather the list of “Required but not found URLs” that AWStats creates – for this site I find an increasing amount of very strange requests for nonexistent files. Since these weird requests are repeated over and over I’m guessing most of them are from bots looking for potential ways of hacking the site or posting spam.
That’s just a guess – I don’t know for sure what it’s all about. I’ve Googled around a bit and found reasonable explanations for some of the requests, but not all of them. Please fill me in if you know more about any of these oddities.
- Looking for a security hole in AWStats?
- Probably the same as /cgi-bin/awstats.pl.
- Requested by a “Web discussions” feature in IE/Win and probably by some worms looking for servers running Microsoft software. There are several discussions on this at Webmaster World.
- Same as /_vti_bin/owssvr.dll.
- Someone trying to access the site with Frontpage?
- Maybe you were looking for robots.txt?
- No, it’s robots with an ‘s’.
- /333333, /444444, /666666
- I think *every* document on this site has been requested multiple times with /333333, /444444 or /666666 added at the end of the URL. What are they looking for?
- No idea what this is.
- Nope, you won’t find any `blink` elements here.
- What’s with the circumflexes?
- You’ll have more luck if you add a file extension to that.
Have you found any other goodies in your server logs? Maybe something much weirder than any of the ones I’ve mentioned? Let’s compare!