Potential IIS vulnerability scan? (GET x)

Recently I've noticed a lot of failed requests in my apache logs from random IPs. The request looks like:

[error] [client xx.xxx.xx.x] Invalid URI in request GET x HTTP/1.0

These requests occur at the same time on all of my servers. Also, my firewall logs indicate attempts to connect to port 80 on some servers which have that port blocked.

Does anyone know if this is an indication of a particular scan? Perhaps for the latest IIS vulnerability? Has anyone else seen this activity recently, also?


compsci

 

 

 

 

Top