I just checked my Apache2 logs and foudn this: Code: 202.9.*.* - - [24/Oct/2003:21:39:46 +0200] "GET /scripts/nsiislog.dll" 404 306 (part of the IP has been removed for privacy issues) I traced the IP back to a provider somewhere in India, since I don't know anyone in India and seeing that he/she is trying to access a IIS(?) log script(?), should I block the IP? Or is this normal?