Answer
Your machine could potentially be infected with the "mblaster worm".
Dependant on the level of logging you have enabled for the Gordano WWW service, you will
see an entry similar to the following…
POST /_vti_bin/shtml.exe/_vti_rpc
The worm appears to have an obvious effect by modifying the actual request
from the browser to the server, instead of issuing the "GET" command, the "OPTIONS"
tag is implemented.
Feel free to search the web for further detailed articles about this worm.
Customers have reported that applying the "fix" will resolve the issue.
Keywords:attachment msblaster worm blast ms