PassMark Logo
Home » Forum

Announcement

Collapse
No announcement yet.

Suspicious phrase in search log

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    Suspicious phrase in search log

    Our search log shows several instances of the following search phrase (the adult-themed address has been edited to hopefully avoid spam filters and to render it unclickable):

    "http abc.12345.xpg.com.br texte.txt?"

    What does this indicate?

    Thanks
    Tags: None
  • #2
    It isn't a hack attempt. So I think spammer are spamming your site.
    Most web forms generate E-mail, or create records of some sort, that someone eventaully looks at. They probalby have automated tools to submit this to 1000s of web sites at a time.

    And it kind of worked for them, as you have shared the URL with others, maybe even made you curious enough to visit their site. (To anyone reading this, don't do it, it might be a malware site)

    Comment

    • #3
      Thanks for the quick reply.

      What would indicate a hack attempt? What should we be looking for?

      Comment

      • #4
        For hack attempts you find SQL and PHP code in the query string. For XSS attacks you find Javascript code being used as a search query.

        Zoom doesn't use SQL, but that doesn't stop them trying.

        But there are no holes we know about in V6, or have been reported by other customers.

        Comment

        Previous template Next
        Working...
        X