Results 1 to 4 of 4
October 2nd, 2004, 09:53 PM #1
If this is in the wrong thread will a mod please put it in the correct one?
These are some ISP's that have been to my sites trying to get at my mailing programs/software I assume so they can spam the world with it.
does anybody recognise any of them?
what if anything is it best to do with them?
18.104.22.168One day parasites and their ilk will be made illegal, I bet a few Lawyers will be pissed off when the day comes.
Mr. Spitzer is fetching it nearer
October 3rd, 2004, 09:49 AM #2
I get this type of thing in my logs too - however, what you'll notice is odd is that you might get three or so different attempts at different scripts, from different IP address all at more or less the same time.
I'm pretty sure that the transmitting IP address is fake because of the unusual timings. Of course, this means that the person probing your scripts never gets a direct response, but I think they're just trying to generate a message which they can pick up through email.
October 3rd, 2004, 11:15 AM #3
- Join Date
- January 18th, 2005
I have a number of sites with live stats - so I can watch people go through the site (and hopefully learn something?) and I've seen the same thing - a number (usually 2 or 3) hits on non-existant mail scripts coming through within a few seconds of each other, but all from different IP addresses (and countries). The referral address is always my own site, so the actual request must be faked - perhaps sent through open proxies or trojans running on unsuspecting PCs.
I don't think there's anything much you can do - because the IP addresses seem to come from so many ranges, blocking isn't really an option. It seems the best thing is to make sure that if you have any mail scripts, check them for security, and perhaps rename them to something reasonably obscure.
October 3rd, 2004, 11:39 AM #4
I don't think it's even being done through a proxy or hijacked PC.
All you need to do is feed the script the right data - you don't need to get any feedback directly (so it doesn't matter that you've faked your own IP address). If you attempt to instruct the script to mail to (for example) email@example.com you can scoop up the replies later (and untraceably).
By Kim Salvino in forum Affiliate Window Program AnnouncementsReplies: 2Last Post: July 19th, 2010, 03:05 PM
By Rhia7 in forum Virtual Family and Off-TopicReplies: 9Last Post: November 5th, 2009, 07:52 PM
By lookupuk in forum Midnight Cafe'Replies: 0Last Post: November 6th, 2002, 05:35 AM
By ecomcity in forum SpamReplies: 4Last Post: October 13th, 2002, 01:02 PM