LinkBack URL
About LinkBacks
Strange http query attack
Hello Im Daniel,
I have a problem since yesterday in one of my servers, Im receiving between 200 and 300 hits by second from different IPs to a non existent path in a site, the hits are going to different cracks, films and download query's, but this site is a directory and its not a warez or p2p site.
The site is onemilliondirectory.com, and I have suspended it because it was using a lot of recourses of the first server, now its being redirected to other location, I have placed some traffic trackers to determine the referer or any other usefull info about the visitors, but the referer is always empty and I think that they are fake users because the statcounter tracker do not recognize the visits.
For example, some of the hits are:
Detail of one of the visits from the cpanel latest visitors tool:Code:GET /suspended.page/?v=ABC%204%20KIDS%20Workshop%201.0.zip HTTP GET /suspended.page/?v=DecryptSQL%202.8.zip HTTP/1.1 GET /suspended.page/?v=[0]%20Msn%20Live%20Messenger%20Mobile.zip GET /inactive.html?v=Able%20Photo%20Slide%20Show%202.2.5.5.zip GET /suspended.page/?v=English%20Grammar%20Worksheet%201.4.zip GET /inactive.html?v=Karaoke%205%2030.zip HTTP/1.1 GET /suspended.page/?v=Nero%208%208.3.2.1.zip HTTP/1.1
Someone knows what could be happening and how to stop it? Someone had a similar experience?Code:Host: 82.246.88.241 /inactive.html?a=Knowing.2009.TS.FRENCH.XVID-PaGlop.****************.[emule-island.com].avi Http Code: 200 Date: Apr 07 16:39:54 Http Version: HTTP/1.1 Size in Bytes: 262 Referer: - Agent: Internet Explorer
PD:I was checking the stats of the site and I have seen as a referer of one of the visits this url: blackhatbootcamp.com /affiliates.html, Im not sure if it has any relation with the problem.
Thanks in advance
Daniel
Reply With Quote
