pepper Posted April 6, 2011 Share Posted April 6, 2011 Hi, I built my contact form according to the Effortless E-Commerce book... and every so often I get a contact form submission that looks awfully suspicious (pasted below). My question: Is this someone just messing around or does this look like an attempt hack? Here is the latest one (I've replaced the http with hxxx): Name: fmckfsyxweu Email: mnfvwp@qtjrho.com Comments: 6qX98s <a href="hxxx://tehpytlzdqvo.com/">tehpytlzdqvo</a>, sprpgqkkfcao, [link=hxxx://ivpisofjqddd.com/]ivpisofjqddd[/link], hxxx://utetlvzppzja.com/ Link to comment Share on other sites More sharing options...
Jonathon Posted April 6, 2011 Share Posted April 6, 2011 I would suspect that rather it being an individual targeting you, it is more likely to be a spam robot. Especially if that comment is to a comment board or something. - However I'm not an expert on these things, so if you discover more, please let me know 1 Link to comment Share on other sites More sharing options...
Jonathon Posted April 6, 2011 Share Posted April 6, 2011 Take this post after yours from Растаможка В Одессе Google tells me that their post means: Import Export Ukraine Kiev and the sub title means: customs clearance services in Odessa Not very relative, possibly spam! For Larry to decide I guess Link to comment Share on other sites More sharing options...
pepper Posted April 6, 2011 Author Share Posted April 6, 2011 Hey Jonathon, thanks for your feedback and ideas. The contact form is on a small merchant site rather than a forum but the location of the contact form (www.domain/contact/) is so straightforward that it sounds like an automated bot could find it... i'm leaning towards your theory of it being random spam. I'm not too experienced with web-dev & I thought maybe that that is what MySql injection attack code might look like after it had been stripped of the dangerous code bits by my contact form php code. anyway, I appreciate the feedback Cheers, -Mike Link to comment Share on other sites More sharing options...
Larry Posted April 7, 2011 Share Posted April 7, 2011 What you're seeing isn't really a hack attempt in the sense that it's not trying to break your site but rather get those links to be displayed on your site. So, yes, I'd call it random spam. You could choose to ignore it, or if it happens a lot and it bothers you, you could add a check to your contact code that if the contact submission "a href" or "link=", it gets automatically deleted. Link to comment Share on other sites More sharing options...
pepper Posted June 5, 2011 Author Share Posted June 5, 2011 Sorry for the late reply but thanks Larry! I will add that code. -Cheers Link to comment Share on other sites More sharing options...
Recommended Posts