forum.coppermine-gallery.net
No Support => General discussion (no support!) => Topic started by: Aeronautic on June 29, 2006, 12:09:05 am
-
I just discovered a most suspicious access to one of my CPG sites.
This IP 74.64.51.226 [cpe-74-64-51-226.nyc.res.rr.com] hit one page of my site after this search on google:
This URL (http://www.google.com/search?q=inurl:upload.php+%22Powered+by+Coppermine+Photo+Gallery%22+&hl=en&lr=&safe=off&rls=GGGL,GGGL:2006-11,GGGL:en&start=900&sa=N&filter=0)
What makes this especially suspicious is that url means they hit my site on the 900th result! Either it was robotic looking for future urls to target or someone who really needs to get a life.
To be clear, this is the text from the google seach box:
inurl:upload.php "Powered by Coppermine Photo Gallery"
See my concern?
Not yet?
Look at this search:
Search Link (http://www.google.com/search?hl=en&lr=&safe=off&rls=GGGL,GGGL:2006-11,GGGL:en&sa=G&q=%2274.64.51.226%22)
Those results reveal rar file uploads associated with that IP.
I'm blocking it, of course. Just thought the community should know in advance - make your own decisions.