entry in log file

Forum Moderators: DixonJones

Message Too Old, No Replies

entry in log file

something is sending empty email forms from web page

jcoffey1

2:27 pm on May 21, 2008 (gmt 0)

The following is in the useragent field in my log files (iis 6.0) WebTrends/3.0+(WinNT) showing it hit a page that only sends emails - there is nothing using this file I just forgot to delete it from my web server.

Anyway, the person receiving the emails just got 10 emails sent to them - this is in the log file

2008-05-20 20:15:02 10.1.1.24 GET /programs/transportation/TLA/verifySubmission.asp - 80 - 10.1.1.28 WebTrends/3.0+(WinNT) - - 200 0 64 2250 276

Any help would be appreciated.

penders

7:38 pm on May 25, 2008 (gmt 0)

What kind of help are you after? I'd certainly remove your verifySubmission.asp file as it is no longer reqd - it does not appear to be secure.

WebTrends - Might be the WebTrends Security Analyzer which helps to discover security vulnerabilities? May be this has been used to find your insecure script?!

The location of your script may have been 'found' some time previous when it was linked to from other pages. It may not have been scanned at that stage, but the location stored for later scanning?

There are many bad-bots out there that might pretend to be something they are not, actively seeking out insecure scripts...

jcoffey1

12:49 pm on May 27, 2008 (gmt 0)

Thank you very much - I don't think we Webtrends security analyzer running but I will look into it and I did remove the file.

Thanks again

entry in log file

something is sending empty email forms from web page

jcoffey1

penders

jcoffey1

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week