|
Thanks to: 
|
iTools
HiJacking
| To: | itools@xxxxxxxxxxxxxxx |
|---|---|
| Subject: | HiJacking |
| From: | Jeff Wiegand <jeff@xxxxxxxxxxxxxxxxx> |
| Date: | Sun, 22 Jul 2001 19:53:03 -0500 |
If someone could help me with this, I would appreciate it. Here's the scenario. First, there are a bunch of posts like this: 029kzo143.chartermi.net - - [22/Jul/2001:14:28:02 -0500] "POST http://wwp.icq.com/scripts/srch.dll HTTP/1.0" 000 13075 029kzo143.chartermi.net - - [22/Jul/2001:14:28:06 -0500] "POST http://wwp.icq.com/scripts/srch.dll HTTP/1.0" 000 14121 Then, the server starts serving from domains I don't even host. sexytop100.com lovehonorobey.com and a few others... Are they somehow loading stuff into squid with those .dll posts and then fetching them through java?????? I am pulling my hair out trying to stop it, and doing more damage than the hacker along the way. I need to know what they are doing and what config files to alter with what. Please help this stressed out moron... JW 01010101010101010101010101010101010101010101010101010 Jeff Wiegand | Head Cook | electroponics, inc. jeff@xxxxxxxxxxxxxxxxx | http://www.electroponics.com/ Community News - http://www.unsubscibe.com/ Local Music - http://www.cd-kiosk.com/ 01010101010101010101010101010101010101010101010101010 --- Tenon Intersystems' itools Mailing List To unsubscribe: send mailto://itools-request@xxxxxxxxxxxxxxx with the body: unsubscribe |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Webmail help, Garry Gimenes |
|---|---|
| Next by Date: | Different type of hijacking?, Mike Schienle |
| Previous by Thread: | Webmail help, Garry Gimenes |
| Next by Thread: | Re: HiJacking, charles |
| Indexes: | [Date] [Thread] [Top] [All Lists] |
| Tenon Home | Products | Order | Contact Us | About Tenon | Register | Tech Support | Resources | Press Room | Mailing Lists |
|
Copyright©2003 Tenon Intersystems, 232 Anacapa Street, Suite 2A, Santa Barbara,
CA 93101. All rights reserved. |