Atomicorp

Hello, This week we discovered some spam-links injected into content of old Joomla-Installations (2.5.28). In the apache-logs I found several requests with JDatabasedriverMysqli in them that started to get blocked around mid december 2015 by rule 337106. Before that the requests seem to have gotten ...

Hello, Just wondering if there is any progress on this. Unfortunately, the problem is becoming increasingly annoying. We have a new customer's site up for a month and already the referrer-spammers are showing up (see attached image). I also found this list: http://perishablepress.com/blacklist/ultim...

Just a short followup-question:

Is there a timeline for the GUI so that we can enter such URLs ourselves? It would of course be ideal, if we could just click a checkbox to notify you of such entries instead of having to notify you separately.

Kind regards

-Stephan

Hello,

Just wanted to ask regarding these spammers. I see in the rules that best-seo-solution is listed but not yet the others (also not from the site linked above). Will you be adding these also?

Kind regards

-Stephan

Thanks a lot!

Hello, We are getting complaints about more referrer spam: best-seo-solution.com *.simple-share-buttons.com *.social-buttons.com A customer sent a screenshot from Google Analytics, listing *.social-buttons.com, but I can't find it right away in the logs. I have attached the screenshot. Unfortunately...

Now it's working: 119.94.118.161 - - [26/Mar/2015:07:22:20 +0100] "GET / HTTP/1.0" 403 188 "http://buttons-for-website.com" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.143 Safari/537.36" 37.77.122.42 - - [26/Mar/2015:08:4...

Thanks for your help! I just noticed these entries in access_log: 210.4.115.212 - - [18/Mar/2015:07:39:15 +0100] "GET / HTTP/1.0" 200 12576 "http://buttons-for-website.com" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.143 Safar...

I just noticed that in the Rule it says buttons-for-websites.com. But the referrer is actually buttons-for-website.com (not websiteS).

I had it wrong in my original message.

Kind regards -Stephan

Thanks a lot!

Thanks, here are some requests I found in access_log: 177.101.127.50 - - [28/Feb/2015:12:02:40 +0100] "GET / HTTP/1.0" 301 448 "http://buttons-for-website.com" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.143 Safari/537.36"...

Hello, Google Analytics is increasingly reporting hits from buttons-for-websites.com. It seems to be similar to semalt.com (referrer spam), which gets blocked by ASL rule 393766. Can you add buttons-for-website.com so it gets blocked or can I do it myself? Kind regards -Stephan EDIT: corrected refer...

Thank you very much for the elaborate answer! That gives me some food for thought.

Kind regards

-Stephan

Hello, We are having some corporate customers getting blocked because of multiple drop events from the same source. Some hosts within their networks connect to various ports that are not in use and we are asking customers to review their networks and possibly not connect to our servers on unused por...

scott wrote:Reinstall elinks and run rkhunter --propupd?

That worked. Thanks!