Geek Answers Handbook

Hackers are trying to do something on one of our sites.

One of our sites has recently received many attacks that seem similar. Incidentally, we have an error registration structure that sends us an error message when something strange happens or an error occurs on the server.

Here's what happens:

Error : The file '/(A(u76U7llazAEkAAAAZTJmYmE1NmMtZTE4YS00YzQ2LTlmYzItNGIxMzZjMzNjOTc4vkp-I-8cYbLrHx25-IfNdMvuKao1))/MostOfOurPublicPage.aspx' does not exist. Request: URL: http://Ourwebsite.com/(A(u76U7llazAEkAAAAZTJmYmE1NmMtZTE4YS00YzQ2LTlmYzItNGIxMzZjMzNjOTc4vkp-I-8cYbLrHx25-IfNdMvuKao1))/MostOfOurPublicPage.aspx User Agent: Mozilla/5.0 (compatible; SiteBot/0.1; +http://www.sitebot.org/robot/) Referrer: Host: 213.186.122.2 (Ukraine) SecuredConnection: False

The user agent shows SiteBot / 0.1, but I’m sure it isn’t ... at least I never heard anything about sites that did such things.

Question
So, does anyone have an idea of ​​what it is and what I can do to prevent it, because it does our error logging system by sending us something like 100 error logs per day!

Note: I usually speak French, so sorry for my English.

+4
source share
2 answers

This is just a search robot or a searcher. Put the robots.txt file in the root of your web server (http://www.example.com/robots.txt) and put the text in it.

 user-agent: sitebot disallow: /

That should hold him back.

Also the weird url that he uses is just a session cookie passed by the url string, not a cookie.

+2
source

It seems that these types of problems occur from time to time. You probably do not want to completely suppress these types of errors, as they can from time to time help identify bad links. What I did in the past is to filter out bot traffic.

  • block traffic on your firewall
  • filter bot traffic.
+1
source

More articles:


All Articles