|
It is just an error-message. But to answer the question, yes, could be proof of Russian hackers.
I'd assume you verify the query-strings' correctness before doing something with it?
Bastard Programmer from Hell
If you can't read my code, try converting it here[^]
|
|
|
|
|
Thanks for your response. Yes, the query string works fine. The database is accessed through entity framework and upon investigation I've seen no evidence that the code has been tampered with or the database compromised. It's just that I keep getting messages like or similar to this. My site doesn't get a lot of attention, I'm about the only one using it other than that suggested by these error messages
|
|
|
|
|
Most error-messages indicate an error, not a hacker. If you want to know what is causing it, then check your connection-logs. Probably some bot trying to index your website.
Bastard Programmer from Hell
If you can't read my code, try converting it here[^]
|
|
|
|
|
Wrong forum.
Moreover, this is not the first time I see your question. If you did not get any answer at first, it may be because no one is able to tell you whether or not your site is being hacked from the information you provided.
selfish adj. Defines someone who does not think of me.
|
|
|
|
|
Yes, I did pose the question in "Quick Answers" and immediately got a response that the question was incomprehensible. I have no idea as to how to improve a one line question "Is this typical of what one might expect if someone was trying to hack my site"? If, as you say, there was not enough information provided to make an assessment a courteous response might be; "I can't provide an opinion from the information you provided".
Thanks anyway for interest, I'm just trying to understand if this is what to expect if someone's trying to hack into a web site.
|
|
|
|
|
Tipton Tyler wrote: Thanks anyway for interest, I'm just trying to understand if this is what to expect if someone's trying to hack into a web site. If there was something to be expected, we could automate it. In that case, your computer wouls state (like any decent machine from Hollywood) that it is being hacked. Open your eventlog, and take a look at the errors there.
If you are hacked, you'll know soon enough - the thing to focus on would be prevention. Is your computer up to date? Is the mvp-hostfile up to date? Any ports open on the firewall that need not be?
Bastard Programmer from Hell
If you can't read my code, try converting it here[^]
|
|
|
|
|
Thanks again, I'll take a look at the event log and see if I can decipher anything.
|
|
|
|
|
..I was being sarcastic.
The PC will run often into error-conditions. Sometimes you try and write a file, and the disk is full. Or the computer is being shut down. Doesn't mean that you are being hacked. Your very likely chasing a non existing ghost.
I still haven't heard you on the topic of prevention. If your code is vulnerable to SQL-injection, then please post the URL to your site here and we'll give it a try
Bastard Programmer from Hell
If you can't read my code, try converting it here[^]
|
|
|
|
|
I've played around a little trying to see if the site was vulnerable to SQL injection and Asp.Net seemed pretty resistant. Admitted, I'm not much of a hacker and I'm sure an accomplished credant could be much more effective. At any rate, the sites URL is "TRTDevelopment.com".
|
|
|
|
|
Is this calling into WebResource.axd or ScriptResource.axd? If so, it's might just be from your own site, or it might be someone testing what they can get your site to serve up. The 'd' and 't' query string parameters indicate that they're most likely related an ASP.NET resource of some kind.
c# - What is WebResource.axd? - Stack Overflow
Have you tried going to the URL yourself and seeing what happens? You might need to configure the site to allow ASP.NET errors to be displayed to get anything useful back.
Now is it bad enough that you let somebody else kick your butts without you trying to do it to each other? Now if we're all talking about the same man, and I think we are... it appears he's got a rather growing collection of our bikes.
modified 31-Aug-21 21:01pm.
|
|
|
|
|
Thanks for your kind response. I'll see what I can do to get mor information from the Asp.Net errors
|
|
|
|
|
A website that I put together for a non-profit emails me whenever there's an invalid page request or other weirdness. The original intent was to email me any exceptions that occurred as a result of my bad code. Instead, I get probably a dozen emails a day hitting common admin-y php docs, various js files, and other stupid things. Doing a reverse lookup on the IP's indicates most of these come from China. Implementing an automatic black-lister is on my todo list shortly.
Marc
Latest Article - Create a Dockerized Python Fiddle Web App
Learning to code with python is like learning to swim with those little arm floaties. It gives you undeserved confidence and will eventually drown you. - DangerBunny
Artificial intelligence is the only remedy for natural stupidity. - CDP1802
|
|
|
|
|
Sounds an awful lot like the messages I've been receiving although I haven't been able to track down whoever it is that's trying to access it.
|
|
|
|
|
Did you know that this organisation exists?
Russian Space Forces[^]
The language is JavaScript. that of Mordor, which I will not utter here
This is Javascript. If you put big wheels and a racing stripe on a golf cart, it's still a f***ing golf cart.
"I don't know, extraterrestrial?"
"You mean like from space?"
"No, from Canada."
If software development were a circus, we would all be the clowns.
|
|
|
|
|
No matter how seductive all this military gear might be to the aliens, I think sex with them would be a mistake.
«When I consider my brief span of life, swallowed up in an eternity before and after, the little space I fill, and even can see, engulfed in the infinite immensity of spaces of which I am ignorant, and which know me not, I am frightened, and am astonished at being here rather than there; for there is no reason why here rather than there, now rather than then.» Blaise Pascal
|
|
|
|
|
Why? Therer probably is not much going to happen afterwards. We could ask Bob if there is any alien version of a shotgun wedding.
The language is JavaScript. that of Mordor, which I will not utter here
This is Javascript. If you put big wheels and a racing stripe on a golf cart, it's still a f***ing golf cart.
"I don't know, extraterrestrial?"
"You mean like from space?"
"No, from Canada."
If software development were a circus, we would all be the clowns.
|
|
|
|
|
It's the "during" part I'd worry about.
cheers, Bill
«When I consider my brief span of life, swallowed up in an eternity before and after, the little space I fill, and even can see, engulfed in the infinite immensity of spaces of which I am ignorant, and which know me not, I am frightened, and am astonished at being here rather than there; for there is no reason why here rather than there, now rather than then.» Blaise Pascal
|
|
|
|
|
I am not sure if you want to discuss this with your kid sister!
... such stuff as dreams are made on
|
|
|
|
|
Sure, mention "having sex" is so terrible bad, much worse than mention atomic bomb etc.
modified 19-Jan-21 21:04pm.
|
|
|
|
|
Naturally. Public mayhem and violence are traditional mass entertainments.
If you have an important point to make, don't try to be subtle or clever. Use a pile driver. Hit the point once. Then come back and hit it again. Then hit it a third time - a tremendous whack.
--Winston Churchill
|
|
|
|
|
Should write faster programs or write programs faster?
... such stuff as dreams are made on
|
|
|
|
|
Both or you're fired.
Kappa, or is it?
|
|
|
|
|
If I write 'em faster than you, then YOU are fired!
... such stuff as dreams are made on
|
|
|
|
|
Hah! I fired you both this morning!
Bad command or file name. Bad, bad command! Sit! Stay! Staaaay...
AntiTwitter: @DalekDave is now a follower!
|
|
|
|
|
I've dissolved this company. Everyone! Please find a new job.
Starting to think people post kid pics in their profiles because that was the last time they were cute - Jeremy.
|
|
|
|