Reputation: 1
Encoded GET request
I am a newbie, but I have not been able to determine if this request is malicious or not. It has always came from a foreign IP address. I have done multiple searches and have not found a way of decoding this. Thanks for your help!
GET /?fp=QxBK9zIO8R%2BFqpUYXxBCsf/2d/VCb1UzUK/uJ1EMlO56LPORLsISePHmk%2Bh6iibCdtyls6EqlvlYNkjOtWf1xQ==&prvtof=4yrnquW2HYSkfIrzg%2BVYOgjMe3DUqpFReQ%2BpfOitLMw=&poru=ZcSu57I11wpvJIeprbkvODx9vwNZIIrWZSULp2Eu1j6rtx2flIgbe1T%2BHF4UJ7AqYgWE4MY9f%2B0Dck7AH1e45g==& HTTP/1.1
Upvotes: 0
Views: 104
Answers (1)
Reputation: 757
Looks like some spam or scraper robot. The originator hopes that a previous attack has planted the file or code that will read those variables and send back whatever information it was looking for. It might use common fields that submit to posts and message boards.
Search for the fp prtov poru and you'll find many similar things.
ex: https://gist.github.com/superfeedr/806076
If you have no such page to receive the url and process it, then you can ignore the post. If it bothers you much, drop all packets from the originating ip with your firewall. Or do like this fellow making a mean reply to the one who posts such things: http://auracms.org
Upvotes: 2
Related Questions
- Use encoded object query param for GET request
- HTTP GET request with locale
- What is the encoding of an HTTP request?
- Format of an HTTP get request
- How to encode an HTTP GET request
- format of a https get request
- HTTP GET Request Structure
- What's the encoding of the content of an HTTP request?
- encoding a POST request
- What's the correct encoding of HTTP get request strings?