# Weee! A new wordpress attack in the wild … or is this an attack? Or something worse? SPAM mebbe?

Sitting here, drinking coffee, preparing for the short ride into work (probably have to stop off at Meijer to pick up some turnovers … mmmmm turnovers!) when I noticed this on my wordpress logs tail

[Wed Jun 3 08:23:31 2009] [error] WordPress database error Illegal mix of collations (ascii_bin,IMPLICIT) and (latin1_swedish_ci,COERCIBLE) for operation ‘=’ for query SELECT comment_ID FROM wp_comments WHERE comment_post_ID = ‘1559’ AND ( comment_author = ‘Tanushkaa’ OR comment_author_email = ‘verterder18@gmail.com’ ) AND comment_content = ‘\xd0\xa1\xd0\xbf\xd0\xb0\xd1\x81\xd0\xb8\xd0\xb1\xd0\xbe, \xd0\xbf\xd0\xbe\xd1\x81\xd1\x82 \xd0\xb4\xd0\xb5\xd0\xb9\xd1\x81\xd1\x82 … \xd1\x82\xd1\x8c.’ LIMIT 1 made by wp_new_comment, wp_allow_comment

Hey … someone is trying to hack us. Cool.
But what does this say?

Ok, let me use a quickie script to handle this for me …


#!/usr/bin/perl
my $hex="\xd0\xa1\xd0\xbf\xd0\xb0\xd1\x81\xd0\xb8\xd0\xb1\xd0\xbe, \xd0\xbf\xd0\xbe ... \xd1\x87\xd1\x82\xd0\xbe \xd0\xbf\xd0\xbe\xd1\x87\xd0\xb5\xd1\x80\xd0\xbf\xd0\xbd\xd1\x83\xd1\x82\xd1\x8c"; printf "%s\n",$hex;



Cool. What does it print out?

??????????????, ???????? ?????????????????????????? ?????????????? ?????????????? ?? ???? ????????, ???????? ?????? ????????????????????

Hmmm… my Russian’s not that good. I know … what … 5 words? And one of my former colleagues, who is Russian, upon hearing me (mis)pronounce a word I though I knew, told me to stick with English …

Translation: Russian ?? English
Thanks for the post really ?????????????? written and the case is that found

(ROTFLMAO!)
Ok. I am getting spammed. Not hacked.
Look folks, if I and my readers can’t even read the spam …. I mean, c’mon now.
Whats next … spam in sudoku puzzles? Solve this and get your free ED meds?
Geez…

### 1 thought on “Weee! A new wordpress attack in the wild … or is this an attack? Or something worse? SPAM mebbe?”

1. Yeah, for a while there I was getting a whole lot of Chinese spam on my blog. Really not very useful to anyone, I’d think.