[nsp-sec] ACK. Re: websites with torpig iframes
Taka Mizuguchi
taka at nttv6.jp
Wed Jul 29 14:34:18 EDT 2009
ACK for Japanese ISPs.
4694 | 211.133.134.77 | JP | regalo-t.net 5
http://www.regalo-t.net/ | IDC Yahoo Japan Corporation
4732 | 210.172.108.230 | JP | gcard.jp 3 http://gcard.jp/ | DION
KDDI CORPORATION
9618 | 211.19.160.11 | JP | 0-5mm-space-of-heart.jp 5
http://www.0-5mm-space-of-heart.jp/ | TCN catv-tokushima
23816 | 202.93.87.249 | JP | geocities.jp 4
http://www.geocities.jp/toshieimaru/index.htm | YAHOO Yahoo Japan
Corporation
Dirk Stander wrote,on 09.7.29 0:17 AM:
> ----------- nsp-security Confidential --------
>
>
>
> ------------------------------------------------------------------------
>
> Hi,
>
> please find below a list of websites with a torpig/mebroot related
> script injected. The format is:
> ... | <normalized domain> <hits> <sample URI> | ...
>
> kind regards, Dirk Stander (1&1) :.
>
>
> ------------------------------------------------------------------------
>
>
>
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
>
> Please do not Forward, CC, or BCC this E-mail outside of the nsp-security
> community. Confidentiality is essential for effective Internet security counter-measures.
> _______________________________________________
--
Taka Mizuguchi
More information about the nsp-security
mailing list