[nsp-sec] again: compromised websites (torpig)
Dirk Stander
dst+nsp-sec at glaskugel.org
Wed May 13 11:19:46 EDT 2009
.: Huopio Kauto (Wed, May 13, 2009 at 05:47:56PM +0300)
> Note there is a slight misprint... the correct infected masasoft URL
> ends with index.php, not .phppagemotti
> http://www.masasoft.com/index.phppagemotti | AURIA Auria Oy
thats right, sorry. The original line was:
http://www.masasoft.com/index.php?page=motti
I guess i fucked it up (or the ip-to-asn service i've been using doesn't
like chars like `?' or `=')
kind regards, Dirk Stander (1&1) :.
More information about the nsp-security
mailing list