注文したKindleが届くらしい - Your Kindle e-book Amazon receipt
Published: 2013/02/06
Amazonから注文したKindleに関するメールが届きます。
注文してませんが。
これは結局いつものBHEK2を利用した攻撃サイトへ誘導されます。
誘導URLはこれ。
いつものようにWordpressを使っているサイトが利用されています。
プラグインの「tell-a-friend」のディレクトリにリダイレクタが設置されています。
http://seanjewelersaruba.com/wp-content/plugins/tell-a-friend/orderedlistamazon.html http://v-mishchenko.com/wp-content/plugins/tell-a-friend/orderedlistamazon.html http://weddingdirection.com/wp-content/plugins/tell-a-friend/amazonbrorder.html
飛ばされ先はここ。
http://starsoftgroup.net/detects/weeks_movie_whether.php
domain | IP | 逆引き | AS | AS Name | Country |
---|---|---|---|---|---|
en-center.ru | 81.177.141.122 | NONE | 8342 | RTCOMM-AS_OJSC_RTComm.RU | RussianFederation |
dolcevita-rostov.ru | 92.53.96.221 | gagarin.timeweb.ru. | 9123 | TIMEWEB-AS_OOO_TimeWeb | RussianFederation |
larafit-univoran.com | 37.59.53.182 | ks3266927.kimsufi.com. | 16276 | OVH_OVH_Systems | France |
bmvsupermarket.com | 111.118.212.190 | indifer.websitedns.in. | 18229 | CTRLS-AS-IN_CtrlS_Datacenters_Ltd. | India |
realblackdiamonds.com | 182.18.152.157 | static-182-18-152-157.ctrls.in. | 18229 | CTRLS-AS-IN_CtrlS_Datacenters_Ltd. | India |
shakaeng.com | 184.106.55.68 | NONE | 19994 | RACKSPACE_-_Rackspace_Hosting | UnitedStates |
batukbhairav.com | 174.122.148.158 | 9e.94.7aae.static.theplanet.com. | 21844 | THEPLANET-AS_-_ThePlanet.com_Internet_Services_Inc. | UnitedStates |
capkassociates.com | 174.120.23.126 | 7e.17.78ae.static.theplanet.com. | 21844 | THEPLANET-AS_-_ThePlanet.com_Internet_Services_Inc. | UnitedStates |
fraternal.ru | 174.120.242.251 | fb.f2.78ae.static.theplanet.com. | 21844 | THEPLANET-AS_-_ThePlanet.com_Internet_Services_Inc. | UnitedStates |
sriwijaiklan.com | 174.120.232.195 | c3.e8.78ae.static.theplanet.com. | 21844 | THEPLANET-AS_-_ThePlanet.com_Internet_Services_Inc. | UnitedStates |
weddingdirection.com | 174.132.77.154 | 9a.4d.84ae.static.theplanet.com. | 21844 | THEPLANET-AS_-_ThePlanet.com_Internet_Services_Inc. | UnitedStates |
wordofhisgraceministry.com | 74.53.117.60 | 3c.75.354a.static.theplanet.com. | 21844 | THEPLANET-AS_-_ThePlanet.com_Internet_Services_Inc. | UnitedStates |
jingxingshi.com | 221.231.140.143 | NONE | 23650 | CHINANET-JS-AS-AP_AS_Number_for_CHINANET_jiangsu_province_backbone | China |
hacksplay.com | 78.46.37.187 | s57.linuxpl.com. | 24940 | HETZNER-AS_Hetzner_Online_AG | Germany |
phenom-br.com | 189.113.7.50 | hw96.webservidor.net. | 28209 | Brazil | |
deltaoiltrading.com | 50.6.115.47 | NONE | 32392 | OPENTRANSFER-ECOMMERCE_-_Ecommerce_Corporation | UnitedStates |
gununoyuncagi.com | 94.73.146.70 | 94-73-146-70.cizgi.net.tr. | 34619 | CIZGI_Cizgi_Telekomunikasyon_Hizmetleri_Sanayi_Ve_Ticaret_Limited_Sirketi | Turkey |
botspvtlimited.com | 108.167.184.34 | NONE | 36351 | SOFTLAYER_-_SoftLayer_Technologies_Inc. | UnitedStates |
driflowers.com | 184.172.184.192 | ns2882.hostgator.com. | 36351 | SOFTLAYER_-_SoftLayer_Technologies_Inc. | UnitedStates |
gspublishinghouse.com | 50.116.74.221 | NONE | 36351 | SOFTLAYER_-_SoftLayer_Technologies_Inc. | UnitedStates |
igadget4all.com | 50.116.72.219 | NONE | 36351 | SOFTLAYER_-_SoftLayer_Technologies_Inc. | UnitedStates |
joanaduartefan.com | 50.97.209.35 | 50.97.209.35-static.reverse.softlayer.com. | 36351 | SOFTLAYER_-_SoftLayer_Technologies_Inc. | UnitedStates |
millenniumsl.com | 108.167.136.107 | NONE | 36351 | SOFTLAYER_-_SoftLayer_Technologies_Inc. | UnitedStates |
seanjewelersaruba.com | 50.116.122.160 | ns1674.websitewelcome.com. | 36351 | SOFTLAYER_-_SoftLayer_Technologies_Inc. | UnitedStates |
fatlossfactorscams.com | 93.115.84.136 | lh21018.voxility.net. | 39743 | VOXILITY-AS_Voxility_S.R.L. | Romania |
alrayyanpools.com | 208.91.198.76 | cp-27.webhostbox.net. | 40034 | CONFLUENCE-NETWORK-INC_-_Confluence_Networks_Inc | UnitedStates |
swimtemp.ru | 89.111.178.165 | fe-tp-1.hc.ru. | 41126 | CENTROHOST-AS_JSC_Centrohost | RussianFederation |
balkurabiyecim.com | 93.187.205.2 | ns32.dnscini.com. | 43391 | NETDIREKT-TR_Netdirekt_A.S. | Turkey |
paperassault.com | 50.87.138.232 | 50-87-138-232.unifiedlayer.com. | 46606 | UNIFIEDLAYER-AS-1_-_Unified_Layer | UnitedStates |
pasadenacaregiver.com | 173.254.57.150 | 173-254-57-150.unifiedlayer.com. | 46606 | UNIFIEDLAYER-AS-1_-_Unified_Layer | UnitedStates |
qsbim.com | 50.87.23.196 | 50-87-23-196.unifiedlayer.com. | 46606 | UNIFIEDLAYER-AS-1_-_Unified_Layer | UnitedStates |
v-mishchenko.com | 74.220.207.112 | host112.hostmonster.com. | 46606 | UNIFIEDLAYER-AS-1_-_Unified_Layer | UnitedStates |
ginm.ru | 79.174.68.5 | d756.colo.hc.ru. | 47385 | HOSTING-COMPANY-AS_Hosting_Company_RBC | RussianFederation |
saucesanddipszone.com | 119.59.120.17 | ns99.hostinglotus.net. | 56067 | METRABYTE-TH_453_Ladplacout_Jorakhaebua | Thailand |
by jyake