BHEK2関連ですがs002って
Published: 2012/12/06
誘導URLがこのよう感じ。
http://titusnetworking.com/im.php?s002 http://www.cregybad.org/track.php?s002 http://www.rousnay.com/start.php?s002
xxx.phpに関しては他のバリエーションもあるようです。s002は固定。
過去の記録をみるとこのタイプのURLは2012/10/30にごくわずかに観測していた記録がありました。そして12/5から大量に観測してます。
BlackHoleExplotKit2.0(BHEK2)関連ですね。
今回はUSが多いですかね。
name | IP | 逆引き | AS | AS name | Country |
---|---|---|---|---|---|
clintop.com | 193.193.194.194 | sleipnir.carrier.kiev.ua. | 3254 | LNUA_LN.UA_Ltd. | Ukraine |
www.commserv.com.sg | 116.12.233.194 | dmsvr1sg.commserv.com. | 3758 | ERX-SINGNET_SingNet | Singapore |
sh-zhengting.com | 222.73.178.224 | mail.shanghai-channel.cn. | 4812 | CHINANET-SH-AP_China_Telecom_(Group) | China |
innfire.ru | 195.131.162.2 | ieph.ru. | 6690 | WEBPLUS-AS_Web_Plus_ZAO | RussianFederation |
npftin.spb.ru | 194.8.181.65 | vh2.sp.ru. | 6690 | WEBPLUS-AS_Web_Plus_ZAO | RussianFederation |
nspedagogov.spb.ru | 194.8.181.65 | vh2.sp.ru. | 6690 | WEBPLUS-AS_Web_Plus_ZAO | RussianFederation |
tattoo.mieland.net | 85.214.135.112 | linuxcounter.net. | 6724 | STRATO_STRATO_AG | Germany |
alexfernandez.es | 62.101.175.39 | 62.101.175.39.dyn.user.ono.com. | 6739 | ONO-AS_Cableuropa_-_ONO | Spain |
www.kotode.hu | 195.70.47.138 | s35.mediacenter.hu. | 8358 | INTERWARE-AS_GTS_Hungary_Tavkozlesi_Ktf. | Hungary |
magnacharta1.org | 50.21.182.119 | perfora.net. | 8560 | ONEANDONE-AS_1&1_Internet_AG | UnitedStates |
www.albboas.de | 62.75.193.165 | static-ip-62-75-193-165.inaddr.ip-pool.com. | 8972 | PLUSSERVER-AS_intergenia_AG | Germany |
www.bpmchildcare.com | 202.83.74.233 | 74-233.qivo.net.au. | 9723 | ISEEK-AS-AP_ISEEK_Ltd | Australia |
www.vietnamluxury.vn | 69.64.71.6 | 69-64-71-6.dedicated.abac.net. | 10316 | CODERO-AS_-_Codero | UnitedStates |
singleposts.com | 209.217.254.17 | vps.chorro1.com. | 11042 | LANDIS-HOLDINGS-INC_-_Landis_Holdings_Inc | UnitedStates |
greatlakesplastic.com | 24.39.183.2 | rrcs-24-39-183-2.nys.biz.rr.com. | 11351 | RR-NYSREGION-ASN-01_-_Road_Runner_HoldCo_LLC | UnitedStates |
ellegisrl.biz | 62.48.32.160 | linuxcluster.playnet.it. | 13284 | BRT-AS_Brain_Technology_S.p.A. | Italy |
cinemadenblog.com | 23.21.115.69 | ec2-23-21-115-69.compute-1.amazonaws.com. | 14618 | AMAZON-AES_-_Amazon.com_Inc. | UnitedStates |
dimanda.de | 81.201.154.4 | ip-81-201-154-4.static.reverse.dsi.net. | 16205 | DSINET-ASN_DSI_GmbH_Daten_Service_Informationssysteme | Germany |
chez-stef.fr | 213.186.33.2 | cdn.straweb-consulting.com.customer.cdn.ovh.net. | 16276 | OVH_OVH_Systems | France |
cregybad.org | 46.105.8.20 | vps13461.ovh.net. | 16276 | OVH_OVH_Systems | France |
justinbiebercrew.com | 178.33.228.231 | ns230652.ovh.net. | 16276 | OVH_OVH_Systems | France |
martynas.me | 188.165.31.4 | cluster003.ovh.net. | 16276 | OVH_OVH_Systems | France |
pracowniaprofesja.pl | 87.98.236.87 | 87-98-236-87.ovh.net. | 16276 | OVH_OVH_Systems | Poland |
www.cregybad.org | 46.105.8.20 | vps13461.ovh.net. | 16276 | OVH_OVH_Systems | France |
www.imteeaz.com | 178.33.232.2 | fr3.fodytechnologies.com. | 16276 | OVH_OVH_Systems | France |
arideonline.com | 205.134.239.195 | edge25.inmotionhosting.com. | 17139 | CORPCOLO_-_Corporate_Colocation_Inc. | UnitedStates |
freeseosemtraining.com | 205.134.253.133 | vps3913.inmotionhosting.com. | 17139 | CORPCOLO_-_Corporate_Colocation_Inc. | UnitedStates |
mobile-pedia.com | 205.134.253.133 | vps3913.inmotionhosting.com. | 17139 | CORPCOLO_-_Corporate_Colocation_Inc. | UnitedStates |
vinoblogs.com | 173.247.254.213 | ld113.inmotionhosting.com. | 17139 | CORPCOLO_-_Corporate_Colocation_Inc. | UnitedStates |
koleksiartikel.com | 210.48.154.90 | euro.centralmalaysia.com. | 17971 | TMVADS-AP_TM-VADS_DC_Hosting | Malaysia |
ozon-ru.info | 81.222.215.135 | mailwebkrl.beget.ru. | 20597 | ELTEL-AS_ELTEL.NET_Autonomous_System | RussianFederation |
www.theironingbasket.com | 81.21.75.40 | server55.donhost.co.uk. | 20738 | AS20738_Webfusion_Internet_Solutions | UnitedKingdom |
titusnetworking.com | 173.255.201.227 | li211-227.members.linode.com. | 21844 | THEPLANET-AS_-_ThePlanet.com_Internet_Services_Inc. | UnitedStates |
www.rousnay.com | 174.132.168.222 | de.a8.84ae.static.theplanet.com. | 21844 | THEPLANET-AS_-_ThePlanet.com_Internet_Services_Inc. | UnitedStates |
camcoat.com | 84.40.2.180 | lsh508.securepod.com. | 24679 | SSERV-AS_Hostway_Deutschland_GmbH | Europe |
ural.ellips.ru | 212.193.228.205 | ellips.nichost.ru. | 25535 | ASN-RUCENTER-HOSTING_Autonomous_Non-commercial_Organization__Regional_Network_Information_Center_ | RussianFederation |
family.joeinfo.org | 173.236.174.104 | apache2-pat.hartke.dreamhost.com. | 26347 | DREAMHOST-AS_-_New_Dream_Network_LLC | UnitedStates |
joeinfo.org | 173.236.174.104 | apache2-pat.hartke.dreamhost.com. | 26347 | DREAMHOST-AS_-_New_Dream_Network_LLC | UnitedStates |
revelstokealliance.com | 67.205.50.69 | ps14978.dreamhost.com. | 26347 | DREAMHOST-AS_-_New_Dream_Network_LLC | UnitedStates |
ringtones.joeinfo.org | 173.236.174.104 | apache2-pat.hartke.dreamhost.com. | 26347 | DREAMHOST-AS_-_New_Dream_Network_LLC | UnitedStates |
tunneltunnel.com | 69.163.149.213 | apache2-yak.cavs.dreamhost.com. | 26347 | DREAMHOST-AS_-_New_Dream_Network_LLC | UnitedStates |
webcal.joeinfo.org | 173.236.174.104 | apache2-pat.hartke.dreamhost.com. | 26347 | DREAMHOST-AS_-_New_Dream_Network_LLC | UnitedStates |
blacklatinos.org | 50.63.35.1 | p3nlhg298c1298.shr.prod.phx3.secureserver.net. | 26496 | AS-26496-GO-DADDY-COM-LLC_-_GoDaddy.com_LLC | UnitedStates |
carnerbarzakay.com | 72.167.131.40 | p3slh159.shr.phx3.secureserver.net. | 26496 | AS-26496-GO-DADDY-COM-LLC_-_GoDaddy.com_LLC | UnitedStates |
cleanandgreenclub.com | 50.63.215.1 | p3nlhg390c1390.shr.prod.phx3.secureserver.net. | 26496 | AS-26496-GO-DADDY-COM-LLC_-_GoDaddy.com_LLC | UnitedStates |
linuxsysadmin.org | 72.167.232.117 | p3nlh041.shr.prod.phx3.secureserver.net. | 26496 | AS-26496-GO-DADDY-COM-LLC_-_GoDaddy.com_LLC | UnitedStates |
ucedfoundation.org | 184.168.56.1 | p3nlhg250c1250.shr.prod.phx3.secureserver.net. | 26496 | AS-26496-GO-DADDY-COM-LLC_-_GoDaddy.com_LLC | UnitedStates |
www.candodivas.com | 184.168.206.1 | p3nlhg130c1130.shr.prod.phx3.secureserver.net. | 26496 | AS-26496-GO-DADDY-COM-LLC_-_GoDaddy.com_LLC | UnitedStates |
www.meepoly.com | 50.63.41.132 | ip-50-63-41-132.ip.secureserver.net. | 26496 | AS-26496-GO-DADDY-COM-LLC_-_GoDaddy.com_LLC | UnitedStates |
www.chateautelavi.com | 212.58.108.178 | host-212-58-108-178.customer.co.ge. | 28751 | CAUCASUS-NET-AS_Caucasus_Online_Ltd. | Georgia |
www.raunistula.fi | 217.149.52.110 | web110.webhotelli.fi. | 29422 | NBLNETWORKS-AS_Nebula_Oy_Autonomous_System | Finland |
brontespankings.com | 92.61.154.187 | 92-61-154-187.static.servage.net. | 29671 | SERVAGE_Servage_GmbH | Europe |
qualitycounter.com | 208.131.133.67 | 208.131.133.67.west-datacenter.net. | 29854 | WESTHOST_-_WestHost_Inc. | UnitedStates |
twincitiesplaygrounds.com | 65.254.248.220 | 65-254-248-220.yourhostingaccount.com. | 29873 | BIZLAND-SD_-_The_Endurance_International_Group_Inc. | UnitedStates |
www.andrewkrauseband.com | 66.96.160.136 | 136.160.96.66.static.eigbox.net. | 29873 | BIZLAND-SD_-_The_Endurance_International_Group_Inc. | UnitedStates |
www.intentionpieces.com | 66.96.147.112 | 112.147.96.66.static.eigbox.net. | 29873 | BIZLAND-SD_-_The_Endurance_International_Group_Inc. | UnitedStates |
www.ultimatespeedacademy.org | 66.96.132.14 | 14.132.96.66.static.eigbox.net. | 29873 | BIZLAND-SD_-_The_Endurance_International_Group_Inc. | UnitedStates |
loom.site.aplus.net | 64.29.151.221 | hostedc40.carrierzone.com. | 30447 | INFB2-AS_-_InternetNamesForBusiness.com | UnitedStates |
www.supershowbolivia.com | 67.23.241.179 | phoenix.imdservices.net. | 33182 | DIMENOC_-_HostDime.com_Inc. | Bolivia |
lifelineeducators.com | 70.90.116.145 | 70-90-116-145-BusName-summit.co.hfc.comcastbusiness.net. | 33652 | CMCS_-_Comcast_Cable_Communications_Inc. | UnitedStates |
ethioforum.net | 184.172.211.150 | win.winks.co.il. | 36351 | SOFTLAYER_-_SoftLayer_Technologies_Inc. | UnitedStates |
kingdomlightchurch.co.za | 50.22.210.114 | hera.jcwhosting.biz. | 36351 | SOFTLAYER_-_SoftLayer_Technologies_Inc. | UnitedStates |
wongapromocode.biz | 108.167.136.120 | ns1692.websitewelcome.com. | 36351 | SOFTLAYER_-_SoftLayer_Technologies_Inc. | UnitedStates |
www.wongapromocode.biz | 108.167.136.120 | ns1692.websitewelcome.com. | 36351 | SOFTLAYER_-_SoftLayer_Technologies_Inc. | UnitedStates |
cezas.ismedia.pl | 46.21.220.244 | ip-46-21-220-244.nette.pl. | 39288 | CZUBYPL-NET_Nette_sp._z_o.o._Autonomous_System | Poland |
wusley.spb.ru | 213.183.63.3 | server23.hosting.reg.ru. | 39792 | ANDERS-AS_Anders_Telecom_Ltd. | RussianFederation |
www.lipro2.eu | 217.112.36.21 | uvds19.valuehost.ru. | 40966 | VALUEHOST-AS_Valuehost | UnitedKingdom |
effectit.com | 217.70.33.155 | www1-php52.stad.levonline.com. | 41175 | INTERNETBORDER_Internet_Border_Technolgies_AB | Sweden |
www.europaclub.sk | 92.240.253.3 | web3s8.dnsserver.eu. | 42005 | LIGHTSTORM-COMMUNICATIONS-SRO-SK-AS_LightStorm_Communications_s.r.o. | Slovakia |
www.ampajoanmirobcn.cat | 82.98.131.97 | d201.dinaserver.com. | 42612 | DINAHOSTING-AS_ASN_de_Dinahosting_SL | Spain |
www.fikraburada.com | 94.199.206.49 | srvc49.turhost.com. | 42807 | AEROTEK-AS_Aerotek_Bilisim_Taahhut_Sanayi_ve_Ticaret_Limited_Sirketi | Turkey |
french-polishers-london.co.uk | 77.74.192.20 | no.rdns-yet.ukservers.com. | 42831 | UKSERVERS-AS_UK_Dedicated_Servers_Limited | UnitedKingdom |
cemcagkan.com | 77.245.149.14 | linmail.mail.trdns.com. | 43391 | NETDIREKT-TR_Netdirekt_A.S. | Turkey |
erdalbalaban.com | 77.245.149.55 | host55.b6.nw.com.tr. | 43391 | NETDIREKT-TR_Netdirekt_A.S. | Turkey |
haluwood.com | 77.245.149.33 | srv75626s1.trdns.com. | 43391 | NETDIREKT-TR_Netdirekt_A.S. | Turkey |
mutfakdolaplarifiyati.com | 77.245.154.98 | host1.trdns.com. | 43391 | NETDIREKT-TR_Netdirekt_A.S. | Turkey |
turkkoleksiyon.com | 77.245.149.55 | host55.b6.nw.com.tr. | 43391 | NETDIREKT-TR_Netdirekt_A.S. | Turkey |
vimag.hu | 87.229.7.250 | www0.flionet.hu. | 43711 | SZERVERNET-HU-AS_Szervernet_Ltd. | Hungary |
creatorsshop.com | 69.89.30.30 | 69-89-30-30.unifiedlayer.com. | 46606 | BLUEHOST-AS-2_-_Unified_Layer | UnitedStates |
goldinwords.com | 50.87.114.189 | 50-87-114-189.unifiedlayer.com. | 46606 | BLUEHOST-AS-2_-_Unified_Layer | UnitedStates |
haylialyce.com | 66.147.244.113 | box813.bluehost.com. | 46606 | BLUEHOST-AS-2_-_Unified_Layer | UnitedStates |
jessicabennettdesign.com | 66.147.244.132 | box832.bluehost.com. | 46606 | BLUEHOST-AS-2_-_Unified_Layer | UnitedStates |
jumpgreen.org | 69.89.31.110 | box310.bluehost.com. | 46606 | BLUEHOST-AS-2_-_Unified_Layer | UnitedStates |
mentecuantica.com | 67.20.67.85 | 67-20-67-85.unifiedlayer.com. | 46606 | BLUEHOST-AS-2_-_Unified_Layer | UnitedStates |
www.aspbackdoor.com | 74.220.215.60 | host260.hostmonster.com. | 46606 | BLUEHOST-AS-2_-_Unified_Layer | UnitedStates |
www.haylialyce.com | 66.147.244.113 | box813.bluehost.com. | 46606 | BLUEHOST-AS-2_-_Unified_Layer | UnitedStates |
www.mystickitchen.com | 173.254.28.41 | just41.justhost.com. | 46606 | BLUEHOST-AS-2_-_Unified_Layer | UnitedStates |
www.raftcalgary.com | 69.89.31.193 | box393.bluehost.com. | 46606 | BLUEHOST-AS-2_-_Unified_Layer | UnitedStates |
vipglamur.ru | 194.63.140.55 | web0115.nthost.ru. | 50113 | SUPERSERVERS_SuperServers_Ltd | RussianFederation |
wordpresslayout.nl | 91.220.37.160 | ns1.knothev1.nl. | 50673 | SERVERIUS-AS_Serverius_Holding_B.V. | Netherlands |
www.beslenme.tv | 46.235.13.65 | 46.235.13.65.static.slmhosting.net. | 56582 | NETFACTOR-ASN_NETFACTOR_TELEKOMINIKASYON_VE_TEKNOLOJI_HIZMETLERI_SANAYI_VE_JSC | Turkey |
retrocinemaclub.com | 91.146.107.31 | nepal.footholds.net. | 198047 | UKWEB-EQX_UK_Webhosting_Ltd | UnitedKingdom |
by jyake