cNotes 検索 一覧 カテゴリ

Changelog spam - inform.htm

Published: 2012/12/03

Chanegelog系のスパムです。これも昔からあるネタです。

たとえばサブジェクトのバリエーションはこんな感じです。

 Fwd: Re: changelog UPD. 
 Fwd: Your Changelog UPDATED 
 Fwd: Changelog New 
 Fwd: Re: Changelog as promised (upd.) 
 Re: Fwd: Your Changelog UPDATED 
 Re: Your Changelog 
 Fwd: Changelog 2011 update 
 Fwd: Re: Changelog Oct. 
 Re: Fwd: Your Changelog 
 Re: Fwd: changelog UPD. 
 Fwd: Changelog as promised(updated) 
 Fwd: changelog UPD. 
 Re: Changelog 2011 update 

文面はいたってシンプル。

誘導URLの特徴はinform.htm

 http://www.hxyyq.com/inform.htm 
 http://www.precisionbuilding.com.au/inform.htm 
 http://scherbininvest.ru/inform.htm 
 http://kvjk.lt/inform.htm 

飛ばされる攻撃サイトはここ。

 http://podarunoki.ru:8080/forum/links/column.php

改竄されてる一般サイトですが今回は中国が多いですかね。

domainIP逆引きASAS nameCountry
giuseppepuopolo.it46.16.168.208ip-168-208.sn1.7host.com.3257TINET-BACKBONE_Tinet_SpAItaly
www.precisionbuilding.com.au207.210.100.66explorer.dnsprotect.com.3595GNAXNET-AS_-_Global_Net_Access_LLCUnitedStates
semi-arch.com58.215.64.147NONE4134CHINANET-BACKBONE_No.31Jin-rong_StreetChina
www.tenjan.com61.139.126.97NONE4134CHINANET-BACKBONE_No.31Jin-rong_StreetChina
www.xwyjt.com116.254.188.24NONE4134CHINANET-BACKBONE_No.31Jin-rong_StreetChina
zjwangdu.com58.215.64.147NONE4134CHINANET-BACKBONE_No.31Jin-rong_StreetChina
zousuper.gotoip55.com118.123.20.111NONE4134CHINANET-BACKBONE_No.31Jin-rong_StreetChina
feelingpump.com.cn61.152.91.38NONE4812CHINANET-SH-AP_China_Telecom_(Group)China
snfchina.com218.83.160.69NONE4812CHINANET-SH-AP_China_Telecom_(Group)China
tcdcgs.com218.83.160.69NONE4812CHINANET-SH-AP_China_Telecom_(Group)China
web.986x.com218.83.160.69NONE4812CHINANET-SH-AP_China_Telecom_(Group)China
www.banpo.com.cn114.80.116.60NONE4812CHINANET-SH-AP_China_Telecom_(Group)China
www.gaoyoudan.com61.152.239.145NONE4812CHINANET-SH-AP_China_Telecom_(Group)China
www.toorui.com.cn61.152.239.188NONE4812CHINANET-SH-AP_China_Telecom_(Group)China
yz4hospital.com61.152.239.145NONE4812CHINANET-SH-AP_China_Telecom_(Group)China
zhaobiao.yaming-lighting.com175.102.7.207NONE4812CHINANET-SH-AP_China_Telecom_(Group)China
www.chinargroup.ru195.131.162.2ieph.ru.6690WEBPLUS-AS_Web_Plus_ZAORussianFederation
osservatoriosociale.provincia.pistoia.it159.213.64.10www.provincia.pistoia.it.6882RTRT-PEGASO_Regione_ToscanaItaly
scherbininvest.ru213.189.197.108axx108.distributed.zenon.net.6903ZENON-AS_ZENON_N.S.P.RussianFederation
oginomorihoikuen.com157.7.144.5www.gmoserver.jp.7506INTERQ_GMO_InternetIncJapan
www.sanahealth.com.hk202.181.165.91cix091.tsimtung.com.7540HKCIX-AS-AP_HongKong_Commercial_Internet_ExchangeHongKong
www.real80.nl176.62.198.31NONE8315ARGEWEB-AS_Amsio_B.V.Netherlands
chaikot.ru81.177.140.172NONE8342RTCOMM-AS_OJSC_RTComm.RURussianFederation
tv-orion.ru81.177.6.223srv3-h-st.jino.ru.8342RTCOMM-AS_OJSC_RTComm.RURussianFederation
www.varelaaldia.com.ar201.235.253.66sfa66.servidoraweb.net.10318CABLEVISION_S.A.Argentina
www.esp.mg.gov.br200.198.55.34saturno.esp.mg.gov.br.10670PRODEMGE_Cia._Processamento_Dados_MGBrazil
cms.mpi-systems.pl79.96.88.133v073285.home.net.pl.12824HOMEPL-AS_home.pl_sp._z_o.o.Poland
sbait.eu79.96.47.7v062745.home.net.pl.12824HOMEPL-AS_home.pl_sp._z_o.o.Poland
www.kansai.com.ar23.23.211.79ec2-23-23-211-79.compute-1.amazonaws.com.14618AMAZON-AES_-_Amazon.com_Inc.UnitedStates
xmlintongtrade.com8.8.8.8google-public-dns-a.google.com.15169GOOGLE_-_Google_Inc.UnitedStates
www.bhc.co.rs217.26.70.77NONE15982VERAT-AS-1_Drustvo_za_telekomunikacije_Verat_d.o.o_Bulevar_Vojvode_Misica_37Serbia
361degrees.net.in180.179.207.87NONE17439NETMAGIC-AP_Netmagic_Datacenter_MumbaiIndia
mthai.jobjob.co.th202.60.207.21NONE17887STT-AS-TH-AP_i-STT_Nation_Ltd.Thailand
8158buy.com115.47.111.76NONE17964DXTNET_Beijing_Dian-Xin-Tong_Network_Technologies_Co._Ltd.China
97bike.com203.158.16.75NONE17964DXTNET_Beijing_Dian-Xin-Tong_Network_Technologies_Co._Ltd.China
hytfgasses.com61.4.83.32NONE17964DXTNET_Beijing_Dian-Xin-Tong_Network_Technologies_Co._Ltd.China
vu-buttonbadges.com61.4.83.39NONE17964DXTNET_Beijing_Dian-Xin-Tong_Network_Technologies_Co._Ltd.China
www.dtrcgl.com115.47.69.129NONE17964DXTNET_Beijing_Dian-Xin-Tong_Network_Technologies_Co._Ltd.China
www.hxyyq.com203.158.16.15NONE17964DXTNET_Beijing_Dian-Xin-Tong_Network_Technologies_Co._Ltd.China
www.hzhuali.cn203.158.16.75NONE17964DXTNET_Beijing_Dian-Xin-Tong_Network_Technologies_Co._Ltd.China
www.tuscc.cn61.4.83.32NONE17964DXTNET_Beijing_Dian-Xin-Tong_Network_Technologies_Co._Ltd.China
xibeiwa.com115.47.67.202NONE17964DXTNET_Beijing_Dian-Xin-Tong_Network_Technologies_Co._Ltd.China
www.hotechedge.com81.21.75.64NONE20738AS20738_Webfusion_Internet_SolutionsUnitedKingdom
forecon.hk216.40.223.68ev1s-216-40-223-68.theplanet.com.21844THEPLANET-AS_-_ThePlanet.com_Internet_Services_Inc.UnitedStates
www.corisdelecuador.com64.46.67.186NONE23216MEGADATOS_S.A.UnitedStates
www.frenchresidence.com.au202.60.94.216shine.shinemultimedia.com.au.24238DEDICATED-SERVERS-BNE-AS-AP_Dedicated_Servers_-_BrisbaneAustralia
benztheskull.altervista.org188.40.83.138ns79.altervista.org.24940HETZNER-AS_Hetzner_Online_AG_RZGermany
powerprinter.com.ar200.58.114.77murcia.dattaweb.com.27823Dattatec.comArgentina
www.roztoczetomaszowskie.pl82.96.94.2baldur.vel.pl.29686PROBENETWORKS-AS_Probe_NetworksGermany
www.lwwbx.net173.254.227.237NONE29761OC3-NETWORKS-AS-NUMBER_-_OC3_Networks_&_Web_Solutions_LLCUnitedStates
qualitycounter.com208.131.133.67208.131.133.67.west-datacenter.net.29854WESTHOST_-_WestHost_Inc.UnitedStates
luvtheskinyouarein.com64.29.151.221hostedc40.carrierzone.com.30447INFB2-AS_-_InternetNamesForBusiness.comUnitedStates
www.camelieantiche.com62.149.140.13webx3.aruba.it.31034ARUBA-ASN_Aruba_S.p.A.Italy
www.perledabruzzo.it62.149.140.191webx181.aruba.it.31034ARUBA-ASN_Aruba_S.p.A.Italy
www.quattrodonneincanto.it62.149.140.228webx218.aruba.it.31034ARUBA-ASN_Aruba_S.p.A.Italy
genetics.kemsu.ru82.179.12.253web1.kemsu.ru.34707KEMSU-AS_State_Educational_Institution_of_higher_professional_Education__Kemerovo_State_University_RussianFederation
www.pscmconnect.org198.58.82.140stats.antelope.arvixe.com.36351SOFTLAYER_-_SoftLayer_Technologies_Inc.UnitedStates
ihealth.org.zm196.12.12.88ns4.iconnect.zm.36959afczasZambia
shopfanxian.com116.255.205.70NONE37943CNNIC-GIANT_ZhengZhou_GIANT_Computer_Network_Technology_Co._LtdChina
www.abclook.com42.121.0.228NONE37963CNNIC-ALIBABA-CN-NET-AP_Alibaba_(China)_Technology_Co._Ltd.China
boutique.bt-studio.fr81.88.48.95NONE39729REGISTER-AS_Register.IT_S.p.A.Italy
localand.cionir.fr81.88.48.95NONE39729REGISTER-AS_Register.IT_S.p.A.Italy
breadnbutter.cn112.126.218.124ip112.hichina.com.45096CNNIC-ALIBABA-BJ-NET-AP_Alibaba_(Beijing)_Technology_Co._Ltd.China
alphabetalent.vn112.213.89.98ns8998.dotvndns.vn.45544PAVIETNAM-AS-VN_PAVIETNAM_Co.LtdVietnam
www.nghiphu.vn112.213.89.47ns8947.dotvndns.vn.45544PAVIETNAM-AS-VN_PAVIETNAM_Co.LtdVietnam
bracodimitrijevic.com173.254.28.145just145.justhost.com.46606BLUEHOST-AS-2_-_Unified_LayerUnitedStates
mainframewizard.com66.147.244.107box807.bluehost.com.46606BLUEHOST-AS-2_-_Unified_LayerUnitedStates
kvjk.lt79.98.24.19smauglys.serveriai.lt.47205HOSTEX_UAB_HOSTEXLithuania

[カテゴリ:spam観察日記]

by jyake