cNotes 検索 一覧 カテゴリ

Payroll Account Holded - fmail.htm

Published: 2013/01/13

INTUITを騙るタイプもよく利用されます。

誘導URLは「fmail.htm」。今回のはドキュメントルートにファイルが仕掛けられてます。

 http://forum.serialkosci.pl/fmail.htm 
 http://place2rest.ru/fmail.htm 
 http://trinityog.org/fmail.htm 

いつものごとく、アクセス元の条件が合えばこういうところへ飛ばされます。

 http://dmeiweilik.ru:8080/forum/links/column.php

条件が合わなければgoogleへ。

IPはいつもの使い回しですが、このドメインは既に存在しません。


domainIP逆引きASAS NameCountry
proforenses.com161.58.212.38digi12.securesites.net.2914NTT-COMMUNICATIONS-2914_-_NTT_America_Inc.UnitedStates
theygotskills.com192.217.124.206host.casasite.net.2914NTT-COMMUNICATIONS-2914_-_NTT_America_Inc.UnitedStates
www.protecciongarantizada.com.co161.58.212.38digi12.securesites.net.2914NTT-COMMUNICATIONS-2914_-_NTT_America_Inc.UnitedStates
spspp.com58.27.56.213tigabelas.pelayanweb.com.4788TMNET-AS-AP_TM_Net_Internet_Service_ProviderMalaysia
rempark.by86.57.246.177by104.activeby.net.6697BELPAK-AS_Republican_Unitary_Telecommunication_Enterprise_BeltelecomBelarus
5plus1.psp5.opole.pl195.187.31.150serwer-24.pl.8308NASK-COMMERCIAL_NAUKOWA_I_AKADEMICKA_SIEC_KOMPUTEROWA_INSTYTUT_BADAWCZYPoland
domondo.ru81.177.6.141NONE8342RTCOMM-AS_OJSC_RTComm.RURussianFederation
visaekb.ru81.177.6.141NONE8342RTCOMM-AS_OJSC_RTComm.RURussianFederation
ciben.eu80.172.241.38web14.esoterica.pt.8426CLARANET-AS_ClaraNET_LTDPortugal
www.serfino.de82.165.39.55serfino.de.8560ONEANDONE-AS_1&1_Internet_AGGermany
me.newerlife.net122.155.7.200ns1-1557200.dragonhispeed.com.9931CAT-AP_The_Communication_Authoity_of_Thailand_CATThailand
www.nimaf.com122.155.165.52ns1.hostyim.com.9931CAT-AP_The_Communication_Authoity_of_Thailand_CATThailand
goldensky.eshost.es209.190.85.28node19.byetcluster.com.10297ENET-2_-_eNET_Inc.UnitedKingdom
mywwig.com67.214.173.114RNS1.XPLEAGUE.COM.12260COLOSTORE_-_Colostore.comUnitedStates
tooster.pl79.96.12.234v054082.home.net.pl.12824HOMEPL-AS_home.pl_sp._z_o.o.Poland
domaineforget.cgiquebec.ca66.46.171.22066-46-171-220.dedicated.allstream.net.15290ALLST-15290_-_Allstream_Corp.Canada
www.wakfunemesis.fr213.186.33.3cluster015.ovh.net.16276OVH_OVH_SystemsFrance
beitefloor.com61.4.83.32NONE17964DXTNET_Beijing_Dian-Xin-Tong_Network_Technologies_Co._Ltd.China
www.xjkzc.com203.158.16.38NONE17964DXTNET_Beijing_Dian-Xin-Tong_Network_Technologies_Co._Ltd.China
yanlunwood.com203.158.16.38NONE17964DXTNET_Beijing_Dian-Xin-Tong_Network_Technologies_Co._Ltd.China
ladies.sg96.30.50.220host.poweredby.asia.19066WIREDTREE_-_Cogswell_Enterprises_Inc.UnitedStates
petersburg.allenandallen.com50.56.89.4250-56-89-42.static.cloud-ips.com.19994RACKSPACE_-_Rackspace_HostingUnitedStates
forum.bytv.by109.254.2.123vrozetke.com.20590DEC-AS_Donbass_Electronic_Communications_Ltd.Ukraine
aroundafricasafari.com174.123.87.162a2.57.7bae.static.theplanet.com.21844THEPLANET-AS_-_ThePlanet.com_Internet_Services_Inc.UnitedStates
blueowneripb.altervista.org176.9.140.132ns159.altervista.org.24940HETZNER-AS_Hetzner_Online_AGGermany
qeh.ir176.9.112.226static.226.112.9.176.clients.your-server.de.24940HETZNER-AS_Hetzner_Online_AGGermany
www.appleforum.gr5.9.205.198accesspointbox.access-point.gr.24940HETZNER-AS_Hetzner_Online_AGGermany
yotabit.ru89.109.237.19NONE25515CTCNET-AS_OJSC_RostelecomRussianFederation
textilim.ru212.193.224.57narprod.nichost.ru.25535ASN-RUCENTER-HOSTING_Autonomous_Non-commercial_Organization__Regional_Network_Information_Center_RussianFederation
ness.3fivedesigns.com69.163.209.148ps18306.dreamhost.com.26347DREAMHOST-AS_-_New_Dream_Network_LLCUnitedStates
www.nashvillefloodcleanup.net69.163.217.85ps18253.dreamhost.com.26347DREAMHOST-AS_-_New_Dream_Network_LLCUnitedStates
dacomp.info189.113.2.194hw4.webservidor.net.28209Brazil
www.mirada-travel.ru217.29.51.172zeus2.travelsoft.ru.29053TELENET-JSC-AS_Telenet_Ltd.RussianFederation
moveme.org74.209.248.5voda22.vodahost22.com.29944LATISYS-ASHBURN_-_Latisys-Ashburn_LLCSingapore
kokete.ru77.221.130.40srv040.infobox.ru.30968INFOBOX-AS_Infobox.ru_Autonomous_SystemRussianFederation
www.prachinburi.mol.go.th115.31.136.62NONE38794BB-BROADBAND-TH-AS-AP_BB-Broadband_Co._Ltd._Transit_ASThailand
pgtandroid.ru37.140.193.27server39.hosting.reg.ru.39134SKYMEDIA_United_Network_LLCRussianFederation
transplantacija.lv94.100.6.171NONE39201IMEPLUSS-AS_IME_PLUSS_Ltd.Latvia
www.badoofakers.nl88.159.208.176176-208.ftth.onsbrabantnet.nl.39309EDUTEL-AS_Edutel_B.V.Netherlands
forum.cs-zazone.ro31.14.179.2mercur.paginieuropene.com.40975CHML-AS_CHML_WEB_SERVICES_SRLRomania
e-zorka.pl195.114.1.121s120.superhost.pl.41079SUPERHOST-PL-AS_SuperHost.pl_sp._z_o.o.Poland
forum.serialkosci.pl192.166.218.51192-166-218-51.arpa.teredo.pl.41508PL-IWACOM-AS_IWACOM_Sp._z_o.o.Poland
place2rest.ru77.222.40.121natal.sweb.ru.44112SWEB-AS_SpaceWeb_JSCRussianFederation
trinityog.org173.254.28.66just66.justhost.com.46606UNIFIEDLAYER-AS-1_-_Unified_LayerUnitedStates
wanabagool.com173.254.28.143just143.justhost.com.46606UNIFIEDLAYER-AS-1_-_Unified_LayerUnitedStates
www.theoutriggerway.com66.147.244.215box715.bluehost.com.46606UNIFIEDLAYER-AS-1_-_Unified_LayerUnitedStates
www.yeoanswers.com74.220.219.79box479.bluehost.com.46606UNIFIEDLAYER-AS-1_-_Unified_LayerUnitedStates
unbalanced.pz9.ru91.223.216.56NONE46636NATCOWEB_-_NatCoWeb_Corp.Ukraine
mymanor.lt79.98.24.13elnias.serveriai.lt.47205HOSTEX_UAB_HOSTEXLithuania
dmtd.ru188.120.39.56vip10.deserv.net.49189RUWEB_Closed_Joint_Stock_Company__RuWeb_RussianFederation
www.mexaimoda.ru188.120.39.56vip10.deserv.net.49189RUWEB_Closed_Joint_Stock_Company__RuWeb_RussianFederation
sintec-oil.ru188.93.212.150cpanel7.logol.ru.49352LOGOL-AS_LTD_Hosting_ServiceRussianFederation
geilmeisj.nl195.211.73.89s101.webhostingserver.nl.51696ANTAGONIST-AS_Antagonist_B.V.Netherlands
thedoggiecottage.com173.0.139.202NONE53628APYLI-AS_-_Apyl_IncUnitedStates
metin2zone.net134.0.10.166NONE197712CDMON_10dence_Hispahard_S.L.Spain

[カテゴリ:spam観察日記]

by jyake