Germany | DataProtectionCenter.com

Something evil on 85.17.222.80, lpicture.info and ghjvodka.info

25

Apr

2012

Some sites appear to have been hit by a sophisticated multi-part injection attack that triggers only once per IP (so difficult to track down). There are two injected elements, one is a .in site hosted on 85.17.222.80 [Leaseweb, Netherlands] which could be one of the following: sds.vaselisa.in dds.kiriloid.in drf.yerevano.in sddr.margarit.in cd.fancyclu.in There’s a pretty inconclusive […]

Category Security Written by Dynamoo's Blog 0 Comments

NACHA Spam / 85.25.189.174

20

Apr

2012

Another NACHA spam, leading to malware on 85.25.189.174: From: CarleySpan@hotmail.com Date: 19 April 2012 21:25 Subject: Your ACH transaction N73848938 The ACH credit transfer, initiated from your checking acc., was canceled by the other financial institution. Canceled transaction: Transaction ID: A7635857812UA ACH Report: View LINDSEY Zimmerman NACHA – The Electronic Payment Association The malicious payload […]

Category Security Written by Dynamoo's Blog 0 Comments

Malware sites to block 2/3/12

02

Mar

2012

The Spam Analysis blog has an excellent post analysing what is happening behind the scenes in the malware from some recent spam runs. I’ve taken their hard work and have broken out the domains and IP addresses that you may want to block. Note that some of these sites may be legitimate hacked sites. Also […]

Category Security Written by Dynamoo's Blog 0 Comments

The Latest in IT Security

Posts Tagged ‘Germany’

Something evil on 85.17.222.80, lpicture.info and ghjvodka.info

NACHA Spam / 85.25.189.174

Malware sites to block 2/3/12

Categories

Featured

Archives

Latest Comments

About Us

Contact Us