Author Topic: strange finding in threatexpert firefox china....  (Read 5713 times)

0 Members and 1 Guest are viewing this topic.

September 15, 2011, 11:27:52 am
Read 5713 times

cleanmx

  • Special Members
  • Hero Member

  • Offline
  • *

  • 3405
    • Spam-Filter Anti-Spam Virenschutz - CLEAN MX Managed Anti-Spam Service ist die Lösung für Ihr Spam-Problem

September 15, 2011, 08:38:07 pm
Reply #1

MysteryFCM

  • Administrator
  • Hero Member

  • Offline
  • *****

  • 1693
  • Personal Text
    Phishing Phanatic
    • I.T. Mate
Nope, WhoIs records indicate they're not associated with Mozilla.
Regards

Steven Burn
I.T. Mate / hpHosts
it-mate.co.uk / hosts-file.net

September 15, 2011, 11:05:33 pm
Reply #2

cleanmx

  • Special Members
  • Hero Member

  • Offline
  • *

  • 3405
    • Spam-Filter Anti-Spam Virenschutz - CLEAN MX Managed Anti-Spam Service ist die Lösung für Ihr Spam-Problem
Nope, WhoIs records indicate they're not associated with Mozilla.

so who will please examine this list ?

-- gerhard

Code: [Select]
http://m.weather.com.cn/weather_img/1.gif
http://m.weather.com.cn/weather_img/0.gif
http://m.weather.com.cn/data/101010100.html
http://m.weather.com.cn/m/firefox_home_2011/images/arrow.gif
http://m.weather.com.cn/weather_img/7.gif
http://m.weather.com.cn/m/firefox_home_2011/
http://api.app.mozilla.com.cn/static/style/inner_base.css?v=6a9bc
http://api.app.mozilla.com.cn/static/style/inner_appcenter.css?v=64f31
http://api.app.mozilla.com.cn/static/js/jquery-1.4.2.min.js?v=24543
http://api.app.mozilla.com.cn/static/js/common/util.js?v=3a210
http://api.app.mozilla.com.cn/static/js/appcenter/main.js?v=aae89
http://api.app.mozilla.com.cn/static/images/appcenter/icons/zol/logo.png
http://api.app.mozilla.com.cn/static/images/appcenter/icons/hexun/logo.png
http://api.app.mozilla.com.cn/static/js/plugin/jquery.raty.min.js?v=3057f
http://api.app.mozilla.com.cn/static/images/appcenter/icons/kuxun/train.png
http://api.app.mozilla.com.cn/static/images/appcenter/icons/youdao/logo.jpg
http://api.app.mozilla.com.cn/static/images/appcenter/icons/youshang/logo.gif
http://api.app.mozilla.com.cn/static/images/appcenter/icons/meitu/meitu.png
http://api.app.mozilla.com.cn/static/images/appcenter/icons/saturdaysoft/calendar.png
http://api.app.mozilla.com.cn/static/upload/2011/08/24/1314165965995249.png
http://api.app.mozilla.com.cn/static/images/appcenter/icons/saturdaysoft/calculator.png
http://api.app.mozilla.com.cn/static/images/appcenter/icons/saturdaysoft/netspeed.png
http://api.app.mozilla.com.cn/static/upload/2011/09/05/13151936149400786.jpg
http://api.app.mozilla.com.cn/static/upload/2011/09/05/13151942363302282.jpg
http://api.app.mozilla.com.cn/static/images/appcenter/icons/ff/pic.png
http://api.app.mozilla.com.cn/inner/
http://download.firefox.com.cn/http://download.firefox.com.cn/releases/webins2.0/firefox/official/zh-CN/Firefox-latest.exe
http://download.firefox.com.cn/http://download.firefox.com.cn/releases/webins2.0/config/official/zh-CN/extensions.xml
http://download.firefox.com.cn/http://download.firefox.com.cn/releases/webins2.0/res/official/zh-CN/res.7z
http://www.youyouwin.com/media/18/44/9327/img/simg_93277888.jpg
http://hezuo.xcar.com.cn/firefox/?v2
http://html.xcar.com.cn/newcar/pub_js/car_arr_newcar_2009_ps.js
http://html.xcar.com.cn/newcar/pub_js/car_search_2009_out.js
http://a.alimama.cn/inf.js
http://a.alimama.cn/inf/main.js?_t=20110801.js
http://a.alimama.cn/js/sc.js
http://www.taobao.com/go/act/sale/300x250zhongcaiwang.php?pid=mm_28347190_2425761_9313994&refpos=,a,null
http://www.firefox.com.cn/static/favicon.ico
http://www.firefox.com.cn/static/js/data/install.js?s=def&l=zh-CN&addons=ce86009;ce86004;ce86005;ce86002;
http://addons.g-fox.cn/appcenter.gif?t=0&a=001&d=tab-install&r=0.6248636070249182
http://addons.g-fox.cn/appcenter.gif?t=0&a=002&d=0&r=0.9885700937563496
http://app.mozilla.com.cn/inner/
http://s1.ihaveu.com/image/data/common/files/000/000/050/path/c3c43b7254be1173907d3ec3ffeb38c6.jpg
http://img.soufun.com/news/2011_09/14/firefox/1315967497103_000.jpg
http://img.soufun.com/news/2011_09/14/firefox/1315967643856_000.jpg
http://img.soufun.com/news/2011_09/13/firefox/1315881213701_000.jpg
http://firefox.com.cn/welcome6.0/
http://firefox.com.cn/static/style/base.css?v=53116
http://firefox.com.cn/static/style/welcome-ff6.css?v=1b9d5
http://firefox.com.cn/static/js/jquery-1.4.2.min.js?v=e055c
http://firefox.com.cn/static/js/platform.js?v=29181
http://firefox.com.cn/static/js/yahoo-dom-event.js?v=293d6
http://firefox.com.cn/static/js/animation-min.js?v=a18ba
http://firefox.com.cn/static/js/container-min.js?v=517a6
http://firefox.com.cn/static/js/mozilla-input-placeholder.js?v=92c7d
http://firefox.com.cn/static/images/4/background.png
http://firefox.com.cn/static/images/4/screen-tab-location.png
http://firefox.com.cn/static/images/4/screen-switch-to-tab.png
http://firefox.com.cn/static/images/4/screen-firefox-button.png
http://firefox.com.cn/static/images/4/screen-apps-tab.png
http://firefox.com.cn/static/images/tour/search-button.png
http://firefox.com.cn/static/images/weibo.png
http://firefox.com.cn/static/images/download-logo.png
http://firefox.com.cn/static/images/4/tech-table-borders.png
http://firefox.com.cn/static/images/6/highlight-awesomebar.png
http://firefox.com.cn/static/images/6/plugin-check-updates.png
http://firefox.ellechina.com/var/ellecn/storage/images/fashion/tips/yuexiang-20110908_pic/14449789-4-chi-CN/_1_health_focus_90_120.jpg
http://firefox.ellechina.com/var/ellecn/storage/images/fashion/tips/elleus-oct-20110908/14445175-1-chi-CN/8-ELLE_health_focus_90_120.jpg
http://firefox.ellechina.com/var/ellecn/storage/images/fashion/fashionweek/lajiao-20110913_pic/14531258-5-chi-CN/_1_list_type_b_img_large.jpg
http://firefox.ellechina.com/var/ellecn/storage/images/fashion/fashionweek/marc-jacobs-20110914/14543988-1-chi-CN/Marc-Jacobs_list_type_b_img_large.jpg
http://firefox.ellechina.com/var/ellecn/storage/images/celeb/style/xizhuang-20110914_pic/14566594-1-chi-CN/_1_health_focus_90_120.jpg
http://firefox.ellechina.com/var/ellecn/storage/images/celeb/style/beyonce-20110914/14548268-1-chi-CN/Beyonce_health_focus_90_120.jpg
http://firefox.ellechina.com/var/ellecn/storage/images/celeb/gossip/bubujingxin-20110914/14549352-1-chi-CN/1_health_focus_90_120.jpg
http://firefox.ellechina.com/var/ellecn/storage/images/fashion/tips/shejishi-20110910/14486825-4-chi-CN/ELLE_health_focus_90_120.jpg
http://himg2.huanqiu.com/attachment2010/110914/32488351d1.jpg
http://himg2.huanqiu.com/attachment2010/110914/39db3835a7.jpg
http://himg2.huanqiu.com/attachment2010/110914/0f92ffdb89.jpg
http://himg2.huanqiu.com/attachment2010/110913/fd860c47e3.jpg
http://himg2.huanqiu.com/attachment2010/110914/7f45cbff76.jpg
http://himg2.huanqiu.com/attachment2010/110914/3267b61f88.jpg
http://himg2.huanqiu.com/attachment2010/110914/f465843fbd.jpg
http://himg2.huanqiu.com/attachment2010/110914/55156216fe.jpg
http://himg2.huanqiu.com/attachment2010/110914/ff942a9384.jpg
http://himg2.huanqiu.com/attachment2010/110914/6d506dada4.jpg
http://himg2.huanqiu.com/attachment2010/110914/fe3c12cd02.jpg
http://himg2.huanqiu.com/attachment2010/110914/3a9ef6ced9.jpg
http://himg2.huanqiu.com/attachment2010/110914/797338c1a9.jpg
http://himg2.huanqiu.com/attachment2010/110914/f0eef99d95.jpg
http://himg2.huanqiu.com/attachment2010/110914/473afa3f4d.jpg
http://pic.xcarimg.com/img/07news/201109/Sz0PTnLUje7389.jpg
http://img1.xcarimg.com/PicLib/s/s2437_120.jpg
http://i.firefoxchina.cn/
http://i.firefoxchina.cn/js/json2.js?v1
http://i.firefoxchina.cn/css/style2.min.css?v25
http://i.firefoxchina.cn/js/jquery-1.4.2.min.js?v1
http://i.firefoxchina.cn/js/cehp.min.js?v5
http://i.firefoxchina.cn/js/searchf.min.js?v3
http://i.firefoxchina.cn/js/indexf.min.js?v4
http://i.firefoxchina.cn/trac/trac.js?v1
http://i.firefoxchina.cn/images/close.gif

September 16, 2011, 12:20:06 am
Reply #3

MysteryFCM

  • Administrator
  • Hero Member

  • Offline
  • *****

  • 1693
  • Personal Text
    Phishing Phanatic
    • I.T. Mate
Regards

Steven Burn
I.T. Mate / hpHosts
it-mate.co.uk / hosts-file.net

September 16, 2011, 02:15:25 am
Reply #4

MysteryFCM

  • Administrator
  • Hero Member

  • Offline
  • *****

  • 1693
  • Personal Text
    Phishing Phanatic
    • I.T. Mate
Curiously, it does seem to only install FF with the Chinese language as default, not seeing anything untoward so it's got me puzzled.
Regards

Steven Burn
I.T. Mate / hpHosts
it-mate.co.uk / hosts-file.net