Thursday, June 04, 2009

Malware - DigExt?

Had a user cross our site today that hit our site with numerous bad URLs obviously looking for some type of hack.

Time/Date: 6/4/2009 9:04:23 PM
The user agent: Mozilla/4.0 (compatible; MSIE 5.0; Windows NT; DigExt)
IP Address: 204.16.231.98

They came from this network:

OrgName: Sparkplug, Inc.
OrgID: SPARK-3
Address: 303 W. Erie
Address: Suite 300
City: Chicago
StateProv: IL
PostalCode: 60610
Country: US

ReferralServer: rwhois://rwhois.sparkplugbb.net:4321/

NetRange: 204.16.228.0 - 204.16.231.255