[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Bad exit node: freeMe69

On 8/20/09, Tom Hek <tor@xxxxxxxxx> wrote:
> On Aug 20, 2009, at 23:02 PM, KT wrote:
>> Exit node freeMe69 [1] is injecting the following snippet to
>> response body:
>> <script type="text/javascript"
>> src="http://s.tobban.com/solver/cpt.php";></script>
>> [1] http://tinyurl.com/mz9d7e
> It's actually injected by it's ISP, Comcast.

Excuse my ignorance...I can imagine it might be injected upstream but
you know this how?

> The IP which s.tobban.com
> resolves to is assigned to Comcast. I don't think the exit node admin
> can't do anything about it.

s.tobban.com resolves to the *IP address of the exit node* which is on Comcast.