[nsp-sec] 212.43.241.106 in the daily reports
David Freedman
david.freedman at uk.clara.net
Mon Feb 25 06:51:04 EST 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Attn Cymru,
~ Your daily reports flagged 212.43.241.106 as a botnet controller with
the URL http://www.winfleet.fr/fr/gate.php,
I've been told the following by our systems dept:
"The ip 212.43.241.106 is the virtual ip of our mutualized hosting.
The script gate.php sends a mail directly or from a file
whith information of customers' gps location of trucks.
This script seems to be very normal.
"
Can we get this removed from the reports as a false positive?
Thanks,
Dave.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFHwquotFWeqpgEZrIRAu7pAKCFxLdXYaJM5UHBmnTEuvAvDFjFZgCgt6AO
/sc7q/qVG623cXzUYT5TnTg=
=O25T
-----END PGP SIGNATURE-----
More information about the nsp-security
mailing list