[nsp-sec] ACK AS 852 - RE: List of compromised devices from MS08-067

Mon Oct 27 11:03:44 EDT 2008

ACK for AS852 

> -----Original Message-----
> From: nsp-security-bounces at puck.nether.net 
> [mailto:nsp-security-bounces at puck.nether.net] On Behalf Of Rob Thomas
> Sent: Friday, October 24, 2008 5:17 PM
> To: NSP-SEC
> Subject: [nsp-sec] List of compromised devices from MS08-067
> 
> ----------- nsp-security Confidential --------
> 
> Hi, team.
> 
> Our thanks to Jason Kendall who obtained and shared a list of devices
> compromised by the n2.exe/MS08-067 malware.  The list of effected ASNs
> is beneath my .signature block.
> 
> You'll find the list of compromised devices at the URL below; 
> please use
> your nsp-sec login and password to access it.  We believe the 
> timestamps
> in the last column to be correct, but the timestamps are based on the
> online criminal's timestamp settings.
> 
>    <https://www.cymru.com/nsp-sec/Owned/n2-hacked01.txt>
> 
> Forgot your nsp-sec login or password?  Scroll to the bottom 
> of this URL
> first:
> 
>    <https://puck.nether.net/mailman/listinfo/nsp-security>
> 
> NOTE WELL:  This list of devices is bound by the nsp-sec restrictions.
> It is not to be redistributed and should be used to protect 
> your direct
> customers and constituents only.
> 
> Have a quiet weekend!
> 
> Thanks,
> Rob.
> -- 
> Rob Thomas
> Team Cymru
> http://www.team-cymru.org/
> cmn_err(CEO_PANIC, "Out of coffee!");
> 
> 18
> 174
> 286
> 553
> 559
> 684
> 701
> 702
> 766
> 852
> 1221
> 1239
> 1267
> 1290
> 1659
> 2042
> 2119
> 2200
> 2519
> 2527
> 2828
> 2856
> 3081
> 3215
> 3216
> 3265
> 3269
> 3292
> 3301
> 3320
> 3352
> 3456
> 3462
> 3549
> 3598
> 3758
> 3917
> 4134
> 4323
> 4515
> 4657
> 4713
> 4732
> 4739
> 4760
> 4766
> 4768
> 4771
> 4775
> 4788
> 4802
> 4808
> 4837
> 5089
> 5384
> 5417
> 5483
> 5532
> 5586
> 5615
> 6079
> 6128
> 6167
> 6298
> 6327
> 6389
> 6478
> 6582
> 6597
> 6621
> 6663
> 6801
> 6805
> 6849
> 6939
> 7015
> 7132
> 7377
> 7385
> 7629
> 7643
> 7693
> 7757
> 8359
> 8404
> 8470
> 8551
> 8632
> 8708
> 8771
> 8997
> 9050
> 9299
> 9304
> 9318
> 9334
> 9370
> 9444
> 9506
> 9534
> 9543
> 9595
> 9658
> 9812
> 9829
> 9925
> 9929
> 9930
> 9934
> 9957
> 10024
> 10091
> 10094
> 10223
> 10796
> 10994
> 11426
> 11427
> 11608
> 11643
> 11955
> 12271
> 12302
> 12310
> 12322
> 12406
> 12511
> 12715
> 12732
> 13127
> 13184
> 13448
> 13882
> 14051
> 15379
> 15480
> 15831
> 16243
> 16273
> 16338
> 16417
> 16880
> 17444
> 17477
> 17802
> 17876
> 17897
> 17974
> 18101
> 18245
> 18310
> 18403
> 18566
> 19182
> 19261
> 19262
> 20115
> 20214
> 20773
> 21286
> 21889
> 22773
> 23292
> 23329
> 23498
> 23900
> 24028
> 24090
> 24218
> 24326
> 24436
> 24441
> 24560
> 26228
> 29131
> 29396
> 31731
> 32479
> 33037
> 33651
> 33657
> 33668
> 34081
> 35141
> 35228
> 36782
> 37925
> 38199
> 38264
> 38322
> 39197
> 39648
> 42143
> 44147
> 44253
> 45455
> 
> 
> 
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
> 
> Please do not Forward, CC, or BCC this E-mail outside of the 
> nsp-security
> community. Confidentiality is essential for effective 
> Internet security counter-measures.
> _______________________________________________
>