[nsp-sec] rustock C&C
Vidar Østmo
vidar.ostmo at ventelo.no
Tue Feb 3 14:08:57 EST 2009
ACK 2116
Thanks , I believe this botnet is responsible for quite some spam.
Best Regards
Vidar Østmo - Engineering - Ventelo AS
asn 2116 - vidar.ostmo at ventelo.no - Tel:+47 47 9000 97
On 2/3/09 7:19 PM, "Beasley, Jason" <jason.beasley at xo.com> wrote:
> ----------- nsp-security Confidential --------
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Suresh over at Outblaze has identified what he believes to be an rustock
> C&C existing at 69.10.44.210. From what I can tell, it appears he is
> correct. I've compiled a listing of sources communicating to this
> server. Please check the following list for your ASN:
> http://drakul.nsc.xo.net/asns.txt
> And then the full listing here for the hosts:
> https://asn.cymru.com/nsp-sec/upload/1233681381.whois.txt
> Timestamps are included.
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.7 (MingW32)
>
> iD8DBQFJiIqaTU5wjr6ASAURAltgAJ0Sd7CbIlK5I99x9Wym821XSEb42ACdHtbn
> j+Wdn3H9zNfUpo/rXxV1VnU=
> =RP8n
> -----END PGP SIGNATURE-----
>
>
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
>
> Please do not Forward, CC, or BCC this E-mail outside of the nsp-security
> community. Confidentiality is essential for effective Internet security
> counter-measures.
> _______________________________________________
More information about the nsp-security
mailing list