[nsp-sec] ACK AS224, Re: spyeye infected drones
Rune Sydskjør
rune.sydskjor at uninett.no
Fri Mar 18 02:46:29 EDT 2011
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
ACK AS 224.
Regards,
Rune Sydskjør, UNINETT CERT
On 03/17/2011 03:18 PM, Dirk Stander wrote:
> ----------- nsp-security Confidential --------
>
>
>
>
> Hi Teams,
>
> please find attached a list of drones, which contacted one of the
> domains mentioned here:
> http://ddanchev.blogspot.com/2011/03/more-spamvertised-dhl-notifications.html
>
> The drones are using a unique User-Agent string, "Opera/10.80 Pesto/2.2.30"
>
> The format of the list is:
> ASN | IP | CC | date first seen
>
> kind regards, Dirk Stander (1&1 Internet AG) :.
>
>
>
>
>
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
>
> Please do not Forward, CC, or BCC this E-mail outside of the nsp-security
> community. Confidentiality is essential for effective Internet security counter-measures.
> _______________________________________________
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iD4DBQFNgv/FRY0ei6C6y0kRAnMkAJiTEaHW93ptyHVToClGLy4n1z1SAJ91SoGJ
nb68Vauxp3PTQjnssblkqQ==
=JO4+
-----END PGP SIGNATURE-----
More information about the nsp-security
mailing list