[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] Sophos Anti-Virus alert: W32/Blaster-E

To: "'B$H'" <bugtracklist@freemail.hu>, full-disclosure@lists.netsys.com
Subject: RE: [Full-Disclosure] Sophos Anti-Virus alert: W32/Blaster-E
From: "LaRose, Dallas" <Dallas_LaRose@s2systems.com>
Date: Thu, 28 Aug 2003 14:58:19 -0500

<clip sophos alert>
The target for the Distributed Denial-of-Service attack has been changed to
kimble.org
</clip>

Does anyone have the original IP of kimble.org?  It's been changed in DNS to
localhost.

I'm seeing a DDOS attack with dest 63.208.192.192 tcp/80



-----Original Message-----
From: B$H [mailto:bugtracklist@freemail.hu]

http://www.sophos.com/virusinfo/analyses/w32blastere.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [fd] RE: [Full-Disclosure] Sophos Anti-Virus alert: W32/Blaster-E
  - From: "Mike V" <mike@blakogre.com>

Prev by Date: RE: [Full-Disclosure] AV "feature" does more DDoS than Sobig
Next by Date: Re: [fd] RE: [Full-Disclosure] Sophos Anti-Virus alert: W32/Blaster-E
Prev by thread: Re: [Full-Disclosure] Need contact in the BTOPENWORLD.COM security department
Next by thread: Re: [fd] RE: [Full-Disclosure] Sophos Anti-Virus alert: W32/Blaster-E
Index(es):
- Date
- Thread