Blog for hpHosts, and whatever else I feel like writing about ....

Wednesday, 3 August 2011

ALERT: and botnets

Just a warning folks, there's a replacement for the now suspended botnet, and it's Resolving to residential IPs and serving exploits and a trojan through URLs such as;

IPs it is currently resolving to;    3320 DTAG Deutsche Telekom AG    209 ASN-QWEST - Qwest Communications Company, LLC    Failed resolution    12430 VODAFONE_ES VODAFONE ESPANA S.A    12338 EUSKALTEL Euskaltel S.A.    6739 ONO-AS Cableuropa - ONO    209 ASN-QWEST - Qwest Communications Company, LLC    6739 ONO-AS Cableuropa - ONO    16202 PRIMACOM-AS Primacom AG

VT says 20/43 vendors currently detect the trojan;

Special thank you to NotBuyingIt for the heads up

No comments: