[MIRT#9107] Exploit on abac.net AS10316

 CastleCops -> MIRT Reports
Author: tetak PostPosted: Mon Mar 24, 2008 5:04 am    Post subject: [MIRT#9107] Exploit on abac.net AS10316
Malware Alert
 
 Full Report: CastleCops Link/Exploit_malware9107.html
 
 Consumed following related reports:

[9108] http://216-55-142-115.dedicated.abac.net/zzuOqvu2/gv91gIPPe43rCQqr.mov
Changed status to confirmed malware.IP Converted: 216.55.142.115

dword = 3627519603
hex1 = 0xd8378e73
hex2 = 0xd8.0x37.0x8e.0x73
oct = 0330.067.0216.0163
gv91gIPPe43rCQqr.mov at this location is malware known as Exploit.Multi.Qtp.f (Kaspersky).movie.qtl at this location is malware known as Exploit.Multi.Qtp.b (Kaspersky).View CIDR AS10316 Report: http://www.cidr-report.org/cgi-bin/as-report?as=10316

"10316 | US | arin | 1997-06-24 | ABACUS-NET-AS - Abacus America Inc."<br />
Extended information for AS10316:
State/Province: ca
Country: us
Responsible Domain: aplus.net
Abuse Email: abuse@aplus.net
Quote:
http://216-55-142-115.dedicated.abac.net/0eO2BI3Z/qkPcKsI1qO7Hpurx.qtl
CastleCops -> MIRT Reports

All times are GMT

Page 1 of 1


Powered by phpBB © 2001 phpBB Group