To report a botnet PRIVATELY please email: [EMAIL PROTECTED] ---------- Hello,
These links is actively used for php inclusion attempts. Valid for 04.11.2007. http://62.141.56.158/cmd.gif http://amygirl.chat.ru/images/image.txt http://baguscrew.net/alat/cmd.txt http://cherrygirl.h18.ru/images/cs.txt http://e-smkk.net/forum/gallery/id.txt http://eventtoday.com/bbs/skin/gallery_thum/safe.txt http://geocities.com/masterHANCUR/HANCUR.txt http://host5.chileadmin.com/~revista/media/help.txt http://productanarchy.com/gallery/g2data/smarty/id http://puterselect.com/modules/Neos_Chronos/id.txt http://rfidstore.it/catalog/images/blank_line.gif http://rh4m4.t35.com/s.txt http://s33xy.ifrance.com/r7 http://stefaniak.myftp.biz/modules/Album/safe.txt http://stopandbid.com/uplimg/safe.txt http://www.catterickcaravans.com/images/echo.txt http://www.lasexta.net/templates/id.txt http://www.ownsyou.kit.net/vvvvv/safe.txt http://www.scan-bot.net/id.txt http://www.sznurki.vel.pl/webimages/id.txt http://www.thedreaming.com/cache/id.txt http://www.theoneluckypennyguy.com/cache/echo.txt http://www.zarha.org/pr.txt http://www.zendurl.com/a/animetnt/safe.txt Btw, i'v monitoring some C&C server, wich responsible for all "*.h18.ru/images/cs.txt" and http://amygirl.chat.ru/images/image.txt attempts. Seems like they are Australian. Check here: http://groups.google.com/group/nzphpug/msg/766976ba1bfd51ea Thanks, Dan _______________________________________________ To report a botnet PRIVATELY please email: [EMAIL PROTECTED] All list and server information are public and available to law enforcement upon request. http://www.whitestar.linuxbox.org/mailman/listinfo/botnets
