Virus.Org :: Mailing List Archives


Welcome to the Virus.Org Mailing List Archive

incidents Jul 02 by Thread

Messages are listed by thread. The last update was on 11:16 GMT Thu Jul 27. There are 166 messages.
[Date Index] [Other Lists] [Home]

OpenSSH Attack? Ulrich Keil
- Re: OpenSSH Attack? Bill McCarty
- Re: OpenSSH Attack? Mike Lewinski
Java Yahoo! Chat and disabled keyboards H C
ftp.bitchx.org's ircii-pana-1.0c19.tar.gz is backdoored Hank Leininger
- <Possible follow-ups>
- RE: ftp.bitchx.org's ircii-pana-1.0c19.tar.gz is backdoored Nelson Brito
  - RE: ftp.bitchx.org's ircii-pana-1.0c19.tar.gz is backdoored Hank Leininger
Honeynet Project - SotM and Reverse Challenge Lance Spitzner
Anyone seen this before? Michael B. Morell
- Re: Anyone seen this before? H C
- <Possible follow-ups>
- RE: Anyone seen this before? Michael B. Morell
  - Re: Anyone seen this before? Sergey Latkin
- RE: Anyone seen this before? george . wasgatt
Additional- Anyone seen this before? Michael B. Morell
- Re: Additional- Anyone seen this before? Sergey Latkin
Closed thread- Anyone seen this before? Michael B. Morell
Seeing Chuncked content james
- RE: Seeing Chuncked content Golden_Eternity
ftp directory scan harston
- Re: ftp directory scan Michael Katz
- <Possible follow-ups>
- RE: ftp directory scan Carey, Steve T ISD
Exploit in rpc.statd 0.3.3? Roy Sigurd Karlsbakk
Apache Worm / ddos Thorsten Schroeder
- RE: Apache Worm / ddos Golden_Eternity
- Re: Apache Worm / ddos Alexander Bochmann
- Re: Apache Worm / ddos Dave Mitchell
Honeynet Project - Reverse Challenge results Lance Spitzner
Invalid TCP header flags kyle . r . maxwell
- Re: Invalid TCP header flags Crist J. Clark
Possible System Compromise David Baker
- Re: Possible System Compromise H C
- <Possible follow-ups>
- RE: Possible System Compromise Mike Hrubes
- RE: Possible System Compromise Willsey, Rob (CCI-Omaha)
TCP port 139 probes Pavel Kankovsky
- Re: TCP port 139 probes H C
- <Possible follow-ups>
- RE: TCP port 139 probes Dan Irwin
  - RE: TCP port 139 probes Pavel Kankovsky
    - RE: TCP port 139 probes Brenna Primrose
    - RE: TCP port 139 probes H C
    - RE: TCP port 139 probes Ryan Russell
can't seem to find these tools/rootkit anywhere .. Henti Smith
- <Possible follow-ups>
- Re: can't seem to find these tools/rootkit anywhere .. lsi
  - Re: can't seem to find these tools/rootkit anywhere .. zeno
Stolen Card Purchases Jonathan A. Zdziarski
- Re: Stolen Card Purchases Jonathan Bloomquist
- RE: Stolen Card Purchases Ray Pompon
- RE: Stolen Card Purchases Greg Reber
- <Possible follow-ups>
- Re: Stolen Card Purchases Jonathan A. Zdziarski
  - Re: Stolen Card Purchases Bill Barrett
  - RE: Stolen Card Purchases Jason Coombs
- RE: Stolen Card Purchases Curley Mr Eric P
- RE: Stolen Card Purchases Green, Art
heads up: scanssh modifications made public Jose Nazario
Can anyone identify this backdoor? Matt Andreko
- Re: Can anyone identify this backdoor? David Jacoby
  - Re: Can anyone identify this backdoor? Ryan Russell
- RE: Can anyone identify this backdoor? Matt Andreko
- Re: Can anyone identify this backdoor? shawn merdinger
- RE: Can anyone identify this backdoor? Erick Arturo Perez Huemer
- Re: Can anyone identify this backdoor? Mark Shirley
- RE: Can anyone identify this backdoor? Richard Bartlett
  - RE: Can anyone identify this backdoor? Ian Webb
- Re: Can anyone identify this backdoor? Matt Scarborough
- <Possible follow-ups>
- Re: Can anyone identify this backdoor? Jhon Q Doe
- Re: Can anyone identify this backdoor? David Jacoby
Incident Analysis of Compromised OpenBSD3.0 Honeypot Michael Anuzis
Code Red and other anomalous activity from 1433 Curley Mr Eric P
- Re: Code Red and other anomalous activity from 1433 Thomas Cannon
- <Possible follow-ups>
- RE: Code Red and other anomalous activity from 1433 Graham, Randy (RAW)
- RE: Code Red and other anomalous activity from 1433 Michael Fredericks
- RE: Code Red and other anomalous activity from 1433 lsi
Ideas? Port 21 SYNs, slow Bubsy
- Re: Ideas? Port 21 SYNs, slow Jason Giglio
- Re: Ideas? Port 21 SYNs, slow Michael H. Warfield
- <Possible follow-ups>
- Re: Ideas? Port 21 SYNs, slow Bubsy
  - Re: Ideas? Port 21 SYNs, slow Buddy Nahay
interesting backdoor Matthew Rich
Protocol 255 Crist J. Clark
- Frethem.K virus Joe Matusiewicz
Another odd scan... Adam Young
- Re: Another odd scan... Jose Nazario
- <Possible follow-ups>
- RE: Another odd scan... Wolf, Glenn
- Re: Another odd scan... Muhammad Faisal Rauf Danka
Conclusion: TCP port 139 probes Pavel Kankovsky
OpenBSD rootkit Przemyslaw Frasunek
- Re: OpenBSD rootkit Markus Friedl
- <Possible follow-ups>
- Re: OpenBSD rootkit Mark Ruth
  - Re: OpenBSD rootkit Scott Fendley
Unknown/Weird Traffic? gs-list
TCP 1025 scanning worm? Richard Johnson
- <Possible follow-ups>
- RE: TCP 1025 scanning worm? Rob Keown
- re: TCP 1025 scanning worm? H C
  - re: TCP 1025 scanning worm? Richard Johnson
- RE: TCP 1025 scanning worm? George M. Garner Jr.
Announcement Alfred Huger
Vacation Troller, Please Ignore. Jensenne Roculan
FireDeamon exploit Curt Purdy
- China Experience ? Bob DeRosier
  - Re: China Experience ? Russell Fulton
  - Re: China Experience ? bonk
  - Re: China Experience ? Nick FitzGerald
  - Re: China Experience ? Yaakov Yehudi
  - Re: China Experience ? bugtraq
Odd scan Tadas Miniotas
- Re: Odd scan Russell Fulton
- <Possible follow-ups>
- RE: Odd scan McCammon, Keith
- Re: Odd scan Muhammad Faisal Rauf Danka
diagnose compromise on NT Ingersoll, Jared
- Re: diagnose compromise on NT Patrick Andry
- Re: diagnose compromise on NT H C
- <Possible follow-ups>
- RE: diagnose compromise on NT Hornat, Charles
Scanning Port UDP 4668 Ken Grossman
- Re: Scanning Port UDP 4668 H C
  - Re: Scanning Port UDP 4668 Vitaly Osipov
    - Re: Scanning Port UDP 4668 H C
- <Possible follow-ups>
- RE: Scanning Port UDP 4668 Lucas
- Re: Scanning Port UDP 4668 GabyHornik
RE: China Experience ? Curley Mr Eric P
- Re: China Experience ? incidents.nospam13
- Re: China Experience ? Paul Gear
- <Possible follow-ups>
- RE: China Experience ? Curley Mr Eric P
- Re: China Experience ? SecurityPortal
- Re: Re: China Experience ? kevin.chen
  - Re: Re: China Experience ? Alif The Terrible
    - Re: Re: China Experience ? Chris Brenton
    - Re: China Experience ? euan
    - Re: China Experience ? Jay D. Dyson
    - Re: Re: China Experience ? Russell Fulton
    - Re: Re: China Experience ? Alif The Terrible
    - Re: China Experience ? Ken Blinco
    - Re: China Experience ? euan
    - RE: Re: China Experience ? Christopher Barker
    - Re: Re: China Experience ? Nick FitzGerald
    - Re: China Experience ? Chris Brenton
- Re: China Experience ? Steven M. Christey
- RE: China Experience ? YAO,TONY (HP-NewZealand,ex1)
- RE: Re: China Experience ? Alif The Terrible
Unicode exploits with Serv-U marko . muncan . mm
Dead Thread: China Experience? Jensenne Roculan
Bind 9.2.X exploit??? güvercin
- Re: Bind 9.2.X exploit??? Patrick Andry
  - Re: Bind 9.2.X exploit??? David Conrad
  - Re: Bind 9.2.X exploit??? Jim Clausing
    - Re: Bind 9.2.X exploit??? David Conrad
    - Surge of attacks on ports 61127 & 61134 Joseph
- Re: Bind 9.2.X exploit??? Alexandru Balan
- Re: Bind 9.2.X exploit??? David Carmean
- <Possible follow-ups>
- Re: Bind 9.2.X exploit??? Muhammad Faisal Rauf Danka
  - Re: Bind 9.2.X exploit??? Sebastian
Increasing compromises of NT servers with Serv-U and Unicode ? pj
Anyone know this rootkit (rootkits?) Steve Bougerolle
- Re: Anyone know this rootkit (rootkits?) SilentCreek
- Re: Anyone know this rootkit (rootkits?) Anton A. Chuvakin
- Re: Anyone know this rootkit (rootkits?) (details and filesattached) Steve Bougerolle
  - Re: Anyone know this rootkit (rootkits?) (details and files attached) steveg
FireDaemon exploit - part 2 purdy
Re: Surge of attacks on ports 61127 & 61134 Joseph
Compromized Windows NT machine? GabyHornik
- Re: Compromized Windows NT machine? Frank Knobbe
- <Possible follow-ups>
- Re: Compromized Windows NT machine? dbroggy
observations on recent unicode attacks against IIS servers Russell Fulton
scanning for HTTP proxies, ports 80, 81, 1080, 3128, 4480, 6588, 8000, 8080, 8081 Bukys, Liudvikas
- Re: scanning for HTTP proxies, ports 80, 81, 1080, 3128, 4480, 6588, 8000, 8080, 8081 faded
- <Possible follow-ups>
- RE: scanning for HTTP proxies, ports 80, 81, 1080, 3128, 4480, 6588, 8000, 8080, 8081 Bukys, Liudvikas
Packet suckers? David Carmean
Rating Attackers Toby Miller

Copyright (c) Virus.Org 1997-2006.
All Trademarks Acknowledged.
Please view our Terms and Conditions and our Privacy Policy.