|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[Full-Disclosure] Full-Disclosure] SQL injection worm ?
From: Willem Koenings (infsec
gmail.com)
Date: Wed Jan 05 2005 - 13:57:56 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Maxime Ducharme mducharme at cybergeneration.com wrote:
> 24.164.202.24 is on rr.com networks, they have also been advised.
>
> I know rbot.exe is known to be Randex worm, but i'd like that have
> some other results / analysis.
What i see is that this rBot.exe acts like regular rbot/sdbot
all the best,
W.
ps. kaspersky also agrees with me : Backdoor.Win32.Rbot.gen
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]