It seems that this a variant or so ? Please check http://isc.sans.org/ for
the same thing but diffferent port, udp 7111
Tudor
___
http://lurker.clamav.net/list/clamav-users.html
Hi,
I couldn't help it and I ran the program, of course with a sniffer on.
Syntax: lupii Here's what I found:
1. runs on RedHat Enterprise Workstation 4
2. opens up udp:7222
3. Exchanges some info with over udp
7222
4. remains active in the background
5. starts a SYN scan to port 80 on random
Hi again everyone,
Got the same thing few minutes ago, coming from China this time, pointing
to the same address for the download Seems to be spreading ? The
downloaded file is definitely for Linux.
Tudor
__
Hi everyone,
Last night I caught an attack to my web servers he
