FYI: Worm delivery server

Stephen Bernard sbernard at gmu.edu
Fri Mar 26 21:21:07 GMT 2004


There is a server, 132.230.1.7, ftp.ruf.uni-freiburg.de, which is being 
used to deliver a file 'c32.exe' to compromised hosts. Might want to 
look out for outbound FTP requests to that address.


Regards,

Steve Bernard
George Mason University



More information about the unisog mailing list