[ale] Potentially OT of Hiacked Web Server?

Mike Harrison meuon at geeklabs.com
Tue Mar 23 20:17:49 EDT 2010


> Trend Security Agent Notification Message:
> http://ovh-net.ucoz.ru.monster-com.yourblenderparts.ru:8080/mininova.org/mininova.orh/hp.com/google.com/w3schools.com.php
> Result = Blocked
>
> So it would appear that the Rushkies have hijacked our control panel,
> correct?
> Yes, this IS Windows based software. Any suggestions, other than dumping the
> software--sorry, but the boss won't want to hear that.

It could be either the control panel (less likely) or your computer (more 
likely) and my guess is the payload of the web post might even include 
your login credentials to your control panel.




More information about the Ale mailing list