[84009] in North American Network Operators' Group
RE: August 2005: Drone Army Botnet C&C listing
daemon@ATHENA.MIT.EDU (Christopher L. Morrow)
Thu Sep 1 19:43:40 2005
Date: Thu, 01 Sep 2005 23:43:12 +0000 (GMT)
From: "Christopher L. Morrow" <christopher.morrow@mci.com>
In-reply-to:
<A206819EF47CBE4F84B5CB4A303CEB7A521A86@dul1wnexmb01.vcorp.ad.vrsn.com>
To: "Hannigan, Martin" <hannigan@verisign.com>
Cc: "Fergie (Paul Ferguson)" <fergdawg@netzero.net>, nanog@merit.edu
Errors-To: owner-nanog@merit.edu
On Wed, 31 Aug 2005, Hannigan, Martin wrote:
>
>
>
> > 30058 FDCSERVERS - FDCservers.net LL 123 43
> > 21840 SAGONET-TPA - Sago Networks 53 26
> >
>
> Much better. And no IL-CERT. :-)
>
> Is it safe to say the resolutions, at least in these two
> cases, are because of others mitigation activities i.e.
> snatching back the RR's, shutting off the domain, black
> holes, etc?
Does the full report (where does one find that anyway?) have what the
supposed resolution is/was?
