Project Black Water

The following IP addresses were caught in one of my honeypots uploading malicious software. Often times they attacked the server several times with the same sample. Below are the IP address logged by the honeypot uploading malicious code. This IPs should be blocked by your firewall and perhaps your DMZ. You should also search your logs for these addresses:

Reporting Period Covered: 20-01-23 to 2010-02-01:

Print Friendly, PDF & Email