Skip to Main Content
Malicious Bots
book

Malicious Bots

by Ken Dunham, Jim Melnick
August 2008
Intermediate to advanced content levelIntermediate to advanced
168 pages
4h 55m
English
Auerbach Publications
Content preview from Malicious Bots
Thr34t Security Krew and the TK Worm  27
member, but then DiSice would connect from random IP addresses when connect-
ing to victim machines that were infected with the TK IRC bot.
Looking at the registration information for the IP address that DiSice had used
to connect on several occasions, I observed the IP address was in the 12.xxx.xxx.xxx
n
etblock and belonged to AT&T DSL services. I tried to connect to the IP address
via FTP and was greeted with the FTP log-in prompt shown in Figure 2.19.
A WHOIS lookup of the domain name that was presented in the FTP greeting
banner showed it was registered to an individual in Chicago, Illinois. I found ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Detecting and Combating Malicious Email

Detecting and Combating Malicious Email

Julie JCH Ryan, Cade Kamachi

Publisher Resources

ISBN: 9781420069068