North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: Port 139 scans

  • From: Dan Hollis
  • Date: Wed Sep 27 15:06:22 2000

On Wed, 27 Sep 2000, Jason Slagle wrote:
> On a somewhat related note, since we obviously have AOL people living and
> they now own ICQ. has been used for weeks for these kiddies
> to store various ddos clients on.  Take a look at #0wned.  All compromised
> machines.  There are no live opers to deal with it, and emails to
> [email protected] go unanswered.
> Is there any way we can deal with things like this?

Route to null0. If enough networks do this (or better, if
tier1's do), maybe icq will get their head out of their ass and do
something about it.