nygus
27-02-2013, 11:29
witam
Mój hostingodawca zawiesił mi konto i bo dostał takiego emaila :
W dniu 2013-02-26 21:30, abuse-reply@bankofamerica.com pisze:
> Abuse Team,
> We have been made aware that the following IP addresses that you appear to host may have been used in recent cyber attacks. We have been informed these compromises may be a result of a Joomla vulnerability, and if not patched will simply be re-infected.
> We request that you investigate these IP addresses to identify any malicious activity. If you are able to confirm suspicious activity, please take appropriate action to disable the malware, patch the vulnerability or remove the devices from the network.
> Note: All IPs/URLs below have been confirmed as active just prior to this notification being sent. If you feel action has already been taken please reconfirm by checking the spelling/grammar of the 404 message returned (“404 Not Foun derrer” vs. “404 Not Found Error”). If you are still receiving the “404 Not Foun derrer” error message, that device may still have an issue. This can be confirmed by viewing the HTTP status with a tool like wget or cURL. If using cURL, use the following command and note the HTTP status code in the first line of output:
>
> curl -A "Mozilla/4.0" -iL
>
> 178.19.110.42 [URL]http://esokolka.info/plugins/system/dvmessages/dvmessages.php,
>
> Thank you for your immediate attention and action. Please contact us as soon as you receive this and stay in contact as we work together to resolve these issues.
> Regards,
>
> Abuse Team
> Bank of America
>
Mój hostingodawca zawiesił mi konto i bo dostał takiego emaila :
W dniu 2013-02-26 21:30, abuse-reply@bankofamerica.com pisze:
> Abuse Team,
> We have been made aware that the following IP addresses that you appear to host may have been used in recent cyber attacks. We have been informed these compromises may be a result of a Joomla vulnerability, and if not patched will simply be re-infected.
> We request that you investigate these IP addresses to identify any malicious activity. If you are able to confirm suspicious activity, please take appropriate action to disable the malware, patch the vulnerability or remove the devices from the network.
> Note: All IPs/URLs below have been confirmed as active just prior to this notification being sent. If you feel action has already been taken please reconfirm by checking the spelling/grammar of the 404 message returned (“404 Not Foun derrer” vs. “404 Not Found Error”). If you are still receiving the “404 Not Foun derrer” error message, that device may still have an issue. This can be confirmed by viewing the HTTP status with a tool like wget or cURL. If using cURL, use the following command and note the HTTP status code in the first line of output:
>
> curl -A "Mozilla/4.0" -iL
>
> 178.19.110.42 [URL]http://esokolka.info/plugins/system/dvmessages/dvmessages.php,
>
> Thank you for your immediate attention and action. Please contact us as soon as you receive this and stay in contact as we work together to resolve these issues.
> Regards,
>
> Abuse Team
> Bank of America
>