r tracking this down and please keep me in the loop if you hear
back from them again.
dave
On 7/8/2016 2:41 PM, Spork Schivago wrote:
Okay Red-Tail Books, I got more information for you! This is the
latest response I got:
"The malware is installed via a range of vulnerabilities i
Saw this in my access.log this morning...
169.229.3.91 - - [08/Jul/2016:05:44:24 -0700]
"^\x05A\xea\xa1\xfa\xbe\x15" 200 11434 "-" "-"
Can someone more knowledgeable explain what the "request" was and why it
was successful? And what 11k of data did apache serve?
Thanks
dave
