Answer: |
Hello. Did you get the memo? you received a complaint. Greetings,
The Australian Computer Emergency Response Team (www.auscert.org.au) has received a report of a malicious software hosted on your network. This site is accessible from the following *potentially malicious* URL:
http://ostudio.by/cgi-bin/ZShujEJ.php?id
As at Jul 23 Thu 2015 this URL is resolved to an IP address of
46.29.2.43
for which you are listed as the abuse contact. We would greatly appreciate your assistance in:
a. recovering any relevant files
b. cleaning or closing this site as appropriate.
If any MD5 values are listed below, they are of particular interest as they may refer to malware. Any files with these MD5 checksums would be greatly appreciated:
MD5: NONE FOUND
If you are not the correct person to be dealing with this incident, could you please forward this request to the appropiate person. Also, you are free to pass this information on to other trusted parties (e.g. law enforcement), as you see fit.
If you are already aware of this matter then we apologise for the inconvenience. If possible, we would still appreciate a copy of any files from the host or netflows relating to this incident.
Tracking code (AUSCERT#2015fc0af) has been assigned to this incident. We will be monitoring this incident, and tracking its progress to closure. Please use this incident code in the subject line of all correspondence relating to this incident.
Everyone in CC field:
FYI.
Any feedback you can provide will be greatly appreciated. Thanks for your consideration of this request.
-- -- Nicholas --Soysa Information Security Analyst | Hotline: +61 7 3365 4417 AusCERT, Australia`s Leading CERT | Fax: +61 7 3365 7031 The University of Queensland | WWW: www.auscert.org.au QLD 4072 Australia | Email: [email protected] NOTICE & DISCLAIMER: This email (including any attached files) is intended only for the addressee and may contain confidential information of The the University of Queensland. If you are not the addressee, you are notified that any transmission, distribution, printing or photocopying of this email is prohibited. If you have received this email in error, please delete and notify me. Unless explicitly stated the opinions expressed in this email do not necessarily represent the official position of The University of Queensland. please solve this issue |