[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-relays] ongoing denial of service attack against Road Runner IP addresses
- To: Rebecca Kaiser <abuse@xxxxxxxxxxxxxxxxxxxxx>, security@xxxxxxxxxxxxx, tor-relays@xxxxxxxxxxxxxxxxxxxx, abuse@xxxxxx, abuse@xxxxxxxxxxxxx, abuse@xxxxxxxxxxxxxxxxxxxxx
- Subject: Re: [tor-relays] ongoing denial of service attack against Road Runner IP addresses
- From: Kent Backman <kent@xxxxxxxxxxxxxxx>
- Date: Fri, 29 Mar 2013 12:24:44 -1000
- Delivered-to: archiver@xxxxxxxx
- Delivery-date: Fri, 29 Mar 2013 18:24:52 -0400
- In-reply-to: <20130329121359.43147cgr0k694kkn@xxxxxxxxxxxxxxx>
- List-archive: <http://lists.torproject.org/pipermail/tor-relays>
- List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
- List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
- List-post: <mailto:tor-relays@lists.torproject.org>
- List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
- List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
- References: <003f01ce2a87$99afa620$cd0ef260$@kentbackman.com> <2326601ce2cb3$eaaabff0$c0003fd0$@wholesaleinternet.net> <20130329121359.43147cgr0k694kkn@xxxxxxxxxxxxxxx>
- Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
- Sender: tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx
- User-agent: Internet Messaging Program (IMP) H3 (4.3.4)
Correction, I am still showing these guys:
IP Address ISP Organization
142.54.182.5 DataShack, LC Zhou Pizhong
142.54.181.36 DataShack, LC EVL Gaming, LLC.
142.54.181.41 DataShack, LC EVL Gaming, LLC.
142.54.181.39 DataShack, LC EVL Gaming, LLC.
142.54.181.38 DataShack, LC EVL Gaming, LLC.
142.54.182.57 DataShack, LC Zhou Pizhong
142.54.182.54 DataShack, LC Zhou Pizhong
142.54.182.9 DataShack, LC Zhou Pizhong
142.54.182.8 DataShack, LC Zhou Pizhong
142.54.181.37 DataShack, LC EVL Gaming, LLC.
142.54.182.6 DataShack, LC Zhou Pizhong
142.54.182.10 DataShack, LC Zhou Pizhong
142.54.182.53 DataShack, LC Zhou Pizhong
142.54.182.4 DataShack, LC Zhou Pizhong
142.54.182.58 DataShack, LC Zhou Pizhong
142.54.182.7 DataShack, LC Zhou Pizhong
142.54.182.56 DataShack, LC Zhou Pizhong
142.54.182.55 DataShack, LC Zhou Pizhong
Quoting Kent Backman <kent@xxxxxxxxxxxxxxx>:
Quoting Rebecca Kaiser <abuse@xxxxxxxxxxxxxxxxxxxxx>:
Thanks, Rebecca
I see no further malicious activity from DataShack and Wholesale
Internet. Still ongoing attack from Limestone and
Ubiquity/Nobistech and a few other US ISP's, and of course malicious
traffic from IP addresses from one specific foreign country.
Any explanation from your foreign customers as to why they are
engaging in what appears to be illegal activity, at least as far as
US laws apply?
- Kent
We've received confirmation from our client that this has been shut down.
From: Kent Backman [mailto:kent@xxxxxxxxxxxxxxx]
Sent: Tuesday, March 26, 2013 8:08 PM
To: abuse@xxxxxx
Cc: abuse@xxxxxxxxxxxxx; security@xxxxxxxxxxxxx; noc@xxxxxxxxxx;
abuse@xxxxxxxxxxxxxxxxxxxxx; abuse@xxxxxxxxxxxxxxxxxxxxx; abuse@xxxxxx
Subject: ongoing denial of service attack against Road Runner IP address
98.150.237.177 by botnet operating out of Nobistech, Datashack, Limestone,
HE, Pegtech, WholeSale Interent, and Psychz VPS nodes
Importance: High
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays