Search the Community
Showing results for tags 'BOTNETS'.
The search index is currently processing. Current results may not be complete.
I'm using a provider which has a lot of BOTNET infections http://www.senderbase.org/lookup/?search_string=184.108.40.206 Are these servers infected and is it safe to send data through them? http://www.abuseat.org/lookup.cgi?ip=220.127.116.11 Don't look to me like I should use credit card bank details etc? Yet reply from them is The reports you are seeing on the senderbase page reflect blacklist reports filed against these IP addresses. Our server IPs are used by multiple users, and can sometimes be used and implicated in detected (if not actual) malicious usage. This is caused by users sending spam, using bots, etc. and triggering a report to be filed against an IP address.This is an unfortunate byproduct of shared IPs; however, blacklisting is a very common internet occurrence, and is usually not any issue unless you try to use a service that strictly prohibits the use of blacklisted IP address. In short, what you are seeing is perfectly normal, and is not an issue unless a given site/service is set to block connections based on this blacklist report. Because of the common nature of these blacklistings, these types of blocks are exceptional, as otherwise a great deal of internet activity worldwide would come to a grinding halt. Which I believe is rubbish I believe any CBL listing is a BOTNET (zombie computer run by criminals) and the server or a ADMIN linked computer to that server is infected! In the case of BOTNET infections it is the server not the user (yes if spam is sent and port 25 is not blocked the server with that IP can be used to send spam)! Is this sentiment right or wrong? THANKS