[Emerging-Sigs] Comprehensive list of LeaseWeb CIDR blocks?

Miso Patel miso.patel at gmail.com
Thu Oct 7 14:41:57 EDT 2010

Thanks.  Yea, I already did a whois and got that class C but i was having
trouble finding *all* the ranges they owned, particularly the ones they host
web servers on. I've also got and listed as
LeaseWeb bad (thanks t0nt03).

Miso Patel

On Thu, Oct 7, 2010 at 1:27 PM, Joe Pampel <jpampel at paladyne.com> wrote:

> If they are in Europe, start with their whois listings on the RIPE site.
> http://www.db.ripe.net/whois?form_type=simple&full_query_string=&searchtext=leaseweb&do_search=Search
> would be nice if this /24 is the whole thing. ;)
> On Oct 7, 2010, at 2:15 PM, Miso Patel wrote:
> > I'm fed up with the plethora of malware/fake AV hosted on LeaseWeb and
> I've decided to just go ahead and block them completely at the firewall.
>  Does anyone have a comprehensive list of CIDR blocks that they own?  I
> already use the ET RBN and Known Compromised lists but at this point I feel
> like blocking LeaseWeb completely does more good than harm.  Not that I have
> anything personal against the Dutchbags at LeaseWeb....
> >
> > Thanks.
> >
> > Miso Patel
> > <ATT00001..txt>
> The information contained in this correspondence is intended solely for the
> person or entity entitled to receive the confidential and/or privileged
> material that it may contain. Any review, retransmission, dissemination or
> other use of, or taking of any action in reliance upon, the information in
> this correspondence (including any attachments) by anyone other than the
> intended recipient is strictly prohibited. If you believe that you may not
> be the intended recipient, please destroy and/or delete this correspondence
> and the attachment(s).
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.emergingthreats.net/pipermail/emerging-sigs/attachments/20101007/b1a027b4/attachment.html

More information about the Emerging-sigs mailing list