View Single Post
  #3 (permalink)  
Old May 23rd, 2016
Lucio Lucio is offline
Valued Member contributor
 
Join Date: May 18th, 2016
Posts: 5
Lucio is a great assister to others; your light through the dark tunnel
Default

Quote:
Originally Posted by Lord of the Rings View Post
I've seen PyGnutella before but I don't believe for quite some time.
From your snapshots, it does appear to be a BOT and possibly a browser based BOT that can switch program ID on the fly.
Hello, why do you think about a browser bot? Since all connections come from the same IP addresses group, could it be someone having access to a whole 0-255 addresses range (someone more than a common ADSL user)? If an IP sproofing occurred, why limiting to a single group of IP addresses?
Updating hostiles.txt looks like a good idea...
My current skills do not allow further analysis from my side...
Reply With Quote