Botnet C&C irc
gangbang.mytijn.org DNS_TYPE_A 202.78.227.148
217.219.137.162
94.73.48.201
gangbang.mytijn.org:43000
Nick: :{00-AUS-XP-pc4-2276}
Username: PotHead
Server Pass: scary
Joined Channel: #SVR# with Password ERROR
Channel Topic for Channel #SVR#: “.scan svrsvc_TUR 40 6 0 -b -r”
Private Message to User {iNF-00-AUT-XP-p`xf6’yxf6’^?xf6’xa0xf8’xa7x84@: “SC// Random Port Scan started on 192.168.x.x:445 with a delay of 6 seconds for 0 minutes using 40 threads
Process Created
HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
windows System Info Serivce
C:WINDOWSdvp.exe
Categories:
Uncategorized