– DNS Queries: Name Query Type Query Result Successful Protocol c.bravepath3.com DNS_TYPE_A 109.196.142.58 109.196.142.66 YES udp hubz.imfatguy.info DNS_TYPE_A 127.0.0.1 YES udp b.bravepath3.com DNS_TYPE_A 109.196.142.66 109.196.142.58 YES udp hubz.lebanonbot.com DNS_TYPE_A NO udp a.bravepath3.com DNS_TYPE_A 109.196.142.66 109.196.142.58 YES udp – TCP Connection Attempts: 109.196.142.58:1110 109.196.142.66:1110 109.196.142.66:1110 infos about hosting: http://whois.domaintools.com/109.196.142.58
61.100.9.220(botnet posted in Korea, Republic Of Krnic)
Remote Host Port Number 61.100.9.220 7000 NICK tnlxlcb USER utwalu 0 0 :tnlxlcb JOIN ##aa## b! USERHOST tnlxlcb MODE tnlxlcb -x PONG :irc.priv8net.com infos about hosting: http://whois.domaintools.com/61.100.9.220
15 mb exe files from diferent malwares
Here another link with 15 mb exe files from diferent malwares like (bots,banking trojans,passwords stealers etc) Download: http://13109f1c.theseblogs.com
dns.aswend.com(botnet hosted in Japan Kyoei Co. Ltd)
Remote Host Port Number dns.aswend.com 7000 NICK FL835823620348 USER esiuexzgqlzptu 0 0 :FL835823620348 USERHOST FL835823620348 MODE FL835823620348 +i JOIN #GL .x. NICK FL539494212430 USER uadfqtgvbtfj 0 0 :FL539494212430 USERHOST FL539494212430 MODE FL539494212430 +i NICK FL170074885810 USER cpfvdbtnvtbczk 0 0 :FL170074885810 USERHOST FL170074885810 MODE FL170074885810 +i NICK FL462091484949 USER dqvrrmetrdzqix 0 0 :FL462091484949 USERHOST FL462091484949 MODERead more...
dc.drwhox.com(botnet hosted in China Beijing Chinanet Hebei Province Network)
Remote Host Port Number dc.drwhox.com 5943 PASS eee.. NICK xujcea rssr ctanlt “” “afb” :ctanlt infos about hosting: http://whois.domaintools.com/123.183.217.32
87.98.179.1(botnet hosted in France Ovh Sas)
87.98.179.1 (6667) chanel:#lobby infos about hosting: http://whois.domaintools.com/87.98.179.1
aaaa.forexinvest4.com(botnet hosted in China Zhengzhou China Unicom Henan Province Network)
Remote Host Port Number aaaa.forexinvest4.com 6939 00000000 | 5041 5353 206C 616F 726F 7372 0D0A 4B43 | PASS laorosr..KC 00000010 | 494B 205B 4E30 305F 5553 415F 5850 5F34 | IK [N00_USA_XP_4 00000020 | 3833 3731 3436 5D18 E740 0D0A 7273 7372 | 837146]..@..rssr 00000030 | 2053 5032 2D33 3838 202A 2030 203A 434F |Read more...
as.aswend.com(botnet hosted in Korea, Republic Of Seoul Sysgate)
Remote Host Port Number as.aswend.com 3921 NICK [0]USA|XP-SP2[O]354047 USER [0]USA|XP-SP2[O]061022 “localhost” “as.aswend.com” :…….. JOIN #eeeeee infos about hosting: http://whois.domaintools.com/218.236.22.163
205.234.223.186(botnet hosted in United States Chicago Hostforweb Inc)
chickenkiller.com DNS_TYPE_A 67.19.72.202 YES udp us.to DNS_TYPE_A 213.171.192.129 YES udp 205.234.223.186:2345 Nick: New[AUT|00|P|96393] Username: XP-2587 Joined Channel: #!loco! Channel Topic for Channel #!loco!: “D http://gol.ly/images333?=” Private Message to Channel #!loco!: “[M]: Thread Activated: Sending Message With Email.” Private Message to Channel #!loco!: “[M]: Thread Disabled.” Private Message to User New[AUT|00|P|96393]: “.hp http://domredi.com/1/” infos about hosting:Read more...
irc.bejiyan.com(botnet hosted in United States Burlington The Endurance International Group Inc)
server:port irc.bejiyan.com:6667 PASS pass chanels: #Luke #b4 m0nkey Now talking in #LuKe Topic On: [ #LuKe ] [ 13 .p2p|.yim.host http://www.gizliresimler.net/photo.php?= ] Topic By: [ LuKe ] Modes On: [ #LuKe ] [ +smntu ] infos about hosting: http://whois.domaintools.com/209.59.223.245