comegetrocked.servequake.com DNS_TYPE_A 184.72.34.219 Remote Host Port Number 184.72.34.219 6667 PASS 184.72.34.219 80 199.15.234.7 80 199.27.135.43 80 50.16.211.169 80 67.212.77.12 80 66.74.69.200 4420 NICK n{US|XPa}tyhkmln USER tyhkmln 0 0 :tyhkmln PONG :37D21D0F JOIN #fuck myass * The data identified by the following URLs was then requested from the remote web server: o http://comegetrocked.servequake.com/comune.php?logdata=Downloaded%20payload o http://comegetrocked.servequake.com/comune.php?logdata=Executed%20payload oRead more...
porsuk.seremonymt2.com(irc botnet hosted in Turkey Netinternet Bilgisayar Ve Telekomunikasyon San. Ve Tic. Ltd. Sti)
Resolved : [porsuk.seremonymt2.com] To [94.102.0.65] Remote Host Port Number 94.102.0.65 6667 PASS secret NICK USA|87706 USER xyeaec 0 0 :USA|87706 JOIN #scanner USERHOST USA|87706 MODE USA|87706 -x+i PONG :HTTP1.4 Now talking in #sohbet Topic On: [ #sohbet ] [] Topic By: [ Hw ] Now talking in #scanner Topic On: [ #scanner ] [] TopicRead more...
60.190.217.55(ngrBot hosted in China Zhejiang Ninbo Lanzhong Network Ltd)
Remote Host Port Number 199.15.234.7 80 70.38.98.238 80 60.190.217.55 3800 PASS hax0r Remote Host Port Number 60.190.217.55 3321 PASS eee PRIVMSG #dpi :Err0r.. PRIVMSG #ng :[DNS]: Blocked 1258 domain(s) – Redirected 0 domain(s) Nick n{US|XPa}pgfvioh Channel #ng pass ng00 channel #us UPDATE: Remote Host Port Number d.homler.net 3321 PASS eee hosting infos: http://whois.domaintools.com/60.190.217.55
irc.high.cjb.net(ngrBot hosted in Korea, Republic Of Imin)
Resolved : [irc.high.cjb.net] To [210.223.139.97] Remote Host Port Number 199.15.234.7 80 210.223.139.97 4244 PASS .. PRIVMSG #key :[MSN]: Updated MSN spread message to “Super Photo Hit http://goo.gl/4frkG?=img929/facebook-galery.JPG” JOIN #key NICK n{US|XPa}uzwdtmr USER uzwdtmr 0 0 :uzwdtmr PRIVMSG #key :[HTTP]: Updated HTTP spread interval to “6” PRIVMSG #key :[HTTP]: Updated HTTP spread message to “wowww!! hahahahaRead more...
208.98.34.30(ngrBotnet hosted in United States Missoula Sharktech Internet Services)
Remote Host Port Number 199.15.234.7 80 208.98.34.30 6767 PASS .. NICK n{US|XPa}okmignn USER okmignn 0 0 :okmignn JOIN #rulz ngrBot hosting infos: http://whois.domaintools.com/208.98.34.30
warteam.servemp3.com(irc botnet hosted in Korea, Republic Of Seoul Lg Dacom Corporation)
Remote Host Port Number 112.220.102.35 6667 NICK {USA|XP}706826 USER 7068 “” “TsGh” :7068 JOIN #turki# Password #botnet# PONG :Turkish.com hosting infos: http://whois.domaintools.com/112.220.102.35
208.117.34.166(ngrBot hosted in United States Laird Hill Steadfast Networks)
Remote Host Port Number 199.15.234.7 80 208.117.34.166 1888 PASS ngrBot NICK n{US|XPa}kmzqrwc USER kmzqrwc 0 0 :kmzqrwc JOIN ##center 1963.g3rb3rs1t0.3691 JOIN #XP JOIN #new JOIN #US hosting infos: http://whois.domaintools.com/208.117.34.166
46.166.140.185(ngrBot hosted in United Kingdom Santrex Internet Services Ltd)
Remote Host Port Number 199.15.234.7 80 46.166.140.185 1921 PASS ngrBot NICK n{US|XPa}hkejcfs USER hkejcfs 0 0 :hkejcfs JOIN ##cybercenter## ngrBot JOIN #new PRIVMSG ##cybercenter## :[MSN]: Updated MSN spread message to “dime que te parece esta foto http://focusatl.com/profile.php=PIC-4024512198947-Facebook.JPG” hosting infos: http://whois.domaintools.com/46.166.140.185
142mb malware samples
142mb of trojans,bots,worms have fun Download: http://adf.ly/2kT2X
shootie.no-ip.org(P2P-Worm.Win32.BlackControl hosted in United States Columbus Road Runner Holdco Llc)
shootie.no-ip.org DNS_TYPE_A 75.187.58.170 TCP Connection Attempts: 75.187.58.170:3086 exe file : http://adf.ly/2kR9T hosting infos: http://whois.domaintools.com/75.187.58.170