ns.enterhere.biz/alwayssam.com

– DNS Queries:

Name Query Type Query Result Successful Protocol
ns.enterhere.biz DNS_TYPE_A 67.43.232.36 1
alwayssam.com DNS_TYPE_A 72.10.167.74 1

+ Opened Listening Ports:

– HTTP Conversations:

72.10.167.74:80 – [alwayssam.com]
Request: GET /x3.exe
Response: 200 “OK”
Request: GET /aaaa.exe
Response: 200 “OK”
Request: GET /lal2.exe
Response: 200 “OK”
Request: GET /so7.exe
Response: 200 “OK”

– IRC Conversations:

67.43.232.36:1866
Nick: jqiFwrVD
Username: adnjrc
Joined Channel: #ns
Channel Topic for Channel #ns: “=0sC/1C1ZBm+SaIzzh5hXKnu8eZewnPL5yzprL0qoSQgApaVpY6zU2Tu0zLmHYaknTbm+GvJb/LaAqMakCj+GftKwW6ib119ih+ZNQMapVLWd9srbrhBFAcuTYhILvZq8FyXnnZOpm4BOoiGaCpKmKp52v1Z82rS2CFZUfYLhhKOSap9kYVnaRF9u6rXFKZk+TLW9mrKzxdPf44XZRHyYP8Tm0B6A2tqZ4rQgcm9Y1/BlfrkcprcyjUt6xh”

Categories: Uncategorized

2 Comments

Anonymous - February 7, 2012 at 9:35 am

any files for this one?

Anonymous - February 8, 2012 at 1:07 am

probably in malware samples check in this blog u can find them for sure

Comments are closed