– DNS Queries:
proxim.ircgalaxy.pl DNS_TYPE_A 210.245.211.11 1
wpad DNS_TYPE_A 0
dl2.teenpassage.com DNS_TYPE_A 85.114.141.207 1
– HTTP Conversations:
85.114.141.207:80 – [dl2.teenpassage.com]
Request: GET /DONT-TOUCH/pa.exe
– HTTP Conversations:
115.126.2.110:80 – [www.upononjob.cn]
Request: GET /set/lgate.php
Response: 200 “OK”
Request: GET /docs/irv.txt
Response: 200 “OK”
Request: GET /docs/doc.txt
Response: 200 “OK”
Request: GET /docs/tips.txt
Response: 200 “OK”
Request: GET /in.cgi?0032
Response: 302 “Found”
78.157.142.33:80 – [reservjob.cn]
Request: GET /docs/ggg.txt
Response: 200 “OK”
Request: GET /docs/reader.txt
Response: 200 “OK”
Request: GET /ts/in.cgi?0032
Response: 500 “Internal Server Error”
216.195.55.50:80 – [216.195.55.50]
Request: GET /40E800085879928BAC9B53916C0000014E6600000000760000014DEB000530F9D73EA3
Response: 200 “OK”
72.10.166.195:80 – [zonetech.info]
Request: GET /aaaa.exe
Response: 200 “OK”
Request: GET /lal22.exe
Response: 200 “OK”
– IRC Conversations:
67.43.232.35:1867
Nick: IqBdgbaT
Username: gwhswv
Joined Channel: #ns
Channel Topic for Channel #ns: “=qgarAdHHPnHisPyXB4DN3p8k48W4nDad0T7/W9KAUQAIsdkj65Qs24V8/IFHq+tjTZ/y0oHcN8K1tiKTV66PTWSYW2CToeebDLngTbJyX5AncfT2h67A76+TYZJslY1+AuVn61uj5c/GPAOWLbJrSACpdYiVazSYUJIkhFeS+XhNmtxj0p31muJ”