Author: Pig

Panel:http://92.241.174.38/main/ exe file:http://92.241.174.38/main/bin/buildfud.exe http://92.241.174.38/main/bin/config.bin

server Ip: 193.106.173.129 Server Port: 1338 Channel Name: #TM There are 1 users and 501 invisible on 1 servers 69 unknown connection(s) channels formed I have 502 clients and 0 servers Current Local Users: 502 Max: 619 Current Global Users: 502 Max: 584 Now talking in #TM Topic On: [ #TM ] [ Try commandRead more...

Remote Host Port Number 66.225.241.182 2345 NICK New[USA|00|P|11539] PRIVMSG #!loco! :[M]: Thread Disabled. PRIVMSG #!loco! :[M]: Thread Activated: Sending Message With Email. USER XP-5074 * 0 :COMPUTERNAME MODE New[USA|00|P|11539] -ix JOIN #!loco! PONG 22 MOTD – DNS Queries: Name Query Type Query Result Successful Protocol orbitaurl.com DNS_TYPE_A 158.2.125.114 14.73.178.183 YES udp 210.170.62.115:2345 Nick: New[AUT|00|P|38063] Username:Read more...

Remote Host Port Number 46.4.176.187 6669 JOIN ##ReliviuM InVaLiDDD PONG :BoTNeT.GoV Other details * The following port was open in the system: Port Protocol Process 1052 TCP [file and pathname of the sample #1] Registry Modifications * The following Registry Keys were created: o HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer o HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorerRun o HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRunOnceSetup o HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRunServices o HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRunServicesOnce o HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoaddowsRead more...

b33p.zapto.org ip: 69.65.19.117 b33p.zapto.org ip: 69.65.19.116 69.65.19.116:6108 channel: #base infos about hosting: http://whois.domaintools.com/69.65.19.117

nadeganja.no-ip.net DNS_TYPE_A 95.168.172.190 95.168.172.190:6374 channel: #nade2# infos about hosting: http://whois.domaintools.com/95.168.172.190

irc.wanger.biz:8782 46.4.232.76:8782 Nick: :{00-USA-XP-pc7-7123} Username: blaze Server Pass: weed Joined Channel: #sshscan2 Channel Topic for Channel #sshscan2: “.scan sshgodscan 38 8 0 192.x.x.x -n -b |.scan sshgodscan 30 8 0 141.x.x.x -n -b |.scan sshgodscan 30 8 0 218.x.x.x -n -b” Set by Yewnix on Tue Dec 21 20:50:57 Private Message to User {iNF-00-USA-XP-pxb8x8cI: “SC//Read more...

DNS Lookup Host Name IP Address 0 127.0.0.1 browseusers.myspace.com browseusers.myspace.com 63.135.80.224 www.myspace.com www.myspace.com 63.135.80.46 x.myspacecdn.com x.myspacecdn.com 212.201.100.176 js.myspacecdn.com js.myspacecdn.com 212.201.100.169 c4.ac-images.myspacecdn.com c1.ac-images.myspacecdn.com c4.ac-images.myspacecdn.com 195.176.255.157 c2.ac-images.myspacecdn.com c1.ac-images.myspacecdn.com 195.176.255.136 c2.ac-images.myspacecdn.com 195.176.255.146 c3.ac-images.myspacecdn.com c3.ac-images.myspacecdn.com 195.176.255.138 cms.myspacecdn.com cms.myspacecdn.com 212.201.100.169 b.myspace.com www.google-analytics.com www.google-analytics.com 209.85.149.102 b.myspace.com 63.135.80.58 myspace.ivwbox.de myspace.ivwbox.de 193.46.63.103 qs.ivwbox.de qs.ivwbox.de 91.215.101.32 l.sharethis.com wd.sharethis.com delb.opt.fimserve.com l.sharethis.com 46.51.172.48 wd.sharethis.com 79.125.110.9 delb.opt.fimserve.comRead more...

here a download link for everyone who like to spend some time inside exe files with malware signatures Download: http://d4fdc870.dyo.gs

Remote Host Port Number 212.97.132.151 80 95.211.84.41 80 83.15.2.2 31092 NICK US|computername USER yoxuruho UNIX UNIX :username JOIN #all# Resolved : [serv01.colo.owned.hu] To [83.15.2.2] Resolved : [serv01.colo.owned.hu] To [83.233.167.103] Resolved : [serv01.colo.owned.hu] To [81.219.80.126] Resolved : [serv01.colo.owned.hu] To [196.46.191.100] Other details * The following ports were open in the system: Port Protocol Process 1055 TCPRead more...