Category: Uncategorized

– DNS Queries: sERveR-7.rUPoRno.Tv DNS_TYPE_A 78.108.178.135 YES TCP Traffic: 78.108.178.135:444 State: Normal establishment and termination – Transferred outbound Bytes: 137 – Transferred inbound Bytes: 52 exe file: http://f15ad783.goneviral.com infos about hosting: http://whois.domaintools.com/78.108.178.135

Remote Host Port Number 46.21.169.42 6567 PASS s1m0n3t4 70.38.98.238 80 MODE [SI|USA|00|P|96374] -ix JOIN #update# c1rc0dusoleil PRIVMSG #update# :[Dl]: File download: 92.0KB to: C:DOCUME~1UserNameLOCALS~1Temperaseme_15573.exe @ 92.0KB/sec. QUIT [Update]: Updating to new bin. NICK [SI|USA|00|P|32275] USER XP-5843 * 0 :COMPUTERNAME MODE [SI|USA|00|P|32275] -ix JOIN #sax# c1rc0dusoleil NICK [SI|USA|00|P|96374] USER XP-3818 * 0 :COMPUTERNAME exe file: http://80dfeb1f.miniurls.coRead more...

Remote Host Port Number 213.251.170.52 80 64.62.181.43 80 66.63.184.226 80 74.125.227.0 80 74.125.227.12 80 74.125.227.26 80 74.125.227.28 80 74.125.227.3 80 74.125.227.8 80 74.125.47.132 80 75.102.22.40 1866 PASS ngrBot 91.215.159.137 1866 PASS ngrBot PRIVMSG #!hot! :[MSN]: Updated MSN spread interval to “2” PRIVMSG #!hot! :[Visit]: Visited “http://www.ehsan.org.sa/abr/” PRIVMSG #!hot! :[d=”http://64.62.181.43/krstkrst/zaba.exe” s=”81920 bytes”] Executed file “C:Documents andRead more...

Server: 78.47.158.33:6667 Nick: AUT|01346 User: zjeei Chanel: ##alb## * Now talking in ##alb## * Topic is ‘.sa -s’ * Set by AlbEagle on Sun Apr 10 01:25:54 infos about hosting: http://whois.domaintools.com/78.47.158.33 person: Luan Gjokaj address: TheHosting ME address: Via Santa Reparata address: 50129 Florence address: ITALY phone: +393469895476 fax-no: +393469895476 nic-hdl: LG4976-RIPE another albanian heckerRead more...

Remote Host Port Number 92.241.169.92 9595 NICK USA|XP|SP2|00|2966|L|0885 USER qgpqq 0 0 :USA|XP|SP2|00|2966|L|0885 JOIN ##nzm psy USERHOST USA|XP|SP2|00|2966|L|0885 MODE USA|XP|SP2|00|2966|L|0885 +iB-x JOIN ##nzm-lan psy PONG :FuckYou.net infos about hosting: http://whois.domaintools.com/92.241.169.92

In this package around 28mb u can find worms,irc bots,zeus bot,passwd stealers Download: http://755ef54b.goneviral.com

The owner of this irc botnet is JiMyGJ old albanian lamer living from asistence in london and trying to be hecker in the virtual world He’s from HASI(YETIS land) in the nord albania ose shqip nga pidhi arushes Remote Host Port Number 219.71.172.101 13001 NICK `kohizzn USER `kohizzn 0 0 :`kohizzn JOIN #.serve6 hs USERHOSTRead more...

The lamer using this banking trojan is a stupid albanian from fieri 1.20 from earth hands up also famous member in lamers paradise opensc.ws crackseller.zapto.org Opened listening TCP connection on port: 30362 Dns resolved crackseller.zapto.org to 91.211.116.149 link used to infect: http://kubann3zi.tk/zs/bot.exe Dns resolved kubann3zi.tk to 91.211.116.149 infos about hosting: http://whois.domaintools.com/91.211.116.149

Remote Host Port Number 204.0.5.35 80 216.178.38.224 80 216.178.39.11 80 83.133.121.222 80 78.47.122.165 2345 PASS xxx NICK NEW-[USA|00|P|53911] USER XP-3455 * 0 :COMPUTERNAME MODE NEW-[USA|00|P|53911] -ix JOIN #!gf! test PONG 22 MOTD infos about hosting: http://whois.domaintools.com/78.47.122.165

Remote Host Port Number 212.150.164.203 80 213.155.29.16 443 The data identified by the following URL was then requested from the remote web server: http://www.securuayetres12454.net/pics/gate.php exe file: http://c4aa0108.goneviral.com infos about hosting: http://whois.domaintools.com/213.155.29.16