aaaa.forexinvest4.com(botnet hosted in China Zhengzhou China Unicom Henan Province Network)

By Pig, January 30, 2011

Remote Host Port Number
aaaa.forexinvest4.com 6939

00000000 | 5041 5353 206C 616F 726F 7372 0D0A 4B43 | PASS laorosr..KC
00000010 | 494B 205B 4E30 305F 5553 415F 5850 5F34 | IK [N00_USA_XP_4
00000020 | 3833 3731 3436 5D18 E740 0D0A 7273 7372 | 837146]..@..rssr
00000030 | 2053 5032 2D33 3838 202A 2030 203A 434F | SP2-388 * 0 :CO
00000040 | 4D50 5554 4552 4E41 4D45 0D0A | MPUTERNAME..

infos about hosting:
http://whois.domaintools.com/61.158.145.4

Categories: Uncategorized

Previous postas.aswend.com(botnet hosted in Korea, Republic Of Seoul Sysgate)

Next post87.98.179.1(botnet hosted in France Ovh Sas)