Remote Host Port Number 94.194.248.17 4562 PASS zeroblinder NICK [NWO]_91339 USER utwalu 0 0 :[NWO]_91339 USERHOST [NWO]_91339 MODE [NWO]_91339 -x+B JOIN #skyv-network zeroblinder PRIVMSG #skyv-network :[SCAN]: Failed to start scan, port is invalid. Other details * The following ports were open in the system: Port Protocol Process 113 TCP nyjxif.exe (%System%nyjxif.exe) 1052 TCP nyjxif.exe (%System%nyjxif.exe)Read more...
picard.ebdgroup.com(botnet hosted in Germany Hetzner Online Ag)
Remote Host Port Number 64.62.181.43 80 69.89.31.75 80 78.46.81.231 1866 NICK n[USA|XP|COMPUTERNAME]splmgpb USER hh “” “lol” :hh JOIN #!h! PONG 422 * The data identified by the following URLs was then requested from the remote web server: o http://64.62.181.43/dehe16/sysnt32.exe o http://kissfendi.com/wp-content/uploads/karissa.jpg Registry Modifications * The newly created Registry Values are: o [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersion] + Start PageRead more...