yesim.hoodrich.ru(irc botnet hosted in United States South Lake Tahoe Reliablehosting.com – Network Services)

By Pig, June 18, 2011

Remote Host Port Number
yesim.hoodrich.ru:4042
Resolved : [yesim.hoodrich.ru] To [216.131.127.13]
216.131.127.13 4042
89.201.164.126 80

NICK new[USA|XP|COMPUTERNAME]pethrmn
USER xD “” “lol” :xD
JOIN #biznew#
PONG 422
PONG :irc.priv8net4.com

C&C Server: 64.69.44.51:4042
Server Password:
Username: hh
Nickname: new[DEU|XP|DELL-D3E62F7E26]tmlnhjx
Channel: #biznew# (Password: )
Channeltopic: :!down /99/106/112/81/55/59/40/120/121/125/100/110/115/116/118/113/115/38/127/122/100/56/109/79/79/125/108/53/57/38/42/59/51/59/52/20/52/54/38/67/114/97/97/40/105/109/102/

* The data identified by the following URL was then requested from the remote web server:
o http://epicbookings.com/images/jun16.exe

hosting infos:
http://whois.domaintools.com/216.131.127.13

Categories: Uncategorized

Previous post91.211.117.46(ngrBot hosted in Ukraine Zharkov Mukola Mukolayovuch)

Next postkayits.byinter.net(irc botnet hosted in Turkey Netinternet Bilgisayar Ve Telekomunikasyon San. Ve Tic. Ltd. Sti)