srv5.su (snk asper mod irc botnet hosted by softronics.ch)

Resolved srv5.su to 94.242.198.64

Server: srv5.su
Port: 5050
Channel: #ok
#ok :.j #spr .j #lock .j #spam
#ok :.d p /100/97/111/124/49/59/47/49/63/38/38/23/37/49/49/41/42/46/40/37/47/36/57/127/114/105/119/81/50/105/98/117/
Downloads hxxp://94.242.198.64/4/smart.exe
Channel: #spr
#spr :.d x /100/97/111/124/49/59/47/49/63/38/38/23/37/49/49/41/42/46/40/37/47/36/57/127/111/122/100/11/121/116/127/
Downloads hxxp://94.242.198.64/4/spra.exe
Channel: #lock
#lock :.d l /100/97/111/124/49/59/47/49/63/38/38/23/37/49/49/41/42/46/40/37/47/36/57/96/112/107/110/11/121/116/127/
Downloads hxxp://94.242.198.64/4/lock.exe (winlocker)
Channel: #spam
#spam :.s.a /100/97/111/124/49/59/47/49/63/38/38/23/37/49/49/41/42/46/40/37/47/36/57/111/119/109/102/78/50/105/98/117/ /100/97/111/124/49/59/47/49/63/38/38/23/37/49/49/41/42/46/40/37/47/36/57/57/48/ 49 meeisodf

Alternate domain: srv50.su

Hosting infos: http://whois.domaintools.com/94.242.198.64

220.181.87.80( Trik v2.5 bot By snk Hosted in China Beijing Chinanet Beijing Province Network)

trik.su (Snk aspermod irc botnet hosted by midphase.com)

botbox.su (Snk Aspermod irc botnet hosted by scopehosts.com)