To report a botnet PRIVATELY please email: [EMAIL PROTECTED] ----------
Small C&C:
Server IP: 194.226.192.86 and 80.203.175.154 Port: 6667 Server Password: [none] Nick string: NICK USA|1234 User string: USER blaqua 0 0 :USA|1234 Usermode: -x+B (bot ip's would be visible) Channel: #sandwitch# Channel Key: FUCK0FF (zero not o) Channel Mode: +u (cant see other bots in chan) Channel topic: .asc dcom135 150 5 0 -r -s Bot population: ~700 Bot MD5: f4b0044aea8b0aae95211fc2629c9aa9 Report on f4b0044aea8b0aae95211fc2629c9aa9 - ******************************************** MD5: f4b0044aea8b0aae95211fc2629c9aa9 AVG: No Virus Found BitDefender: No Virus Found ClamAV: No Virus Found F-Prot: No Virus Found inetnum: 80.203.175.152 - 80.203.175.155 netname: SAETRUM-DATAMARKED-NO-1 descr: Kent Rune Setrum Datamarked AS country: NO inetnum: 194.226.192.0 - 194.226.194.255 netname: CSA-SPB-2 descr: Center for Supercomputing Applications country: RU Thanks to PaulR for the binary submission -- Nicholas Albright http://www.shadowserver.org [EMAIL PROTECTED] (rm -rf C\&C)
pgp2hr4lQso7F.pgp
Description: PGP signature
_______________________________________________ To report a botnet PRIVATELY please email: [EMAIL PROTECTED] All list and server information are public and available to law enforcement upon request. http://www.whitestar.linuxbox.org/mailman/listinfo/botnets
