Posted by Anonymous on Thu 7th Jun 17:25
download | new post | report as spam

  1. -----BEGIN PGP SIGNED MESSAGE-----
  2. Hash: RIPEMD160
  3.  
  4. We see your attempt at censoring this pastebin by getting it removed,
  5. we now raise you lots of mirroring of this pastebin on many places.
  6.  
  7. ~ NET-72-20-13-0-1 ~
  8.  
  9. Geo Location :  Temple, Texas
  10. Organization :  observers.net
  11.  
  12. CustName :      Observers.net
  13. Address :       1515 S 37th St
  14. City :          Temple
  15. StateProv :     TX
  16. PostalCode :    76504
  17. Country :       US
  18. RegDate :       2011-08-17
  19. Updated :       2011-08-17
  20.  
  21. 72.20.13.0 (72.20.13.0)
  22. 72.20.13.1 (observers.net)
  23. 72.20.13.2 (observers.net)
  24. 72.20.13.3 (loves.butthumping.org)
  25. 72.20.13.4 (shittalker.net)
  26. 72.20.13.5 (you.have.been.root-ed.net)
  27. 72.20.13.6 (gettin.laid.didnthappen.net)
  28. 72.20.13.7 (irc.isevil.biz)
  29. 72.20.13.8 (bratty.violates.us)
  30. 72.20.13.9 (onegirl.violates.us)
  31. 72.20.13.10 (ubersource.net)
  32. 72.20.13.11 (dominance.unrelenting.net)
  33. 72.20.13.12 (drama.continued.org)
  34. 72.20.13.13 (irc.observers.net)
  35. 72.20.13.14 (lo0.core-1.chi.nullrouted.net)
  36. 72.20.13.15 (THAT.bitch.from.observers.net)
  37. 72.20.13.16 (ate.out.youmoms.net)
  38. 72.20.13.17 (organized.crime.inspiringevil.com)
  39. 72.20.13.18 (just.cuz.i.got.a.HUGE.cock.dont.mean.you.gotta.be.afraid.org)
  40. 72.20.13.19 (observes.hateration.net)
  41. 72.20.13.20 (bratty.dramawhore.net)
  42. 72.20.13.21 (mr.slippyfist.com)
  43. 72.20.13.22 (oldschool.whitehat.net)
  44. 72.20.13.23 (.)
  45. 72.20.13.24 (.)
  46. 72.20.13.25 (.)
  47. 72.20.13.26 (ns1.observers.net)
  48. 72.20.13.27 (ns2.observers.net)
  49. 72.20.13.28 (.)
  50. 72.20.13.29 (THAT.bitch.from.observers.net)
  51. 72.20.13.30 (box.observers.net)
  52. 72.20.13.31 (.)
  53. 72.20.13.32 (.)
  54.  
  55. ~ NET-72-20-13-0-1 ~
  56.  
  57. ~ Intel on 72.20.13.13 ~
  58.  
  59. Botnet C&C Detected '72.20.13.13:6667' http://xml.ssdsandbox.net/ip?ip=72.20.13.13 (Run by http://www.threattrack.com/)
  60.         http://xml.ssdsandbox.net/view/7741d15577526d7595dc9111918fed9d
  61.         http://xml.ssdsandbox.net/view/7f62d5d24b5e0d7c8d2aea2fdcd70894
  62.         http://xml.ssdsandbox.net/view/ce61ba64faabb2a141faadead199b383
  63.                 http://isthisfilesafe.com/sha1/1F8F3FAEB090F1708D1051D77D70F1675D28F304_details.aspx
  64.                 https://www.virustotal.com/file/343f453318630b1b40719103766a4411d2e4dfe983d4abf337652f6092d63ca8/analysis/
  65.  
  66. Blacklisted by Shadowserver as C&C:
  67.         http://rules.emergingthreats.net/fwrules/emerging-Block-IPs.txt
  68.         http://rules.emergingthreats.net/blockrules/emerging-botcc.suricata.rules
  69.         "ET CNC Shadowserver Reported CnC Server IP (group 36)" "classtype:trojan-activity"
  70.  
  71. Another list as C&C Server (Original flagging probably by Shadowserver):
  72.         http://www.tc.edu.tw/net/netflow/lkout
  73.  
  74. Flagged P2P Worm C&C:
  75.         http://www.totalmalwareinfo.com/rus/P2P-Worm.Win32.Lolol.a
  76.  
  77. Hub for SRSIRC (irc.srsirc.com)
  78.         https://twitter.com/TheResGroup/status/210051792950669313
  79.  
  80. ~ Intel on 72.20.13.13 ~
  81. -----BEGIN PGP SIGNATURE-----
  82. Version: GnuPG v2.0.17 (MingW32)
  83.  
  84. iQIcBAEBAwAGBQJP0MYVAAoJEFydt9HxKF6qGP8P/2PLpFbOmPnZ5Kfsg6U+r5B6
  85. gqdNB8zbHajIw9PsQGHRZsjbcYhfUziD7omgrQ3UcN4Qhvw9M7+MNFCI0zpibDsh
  86. Qb1THMbbJprPyFlJECNDOTbgrxfllTrO0fbS//n0waixY00CJQPNBdhOJhykVoMH
  87. X10pLbw7OCXAl2CZQ/unuTyvmKiAwUQtbUEvEeHTROp4n/QwWb0TSzdn2oerW+B1
  88. q1P46CdyTUg+4EXMN/TnyYNgPmp0PCWCRQQjDgerNlIuMDU4VZA4EXkbDgcE4Kfw
  89. 7hDMBtVm7p3knerE716RLfUs1ZvEt6pzIQtq64Z6f8w2iiQ98kpcCUg4Xw0+A+0d
  90. ZynxUZSfveE6ohS1S8ugogvLli1vCq23PT4gPQDx87+ROw57vWlu0LaE4rjp9sUw
  91. nz+dwsjbYNsSe4zMODcnMyITlusyIIPUvnDmM1ZSxdy6kVR5G9vLv7h70PT1hEpi
  92. tZtixVevOKTZ5DfBc0QNE6HsFurD1rnZWr3Gh+xRZ+Wqx6S58daU0U5Y6C1XyD6B
  93. pqPiEIZawN2YWRlEpHdZlpdA6UJWeVOR0yc9yjbABNDPAj3+edC/8PT+5qsYJVuI
  94. ZeU7qqyARYC24VIrtoXKGeiR0z9cerTc7Tgzqd3gGHo/OLOKcnM2ok8dz5eHz6PT
  95. Vpw/ZpoIFSz7/tMNRk+X
  96. =0Ic0
  97. -----END PGP SIGNATURE-----

Submit a correction or amendment below (click here to make a fresh posting)
After submitting an amendment, you'll be able to view the differences between the old and new posts easily
.
Syntax highlighting:

To highlight particular lines, prefix each line with @@
   Remember me