Tag Archives: Tbot Tor The Onion Router Botnet Malware – checkip.dyndns.org good indicator – Traffic Sample

Tbot Tor The Onion Router Botnet Malware – checkip.dyndns.org good indicator – Traffic Sample

2012-10-07 10:44:48.472379 IP 4.2.2.2.53 > 172.16.253.130.53: 57268 4/0/0 CNAME checkip.dyndns[.]com., A 216.146.38.70, A 216.146.39.70, A 91.198.22.70 (116) E….>……………5.5.|……………checkip.dyndns.org………………checkip.dyndns[.]com..0…………&F.0…………’F.0……….[..F 2012-10-07 10:44:48.472399 IP 8.8.8.8.53 > 172.16.253.130.53: 57268 4/0/0 CNAME checkip.dyndns[.]com., A 216.146.39.70, A 91.198.22.70, A 216.146.38.70 (116) E….?…..z………5.5.|……………checkip.dyndns.org………………checkip.dyndns[.]com..0…………’F.0……….[..F.0…………&F 2012-10-07 10:44:48.483982 IP 172.16.253.130.1079 > 216.146.38.70.80: Flags [S], seq 1372600659, win 64240, options [mss 1460,nop,nop,sackOK], length 0 E..0.R@…R ……&F.7.PQ.9S….p…P………..… Read More »

Share Button