BotHunter Daily Analysis Index

BotHunter ®
Cyber-TA Internet Release
Computer Science Laboratory
SRI International

SAMPLE NAME: Allaple1.A_botHunter.txt
Last Updated: Tue Dec 29 11:44:44 2009

www.BOTHUNTER.net

Victim IP	Max Score	Profiles	CCs	Events
192.168.71.2	1.8	VIEW 1	192.168.71.177 Country: (Private Address) City: (Private Address).	777:7777005 (2) {udp} Outbound Scan: Detected intense non-malware port scanning of 30 IPs (25 /24s) (# pkts S/M/O/I=64838/56273/65380/37937): 139:36239, 443:29130, 80:50145, 53u:65535, 67u:10, 123u:1 1:2600269 {udp} Attack Prep: SPYWARE-DNS DNS lookup 7 chars (.info); 53<-1026 777:7777008 (3) {udp} Malware Scan: Detected intense malware port scanning of 30 IPs (25 /24s) (# pkts S/M/O/I=0/56406/65380/37937): 445:36212, 137u:20182, 138u:12