BotHunter ®
Cyber-TA Internet Release
Computer Science Laboratory
SRI International
SAMPLE NAME: NetWorm_botHunter.txt
Last Updated: Tue Dec 29 11:44:49 2009
|
|
|
|
Victim IP
|
Max Score
|
Profiles
|
CCs
|
Events
|
192.168.71.2
|
1.2 |
VIEW 1 |
|
- 777:7777005 (4) {udp} Outbound Scan: Detected moderate malware port scanning of 9 IPs (5 /24s) (# pkts S/M/O/I=7/144/6/10): 137u:126, 138u:18
- 1:2600268 {udp} Attack Prep: SPYWARE-DNS DNS lookup 6 chars (.info); 53<-1026
|
|
|
