On this page... (hide)

Introduction

Command and Control are the servers that the point of control for the criminals for their botnets. While our reports focus on the IRC C&C's, there are also HTTP, P2P, and hybrid servers that are being used. Many times a C&C may have leaf nodes to extend out its reliability. These will all be listed for each C&C and you may have more information per single botnet.

Fields

Field Description
IP Address The IP address of the Command and Control
Port The port being to service IRC
Channel What channel this botnet is residing on
Country What country the C&C resides in
Region This usually is represented by the city that the C&C resides within
State The state or province that the C&C resides within. This is usually only has data in to for the US.
Domain What domain name is being used for the IP
ASN Which ASN the C&C resides within
AS Name Name of the ASN
As Description Description of the ASN

Sample

"IP Address","Port","Channel","Country","Region","State","Domain","ASN","AS Name","AS Description"
"81.211.7.122 69.18.206.194",3267,"#B#t[r2]N#t","RU US","MOSCOW | COMMACK","MOSKVA | NEW YORK","GLDN.NET INVISION.COM","3216 12251","SOVAM INVISION","AS Golden Telecom, Moscow, Russia | Invision.com, Inc."
"81.211.7.122 69.18.206.194",3267,"#B#tN#t[r3]","RU US","MOSCOW | COMMACK","MOSKVA | NEW YORK","GLDN.NET INVISION.COM","3216 12251","SOVAM INVISION","AS Golden Telecom, Moscow, Russia | Invision.com, Inc."
"81.211.7.122 69.18.206.194",3267,"#B�t[r2]N�t","RU US","MOSCOW | COMMACK","MOSKVA | NEW YORK","GLDN.NET INVISION.COM","3216 12251","SOVAM INVISION","AS Golden Telecom, Moscow, Russia | Invision.com, Inc."
"81.211.7.122 69.18.206.194",3267,"#B.tN.t[r3]","RU US","MOSCOW | COMMACK","MOSKVA | NEW YORK","GLDN.NET INVISION.COM","3216 12251","SOVAM INVISION","AS Golden Telecom, Moscow, Russia | Invision.com, Inc."
"213.234.193.74 85.21.82.55",6667,"#secured","RU RU","MOSCOW | MOSCOW","MOSKVA | MOSKVA","NET.RU -","39442 8402","UNICO CORBINA","AS JSC UNICO | AS Corbina Telecom"

<< | Reports | >>