izleindir.fileave.com

– DNS Queries:izleindir.fileave.com
– HTTP Conversations:64.62.181.43:80 – [izleindir.fileave.com]
Request: GET /lasted.exe
Response: 200 “OK”
Download File:

  • URL: http://izleindir.fileave.com/lasted.exe
  • Local File: C:Windowswuasgrd.exe
  • Successful: 1
  • Api-Function: URLDownloadToFileA
  • Download File:
  • URL: http://izleindir.fileave.com/defacer.exe
  • Local File: C:Windowswuagrd.exe
  • Successful: 1
  • Api-Function: URLDownloadToFileA
  • Transport Protocol: TCP
  • Remote Address: 64.62.181.43
  • Remote Port: 80
  • Protocol: HTTP
  • Connection Established

  • Connections
    • Server: shockboy.no-ip.biz
    • Port: 8080
    • Service: INTERNET_SERVICE_HTTP
    • Successful: 1
    • Api-Function: InternetConnectA
    • Server: lodos2005.com
    • Port: 80
    • Service: INTERNET_SERVICE_HTTP
    • Successful: 1
    • Api-Function: InternetConnectA
  • Open URL:
    • Server: shockboy.no-ip.biz
    • URL: /sh0ck/?act=online&s4=0&s5=0&nickname=ZHdpLTk2MjVhYzJlMjc1WzY3ODkwXQ==
    • HTTP Verb: POST
    • Flags: INTERNET_FLAG_KEEP_CONNECTION
    • Successful: 1
    • Api-Function: HttpOpenRequestA
    • Server: lodos2005.com
    • URL: /sh0ck3r/?act=online&s4=0&s5=0&nickname=ZHdpLTk2MjVhYzJlMjc1WzY3ODkwXQ==
    • HTTP Verb: POST
    • Flags: INTERNET_FLAG_KEEP_CONNECTION
    • Successful: 1
    • Api-Function: HttpOpenRequestA
    • Server: lodos2005.com
    • URL: /sh0ck/?act=online&s4=0&s5=0&nickname=ZHdpLTk2MjVhYzJlMjc1WzY3ODkwXQ==
    • HTTP Verb: POST
    • Flags: INTERNET_FLAG_KEEP_CONNECTION
    • Successful: 1
    • Api-Function: HttpOpenRequestA