Donat Was Here

DonatShell
Server IP : 180.180.241.3 / Your IP : 216.73.216.252
Web Server : Microsoft-IIS/7.5
System : Windows NT NETWORK-NHRC 6.1 build 7601 (Windows Server 2008 R2 Standard Edition Service Pack 1) i586
User : IUSR ( 0)
PHP Version : 5.3.28
Disable Function : NONE
MySQL : ON | cURL : ON | WGET : OFF | Perl : OFF | Python : OFF | Sudo : OFF | Pkexec : OFF
Directory : C:/Program Files (x86)/Rising/Settings/22/Rav/
Upload File :
[ HOME SHELL ]
Current File : C:/Program Files (x86)/Rising/Settings/22/Rav/VirusLog.db
SQLite format 3@  ÝûöñìçâÝƒKtableRfwTDIEvtRfwTDIEvtCREATE TABLE RfwTDIEvt (
	ID INTEGER PRIMARY KEY, 
	Action INTEGER, 
	LocalAddr TEXT, 	
	Pathname TEXT, 
	RemoteAddr TEXT, 
	Tdievt INTEGER, 
	Time INTEGER,
	Flags INTEGER DEFAULT 0,
	DangeLevel INTEGER,
	SubClass INTEGER )‚"„tableRfwIPEvtRfwIPEvtCREATE TABLE RfwIPEvt (
	ID INTEGER PRIMARY KEY, 
	Action INTEGER, 
	Content TEXT, 
	Direction INTEGER, 
	LocalAddr TEXT, 
	Protocol INTEGER, 	
	RemoteAddr TEXT, 
	Rulename TEXT, 
	Time INTEGER,
	Flags INTEGER DEFAULT 0,
	DangeLevel INTEGER,
	SubClass INTEGER )‚a%%…tableRfwAttackEvtRfwAttackEvtCREATE TABLE RfwAttackEvt (
	ID INTEGER PRIMARY KEY, 
	Action INTEGER, 
	Content TEXT, 
	Direction INTEGER, 
	LocalAddr TEXT, 
	Protocol INTEGER, 
	RemoteAddr TEXT, 
	Rulename TEXT, 
	Time INTEGER,
	Flags INTEGER DEFAULT 0,
	IPPacket BLOB,
	PacketLen INTEGER,
	RuleGUID TEXT,
	Dang





vvÚÿü‚a‚a%%…tableRfwAttackEvtRfwAttackEvtCREATE TABLE RfwAttackEvt (
	ID INTEGER PRIMARY KEY, 
	Action INTEGER, 
	Content TEXT, 
	Direction INTEGER, 
	LocalAddr TEXT, 
	Protocol INTEGER, 
	RemoteAddr TEXT, 
	Rulename TEXT, 
	Time INTEGER,
	Flags INTEGER DEFAULT 0,
	IPPacket BLOB,
	PacketLen INTEGER,
	RuleGUID TEXT,
	DangeLevel INTEGER,
	SubClass INTEGER )‚"„tableRfwIPEvtRfwIPEvtCREATE TABLE RfwIPEvt (
	ID INTEGER PRIMARY KEY, 
	Action INTEGER, 
	Content TEXT, 
	Direction INTEGER, 
	LocalAddr TEXT, 
	Protocol INTEGER, 	
	RemoteAddr TEXT, 
	Rulename TEXT, 
	Time INTEGER,
	Flags INTEGER DEFAULT 0,
	DangeLevel INTEGER,
	SubClass INTEGER )~ƒKtableRfwTDIEvtRfwTDIEvtCREATE TABLE RfwTDIEvt (
	ID INTEGER PRIMARY KEY, 
	Action INTEGER, 
	LocalAddr TEXT, 	
	Pathname TEXT, 
	RemoteAddr TEXT, 
	Tdievt INTEGER, 
	Time INTEGER,
	Flags INTEGER DEFAULT 0,
	DangeLevel INTEGER,
	SubClass INTEGER )
=KÓ‚))ƒstableRfwOutFloodEvtRfwOutFloodEvtCREATE TABLE RfwOutFloodEvt (
	ID INTEGER PRIMARY KEY, 
	LocalAddr TEXT, 
	Pathname TEXT, 
	RemoteAddr TEXT, 
	Time INTEGER, 
	Protocol INTEGER, 
	Type INTEGER,
	Flags INTEGER DEFAULT 0,
	DangeLevel INTEGER,
	SubClass INTEGER,
	Result INTEGER)‚ƒetableRfwArpEvtRfwArpEvtCREATE TABLE RfwArpEvt (
	ID INTEGER PRIMARY KEY, 
	ConflictMAC TEXT, 
	IPAddr TEXT, 
	OriginalMAC TEXT, 
	Rulename TEXT, 
	Time INTEGER, 
	Type INTEGER,
	Flags INTEGER DEFAULT 0,
	DangeLevel INTEGER,
	SubClass INTEGER,
	Result INTEGER)%%MtableRfwWebFilterRfwWebFilter	CREATE TABLE RfwWebFilter (
	ID INTEGER PRIMARY KEY, 
	Time INTEGER, 
	Flags INTEGER DEFAULT 0 )‚*%%„tableTable_ActionTable_Action
CREATE TABLE Table_Action (
	ID INTEGER PRIMARY KEY, 
	Time INTEGER, 		--ÔÀ´ÓÐ¿ªÊ¼ºÍ½áÊøÊ±¼ä
	Action INTEGER,
	Finder INTEGER, 
	Found INTEGER, 	
	Clean INTEGER, 
	Scan INTEGER, 
	TaskNo INTEGER,
	Result INTEGER, 
	ErrorCode INTEGER, 
	Flags INTEGER DEFAULT 0)



ÃìØÃ	
O=îUèÿ	
O=îUÿ	
O=îS
  Œ[=œ_
%%ƒtableRfwEdRuleEvtRfwEdRuleEvtCREATE TABLE RfwEdRuleEvt (
	ID INTEGER PRIMARY KEY, 
	Action i++ƒ	tableTable_UpdateActTable_UpdateActCREATE TABLE Table_UpdateAct (
	ID INTEGER PRIMARY KEY, 
	Time INTEGER, 
	Action INTEGER, 
	Result INTEGER, 
	ErrorCode INTEGER, 
	FileList TEXT,
	FileSize INTEGER,
	Flags INTEGER DEFAULT 0)L	%%‚[tableTable_MonActTable_MonAct
CREATE TABLE Table_MonAct (
	ID INTEGER PRIMARY KEY, 
	Time INTEGER, 
	Action INTEGER, 
	Result INTEGER, 
	ErrorCode INTEGER,
	Flags INTEGER DEFAULT 0,
	MonID INTEGER)_
%%ƒtableRfwEdRuleEvtRfwEdRuleEvtCREATE TABLE RfwEdRuleEvt (
	ID INTEGER PRIMARY KEY, 
	Action INTEGER, 
	Rulename TEXT, 
	Ruletype INTEGER, 
	Time INTEGER,
	Result INTEGER,
	ErrorCode INTEGER,
	Flags INTEGER DEFAULT 0)@‚OtableRfwSysEvtRfwSysEvtCREATE TABLE RfwSysEvt (
	ID INTEGER PRIMARY KEY, 
	Action INTEGER, 
	Time INTEGER, 
	User TEXT,
	Result INTEGER, 
	ErrorCode INTEGER, 
	Flags INTEGER DEFAULT 0)




QEAƒ,
++†tableTable_RegAccConTable_RegAccConCREATE TABLE Table_RegAccCon (
	ID INTEGER PRIMARY KEY, 
	RuleID INTEGER, 
	RuleClass INTEGER, 
	RegApiMark INTEGER, 	
	ActionTime INTEGER, 
	ProcNam‚F--„?tableTable_FileAccConTable_FileAccConCREATE TABLE Table_FileAccCon (
	ID INTEGER PRIMARY KEY, 
	RuleID INTEGER, 
	RuleClass INTEGER, 
	FileApiMark INTEGER, 
	ActionTime INTEGER, 
	Procname TEXT, 
	TargetName TEXT,
	UserAction INTEGER, 
	Flags INTEGER DEFAULT 0,
	DangeLevel INTEGER,
	SubClass INTEGER,
	Result INTEGER)ƒ,
++†tableTable_RegAccConTable_RegAccConCREATE TABLE Table_RegAccCon (
	ID INTEGER PRIMARY KEY, 
	RuleID INTEGER, 
	RuleClass INTEGER, 
	RegApiMark INTEGER, 	
	ActionTime INTEGER, 
	ProcName TEXT, 
	TargetKeyName TEXT, 
	IsValue INTEGER, 	
	OldValueType INTEGER, 
	OldValue TEXT, 
	NewValueType INTEGER, 
	NewValue TEXT,
	UserAction INTEGER, 
	Flags INTEGER DEFAULT 0,
	DangeLevel INTEGER,
	SubClass INTEGER,
	Result INTEGER)


VV£R‚J--„GtableTable_ProcAccConTable_ProcAccConCREATE TABLE Table_ProcAccCon (
	ID INTEGER PRIMARY KEY, 
	RuleID INTEGER, 
	RuleClass INTEGER, 
	ProcApiMark INTEGER, 
	ActionTime INTEGER, 
	ProcName TEXT, 
	TargetProcName TEXT,
	UserAction NUMERIC, 
	Flags INTEGER DEFAULT 0,
	DangeLevel INTEGER,
	SubClass INTEGER,
	Result INTEGER)‚Z++„ktableTable_SysFunConTable_SysFunConCREATE TABLE Table_SysFunCon (
	ID INTEGER PRIMARY KEY, 
	RuleID INTEGER, 
	RuleClass INTEGER, 
	NtApiMark INTEGER, 	
	NtApiMarkHigh INTEGER, 
	ActionTime INTEGER, 
	ProcName TEXT, 
	TargetData TEXT,
	UserAction INTEGER,
	Flags INTEGER DEFAULT 0,
	DangeLevel INTEGER,
	SubClass INTEGER,
	Result INTEGER)


		ŽGƒ77…#tableTable_VirusActionInfoTable_VirusActionInfoCREATE TABLE Table_VirusActionInfo (
	ID INTEGER PRIMARY KEY, 
	VirusID INTEGER, 
	VirusName TEXT, 
	--ActiveProcList TEXT, 
	--CreateFileList TEXT, 
	ActionTime INTEGER, 
	OwernID INTEGER, 
	RuleID INTEGER,
	Flags INTEGER DEFAULT 0,
	IsRising INTEGER,
	IsDangerous INTEGER,
	DangeLevel INTEGER,
	SubClass INTEGER,
	Result INTEGER)611‚tableTable_VirusActProcTable_VirusActProcCREATE TABLE Table_VirusActProc (
	ID INTEGER PRIMARY KEY, 
	VirusActID INTEGER, 	--Íâ¼ü£¬Table_VirusActionInfo±íµÄID
	ProcPath TEXT)611‚tableTable_VirusActFileTable_VirusActFileCREATE TABLE Table_VirusActFile (
	ID INTEGER PRIMARY KEY, 
	VirusActID INTEGER, 	--Íâ¼ü£¬Table_VirusActionInfo±íµÄID
	FilePath TEXT)


f[êfMC

G

Ö#B¢O=äC:\WINDOWS\SYSTEM32\RUNDLL32.EXEC:\WINDOWS\SYSWOW64\AMD.DLL
Trojan.Win32.Generic.122342A2oM3

5

ÖIsO=äC:\WINDOWS\SYSTEM32\RUNDLL32.EXEC:\WINDOWS\BALL.EXE
Packer.Win32.Agent.f"M

5

ÖIsO=ãùC:\WINDOWS\SYSTEM32\RUNDLL32.EXEC:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\STARTUP\BALL.EXE
Packer.Win32.Agent.f
bb}^„++‡gtableTable_VirusInfoTable_VirusInfoCREATE TABLE Table_VirusInfo (
	ID INTEGER PRIMARY KEY, 
	Finder INTEGER, 
	VirusID INTEGER, 
	Type INTEGER, 	
	KillResult INTEGER, 
	FindTime INTEGER, 
	Path TEXT, 
	FileName TEXT, 
	ClientID TEXT, 
	ClientName TEXT, 
	ClientIP INTEGER, 
	CenterID TEXT, 
	Centername TEXT, 	
	VirusSource TEXT, 
	strReserve TEXT, 
	nReserve INTEGER, 
	VirusFrom TEXT,
	ObjPath TEXT, 
	HostType INTEGER, 
	VirusName TEXT, 
	Virusalias TEXT, 
	BackupFile TEXT, 
	BackupResult INTEGER, 
	Flags INTEGER DEFAULT 0)ƒ%%…CtableTable_WebMonTable_WebMonCREATE TABLE Table_WebMon (
	ID INTEGER PRIMARY KEY, 		
	TrigHoleType INTEGER, 
	AccessUrl TEXT, 
	ProcessPath TEXT,  		
	VirusID INTEGER, 
	TrojanUrl TEXT,
	VirusName TEXT,		
	CreateFilePath TEXT,
	HoleName TEXT,
	ClsID	TEXT,
	UsedHodeType INTEGER,
	Time INTEGER,
	Flags INTEGER DEFAULT 0,
	DangeLevel INTEGER,
	SubClass INTEGER,
	Result INTEGER)


ŠIŠ{##=tableTable_ActIDTable_ActID CREATE TABLE Table_ActID( 
	ID INTEGER PRIMARY KEY, 
	ClassID INTEGER,
	LastID INTEGER )@YtableVersionVersionCREATE TABLE Version (Version INTEGER)4--‚tableTable_DefDescripTable_DefDescripCREATE TABLE Table_DefDescrip(
	ID INTEGER PRIMARY KEY, 
	Class INTEGER,
	SubClass INTEGER,
	DangeLevel INTEGER,
	Description INTEGER )
ûû
Anon7 - 2022
AnonSec Team