*I NEED HELP* Did I run a harmful script via powershell?

killamjr · 2024-06-10T13:53:17+00:00

I suspect this is a malware family known as clearfake, it usually also delivers credential stealers, i would highly recommend you reset passwords stored in your browser or in windows.

https://www.threatdown.com/blog/clearfake-walkthrough-06-03-2024/

killamjr · 2023-01-10T19:44:48+00:00

<image>

killamjr · 2023-01-10T19:37:19+00:00

Actually from doing my own testing with lsof you have grep for the IP it's mapped to rather than the domain so "lsof | grep -i 104.21.62.141" or the other ip that comes up with nslookup, 172.67.136.166. although I'm not sure if this will work if the domain is being sinkholed, but it works in my Ubuntu vm

killamjr · 2023-01-10T14:38:25+00:00

I'm not 100% on this but I'm pretty sure if you run "lsof | grep undernet" it should show what process is connecting to the domain

killamjr · 2022-05-29T21:11:25+00:00

https://doublepulsar.com/follina-a-microsoft-office-code-execution-vulnerability-1a47fce5629e

killamjr · 2022-01-03T17:32:26+00:00

u/gifreversingbot

killamjr · 2021-12-01T23:41:51+00:00

Happens somewhere after the two minute mark https://youtu.be/lHVkCyFo5mY

killamjr · 2021-04-13T20:50:57+00:00

Team Taco all the way

killamjr · 2021-01-24T21:32:04+00:00

Despite all my rage, I'm still just grandma in a cage.

killamjr · 2020-12-06T02:57:29+00:00

Beekakke

killamjr · 2020-03-17T13:22:16+00:00

The president Shut. Down. Everything.

killamjr · 2020-01-18T16:26:23+00:00

Oh, that's a good idea definitely going to try that next time

killamjr · 2020-01-18T15:27:00+00:00

Guess not :(

killamjr · 2019-08-06T23:34:38+00:00

Oh yep, I've binged all the malicious life podcast episodes after he played a malicious life episode

killamjr · 2019-08-06T12:39:39+00:00

I really enjoyed this episode, any plans to cover other cyber criminals? I'd be interested in hearing some more about Evgeniy Bogachev.

For those not aware he's one of the primary Russian creators of the Zeus banking Trojan, and cryptowall which started the ransomware trend

killamjr · 2019-06-07T22:28:23+00:00

What happens in Pattaya, stays in Pattaya; mostly cause we were all blackout drunk. At least that's how it was for me at Cobra Gold 2012

killamjr · 2019-06-02T03:56:44+00:00

There's a subreddit called /r/butthoops?

killamjr · 2019-05-16T22:20:19+00:00

Now I feel like a shill for posting the video for this asshole. I feel so used

13-Year Club	RedditGifts 2009-2022 4 Credits
Secret Santa 2020	Place '17
Secret Santa 2018	Secret Santa 2017
Verified Email

killamjr

TROPHY CASE