https://wiki.extremist.software/index.php?action=history&feed=atom&title=PRTG 2026-04-08T04:26:12Z Revision history for this page on the wiki MediaWiki 1.39.13 https://wiki.extremist.software/index.php?title=PRTG&diff=55884&oldid=prev 2016-12-18T05:14:23Z

<p>bot alert #909</p> <p><b>New page</b></p><div>Some sort of wiki attacking malware/bot is running on machines presenting to teh interwebs as a PRTG NETWORK MONITOR. There are a number of these devices presumably using a windows exploit for access. They seem to be clustered in certain ranges of IP&#039;s such as the following.<br /> &lt;br/&gt;&lt;br/&gt;<br /> They seem to be on a persistent mission to sell viagra and such boner pills, and they probably aren&#039;t doctors even!<br /> &lt;br/&gt;<br /> &lt;pre&gt;<br /> Starting Nmap 6.00 ( http://nmap.org ) at 2016-12-18 06:58 EET<br /> NSE: Loaded 17 scripts for scanning.<br /> Initiating SYN Stealth Scan at 06:58<br /> Scanning systemip.example.com (91.200.12.74) [100 ports]<br /> Discovered open port 445/tcp on 91.200.12.74<br /> Discovered open port 80/tcp on 91.200.12.74<br /> Discovered open port 49154/tcp on 91.200.12.74<br /> Discovered open port 135/tcp on 91.200.12.74<br /> Discovered open port 3389/tcp on 91.200.12.74<br /> Completed SYN Stealth Scan at 06:58, 2.09s elapsed (100 total ports)<br /> Initiating Service scan at 06:58<br /> &lt;/pre&gt;<br /> &lt;br/&gt;&lt;br/&gt;<br /> &lt;span style=&quot;font-size: 200pt; color:#909&quot;&gt;✨&lt;/span&gt;</div>

H4X0R