Event ID - 23006

Port No23006
Service NameBackdoor.NetTrash
RFC Doc0
ProtocolTCP
DescriptionThis client part of a backdoor malware connects to an active server to be able to gain access and control its target computer.
Reference LinkBackdoor.NetTrash
AttackDetail:

Upon execution, this client component of a backdoor malware connects to a server. Once connected, it can perform the following on its target computer, which is infected with its server program:

control mouse
control cursor
open/close CD-ROM tray
show a message box
get list of installed Office applications
get system information
get drive information
set Caps lock, Num lock, and Scroll lock
show active windows
enable/disable CTRL-ALT-DEL
kill/restore taskbar and desktop
logout user
reboot/exit Windows
Server chat
Get time Windows is running
Close/remove server
Beep
Set monitor in standby
Restore monitor
Set Windows color settings
Enable/disable clipboard
Hang up internet connection
Start screensaver
Display dialog box
Open browser

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught

Did this information help you to resolve the problem?

Yes: My problem was resolved.
No: The information was not helpful / Partially helpful.