cancanmt2.no-ip.biz: type A, class IN, addr 95.9.90.39
Dest Port:100
Summary
Creates temporary files
Queries a list of all running processes
Performs DNS lookups
Enables debug privileges
Creates files inside the system directory
Loads the internet automation component (ieframe.dll)
Creates an autostart registry key
Checks for debuggers (Devices)
Creates a thread in another existing process (thread injection)
infos about RAT user:
http://whois.domaintools.com/95.9.90.39