Technical Information
- <SYSTEM32>\plsys.exe (downloaded from the Internet)
- <SYSTEM32>\avsys.exe (downloaded from the Internet)
- <SYSTEM32>\itsys.exe (downloaded from the Internet)
- <SYSTEM32>\stsys.exe (downloaded from the Internet)
- <SYSTEM32>\hssys.exe (downloaded from the Internet)
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\plsys[1].jpg
- <SYSTEM32>\itsys.exe
- <SYSTEM32>\plsys.exe
- <SYSTEM32>\avsys.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\avsys[1].jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\itsys[1].jpg
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\stsys[1].jpg
- <SYSTEM32>\stsys.exe
- <SYSTEM32>\hssys.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\hssys[1].jpg
- 'ai#####anceiro.x10.mx':80
- 'localhost':1035
- ai#####anceiro.x10.mx/plsys.jpg
- ai#####anceiro.x10.mx/avsys.jpg
- ai#####anceiro.x10.mx/itsys.jpg
- ai#####anceiro.x10.mx/stsys.jpg
- ai#####anceiro.x10.mx/hssys.jpg
- DNS ASK ai#####anceiro.x10.mx
- '<Private IP address>':1036