Technical Information
- [<HKLM>\System\CurrentControlSet\Services\IKEEXT] 'Start' = '00000002'
- '%WINDIR%\syswow64\netsh.exe' firewall set opmode disable
- '%ProgramFiles(x86)%\internet explorer\iexplore.exe' http://bi#.ly/W3aq1X
- firefox.exe
- %LOCALAPPDATA%\microsoft\windows\history\history.ie5\mshist012020022420200225\index.dat
- http://bi#.ly/W3aq1X
- http://go###e.co.uk/
- http://www.go###e.co.uk/
- DNS ASK bi#.ly
- DNS ASK go###e.co.uk
- ClassName: 'Static' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''