Technical Information
- C:\winx32\iNumber.exe
- C:\winx32\iLive.exe
- C:\winx32\iConfig.dll
- C:\winx32\iLive.exe (downloaded from the Internet)
- C:\winx32\iConfig.dll (downloaded from the Internet)
- C:\winx32\iNumber.exe (downloaded from the Internet)
- <SYSTEM32>\attrib.exe +S +H "Form1"
- <SYSTEM32>\attrib.exe +S +H "C:\winx32"
- <SYSTEM32>\regsvr32.exe /s \winx32\iMega.dll
- C:\winx32\iNumber.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\e7e2[1]
- C:\winx32\iLive.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\YPORKZYZ\bshlmY[1]
- C:\winx32\iMega.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\e7ev[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\e7ex[1]
- C:\winx32\iConfig.dll
- %TEMP%\~DF2649.tmp
- 'zi#.net':80
- '2.#y':80
- 'localhost':1036
- 2.#y/e7e2
- zi#.net/bshlmY
- 2.#y/e7ev
- 2.#y/e7ex
- DNS ASK zi#.net
- DNS ASK 2.#y
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''