Trojan.DownLoader46.1640

Technical Information

Network activity

Connects to

'av##dex.net':80
's4.##stats.com':443
'av###.gg94in.com':80
'af#####te.dtiserv.com':80
'im#.av8d.tv':80
'im#.av8d.tv':443
'sa####.dti.ne.jp':80
'cp#.to':443
'i-###e-seen.com':80
'i-###e-seen.com':443
'tr###.sitetag.us':80
's1#.#nzz.com':80
't1.###reme-dm.com':80
'e1.###reme-dm.com':80
'x1.#.lencr.org':80
'oc##.#ectigo.com':80
'x2.#.lencr.org':80
'r3.#.lencr.org':80
'cp#.to':80
'microsoft.com':80
's1#.#istats.com':80
'hd##ga.com':443
'im####.6001xx.com':80
'i.##nyu.com':80
'xx#.#p-s##.com':80
'hd##ga.com':80
'li##.twrank.com':80
'i.##gur.com':80
'pi###navi.net':80
'in##.net':80
'av##dex.net':443
'w2.##-av.com':80
'd9##.520204.com':80
'av###.s##y-more.com':443
'cd######c.xvideos-cdn.com':443
'localhost':443
'i.##gur.com':443
'im####.xvideos-cdn.com':443
'tw####4.twlisa.com':80
'av##b.com':80
'av###.gg94in.com':443

TCP

HTTP GET requests

http://im####.6001xx.com/img_upload/allfile/homepic/hpic_6458_1.jpg
http://www.sa####.dti.ne.jp/~fob/rank/00752-1.jpg
http://www.i-###e-seen.com/dmm_image/00281/kousin.jpg
http://www.sa####.dti.ne.jp/~fob/link00000/00004.jpg
http://tw####4.twlisa.com/images188/31004.jpg
http://af#####te.dtiserv.com/404/new_080410/images/thumb_h0230_02.jpg
http://im#.av8d.tv/images/videophoto/15094/cover_3.jpg
http://cp#.to/movie/5624/160120.jpg
http://tw####4.twlisa.com/images188/60182.jpg
http://av###.gg94in.com/promo/images/468x60.jpg
http://tw####4.twlisa.com/images188/65863.jpg
http://tw####4.twlisa.com/web/byelove/asp13/images/new1.gif
http://w2.##-av.com/media/wmvvideos/tmb/44972/1.jpg
http://av##dex.net/avimg/banner/avsee2.gif
http://tw####4.twlisa.com/images188/22459.jpg
http://tw####4.twlisa.com/images188/33605.jpg
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_9127_1.jpg
http://cp#.to/movie/5628/160120.jpg
http://www.sa####.dti.ne.jp/~fob/rank/00700-1.jpg
http://tw####4.twlisa.com/images188/65854.jpg
http://tw####4.twlisa.com/images188/33319.jpg
http://r3.#.lencr.org/MFMwUTBPME0wSzAJBgUrDgMCGgUABBRI2smg%2ByvTLU%2Fw3mjS9We3NfmzxAQUFC6zF7dYVsuuUAlA5h%2BvnYsUwsYCEgTZYNLJac2ymPGv44O7kgMvdg%3D%3D
http://r3.#.lencr.org/MFMwUTBPME0wSzAJBgUrDgMCGgUABBRI2smg%2ByvTLU%2Fw3mjS9We3NfmzxAQUFC6zF7dYVsuuUAlA5h%2BvnYsUwsYCEgTCxPnp1BiE8RAT1rnzZGDMvA%3D%3D
http://x2.#.lencr.org/
http://oc##.#ectigo.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRDC9IOTxN6GmyRjyTl2n4yTUczyAQUjYxexFStiuF36Zv5mwXhuAGNYeECEAjfQHcV96FOi3d67vOshlQ%3D
http://i.##gur.com/Mn6m2.gif
http://i.##gur.com/t620z.gif
http://i.##gur.com/mX7sg.gif
http://i.##gur.com/tdqep.giff
http://i.##gur.com/ijMrS.gif
http://i.##gur.com/vZbgZ.gif
http://x1.#.lencr.org/
http://e1.###reme-dm.com/s10.g?lo#######################################
http://t1.###reme-dm.com/i.gif
http://s1#.#nzz.com/stat.php?id################################
http://tr###.sitetag.us/tracking.js?ha###################################
http://tw####4.twlisa.com/images188/33313.jpg
http://tw####4.twlisa.com/images188/90552.jpg
http://pi###navi.net/dougasam/140314/100.jpg
http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_8447_1.jpg
http://s1#.#istats.com/js15_as.js
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_13659_1.jpg
http://www.hd##ga.com/08s0dcf222.jpg
http://i.##gur.com/AnBB2.gif
http://i.##gur.com/9fSqY.gif
http://li##.twrank.com/framelinks.php?id#############
http://av##dex.net/avimg/banner/city-banner1_468x60.gif
http://w2.##-av.com/media/wmvvideos/tmb/32958/1.jpg
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_12469_1.jpg
http://w2.##-av.com/media/wmvvideos/tmb/33001/1.jpg
http://i.##gur.com/GgJyl3d.gif
http://xx#.#p-s##.com/thum/fukyu/news2/f1203_100100.jpg
http://xx#.#p-s##.com/thum/fukyu/news2/f0317_100100.jpg
http://i.##nyu.com/puny/i-like-sample/p0407_100100.jpg
http://www.av##dex.net/image/twavi/03.jpg
http://www.av##dex.net/image/twavi/04.jpg
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_11274_1.jpg
http://i.##gur.com/5Scjb.gif
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_12709_1.jpg
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_9740_1.jpg
http://d9##.520204.com/LoverVideo/images/into_01.gif
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_15225_1.jpg
http://www.av##b.com/js/outertea-yes168ad.js
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_7979_1.jpg
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_6888_1.jpg
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_13791_1.jpg
http://www.pu##u.com/puny/i-like-sample/p0407_100100.jpg
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_2590_1.jpg
http://tw####4.twlisa.com/images188/34520.jpg
http://tw####4.twlisa.com/images188/90567.jpg
http://li##.twrank.com/js.js
http://w2.##-av.com/media/wmvvideos/tmb/32924/1.jpg
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_14390_1.jpg
http://w2.##-av.com/media/wmvvideos/tmb/32953/1.jpg
http://w2.##-av.com/media/wmvvideos/tmb/32926/1.jpg
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_15387_1.jpg
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_15264_1.jpg
http://d9##.520204.com/LoverVideo/images/tel04.gif
http://im####.6001xx.com/img_upload/allfile/homepic/hpic_15455_1.jpg
http://www.av##dex.net/image/twavi/06.jpg