Technical Information
Modifies file system :
Creates the following files:
- %WINDIR%\SysalcQ2.xml
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\1058[1].xml
- %WINDIR%\SysalcQ.xml
- %WINDIR%\Javaregfile.swq
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\1058[1].xml
Network activity:
Connects to:
- 'www.ne###cde.info':80
- 'www.ab###mak.info':80
- 'localhost':1035
TCP:
HTTP GET requests:
- www.ne###cde.info/data3/1058.xml
- www.ab###mak.info/data3/1058.xml
UDP:
- DNS ASK www.ne###cde.info
- DNS ASK www.ab###mak.info
Miscellaneous:
Searches for the following windows:
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: 'SunJava JRE'
