Technical Information
- <SYSTEM32>\tasks\{79973274-4c59-5202-e823-832f024b0537}
- %WINDIR%\syswow64\netsh.exe
- iexplore.exe
- %APPDATA%\icq-profile\update\splash_banner\moacwyb.exe
- %LOCALAPPDATA%\microsoft\windows\usrclass.dat.log1
- %LOCALAPPDATA%\microsoft\windows\usrclass.dat
- DNS ASK ro##.###ktravestiler.net
- DNS ASK ro###.##rktravestiler.net
- ClassName: '' WindowName: ''
- '%APPDATA%\icq-profile\update\splash_banner\moacwyb.exe'
- '%APPDATA%\icq-profile\update\splash_banner\moacwyb.exe' ' (with hidden window)
- '%WINDIR%\syswow64\netsh.exe' ' (with hidden window)
- '%WINDIR%\syswow64\netsh.exe'