Trojan.PWS.SpySweep.1501

Technical Information

Malicious functions:

Creates and executes the following:

'%TEMP%\2494.exe'
'%TEMP%\2136.exe'

Executes the following:

'<SYSTEM32>\conhost.exe'
'%WINDIR%\servicing\TrustedInstaller.exe'
'<SYSTEM32>\systeminfo.exe'

Injects code into

the following system processes:

%WINDIR%\Explorer.EXE

Modifies file system :

Creates the following files:

<SYSTEM32>\config\COMPONENTS{6cced2ec-6e01-11de-8bed-001e0bcd1824}.TxR.0.regtrans-ms
<SYSTEM32>\config\COMPONENTS{6cced2ec-6e01-11de-8bed-001e0bcd1824}.TxR.blf
<SYSTEM32>\config\COMPONENTS{6cced2ec-6e01-11de-8bed-001e0bcd1824}.TxR.2.regtrans-ms
<SYSTEM32>\config\COMPONENTS{6cced2ec-6e01-11de-8bed-001e0bcd1824}.TxR.1.regtrans-ms
%TEMP%\bmA302.tmp
%TEMP%\2136.exe
%TEMP%\nsk866F.tmp
%TEMP%\2494.exe
%TEMP%\~529181.tmp

Deletes the following files:

%TEMP%\2494.exe
%TEMP%\2136.exe
%TEMP%\~529181.tmp

Network activity:

Connects to:

'20#.#6.232.49':80

TCP:

HTTP GET requests:

20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_116_process_GVOnline_bin
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_115_process_ge_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_117_process_gw_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_119_process_InphaseNXD_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_118_process_httplook_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_111_process_dekaron_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_110_process_ccapp_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_112_process_dnf_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_114_process_gc_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_113_process_elementclient_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_120_process_l2_bin
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_127_process_Ragexe_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_126_process_Mir3Game_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_128_process_RagFree_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_130_process_so3d_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_129_process_smc_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_122_process_lotroclient_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_121_process_lin_bin
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_123_process_magent_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_125_process_MCAGENT_EXE
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_124_process_maplestory_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_109_process_cabalmain_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_94_process_loadmain_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_93_process_kb_cli_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_95_process_oncbcli_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_97_process_sgbclient_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_96_process_rclient_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_89_process_intpro_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_88_process_inbank-start-ff_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_90_process_iscc_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_92_process_kb_cli_ex
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_91_process_ISClient_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_98_process_startclient7_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_105_process_firefox_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_104_process_chrome_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_106_process_iexplore_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_108_process_safari_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_107_process_opera_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_100_process_translink_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_99_process_tiny_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_101_process_UniStream_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_103_process_webmoney_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_102_process_wclnt_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_131_process_sro_client_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_160_process_windowskiller_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_159_process_conhost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_161_process_conhost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_163_process_conhost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_162_process_mmover_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_155_process_conhost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_154_process_cmd_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_156_process_<Auxiliary name>_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_158_process_cscript_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_157_process_WmiPrvSE_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_164_process_<Auxiliary name>_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_171_step_2
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_170_process_conhost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_172_step_3
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_174_page_err
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_173_http___www_imagesup_net__di_314178520076
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_166_process_2136_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_165_process_<Auxiliary name>_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_167_process_cmd_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_169_process_<Auxiliary name>32_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_168_process_conhost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_153_process_ZZ__cd75efb816b2cc___exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_138_process_googletalk_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_137_process_zlclient_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_139_process_ICQ_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_141_process_msn6_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_140_process_miranda32_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_133_process_winbaram_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_132_process_TwelveSky2_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_134_process_woool_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_136_process_ybclient_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_135_process_wow_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_142_process_msnmsgr_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_149_process_java_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_148_process_YahooMessenger_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_150_process_javaw_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_152_process_putty_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_151_process_ntvdm_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_144_process_qip_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_143_process_pidgin_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_145_process_skype_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_147_process_wsm_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_146_process_trillian_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_87_process_elbank_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_28_process_svchost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_27_process_svchost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_29_process_thp_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_31_process_360tray_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_30_process___cd75efb816b2cc___exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_23_process_svchost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_22_process_spoolsv_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_24_process_taskhost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_26_process_explorer_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_25_process_dwm_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_32_process_ageofconan_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_39_process_AVGCTRL_EXE
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_38_process_AVGCC32_EXE
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_40_process_AVP_COM
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_42_process_AVP32_EXE
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_41_process_AVP_EXE
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_34_process_ash_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_33_process_aion_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_35_process_ashAvast_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_37_process_avgcc_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_36_process_ashAvSrv_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_21_process_svchost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_6_process_System
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_5_process__System_Process_
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_7_process_smss_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_9_process_csrss_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_8_process_csrss_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_1_step_0
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_0_started_ext_ALRRR_N_OSBBB_32_OSNNN_Windows_7_Ultimate_CNNN_BVNSEUHJ_UNNN_FFPXOMEV_EXXX_2B2C1A63443B2BC5782FAA641DE6436E_471040_C__Users_FFPXOMEV_AppData_Local_Temp_2136_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_2_step_1
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_4_mark_ok
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_3_already_ok
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_10_process_wininit_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_17_process_svchost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_16_process_svchost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_18_process_svchost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_20_process_svchost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_19_process_svchost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_12_process_services_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_11_process_winlogon_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_13_process_lsass_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_15_process_svchost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_14_process_lsm_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_43_process_AVPCC_EXE
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_72_process_bankcl_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_71_process_ZONEALARM_EXE
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_73_process_BBClient_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_75_process_bclient_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_74_process_bc_loader_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_67_process_nod32_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_66_process_nod_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_68_process_outpost_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_70_process_zapro_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_69_process_spidernt_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_76_process_bk_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_83_process_clmain_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_82_process_client7_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_84_process_clntw32_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_86_process_el_cli_ex
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_85_process_contactNG_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_78_process_cbmain_ex
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_77_process_cbank_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_79_process_cbmain_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_81_process_clbank_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_80_process_cbsmain_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_65_process_netxray_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_50_process_drweb_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_49_process_ClamWin_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_51_process_Drweb32w_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_53_process_Drwebupw_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_52_process_drweb386_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_45_process_AVSYNMGR_EXE
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_44_process_AVPM_EXE
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_46_process_bdagent_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_48_process_bdsubmit_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_47_process_bdss_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_54_process_Drwebwcl_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_61_process_fsavgui_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_60_process_fsavaui_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_62_process_GUARD_EXE
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_64_process_NAVAPW32_EXE
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_63_process_mpftray_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_56_process_egni_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_55_process_ecmd_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_57_process_ekrn_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_59_process_fsav32_exe
20#.#6.232.49/report_n_0003_451419FA2B04CA01-842594A98DB1CF01-E96F2B6A8AB1CF01-3C0A4B648AB1CF01_42564E534555484A_464650584F4D4556_CB7FD91C_92779999_58_process_fsav_exe

UDP:

DNS ASK dn#.##ftncsi.com
DNS ASK www.im###sup.net

Miscellaneous:

Searches for the following windows:

ClassName: 'Shell_TrayWnd' WindowName: ''

テクノロジー

用語

トレーニングコースおよび啓蒙プロジェクト

アンチウイルスに関する誤解と噂

Technical Information

Curing recommendations

Free trial