Malware Report

Malware Report - Results

This report shows all the different areas TAZER analyzes for the sample: Host, Network Activity, and Detection.

Malware Search Criteria:

MD5 =9714a33e01c0a06ddd7a0febfee193ab

Malware Report - Results

File MD5Sum	SHA1SUM	SHA256SUM	FUZZY HASH	File Size
9714a33e01c0a06ddd7a0febfee193ab	0fec07d758d9c4bcfb0f8259250112093de152e4	87d7ac5388b67542834fa037dece7ea1d4e753fb6910a7b810aca50882c13ee0	1536:imu+IiTtB0WUQPOrrXtJSGqlhfvXeK69iUP4sNjgwN1L5YP0Zz8QADNG2h9AToJS:yenNUQmrrj	111269

File Results

File Name
ami.exe

SNORT Results

Snort Class	Snort Alert	Count
N/A	No snort alerts generated	0

AV Results

AV Alert	AV Vendor
Trojan	Symantec
Generic.dx	McAfee
IM-Worm.Win32.Agent.v	Kaspersky

Folders (Added) - ICC Results

Path	Folder Name

Files (Added) - ICC Results

Path	File Name
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	active directory.pdf.pif
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	Advanced C++ MFC Programming Developer Studio.pdf.pif
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	ANSYS training.pif
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	BitDefender serial number.exe
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	brontok killer.exe
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	cad_safe_matlab_sap_sample.setup.exe
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	Google_Earth_BZXV.setup.exe
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	IE7.setup.exe
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	kaspersky activation key.cmd
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	microsoft ASP.NET training.pif
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	microsoft C# training.exe
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	microsoft MSCE training.exe
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	microsoft NetWorking training.exe
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	microsoft Windows active training.pdf.pif
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	MSproject.exe
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	New Acrobat professional.pif
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	nod32 serial number.cmd
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	Norton Ghost.exe
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	Sex training.dat.pif
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	Symantec serial number.exe
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	TCP-IP & DNS.pdf.pif
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	VB.NET complete reference.pdf.pif
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	visual c# complete reference.pdf.pif
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	visual c++ complete reference.pdf.pif
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	WebShot.scr
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	windows activation.exe
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	windows server.pdf.cmd
c:/Program Files/Adobe/Reader 8.0/Reader/IDTemplates	xnxx.pif
c:/Program Files/Common Files/Microsoft Shared	active directory.pdf.pif
c:/Program Files/Common Files/Microsoft Shared	Advanced C++ MFC Programming Developer Studio.pdf.pif
c:/Program Files/Common Files/Microsoft Shared	ANSYS training.pif
c:/Program Files/Common Files/Microsoft Shared	BitDefender serial number.exe
c:/Program Files/Common Files/Microsoft Shared	brontok killer.exe
c:/Program Files/Common Files/Microsoft Shared	cad_safe_matlab_sap_sample.setup.exe
c:/Program Files/Common Files/Microsoft Shared	Google_Earth_BZXV.setup.exe
c:/Program Files/Common Files/Microsoft Shared	IE7.setup.exe
c:/Program Files/Common Files/Microsoft Shared	kaspersky activation key.cmd
c:/Program Files/Common Files/Microsoft Shared	microsoft ASP.NET training.pif
c:/Program Files/Common Files/Microsoft Shared	microsoft C# training.exe
c:/Program Files/Common Files/Microsoft Shared	microsoft MSCE training.exe
c:/Program Files/Common Files/Microsoft Shared	microsoft NetWorking training.exe
c:/Program Files/Common Files/Microsoft Shared	microsoft Windows active training.pdf.pif
c:/Program Files/Common Files/Microsoft Shared	MSproject.exe
c:/Program Files/Common Files/Microsoft Shared	New Acrobat professional.pif
c:/Program Files/Common Files/Microsoft Shared	nod32 serial number.cmd
c:/Program Files/Common Files/Microsoft Shared	Norton Ghost.exe
c:/Program Files/Common Files/Microsoft Shared	Sex training.dat.pif
c:/Program Files/Common Files/Microsoft Shared	Symantec serial number.exe
c:/Program Files/Common Files/Microsoft Shared	TCP-IP & DNS.pdf.pif
c:/Program Files/Common Files/Microsoft Shared	VB.NET complete reference.pdf.pif
c:/Program Files/Common Files/Microsoft Shared	visual c# complete reference.pdf.pif
c:/Program Files/Common Files/Microsoft Shared	visual c++ complete reference.pdf.pif
c:/Program Files/Common Files/Microsoft Shared	WebShot.scr
c:/Program Files/Common Files/Microsoft Shared	windows activation.exe
c:/Program Files/Common Files/Microsoft Shared	windows server.pdf.cmd
c:/Program Files/Common Files/Microsoft Shared	xnxx.pif
c:/Program Files/Movie Maker/Shared	active directory.pdf.pif
c:/Program Files/Movie Maker/Shared	Advanced C++ MFC Programming Developer Studio.pdf.pif
c:/Program Files/Movie Maker/Shared	ANSYS training.pif
c:/Program Files/Movie Maker/Shared	BitDefender serial number.exe
c:/Program Files/Movie Maker/Shared	brontok killer.exe
c:/Program Files/Movie Maker/Shared	cad_safe_matlab_sap_sample.setup.exe
c:/Program Files/Movie Maker/Shared	Google_Earth_BZXV.setup.exe
c:/Program Files/Movie Maker/Shared	IE7.setup.exe
c:/Program Files/Movie Maker/Shared	kaspersky activation key.cmd
c:/Program Files/Movie Maker/Shared	microsoft ASP.NET training.pif
c:/Program Files/Movie Maker/Shared	microsoft C# training.exe
c:/Program Files/Movie Maker/Shared	microsoft MSCE training.exe
c:/Program Files/Movie Maker/Shared	microsoft NetWorking training.exe
c:/Program Files/Movie Maker/Shared	microsoft Windows active training.pdf.pif
c:/Program Files/Movie Maker/Shared	MSproject.exe
c:/Program Files/Movie Maker/Shared	New Acrobat professional.pif
c:/Program Files/Movie Maker/Shared	nod32 serial number.cmd
c:/Program Files/Movie Maker/Shared	Norton Ghost.exe
c:/Program Files/Movie Maker/Shared	Sex training.dat.pif
c:/Program Files/Movie Maker/Shared	Symantec serial number.exe
c:/Program Files/Movie Maker/Shared	TCP-IP & DNS.pdf.pif
c:/Program Files/Movie Maker/Shared	VB.NET complete reference.pdf.pif
c:/Program Files/Movie Maker/Shared	visual c# complete reference.pdf.pif
c:/Program Files/Movie Maker/Shared	visual c++ complete reference.pdf.pif
c:/Program Files/Movie Maker/Shared	WebShot.scr
c:/Program Files/Movie Maker/Shared	windows activation.exe
c:/Program Files/Movie Maker/Shared	windows server.pdf.cmd
c:/Program Files/Movie Maker/Shared	xnxx.pif
c:/Program Files/Mozilla Firefox/modules	active directory.pdf.pif
c:/Program Files/Mozilla Firefox/modules	Advanced C++ MFC Programming Developer Studio.pdf.pif
c:/Program Files/Mozilla Firefox/modules	ANSYS training.pif
c:/Program Files/Mozilla Firefox/modules	BitDefender serial number.exe
c:/Program Files/Mozilla Firefox/modules	brontok killer.exe
c:/Program Files/Mozilla Firefox/modules	cad_safe_matlab_sap_sample.setup.exe
c:/Program Files/Mozilla Firefox/modules	Google_Earth_BZXV.setup.exe
c:/Program Files/Mozilla Firefox/modules	IE7.setup.exe
c:/Program Files/Mozilla Firefox/modules	kaspersky activation key.cmd
c:/Program Files/Mozilla Firefox/modules	microsoft ASP.NET training.pif
c:/Program Files/Mozilla Firefox/modules	microsoft C# training.exe
c:/Program Files/Mozilla Firefox/modules	microsoft MSCE training.exe
c:/Program Files/Mozilla Firefox/modules	microsoft NetWorking training.exe
c:/Program Files/Mozilla Firefox/modules	microsoft Windows active training.pdf.pif
c:/Program Files/Mozilla Firefox/modules	MSproject.exe
c:/Program Files/Mozilla Firefox/modules	New Acrobat professional.pif
c:/Program Files/Mozilla Firefox/modules	nod32 serial number.cmd
c:/Program Files/Mozilla Firefox/modules	Norton Ghost.exe
c:/Program Files/Mozilla Firefox/modules	Sex training.dat.pif
c:/Program Files/Mozilla Firefox/modules	Symantec serial number.exe
c:/Program Files/Mozilla Firefox/modules	TCP-IP & DNS.pdf.pif
c:/Program Files/Mozilla Firefox/modules	VB.NET complete reference.pdf.pif
c:/Program Files/Mozilla Firefox/modules	visual c# complete reference.pdf.pif
c:/Program Files/Mozilla Firefox/modules	visual c++ complete reference.pdf.pif
c:/Program Files/Mozilla Firefox/modules	WebShot.scr
c:/Program Files/Mozilla Firefox/modules	windows activation.exe
c:/Program Files/Mozilla Firefox/modules	windows server.pdf.cmd
c:/Program Files/Mozilla Firefox/modules	xnxx.pif
c:/WINDOWS/pchealth/helpctr/Temp	active directory.pdf.pif
c:/WINDOWS/pchealth/helpctr/Temp	Advanced C++ MFC Programming Developer Studio.pdf.pif
c:/WINDOWS/pchealth/helpctr/Temp	ANSYS training.pif
c:/WINDOWS/pchealth/helpctr/Temp	BitDefender serial number.exe
c:/WINDOWS/pchealth/helpctr/Temp	brontok killer.exe
c:/WINDOWS/pchealth/helpctr/Temp	cad_safe_matlab_sap_sample.setup.exe
c:/WINDOWS/pchealth/helpctr/Temp	Google_Earth_BZXV.setup.exe
c:/WINDOWS/pchealth/helpctr/Temp	IE7.setup.exe
c:/WINDOWS/pchealth/helpctr/Temp	kaspersky activation key.cmd
c:/WINDOWS/pchealth/helpctr/Temp	microsoft ASP.NET training.pif
c:/WINDOWS/pchealth/helpctr/Temp	microsoft C# training.exe
c:/WINDOWS/pchealth/helpctr/Temp	microsoft MSCE training.exe
c:/WINDOWS/pchealth/helpctr/Temp	microsoft NetWorking training.exe
c:/WINDOWS/pchealth/helpctr/Temp	microsoft Windows active training.pdf.pif
c:/WINDOWS/pchealth/helpctr/Temp	MSproject.exe
c:/WINDOWS/pchealth/helpctr/Temp	New Acrobat professional.pif
c:/WINDOWS/pchealth/helpctr/Temp	nod32 serial number.cmd
c:/WINDOWS/pchealth/helpctr/Temp	Norton Ghost.exe
c:/WINDOWS/pchealth/helpctr/Temp	Sex training.dat.pif
c:/WINDOWS/pchealth/helpctr/Temp	Symantec serial number.exe
c:/WINDOWS/pchealth/helpctr/Temp	TCP-IP & DNS.pdf.pif
c:/WINDOWS/pchealth/helpctr/Temp	VB.NET complete reference.pdf.pif
c:/WINDOWS/pchealth/helpctr/Temp	visual c# complete reference.pdf.pif
c:/WINDOWS/pchealth/helpctr/Temp	visual c++ complete reference.pdf.pif
c:/WINDOWS/pchealth/helpctr/Temp	WebShot.scr
c:/WINDOWS/pchealth/helpctr/Temp	windows activation.exe
c:/WINDOWS/pchealth/helpctr/Temp	windows server.pdf.cmd
c:/WINDOWS/pchealth/helpctr/Temp	xnxx.pif
c:/WINDOWS/Prefetch	SANDNET.EXE-2012C478.pf
c:/WINDOWS/Prefetch	SYSTEM.EXE-0B150F3C.pf
c:/WINDOWS/security/templates	active directory.pdf.pif
c:/WINDOWS/security/templates	Advanced C++ MFC Programming Developer Studio.pdf.pif
c:/WINDOWS/security/templates	ANSYS training.pif
c:/WINDOWS/security/templates	BitDefender serial number.exe
c:/WINDOWS/security/templates	brontok killer.exe
c:/WINDOWS/security/templates	cad_safe_matlab_sap_sample.setup.exe
c:/WINDOWS/security/templates	Google_Earth_BZXV.setup.exe
c:/WINDOWS/security/templates	IE7.setup.exe
c:/WINDOWS/security/templates	kaspersky activation key.cmd
c:/WINDOWS/security/templates	microsoft ASP.NET training.pif
c:/WINDOWS/security/templates	microsoft C# training.exe
c:/WINDOWS/security/templates	microsoft MSCE training.exe
c:/WINDOWS/security/templates	microsoft NetWorking training.exe
c:/WINDOWS/security/templates	microsoft Windows active training.pdf.pif
c:/WINDOWS/security/templates	MSproject.exe
c:/WINDOWS/security/templates	New Acrobat professional.pif
c:/WINDOWS/security/templates	nod32 serial number.cmd
c:/WINDOWS/security/templates	Norton Ghost.exe
c:/WINDOWS/security/templates	Sex training.dat.pif
c:/WINDOWS/security/templates	Symantec serial number.exe
c:/WINDOWS/security/templates	TCP-IP & DNS.pdf.pif
c:/WINDOWS/security/templates	VB.NET complete reference.pdf.pif
c:/WINDOWS/security/templates	visual c# complete reference.pdf.pif
c:/WINDOWS/security/templates	visual c++ complete reference.pdf.pif
c:/WINDOWS/security/templates	WebShot.scr
c:/WINDOWS/security/templates	windows activation.exe
c:/WINDOWS/security/templates	windows server.pdf.cmd
c:/WINDOWS/security/templates	xnxx.pif
c:/WINDOWS/system32/config/systemprofile	active directory.pdf.pif
c:/WINDOWS/system32/config/systemprofile	Advanced C++ MFC Programming Developer Studio.pdf.pif
c:/WINDOWS/system32/config/systemprofile	ANSYS training.pif
c:/WINDOWS/system32/config/systemprofile	BitDefender serial number.exe
c:/WINDOWS/system32/config/systemprofile	brontok killer.exe
c:/WINDOWS/system32/config/systemprofile	cad_safe_matlab_sap_sample.setup.exe
c:/WINDOWS/system32/config/systemprofile	Google_Earth_BZXV.setup.exe
c:/WINDOWS/system32/config/systemprofile	IE7.setup.exe
c:/WINDOWS/system32/config/systemprofile	kaspersky activation key.cmd
c:/WINDOWS/system32/config/systemprofile	microsoft ASP.NET training.pif
c:/WINDOWS/system32/config/systemprofile	microsoft C# training.exe
c:/WINDOWS/system32/config/systemprofile	microsoft MSCE training.exe
c:/WINDOWS/system32/config/systemprofile	microsoft NetWorking training.exe
c:/WINDOWS/system32/config/systemprofile	microsoft Windows active training.pdf.pif
c:/WINDOWS/system32/config/systemprofile	MSproject.exe
c:/WINDOWS/system32/config/systemprofile	New Acrobat professional.pif
c:/WINDOWS/system32/config/systemprofile	nod32 serial number.cmd
c:/WINDOWS/system32/config/systemprofile	Norton Ghost.exe
c:/WINDOWS/system32/config/systemprofile	Sex training.dat.pif
c:/WINDOWS/system32/config/systemprofile	Symantec serial number.exe
c:/WINDOWS/system32/config/systemprofile	TCP-IP & DNS.pdf.pif
c:/WINDOWS/system32/config/systemprofile	VB.NET complete reference.pdf.pif
c:/WINDOWS/system32/config/systemprofile	visual c# complete reference.pdf.pif
c:/WINDOWS/system32/config/systemprofile	visual c++ complete reference.pdf.pif
c:/WINDOWS/system32/config/systemprofile	WebShot.scr
c:/WINDOWS/system32/config/systemprofile	windows activation.exe
c:/WINDOWS/system32/config/systemprofile	windows server.pdf.cmd
c:/WINDOWS/system32/config/systemprofile	xnxx.pif
c:/WINDOWS/system32	Cexplorer.exe
c:/WINDOWS/Temp	active directory.pdf.pif
c:/WINDOWS/Temp	Advanced C++ MFC Programming Developer Studio.pdf.pif
c:/WINDOWS/Temp	ANSYS training.pif
c:/WINDOWS/Temp	BitDefender serial number.exe
c:/WINDOWS/Temp	brontok killer.exe
c:/WINDOWS/Temp	cad_safe_matlab_sap_sample.setup.exe
c:/WINDOWS/Temp	Google_Earth_BZXV.setup.exe
c:/WINDOWS/Temp	IE7.setup.exe
c:/WINDOWS/Temp	kaspersky activation key.cmd
c:/WINDOWS/Temp	microsoft ASP.NET training.pif
c:/WINDOWS/Temp	microsoft C# training.exe
c:/WINDOWS/Temp	microsoft MSCE training.exe
c:/WINDOWS/Temp	microsoft NetWorking training.exe
c:/WINDOWS/Temp	microsoft Windows active training.pdf.pif
c:/WINDOWS/Temp	MSproject.exe
c:/WINDOWS/Temp	New Acrobat professional.pif
c:/WINDOWS/Temp	nod32 serial number.cmd
c:/WINDOWS/Temp	Norton Ghost.exe
c:/WINDOWS/Temp	Sex training.dat.pif
c:/WINDOWS/Temp	Symantec serial number.exe
c:/WINDOWS/Temp	TCP-IP & DNS.pdf.pif
c:/WINDOWS/Temp	VB.NET complete reference.pdf.pif
c:/WINDOWS/Temp	visual c# complete reference.pdf.pif
c:/WINDOWS/Temp	visual c++ complete reference.pdf.pif
c:/WINDOWS/Temp	WebShot.scr
c:/WINDOWS/Temp	windows activation.exe
c:/WINDOWS/Temp	windows server.pdf.cmd
c:/WINDOWS/Temp	xnxx.pif
c:/WINDOWS/WinSxS/InstallTemp	active directory.pdf.pif
c:/WINDOWS/WinSxS/InstallTemp	Advanced C++ MFC Programming Developer Studio.pdf.pif
c:/WINDOWS/WinSxS/InstallTemp	ANSYS training.pif
c:/WINDOWS/WinSxS/InstallTemp	BitDefender serial number.exe
c:/WINDOWS/WinSxS/InstallTemp	brontok killer.exe
c:/WINDOWS/WinSxS/InstallTemp	cad_safe_matlab_sap_sample.setup.exe
c:/WINDOWS/WinSxS/InstallTemp	Google_Earth_BZXV.setup.exe
c:/WINDOWS/WinSxS/InstallTemp	IE7.setup.exe
c:/WINDOWS/WinSxS/InstallTemp	kaspersky activation key.cmd
c:/WINDOWS/WinSxS/InstallTemp	microsoft ASP.NET training.pif
c:/WINDOWS/WinSxS/InstallTemp	microsoft C# training.exe
c:/WINDOWS/WinSxS/InstallTemp	microsoft MSCE training.exe
c:/WINDOWS/WinSxS/InstallTemp	microsoft NetWorking training.exe
c:/WINDOWS/WinSxS/InstallTemp	microsoft Windows active training.pdf.pif
c:/WINDOWS/WinSxS/InstallTemp	MSproject.exe
c:/WINDOWS/WinSxS/InstallTemp	New Acrobat professional.pif
c:/WINDOWS/WinSxS/InstallTemp	nod32 serial number.cmd
c:/WINDOWS/WinSxS/InstallTemp	Norton Ghost.exe
c:/WINDOWS/WinSxS/InstallTemp	Sex training.dat.pif
c:/WINDOWS/WinSxS/InstallTemp	Symantec serial number.exe
c:/WINDOWS/WinSxS/InstallTemp	TCP-IP & DNS.pdf.pif
c:/WINDOWS/WinSxS/InstallTemp	VB.NET complete reference.pdf.pif
c:/WINDOWS/WinSxS/InstallTemp	visual c# complete reference.pdf.pif
c:/WINDOWS/WinSxS/InstallTemp	visual c++ complete reference.pdf.pif
c:/WINDOWS/WinSxS/InstallTemp	WebShot.scr
c:/WINDOWS/WinSxS/InstallTemp	windows activation.exe
c:/WINDOWS/WinSxS/InstallTemp	windows server.pdf.cmd
c:/WINDOWS/WinSxS/InstallTemp	xnxx.pif
c:/WINDOWS	java.exe
c:	active.exe
c:	ebook.cmd
c:	netstat_post.txt
c:	patch.exe
c:	sex.com.exe
c:	system.exe
c:	taskv_post.txt
c:	WebShot.scr
c:	Win32.sys
c:	Winrar.sys
c:	xnxx.pdf.pif

Files (Deleted) - ICC Results

Action	Path	File Name

Files (Changed) - ICC Results

Action	Path	File Name
modified	c:/Documents and Settings/dmc73144/Cookies	index.dat
modified	c:/Documents and Settings/dmc73144/Local Settings/History/History.IE5	index.dat
modified	c:/Documents and Settings/dmc73144/Local Settings/Temporary Internet Files/Content.IE5	index.dat
modified	c:/Documents and Settings/dmc73144	ntuser.dat.LOG
modified	c:/WINDOWS/Prefetch	CMD.EXE-087B4001.pf
modified	c:/WINDOWS/Prefetch	HSTART.EXE-221D72BF.pf
modified	c:/WINDOWS/Prefetch	NETSTAT.EXE-2B2B4428.pf
modified	c:/WINDOWS/Prefetch	SH.EXE-00254D2B.pf
modified	c:/WINDOWS/Prefetch	SLEEP.EXE-094A3D2A.pf
modified	c:/WINDOWS/Prefetch	SSHD.EXE-298CA236.pf
modified	c:/WINDOWS/Prefetch	SWITCH.EXE-0496EC21.pf
modified	c:/WINDOWS/Prefetch	TASKLIST.EXE-10D94B23.pf
modified	c:/WINDOWS/system32/config	software.LOG
modified	c:/WINDOWS/system32/config	SysEvent.Evt
modified	c:/WINDOWS/system32/config	system.LOG
modified	c:/WINDOWS/system32/drivers/etc	hosts
modified	c:/WINDOWS/system32/wbem/Logs	wmiprov.log
modified	c:/WINDOWS/system32/wbem/Repository/FS	INDEX.MAP
modified	c:/WINDOWS/system32/wbem/Repository/FS	MAPPING.VER
modified	c:/WINDOWS/system32/wbem/Repository/FS	MAPPING2.MAP
modified	c:/WINDOWS/system32/wbem/Repository/FS	OBJECTS.MAP

Registry Keys (Added) - ICC Results

Action	Path

Registry Values (Added) - ICC Results

Action	Path	Val_Name	Val_Data

Registry Values (Deleted) - ICC Results

Action	Path	Val_Name	Val_Type	Mod_Val_Type	Val_Data	Mod_Val_Data

Registry Values (Changed) - ICC Results

Action	Path	Val_Name	Val_Data	Mod_Val_Data
modified	HKLM/SOFTWARE/Microsoft/Cryptography/RNG	Seed	F3 AA 0C 93 1E D1 49 5E 0B 9E 40 B1 DD 4F A4 97 27 71 F1 A1 B7 06 2E A1 2A 45 A3	EC AC 2E 42 CB 1B 34 FA 80 94 1C 35 D0 87 08 E0 2A 4E 13 74 A9 66 4F 5E 35 FA 8
modified	HKLM/SOFTWARE/Microsoft/Ole	EnableDCOM	"Y"	4E 00 00 00
modified	HKLM/SYSTEM/ControlSet001/Control/ComputerName/ComputerName	ComputerName	"DMC73144"	79 64 66 65
modified	HKLM/SYSTEM/ControlSet001/Services/SharedAccess	Start	0x00000002	0x00000004
modified	HKLM/SYSTEM/ControlSet001/Services/SharedAccess/Epoch	Epoch	0x00000104	0x00000105
modified	HKLM/SYSTEM/CurrentControlSet/Control/ComputerName/ComputerName	ComputerName	"DMC73144"	79 64 66 65
modified	HKLM/SYSTEM/CurrentControlSet/Services/SharedAccess	Start	0x00000002	0x00000004
modified	HKLM/SYSTEM/CurrentControlSet/Services/SharedAccess/Epoch	Epoch	0x00000104	0x00000105
modified	HKU/S-1-5-21-1844237615-562591055-839522115-1004/Software/Microsoft/Windows/CurrentVersion/Internet Settings/Connections	SavedLegacySettings	3C 00 00 00 15 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 04 00 00	3C 00 00 00 16 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 04 00 0

DNS Results

DNS	DNS Response

URL Results

DstIP	HTTP_HOST	HTTP_REQUEST_URI	HTTP_USER_AGENT	PROTOCOL
239.255.255.250	239.255.255.250:1900	*	--blank--	0x11

ARGUS PROTOCOL Results

PROTOCOL	SRC_PKTS	DST_PKTS	SRC_BYTES	DST_BYTES
17	2	0	350	0

ARGUS DPORT Results

DPORT	PROTOCOL	SRC_PKTS	DST_PKTS	SRC_BYTES	DST_BYTES
1900	17	2	0	350	0

ARGUS DATA Results

Time	Date	Protocol	SrcIP	DstIP	Dir	Flags	Sport	Dport	Pkts	Bytes
13:42:04	2011-07-10	17	10.10.10.7	239.255.255.250	->	e	8	1900	2	350

Packer Results

Packer Name

HoneyTrap Results

Honey Trap Log File Location

PTFB Results

PTFB Log File Location