FORENSIC LOG:

	Infection Source:
		188.192.60.146
	Executables Delivered:
		DCPROMO.LOG
		Fjdgemnc.dll
		ipbe32.dll
		ndisrd.sys
	Listen Ports Opened:
		80
	Processes Created:
		CMD.EXE
		CSRSS.EXE
		EXPLORER.EXE
		LSASS.EXE
		MSMSGS.EXE
		SERVICES.EXE
		SPOOLSV.EXE
		SVCHOST.EXE
		WINLOGON.EXE
	Registry Entries Modified or Created:
		HKEY_CURRENT_USER@...ActivatingDocument\.Current
		HKEY_CURRENT_USER@...CurrentVersion\InternetSettings
		HKEY_CURRENT_USER@...FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN
		HKEY_CURRENT_USER@...InternetSettings\Zones
		HKEY_CURRENT_USER@...Main\FeatureControl
		HKEY_CURRENT_USER@...Microsoft\Windows
		HKEY_CURRENT_USER@...Windows\CurrentVersion
		HKEY_CURRENT_USER@...Zones\0
		HKEY_CURRENT_USER@...Zones\1
		HKEY_CURRENT_USER@...Zones\2
		HKEY_CURRENT_USER@...Zones\3
		HKEY_CURRENT_USER@...Zones\4
		HKEY_LOCAL_MACHINE@...CurrentVersion\InternetSettings
		HKEY_LOCAL_MACHINE@...InternetSettings\Zones
		HKEY_LOCAL_MACHINE@...Reliability\UserDefined
		HKEY_LOCAL_MACHINE@...Windows\CurrentVersion
		HKEY_LOCAL_MACHINE@...Zones\0
		HKEY_LOCAL_MACHINE@...Zones\1
		HKEY_LOCAL_MACHINE@...Zones\2
		HKEY_LOCAL_MACHINE@...Zones\3
		HKEY_LOCAL_MACHINE@...Zones\4
		HKEY_USERS@...ActivatingDocument\.Current
		HKEY_USERS@...CurrentVersion\InternetSettings
		HKEY_USERS@...Explorer\ActivatingDocument
		HKEY_USERS@...Explorer\CabinetState
		HKEY_USERS@...Explorer\RunMRU
		HKEY_USERS@...FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN
		HKEY_USERS@...InternetExplorer\Toolbar
		HKEY_USERS@...InternetExplorer\TypedURLs
		HKEY_USERS@...InternetSettings\Zones
		HKEY_USERS@...Main\FeatureControl
		HKEY_USERS@...Microsoft\Windows
		HKEY_USERS@...Windows\CurrentVersion
		HKEY_USERS@...Zones\0
		HKEY_USERS@...Zones\1
		HKEY_USERS@...Zones\2
		HKEY_USERS@...Zones\3
		HKEY_USERS@...Zones\4