FORENSIC LOG: Infection Source: 79.162.154.159 Executables Delivered: accwiz.exe actmovie.exe agentsvr.exe ahui.exe alg.exe arp.exe asr_fmt.exe asr_ldm.exe at.exe atmadm.exe attrib.exe bootcfg.exe bootok.exe bootvrfy.exe cacls.exe calc.exe charmap.exe chkdsk.exe chkntfs.exe cidaemon.exe cipher.exe cisvc.exe ckcnv.exe cleanmgr.exe cliconfg.exe clipbrd.exe clipsrv.exe cmd.exe cmdl32.exe cmmon32.exe cmstp.exe compact.exe comp.exe comrepl.exe conime.exe control.exe convert.exe cscript.exe ctfmon.exe dcomcnfg.exe ddeshare.exe defrag.exe dfrgfat.exe dfrgntfs.exe diantz.exe diskpart.exe diskperf.exe dllhost.exe dllhst3g.exe dmadmin.exe dmremote.exe doskey.exe dplaysvr.exe dpnsvr.exe dpvsetup.exe driverquery.exe drwtsn32.exe dumprep.exe dvdplay.exe dvdupgrd.exe dxdiag.exe esentutl.exe eudcedit.exe eventcreate.exe eventtriggers.exe eventvwr.exe expand.exe extrac32.exe fc.exe find.exe findstr.exe finger.exe fixmapi.exe fontview.exe forcedos.exe freecell.exe fsutil.exe ftp.exe ftpupd.exe fvuirjp.exe getmac.exe gpresult.exe gpupdate.exe grpconv.exe HelpCtr.exe help.exe HelpHost.exe HelpSvc.exe hh.exe hostname.exe ie4uinit.exe iexpress.exe imapi.exe ipconfig.exe ipsec6.exe ipv6.exe ipxroute.exe label.exe lights.exe lnkstub.exe locator.exe lodctr.exe logagent.exe logman.exe logoff.exe logon.scr logonui.exe lpq.exe lpr.exe magnify.exe makecab.exe migload.exe migpwd.exe migwiz_a.exe migwiz.exe mmc.exe mnmsrvc.exe mobsync.exe mofcomp.exe mountvol.exe mplay32.exe mpnotify.exe mqbkup.exe mqsvc.exe mqtgsvc.exe mrinfo.exe msconfig.exe msdtc.exe msg.exe mshearts.exe mshta.exe msiexec.exe msoobe.exe mspaint.exe msswchx.exe mstinit.exe mstsc.exe narrator.exe nbtstat.exe nddeapir.exe net1.exe netdde.exe net.exe netsetup.exe netsh.exe netstat.exe NOTEPAD.EXE notiflag.exe nppagent.exe nslookup.exe ntbackup.exe ntsd.exe ntvdm.exe nwscript.exe odbcad32.exe odbcconf.exe oobebaln.exe openfiles.exe osk.exe osuninst.exe packager.exe pathping.exe pentnt.exe perfmon.exe ping6.exe ping.exe print.exe progman.exe proquota.exe proxycfg.exe qappsrv.exe qprocess.exe qwinsta.exe rasautou.exe rasdial.exe rasphone.exe rcimlby.exe rcp.exe rdpclip.exe rdsaddin.exe rdshost.exe recover.exe relog.exe replace.exe reset.exe rexec.exe route.exe routemon.exe rsh.exe rsm.exe rsmsink.exe rsmui.exe rsnotify.exe rsopprov.exe rstrui.exe rsvp.exe rtcshare.exe runas.exe rundll32.exe runonce.exe rwinsta.exe savedump.exe scardsvr.exe sc.exe schtasks.exe scrcons.exe scrnsave.scr sdbinst.exe secedit.exe sessmgr.exe sethc.exe setup.exe sfc.exe shadow.exe shmgrate.exe shrpubw.exe shutdown.exe sigverif.exe skeys.exe smlogsvc.exe sndrec32.exe sndvol32.exe sol.exe sort.exe spider.exe srdiag.exe ss3dfo.scr ssbezier.scr ssflwbox.scr ssmarque.scr ssmypics.scr ssmyst.scr sspipes.scr ssstars.scr sstext3d.scr stimon.exe subst.exe syncapp.exe syskey.exe sysocmgr.exe systeminfo.exe systray.exe taskkill.exe tasklist.exe taskman.exe taskmgr.exe tcmsetup.exe tcpsvcs.exe telnet.exe tftp.exe tlntadmn.exe tlntsess.exe tlntsvr.exe tourstart.exe tracerpt.exe tracert6.exe tracert.exe tscon.exe tscupgrd.exe tsdiscon.exe tskill.exe tsshutdn.exe twunk_32.exe typeperf.exe unlodctr.exe unsecapp.exe UploadM.exe upnpcont.exe ups.exe userinit.exe usrmlnka.exe usrprbda.exe usrshuta.exe utilman.exe verifier.exe vssadmin.exe vssvc.exe w32tm.exe wbemtest.exe wextract.exe wiaacmgr.exe winhlp32.exe winmgmt.exe winmine.exe winmsd.exe winver.exe wmiadap.exe wmiapsrv.exe wmic.exe wmiprvse.exe wmpstub.exe wpabaln.exe wpnpinst.exe write.exe wscript.exe wuauclt.exe wupdmgr.exe xcopy.exe Listen Ports Opened: 1038 1038 4661 4713 1037 Processes Created: CMD.EXE CSRSS.EXE EXPLORER.EXE fvuirjp.exe LSASS.EXE MSMSGS.EXE SERVICES.EXE SPOOLSV.EXE SVCHOST.EXE WINLOGON.EXE Registry Entries Modified or Created: HKEY_LOCAL_MACHINE@...Microsoft\Wireless