3 1 242 s 11/26/10, 03:48:28 UTC Timeout 1.74.3195 $Revision: 3195 $ Sep 24 2010 16:09:28

true false false false false false false false false false false true false true 3

2 1 Primary Analysis Subject 1754507.8fbe67dff6ab89cc9258a36a758327a9 1754507.8f.exe C:\1754507.8f.exe "C:\1754507.8f.exe" dead 0 8fbe67dff6ab89cc9258a36a758327a9 2f1316b1ec5c25fb370cba137a4a5c7c19a52762 106496 3 2 1754507.8f.exe wrote to the virtual memory of this process Explorer.EXE C:\WINDOWS\Explorer.EXE C:\WINDOWS\Explorer.EXE alive 0 12896823fb95bfb3dc9b46bcaedc9923 9d2bf84874abc5b6e9a2744b7865c193c08d362f 1033728 4 2 1754507.8f.exe wrote to the virtual memory of this process wscntfy.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\wscntfy.exe alive 0 f92e1076c42fcd6db3d72d8cfe9816d5 549f0a01848375d03159fc74171ed97790fa9650 13824