Technical Information
- '%WINDIR%\regedit.exe' /S "Key.reg"
- '%TEMP%\1.tmp\Toolbar.exe'
- '<SYSTEM32>\find.exe' /C /I "tonec.com" <DRIVERS>\etc\hosts
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\1.tmp\INST.cmd" <Full path to virus>"
- '<SYSTEM32>\taskkill.exe' /F /IM "IDMan.exe"
- '%TEMP%\1.tmp\patch.exe'
- %ProgramFiles%\Internet Download Manager\Toolbar\Mosi_Modern_XP.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\MM_smallHot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\MosI3D_large_1.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Mosi_Modern_XPHot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\MM_large.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\metro_hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\MM_small.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\MM_largeHot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\NG_small.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\NG_largeHot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\NG_smallHot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\MosI3D_small_1.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\MosI3D_largeHot_1.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\NG_large.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\MosI3D_smallHot_1.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\metro.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Koushik_Halder_Large_Hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Koushik_Halder_Large_Disable.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Koushik_Halder_Small_Disable.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Koushik_Halder_Large_Normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\ios7_hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\ios7.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\kitiHot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\kiti.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\luckyToolbarH2.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\luckyToolbar2.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\luckyToolbarSH2.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\luckyToolbarS2.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Koushik_Halder_Small_Normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Koushik_Halder_Small_Hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\LS_largeHot_3.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\LS_large_3.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\kiti.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\ios7.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\LS_style_2.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\Koushik Halder.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Color.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\Globe.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Light.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Dark.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\NG.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\MosI3D_1.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\Pure_Flat_2013.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\Primo.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\metro.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\luckyToolbar2.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\Mosi_Modern_XP.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\MM_config_3.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\dk_style_3.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\Pure_Flat_2013\Pure_Flat_2013-Large_Normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Pure_Flat_2013\Pure_Flat_2013-Large_Hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Pure_Flat_2013\Pure_Flat_2013-Small_Hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Pure_Flat_2013\Pure_Flat_2013-Small_Disabled.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Primo_hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\normalXP.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Pure_Flat_2013\Pure_Flat_2013-Large_Disabled.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Primo_normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Bils_Style.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\8_IDM.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\Blue_Arrow.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\BilsOrbit.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\3d_style_3.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\Pure_Flat_2013\Pure_Flat_2013-Small_Normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\8.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\7-IDM.tbi
- %ProgramFiles%\Internet Download Manager\Toolbar\hotXP.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\8_hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\8.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Bils_Style\bils_style-Large_Hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Bils_Style\bils_style-Large_Disabled.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\7-IDMHot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\7-IDM.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\8-IDMHot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\8-IDM.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\BilsOrbit\BilsOrbit_LN.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\BilsOrbit\BilsOrbit_LH.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\BilsOrbit\BilsOrbit_SN.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\BilsOrbit\BilsOrbit_SH.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Bils_Style\bils_style-Small_Disabled.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Bils_Style\bils_style-Large_Normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Bils_Style\bils_style-Small_Normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Bils_Style\bils_style-Small_Hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\3d_smallHot_3.bmp
- %ProgramFiles%\Internet Download Manager\IDMan.exe
- %TEMP%\1.tmp\Gracias.vbs
- %ProgramFiles%\Internet Download Manager\Toolbar\3d_large_3.bmp
- %ProgramFiles%\Internet Download Manager\IDMGrHlp.exe
- %TEMP%\1.tmp\Key.reg
- %TEMP%\1.tmp\INST.cmd
- %TEMP%\1.tmp\Toolbar.exe
- %TEMP%\1.tmp\patch.exe
- %ProgramFiles%\Internet Download Manager\Toolbar\3d_small_3.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\3d_small.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\3d_smallHot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\3d_smallDisabled.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\3d_large_4.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\3d_large_3_hdpi15.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\3d_largeHot_3_hdpi15.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\3d_largeHot_3.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Dark\Helvet_3D_Dark-Large_Normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Dark\Helvet_3D_Dark-Large_Hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Dark\Helvet_3D_Dark-Small_Hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Dark\Helvet_3D_Dark-Small_Disabled.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Color\Helvet_3D_Color-Small_Hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Color\Helvet_3D_Color-Small_Disabled.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Dark\Helvet_3D_Dark-Large_Disabled.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Color\Helvet_3D_Color-Small_Normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Light\Helvet_3D_Light-Small_Hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Light\Helvet_3D_Light-Small_Disabled.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Light\Helvet_3D_Light-Small_Normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Light\Helvet_3D_Light-Large_Disabled.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Dark\Helvet_3D_Dark-Small_Normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Light\Helvet_3D_Light-Large_Normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Light\Helvet_3D_Light-Large_Hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Color\Helvet_3D_Color-Large_Normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Blue_Arrow_Normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Blue_Arrow_Mini_Normal.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\disabledXP.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\disabled.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Blue_Arrow_Hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Blue_Arrow_Disable.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Blue_Arrow_Mini_Hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Blue_Arrow_Mini_Disable.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\GlobeHot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Globe.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Color\Helvet_3D_Color-Large_Hot.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\Helvet_3D_Color\Helvet_3D_Color-Large_Disabled.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\dk_largeHot_3.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\dk_large_3.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\dk_smallHot_3.bmp
- %ProgramFiles%\Internet Download Manager\Toolbar\dk_small_3.bmp
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'EDIT' WindowName: ''