Technical Information
- '<SYSTEM32>\cqjfuqqs.exe'
- '<SYSTEM32>\qdelnmqm.exe'
- '<SYSTEM32>\lsnzyuml.exe'
- '<SYSTEM32>\twoevyuu.exe'
- '<SYSTEM32>\ugswmzuj.exe'
- '<SYSTEM32>\qkvrknft.exe'
- '<SYSTEM32>\maldvjqe.exe'
- '<SYSTEM32>\dqdieqfx.exe'
- '<SYSTEM32>\hnwxcqzi.exe'
- '<SYSTEM32>\prmgwvkw.exe'
- '<SYSTEM32>\qpgvuqeu.exe'
- '<SYSTEM32>\dyaiqakb.exe'
- '<SYSTEM32>\hzygwvfv.exe'
- '<SYSTEM32>\nzqgxdix.exe'
- '<SYSTEM32>\mxjfiguy.exe'
- '<SYSTEM32>\hsrjqtra.exe'
- '<SYSTEM32>\auyrglmk.exe'
- '<SYSTEM32>\ocpqljwl.exe'
- '<SYSTEM32>\kjdyxgei.exe'
- '<SYSTEM32>\iwulbsdq.exe'
- '<SYSTEM32>\ikskwhez.exe'
- '<SYSTEM32>\yngltccp.exe'
- '<SYSTEM32>\awalirqa.exe'
- '<SYSTEM32>\cqfuyhky.exe'
- <SYSTEM32>\svchost.exe
- ClassName: '' WindowName: 'Process Monitor - Sysinternals: www.sysinternals.com'
- ClassName: 'PROCMON_WINDOW_CLASS' WindowName: ''
- ClassName: '' WindowName: 'Registry Monitor - Sysinternals: www.sysinternals.com'
- ClassName: 'RegmonClass' WindowName: ''
- ClassName: '' WindowName: 'File Monitor - Sysinternals: www.sysinternals.com'
- ClassName: 'GBDYLLO' WindowName: ''
- ClassName: 'OLLYDBG' WindowName: ''
- ClassName: 'FilemonClass' WindowName: ''
- ClassName: 'pediy06' WindowName: ''
- <SYSTEM32>\qkvrknft.exe
- <SYSTEM32>\cqjfuqqs.exe
- <SYSTEM32>\qdelnmqm.exe
- <SYSTEM32>\ugswmzuj.exe
- <SYSTEM32>\iwulbsdq.exe
- <SYSTEM32>\ikskwhez.exe
- <SYSTEM32>\twoevyuu.exe
- <SYSTEM32>\maldvjqe.exe
- <SYSTEM32>\dqdieqfx.exe
- <SYSTEM32>\hnwxcqzi.exe
- <SYSTEM32>\dyaiqakb.exe
- <SYSTEM32>\lsnzyuml.exe
- <SYSTEM32>\prmgwvkw.exe
- <SYSTEM32>\qpgvuqeu.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\mswinsck[1].ocx
- <SYSTEM32>\auyrglmk.exe
- <SYSTEM32>\ocpqljwl.exe
- <SYSTEM32>\hsrjqtra.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\mswinsck[1].ocx
- <SYSTEM32>\MSWINSCK.ocx
- <SYSTEM32>\awalirqa.exe
- <SYSTEM32>\cqfuyhky.exe
- <SYSTEM32>\kjdyxgei.exe
- <SYSTEM32>\yngltccp.exe
- <SYSTEM32>\hzygwvfv.exe
- <SYSTEM32>\nzqgxdix.exe
- <SYSTEM32>\mxjfiguy.exe
- <SYSTEM32>\cqjfuqqs.exe
- <SYSTEM32>\qdelnmqm.exe
- <SYSTEM32>\lsnzyuml.exe
- <SYSTEM32>\twoevyuu.exe
- <SYSTEM32>\ugswmzuj.exe
- <SYSTEM32>\qkvrknft.exe
- <SYSTEM32>\maldvjqe.exe
- <SYSTEM32>\dqdieqfx.exe
- <SYSTEM32>\hnwxcqzi.exe
- <SYSTEM32>\prmgwvkw.exe
- <SYSTEM32>\qpgvuqeu.exe
- <SYSTEM32>\dyaiqakb.exe
- <SYSTEM32>\hzygwvfv.exe
- <SYSTEM32>\nzqgxdix.exe
- <SYSTEM32>\mxjfiguy.exe
- <SYSTEM32>\hsrjqtra.exe
- <SYSTEM32>\auyrglmk.exe
- <SYSTEM32>\ocpqljwl.exe
- <SYSTEM32>\kjdyxgei.exe
- <SYSTEM32>\iwulbsdq.exe
- <SYSTEM32>\ikskwhez.exe
- <SYSTEM32>\yngltccp.exe
- <SYSTEM32>\awalirqa.exe
- <SYSTEM32>\cqfuyhky.exe
- %TEMP%\~DFF24D.tmp
- %TEMP%\~DF867B.tmp
- %TEMP%\~DF7AFD.tmp
- %TEMP%\~DFA85B.tmp
- %TEMP%\~DF6968.tmp
- %TEMP%\~DF29E.tmp
- %TEMP%\~DF6668.tmp
- %TEMP%\~DF1D90.tmp
- %TEMP%\~DFE083.tmp
- %TEMP%\~DF1595.tmp
- %TEMP%\~DFC496.tmp
- %TEMP%\~DF99AE.tmp
- %TEMP%\~DFE632.tmp
- %TEMP%\~DF9EED.tmp
- %TEMP%\~DF6946.tmp
- %TEMP%\~DF988F.tmp
- %TEMP%\~DF62AD.tmp
- %TEMP%\~DF1BA0.tmp
- %TEMP%\~DF6F28.tmp
- %TEMP%\~DF25C5.tmp
- %TEMP%\~DFEC0A.tmp
- %TEMP%\~DF1ED4.tmp
- %TEMP%\~DFE5F2.tmp
- %TEMP%\~DFA232.tmp
- %TEMP%\~DF21BB.tmp
- %TEMP%\~DFCF93.tmp
- %TEMP%\~DFA3EE.tmp
- %TEMP%\~DF8713.tmp
- %TEMP%\~DFD08F.tmp
- %TEMP%\~DF5596.tmp
- %TEMP%\~DFD365.tmp
- %TEMP%\~DF9223.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\mswinsck[1].ocx
- %TEMP%\~DF4ADB.tmp
- %TEMP%\~DF293C.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\mswinsck[1].ocx
- %TEMP%\~DFE87B.tmp
- %TEMP%\~DFA759.tmp
- %TEMP%\~DF72B3.tmp
- %TEMP%\~DFA017.tmp
- %TEMP%\~DF65B9.tmp
- %TEMP%\~DF23BE.tmp
- %TEMP%\~DF80D3.tmp
- %TEMP%\~DF40DE.tmp
- %TEMP%\~DFABF.tmp
- %TEMP%\~DF369A.tmp
- %TEMP%\~DFEDEF.tmp
- %TEMP%\~DFBBA2.tmp
- 'localhost':1067
- 'localhost':1069
- 'localhost':1071
- 'localhost':1061
- 'localhost':1063
- 'localhost':1065
- 'localhost':1079
- 'localhost':1081
- 'localhost':1083
- 'localhost':1073
- 'localhost':1075
- 'localhost':1077
- 'localhost':1059
- 'localhost':1041
- 'localhost':1043
- 'localhost':1045
- 'localhost':1036
- 'pd###.egloos.com':80
- 'localhost':1039
- 'localhost':1053
- 'localhost':1055
- 'localhost':1057
- 'localhost':1047
- 'localhost':1049
- 'localhost':1051
- pd###.egloos.com/pds/201304/27/64/mswinsck.ocx
- DNS ASK pd###.egloos.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '18467-41' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''