Technical Information
- ClassName: 'OLLYDBG', WindowName: ''
- ClassName: 'GBDYLLO', WindowName: ''
- ClassName: 'pediy06', WindowName: ''
- ClassName: 'FilemonClass', WindowName: ''
- ClassName: '', WindowName: 'File Monitor - Sysinternals: www.sysinternals.com'
- ClassName: 'PROCMON_WINDOW_CLASS', WindowName: ''
- ClassName: '', WindowName: 'Process Monitor - Sysinternals: www.sysinternals.com'
- ClassName: 'RegmonClass', WindowName: ''
- ClassName: '', WindowName: 'Registry Monitor - Sysinternals: www.sysinternals.com'
- <SYSTEM32>\MSWINSCK.ocx
- <SYSTEM32>\jguyvrvo.exe
- <SYSTEM32>\xflhpktl.exe
- <SYSTEM32>\vikxiyob.exe
- <SYSTEM32>\tpihygtm.exe
- <SYSTEM32>\mkdzacjf.exe
- <SYSTEM32>\sxiklegj.exe
- <SYSTEM32>\woltzutj.exe
- <SYSTEM32>\bwadjmcq.exe
- <SYSTEM32>\nqgqwljh.exe
- <SYSTEM32>\jikektra.exe
- <SYSTEM32>\vbzmxzvb.exe
- <SYSTEM32>\jprdqcsv.exe
- <SYSTEM32>\dsuugxvl.exe
- <SYSTEM32>\wmhmvwqm.exe
- <SYSTEM32>\srixqnfi.exe
- <SYSTEM32>\jtglvsvf.exe
- <SYSTEM32>\zfovwwpq.exe
- <SYSTEM32>\xipmubkc.exe
- <SYSTEM32>\gzkxgxla.exe
- <SYSTEM32>\dozewvhg.exe
- <SYSTEM32>\ferwkhlw.exe
- <SYSTEM32>\vftvdsov.exe
- <SYSTEM32>\rnsahzaj.exe
- <SYSTEM32>\aodbgjsd.exe
- <SYSTEM32>\tpsdydgr.exe
- <SYSTEM32>\bvzofpjz.exe
- <SYSTEM32>\xlxafibj.exe
- <SYSTEM32>\odigedjj.exe
- <SYSTEM32>\pasefyst.exe
- <SYSTEM32>\gukaclks.exe
- <SYSTEM32>\twujarbe.exe
- <SYSTEM32>\kywfkacy.exe
- <SYSTEM32>\pqzvpudk.exe
- <SYSTEM32>\fyibacbq.exe
- <SYSTEM32>\gmueppwu.exe
- <SYSTEM32>\zynvoogj.exe
- <SYSTEM32>\sycgdpvs.exe
- <SYSTEM32>\udeluyxw.exe
- <SYSTEM32>\usuuknjh.exe
- <SYSTEM32>\edackdij.exe
- <SYSTEM32>\gulmbmdi.exe
- <SYSTEM32>\arjanzyx.exe
- <SYSTEM32>\wunlzgai.exe
- <SYSTEM32>\gifqgzzj.exe
- <SYSTEM32>\aodbgjsd.exe
- <SYSTEM32>\vikxiyob.exe
- <SYSTEM32>\tpihygtm.exe
- <SYSTEM32>\mkdzacjf.exe
- <SYSTEM32>\sxiklegj.exe
- <SYSTEM32>\woltzutj.exe
- <SYSTEM32>\bwadjmcq.exe
- <SYSTEM32>\nqgqwljh.exe
- <SYSTEM32>\jguyvrvo.exe
- <SYSTEM32>\xflhpktl.exe
- <SYSTEM32>\jikektra.exe
- <SYSTEM32>\dsuugxvl.exe
- <SYSTEM32>\wmhmvwqm.exe
- <SYSTEM32>\srixqnfi.exe
- <SYSTEM32>\jtglvsvf.exe
- <SYSTEM32>\zfovwwpq.exe
- <SYSTEM32>\xipmubkc.exe
- <SYSTEM32>\gzkxgxla.exe
- <SYSTEM32>\vbzmxzvb.exe
- <SYSTEM32>\jprdqcsv.exe
- <SYSTEM32>\dozewvhg.exe
- <SYSTEM32>\vftvdsov.exe
- <SYSTEM32>\wunlzgai.exe
- <SYSTEM32>\bvzofpjz.exe
- <SYSTEM32>\xlxafibj.exe
- <SYSTEM32>\odigedjj.exe
- <SYSTEM32>\pasefyst.exe
- <SYSTEM32>\gukaclks.exe
- <SYSTEM32>\twujarbe.exe
- <SYSTEM32>\kywfkacy.exe
- <SYSTEM32>\pqzvpudk.exe
- <SYSTEM32>\tpsdydgr.exe
- <SYSTEM32>\fyibacbq.exe
- <SYSTEM32>\zynvoogj.exe
- <SYSTEM32>\sycgdpvs.exe
- <SYSTEM32>\udeluyxw.exe
- <SYSTEM32>\usuuknjh.exe
- <SYSTEM32>\edackdij.exe
- <SYSTEM32>\gulmbmdi.exe
- <SYSTEM32>\arjanzyx.exe
- <SYSTEM32>\rnsahzaj.exe
- <SYSTEM32>\gmueppwu.exe
- <SYSTEM32>\ferwkhlw.exe
- <SYSTEM32>\gifqgzzj.exe
- 'localhost':1037
- 'pd###.egloos.com':80
- http://pd###.egloos.com/pds/201402/22/84/MSWINSCK.OCX
- DNS ASK pd###.egloos.com
- ClassName: '18467-41' WindowName: ''
- '<SYSTEM32>\aodbgjsd.exe'
- '<SYSTEM32>\jguyvrvo.exe'
- '<SYSTEM32>\xflhpktl.exe'
- '<SYSTEM32>\vikxiyob.exe'
- '<SYSTEM32>\tpihygtm.exe'
- '<SYSTEM32>\mkdzacjf.exe'
- '<SYSTEM32>\sxiklegj.exe'
- '<SYSTEM32>\woltzutj.exe'
- '<SYSTEM32>\bwadjmcq.exe'
- '<SYSTEM32>\jikektra.exe'
- '<SYSTEM32>\gzkxgxla.exe'
- '<SYSTEM32>\vbzmxzvb.exe'
- '<SYSTEM32>\jprdqcsv.exe'
- '<SYSTEM32>\dsuugxvl.exe'
- '<SYSTEM32>\wmhmvwqm.exe'
- '<SYSTEM32>\srixqnfi.exe'
- '<SYSTEM32>\jtglvsvf.exe'
- '<SYSTEM32>\zfovwwpq.exe'
- '<SYSTEM32>\xipmubkc.exe'
- '<SYSTEM32>\dozewvhg.exe'
- '<SYSTEM32>\nqgqwljh.exe'
- '<SYSTEM32>\vftvdsov.exe'
- '<SYSTEM32>\pqzvpudk.exe'
- '<SYSTEM32>\tpsdydgr.exe'
- '<SYSTEM32>\bvzofpjz.exe'
- '<SYSTEM32>\xlxafibj.exe'
- '<SYSTEM32>\odigedjj.exe'
- '<SYSTEM32>\pasefyst.exe'
- '<SYSTEM32>\gukaclks.exe'
- '<SYSTEM32>\twujarbe.exe'
- '<SYSTEM32>\kywfkacy.exe'
- '<SYSTEM32>\fyibacbq.exe'
- '<SYSTEM32>\rnsahzaj.exe'
- '<SYSTEM32>\gmueppwu.exe'
- '<SYSTEM32>\zynvoogj.exe'
- '<SYSTEM32>\sycgdpvs.exe'
- '<SYSTEM32>\udeluyxw.exe'
- '<SYSTEM32>\usuuknjh.exe'
- '<SYSTEM32>\edackdij.exe'
- '<SYSTEM32>\gulmbmdi.exe'
- '<SYSTEM32>\arjanzyx.exe'
- '<SYSTEM32>\wunlzgai.exe'
- '<SYSTEM32>\ferwkhlw.exe'