Technical Information
- '<SYSTEM32>\yfyxlxut.exe'
- '<SYSTEM32>\wlgvmjju.exe'
- '<SYSTEM32>\kacyznev.exe'
- '<SYSTEM32>\fqoaeeeh.exe'
- '<SYSTEM32>\nnxyvqgs.exe'
- '<SYSTEM32>\uldomodv.exe'
- '<SYSTEM32>\dbicbsfj.exe'
- '<SYSTEM32>\kpbbhonp.exe'
- '<SYSTEM32>\hmvpeyei.exe'
- '<SYSTEM32>\rvladggo.exe'
- '<SYSTEM32>\srsbmolj.exe'
- '<SYSTEM32>\dbdgiydr.exe'
- '<SYSTEM32>\adhjmgoq.exe'
- '<SYSTEM32>\lrzxjysu.exe'
- '<SYSTEM32>\rufizydn.exe'
- '<SYSTEM32>\imfhwfxp.exe'
- '<SYSTEM32>\nhttvgtj.exe'
- '<SYSTEM32>\iurahwhg.exe'
- <SYSTEM32>\yfyxlxut.exe
- <SYSTEM32>\wlgvmjju.exe
- <SYSTEM32>\kacyznev.exe
- <SYSTEM32>\fqoaeeeh.exe
- <SYSTEM32>\nnxyvqgs.exe
- <SYSTEM32>\uldomodv.exe
- <SYSTEM32>\dbicbsfj.exe
- <SYSTEM32>\kpbbhonp.exe
- <SYSTEM32>\hmvpeyei.exe
- <SYSTEM32>\imfhwfxp.exe
- <SYSTEM32>\adhjmgoq.exe
- <SYSTEM32>\rvladggo.exe
- <SYSTEM32>\dbdgiydr.exe
- <SYSTEM32>\srsbmolj.exe
- <SYSTEM32>\iurahwhg.exe
- <SYSTEM32>\rufizydn.exe
- <SYSTEM32>\lrzxjysu.exe
- <SYSTEM32>\nhttvgtj.exe
- <SYSTEM32>\yfyxlxut.exe
- <SYSTEM32>\wlgvmjju.exe
- <SYSTEM32>\kacyznev.exe
- <SYSTEM32>\fqoaeeeh.exe
- <SYSTEM32>\nnxyvqgs.exe
- <SYSTEM32>\uldomodv.exe
- <SYSTEM32>\dbicbsfj.exe
- <SYSTEM32>\kpbbhonp.exe
- <SYSTEM32>\hmvpeyei.exe
- <SYSTEM32>\rvladggo.exe
- <SYSTEM32>\srsbmolj.exe
- <SYSTEM32>\dbdgiydr.exe
- <SYSTEM32>\adhjmgoq.exe
- <SYSTEM32>\lrzxjysu.exe
- <SYSTEM32>\rufizydn.exe
- <SYSTEM32>\imfhwfxp.exe
- <SYSTEM32>\nhttvgtj.exe
- <SYSTEM32>\iurahwhg.exe
- %TEMP%\~DF4F01.tmp
- %TEMP%\~DFB74C.tmp
- %TEMP%\~DFB052.tmp
- %TEMP%\~DF5371.tmp
- %TEMP%\~DF506E.tmp
- %TEMP%\~DFB46E.tmp
- %TEMP%\~DFB213.tmp
- %TEMP%\~DF57B7.tmp
- %TEMP%\~DFB461.tmp
- %TEMP%\~DF4D8D.tmp
- %TEMP%\~DF346D.tmp
- %TEMP%\~DF37CF.tmp
- %TEMP%\~DF9DE3.tmp
- %TEMP%\~DF49DC.tmp
- %TEMP%\~DF5112.tmp
- %TEMP%\~DFB370.tmp
- %TEMP%\~DF9AB6.tmp
- %TEMP%\~DFBF16.tmp
- %TEMP%\~DFC498.tmp
- %TEMP%\~DF679F.tmp
- %TEMP%\~DF5E82.tmp
- %TEMP%\~DFD8D7.tmp
- %TEMP%\~DFBAB0.tmp
- %TEMP%\~DF6AEB.tmp
- %TEMP%\~DF636F.tmp
- %TEMP%\~DFC769.tmp
- %TEMP%\~DF53B5.tmp
- %TEMP%\~DFC241.tmp
- %TEMP%\~DFBCE7.tmp
- %TEMP%\~DF5C69.tmp
- %TEMP%\~DF59C0.tmp
- %TEMP%\~DFBF61.tmp
- %TEMP%\~DFB965.tmp
- %TEMP%\~DF620F.tmp
- 'localhost':1061
- 'localhost':1063
- 'localhost':1057
- 'localhost':1059
- 'localhost':1065
- 'localhost':1070
- 'localhost':1072
- 'localhost':1067
- 'localhost':1068
- 'localhost':1055
- 'localhost':1041
- 'localhost':1043
- 'bl##.naver.com':80
- 'localhost':1039
- 'localhost':1045
- 'localhost':1051
- 'localhost':1053
- 'localhost':1047
- 'localhost':1049
- bl##.naver.com/PostView.nhn?bl################################################################################################################################################################################################
- DNS ASK bl##.naver.com
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'