Technical Information
- <Full path to virus>
- %WINDIR%\system\system.mp3
- 'www.16##gg.com':80
- 'localhost':1035
- www.16##gg.com/1.txt
- www.16##gg.com/2.txt
- DNS ASK www.16##gg.com
- '<Private IP address>':1036
- ClassName: 'ToolbarWindow32' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'TrayNotifyWnd' WindowName: ''
- ClassName: 'SysPager' WindowName: ''