Technical Information
- %LOCALAPPDATA%\microsoft\windows\history\history.ie5\mshist012020062520200626\index.dat
- %WINDIR%\serviceprofiles\networkservice\appdata\locallow\microsoft\cryptneturlcache\metadata\f0accf77cdcbff39f6191887f6d2d357
- %WINDIR%\serviceprofiles\networkservice\appdata\locallow\microsoft\cryptneturlcache\content\f0accf77cdcbff39f6191887f6d2d357
- http://www.ew##o.net/dbbKwJH_238_15270.exe?js####################################################################################################################################################...
- http://ww#.#wubo.net/
- http://ww#.#wubo.net/px.gif?ch#########################
- http://ww#.#wubo.net/favicon.ico
- http://www.google.com/adsense/domains/caf.js
- http://ww#.#wubo.net/glp?r=##################################################################
- http://oc##.thawte.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBQwF4prw9S7mCbCEHD%2Fyl6nWPkczAQUe1tFz6%2FOy3r9MZIaarbzRutXSFACEEeXTXhzpbyrDS%2BzcBkvzl4%3D
- DNS ASK ew##o.net
- DNS ASK ww#.#wubo.net
- DNS ASK google.com
- DNS ASK fo###.#oogleapis.com
- DNS ASK fo###.gstatic.com
- DNS ASK oc##.thawte.com
- ClassName: 'Static' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''