Technical Information
- [<HKLM>\System\CurrentControlSet\Services\RCxJGaXOh] 'ImagePath' = '<DRIVERS>\RCxJGaXOh.sys'
- 'RCxJGaXOh' <DRIVERS>\RCxJGaXOh.sys
- <DRIVERS>\rcxjgaxoh.sys
- %APPDATA%\mozilla\firefox\profiles\gn7ryp3k.default\cert9.db
- %APPDATA%\mozilla\firefox\profiles\gn7ryp3k.default\key4.db
- <DRIVERS>\rcxjgaxoh.sys
- <DRIVERS>\rcxjgaxoh.sys
- http://10#.#50.57.11/222021/Good.jpg
- http://46.#.196.121/fen/zzd2/1.asp?us######################################################################################
- http://10#.#50.57.11/222021/better.jpg
- http://cn.bing.com/
- http://10#.#50.57.11/222021/best.jpg
- http://10#.#50.57.11/222021/seoc.txt
- DNS ASK ba##u.com
- DNS ASK cn.bing.com
- '39.##1.131.79':21785
- '255.255.255.255':29352
- ClassName: 'vguiPopupWindow' WindowName: 'Steam'