Technical Information
- [HKLM\System\CurrentControlSet\Services\ialdnwxf] 'ImagePath' = '<Current directory>\superec.ProcessMemory.sys'
- 'ialdnwxf' <Current directory>\superec.ProcessMemory.sys
- <Current directory>\superec.processmemory.sys
- %WINDIR%\temp\udd10f1.tmp
- %WINDIR%\syswow64\system2.dll
- %WINDIR%\syswow64\system2.dll
- %WINDIR%\temp\udd10f1.tmp
- '91##wg.com':80
- http://91##wg.com/?
- DNS ASK 91##wg.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''