Technical Information
- '%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE' http://pl##.tenoad.com/DirectLink.aspx?pl###########
- '%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE' http://ne#.#gooad.com/DirectLink.aspx?pl###########
- '%PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE' http://ww.###zhao99.com/union.html?P=####################################################################
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\netbuy[1].htm
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\tianqi[1].htm
- 'localhost':1042
- 'localhost':1043
- 'localhost':1041
- 'localhost':1036
- 'www.lz##2.com':80
- www.lz##2.com/netbuy.htm
- www.lz##2.com/tianqi.htm
- DNS ASK www.dy##2.com
- DNS ASK www.d4#.cc
- DNS ASK pl##.tenoad.com
- DNS ASK www.lz##2.com
- DNS ASK www.dy##0.com
- DNS ASK www.dy##5.com
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: '' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'