Technical Information
- 'C:\ttknew.exe' (downloaded from the Internet)
- 'C:\ttknew.exe'
- C:\ttknew.exe
- 'do##.#imei16.com':80
- '19#.#92.153.72':80
- 'localhost':1038
- 'ju##.1000re.com':80
- http://19#.#92.153.72/tongji.php?ve################################################
- http://do##.#imei16.com/http/ttknew.exe
- http://ju##.1000re.com/iclk/?zo#################
- DNS ASK do##.#imei16.com
- DNS ASK ju##.1000re.com
- ClassName: 'Button' WindowName: '????(&I)'
- ClassName: 'Button' WindowName: '°ІЧ°(&I)'
- ClassName: '#32770' WindowName: '?????? ???? '
- ClassName: '#32770' WindowName: 'МмМмїґ °ІЧ° '
- ClassName: '#32770' WindowName: ''
- ClassName: '' WindowName: '??????????????'
- ClassName: '' WindowName: 'МмМмїґНшВзµзКУ'
- ClassName: 'Button' WindowName: '????????????????'
- ClassName: 'Button' WindowName: '°ІЧ°¶№¶№№ыІҐ·ЕЖч'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: '?????? ????'
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: 'МмМмїґ °ІЧ°'
- ClassName: 'Button' WindowName: '??????(&N) >'
- ClassName: 'Button' WindowName: 'ПВТ»ІЅ(&N) >'
- ClassName: '#32770' WindowName: '?????? ????'
- ClassName: '#32770' WindowName: 'МмМмїґ °ІЧ°'