Technical Information
- '<SYSTEM32>\dmwaebrz.exe'
- '<SYSTEM32>\trvizygx.exe'
- '<SYSTEM32>\vhlcnerw.exe'
- '<SYSTEM32>\drqudbhe.exe'
- '<SYSTEM32>\jrkuzhuq.exe'
- '<SYSTEM32>\vsgturse.exe'
- '<SYSTEM32>\ovvficnx.exe'
- '<SYSTEM32>\nqgvmlsl.exe'
- '<SYSTEM32>\udvvezmr.exe'
- '<SYSTEM32>\euluhhda.exe'
- '<SYSTEM32>\lhujnjqv.exe'
- '<SYSTEM32>\uxokoewl.exe'
- '<SYSTEM32>\rlglqvmn.exe'
- '<SYSTEM32>\vzbachiz.exe'
- '<SYSTEM32>\muzjsjgz.exe'
- '<SYSTEM32>\cobiijcw.exe'
- '<SYSTEM32>\ubofpskn.exe'
- <SYSTEM32>\drwtsn32.exe
- <SYSTEM32>\dmwaebrz.exe
- <SYSTEM32>\trvizygx.exe
- <SYSTEM32>\vhlcnerw.exe
- <SYSTEM32>\drqudbhe.exe
- <SYSTEM32>\ovvficnx.exe
- <SYSTEM32>\vsgturse.exe
- <SYSTEM32>\qvzdljoy.exe
- <SYSTEM32>\nqgvmlsl.exe
- <SYSTEM32>\jrkuzhuq.exe
- <SYSTEM32>\udvvezmr.exe
- <SYSTEM32>\rlglqvmn.exe
- <SYSTEM32>\euluhhda.exe
- <SYSTEM32>\uxokoewl.exe
- <SYSTEM32>\lhujnjqv.exe
- <SYSTEM32>\vzbachiz.exe
- <SYSTEM32>\muzjsjgz.exe
- <SYSTEM32>\cobiijcw.exe
- <SYSTEM32>\ubofpskn.exe
- <SYSTEM32>\dmwaebrz.exe
- <SYSTEM32>\trvizygx.exe
- <SYSTEM32>\vhlcnerw.exe
- <SYSTEM32>\drqudbhe.exe
- <SYSTEM32>\ovvficnx.exe
- <SYSTEM32>\vsgturse.exe
- <SYSTEM32>\qvzdljoy.exe
- <SYSTEM32>\nqgvmlsl.exe
- <SYSTEM32>\jrkuzhuq.exe
- <SYSTEM32>\euluhhda.exe
- <SYSTEM32>\lhujnjqv.exe
- <SYSTEM32>\uxokoewl.exe
- <SYSTEM32>\rlglqvmn.exe
- <SYSTEM32>\cobiijcw.exe
- <SYSTEM32>\muzjsjgz.exe
- <SYSTEM32>\udvvezmr.exe
- <SYSTEM32>\ubofpskn.exe
- <SYSTEM32>\vzbachiz.exe
- %TEMP%\~DFAA57.tmp
- %TEMP%\~DFAFCB.tmp
- %TEMP%\~DFC7B.tmp
- %TEMP%\~DF4ACB.tmp
- %TEMP%\~DFBEA.tmp
- %TEMP%\~DF79E4.tmp
- %TEMP%\~DFAC6C.tmp
- %TEMP%\~DF4825.tmp
- %TEMP%\~DF14B1.tmp
- %TEMP%\~DF2F22.tmp
- %TEMP%\~DFEBD.tmp
- %TEMP%\~DF8E53.tmp
- %TEMP%\~DFC719.tmp
- %TEMP%\~DF861F.tmp
- %TEMP%\~DFC469.tmp
- %TEMP%\~DFE38.tmp
- %TEMP%\55bb_appcompat.txt
- %TEMP%\~DFAC0A.tmp
- %TEMP%\~DF696A.tmp
- %TEMP%\~DF6401.tmp
- %TEMP%\~DF30FF.tmp
- %TEMP%\~DF35D0.tmp
- %TEMP%\~DFC048.tmp
- %TEMP%\~DF66B.tmp
- %TEMP%\~DF5EA5.tmp
- %TEMP%\~DFBF12.tmp
- %TEMP%\~DFFC91.tmp
- %TEMP%\~DF12E3.tmp
- %TEMP%\~DF73CB.tmp
- %TEMP%\~DF1173.tmp
- %TEMP%\~DFC4D6.tmp
- %TEMP%\~DF56C9.tmp
- %TEMP%\~DFED0E.tmp
- %TEMP%\~DFE5F9.tmp
- %TEMP%\~DFBA6E.tmp
- %TEMP%\~DFA2E5.tmp
- 'localhost':1061
- 'localhost':1063
- 'localhost':1057
- 'localhost':1059
- 'localhost':1065
- 'localhost':1071
- 'localhost':1073
- 'localhost':1067
- 'localhost':1069
- 'localhost':1055
- 'localhost':1041
- 'localhost':1043
- 'bl##.naver.com':80
- 'localhost':1039
- 'localhost':1045
- 'localhost':1051
- 'localhost':1053
- 'localhost':1047
- 'localhost':1049
- bl##.naver.com/PostView.nhn?bl################################################################################################################################################################################################
- DNS ASK bl##.naver.com
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'