Техническая информация
- '<SYSTEM32>\regsvr32.exe' %WINDIR%\EzSendImageXX.ocx
- '<SYSTEM32>\regsvr32.exe' %WINDIR%\smartupdatexx.ocx
- '<SYSTEM32>\regsvr32.exe' %WINDIR%\EasySocketX.ocx
- ClassName: 'pediy06' WindowName: ''
- ClassName: 'GBDYLLO' WindowName: ''
- ClassName: 'OLLYDBG' WindowName: ''
- <SYSTEM32>\MSWINSCK.OCX
- %WINDIR%\EzSendImageXX.ocx
- %WINDIR%\SmartUpdateXX.ocx
- <SYSTEM32>\RICHTX32.OCX
- <SYSTEM32>\vb6ko.dll
- %WINDIR%\EasySocketX.ocx
- <SYSTEM32>\COMCTL32.OCX
- 'bl##.naver.com':80
- 'pd###.egloos.com':80
- 'localhost':1037
- pd###.egloos.com/pds/201404/26/97/MSWINSCK.OCX
- pd###.egloos.com/pds/201404/26/97/EzSendImageXX.ocx
- pd###.egloos.com/pds/201404/26/97/SmartUpdateXX.ocx
- pd###.egloos.com/pds/201404/26/97/RICHTX32.OCX
- pd###.egloos.com/pds/201404/26/97/COMCTL32.OCX
- pd###.egloos.com/pds/201404/26/97/vb6ko.dll
- pd###.egloos.com/pds/201404/26/97/EasySocketX.ocx
- bl##.naver.com/PostView.nhn?bl##############################################################################################################
- DNS ASK bl##.naver.com
- DNS ASK pd###.egloos.com
- ClassName: 'Shell_TrayWnd' WindowName: ''