Technical Information
- '%TEMP%\tpm1.tmp\KGGWSetup_1003.exe' (downloaded from the Internet)
- '%TEMP%\tpm1.tmp\KGGWSetup_1003.exe'
- '%ProgramFiles%\Internet Explorer\IEXPLORE.EXE' -nohome
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\U98D4X8H\DiscMicroStartBox[1].htm
- %TEMP%\tpm1.tmp\KGGWSetup_1003.exe.temp
- %TEMP%\tpm1.tmp\KGGWSetup_1003.exe
- from %TEMP%\tpm1.tmp\KGGWSetup_1003.exe.temp to %TEMP%\tpm1.tmp\KGGWSetup_1003.exe
- 'ga##.kugou.com':80
- 'localhost':1038
- 'do####ni.kugou.com':80
- http://ga##.kugou.com/AdsPage/2013/01/DiscMicroStartBox.htm?ci######
- http://do####ni.kugou.com/GouWo_1201.exe
- DNS ASK ga##.kugou.com
- DNS ASK do####ni.kugou.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''