Technical Information
- [<HKLM>\SYSTEM\ControlSet001\Services\7AG8R3] 'ImagePath' = '<Current directory>\7AG8R3.sys'
- <Current directory>\7AG8R3.sys
- 'localhost':1037
- 'al##un.com':80
- 'hi###oolz.com':80
- '13#.#9.148.97':80
- '255.255.255.255':80
- http://www.hi###oolz.com/vip.html via hi###oolz.com
- http://v1.#7yz.net/CodeMode.ashx via 255.255.255.255
- DNS ASK www.al##un.com
- DNS ASK www.hi###oolz.com
- DNS ASK v1.#7yz.net
- '18#.#6.76.76':1036
- '11#.#14.114.114':1039
- '<DNS_SERVER>':1042
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''