Техническая информация
- <SYSTEM32>\Stat.exe iemonhits-success
- <SYSTEM32>\CBrowser.exe {1C91A40D-7CB3-4cb1-9C63-EB17F756E2DB}|%CommonProgramFiles%\Drivers\kxikn.dll
- <SYSTEM32>\qfjd_jkp.exe
- <SYSTEM32>\dumprep.exe 2856 -dm 7 7 %TEMP%\WER0389.dir00\qfjd_jkp.exe.hdmp 16325836412027496
- <SYSTEM32>\dumprep.exe 2856 -dm 7 7 %TEMP%\WER0389.dir00\qfjd_jkp.exe.mdmp 16325836412027476
- %TEMP%\nsx4.tmp\System.dll
- %TEMP%\nsx4.tmp\AccessControl.dll
- %TEMP%\Backup.ini
- %CommonProgramFiles%\Drivers\tsmfl.dll
- %TEMP%\nsr2.tmp\AccessControl.dll
- C:\log.ini
- %TEMP%\nsx4.tmp\FindProcDLL.dll
- %TEMP%\WER0389.dir00\qfjd_jkp.exe.hdmp
- %TEMP%\WER0389.dir00\appcompat.txt
- %TEMP%\WER0389.dir00\manifest.txt
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\GetUrl[1].aspx
- %TEMP%\nsx4.tmp\KillProcDLL.dll
- %TEMP%\WER0389.dir00\qfjd_jkp.exe.mdmp
- <SYSTEM32>\config.ini
- <SYSTEM32>\EnUnKey.dll
- <SYSTEM32>\Stat.exe
- %TEMP%\nsr2.tmp\blowfish.dll
- %TEMP%\nsr2.tmp\FindProcDLL.dll
- <Текущая директория>\config.ini
- <SYSTEM32>\IEMon.exe
- %TEMP%\nsr2.tmp\System.dll
- %TEMP%\nsr2.tmp\nsRandom.dll
- <SYSTEM32>\tslable.ini
- <SYSTEM32>\CBrowser.exe
- <SYSTEM32>\Client_TB.exe
- <SYSTEM32>\IEMgr.exe
- %TEMP%\nsr2.tmp\nsRandom.dll
- %TEMP%\nsr2.tmp\System.dll
- %TEMP%\nsr2.tmp\FindProcDLL.dll
- %TEMP%\nsr2.tmp\AccessControl.dll
- %TEMP%\nsr2.tmp\blowfish.dll
- %CommonProgramFiles%\Drivers\tsmfl.dll в %CommonProgramFiles%\Drivers\kxikn.dll
- <SYSTEM32>\IEMon.exe в <SYSTEM32>\qfjd_jkp.exe
- 'co####.netbarad.net':80
- co####.netbarad.net/GetUrl.aspx
- DNS ASK co####.netbarad.net