Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\services\BRAds] 'Start' = '00000002'
- '%PROGRAM_FILES%\BRAds\BRAds.exe'
- '%PROGRAM_FILES%\BRAds\BRAds.exe' /install /SILENT
- '%PROGRAM_FILES%\BRAds\nfregdrv.exe' <DRIVERS>\ssfilterdrv.sys
- '<SYSTEM32>\net1.exe' start BRAds
- %PROGRAM_FILES%\BRAds\nfregdrv.exe
- %PROGRAM_FILES%\BRAds\ssfilterdrv.sys
- %TEMP%\nsxEDD9.tmp\System.dll
- %TEMP%\nsxEDD9.tmp\SimpleSC.dll
- <DRIVERS>\ssfilterdrv.sys
- %PROGRAM_FILES%\BRAds\uninst.exe
- %PROGRAM_FILES%\BRAds\nfapi.dll
- %PROGRAM_FILES%\BRAds\BRAds.exe
- %TEMP%\nscEC23.tmp
- %PROGRAM_FILES%\BRAds\ProtocolFilters.dll
- %PROGRAM_FILES%\BRAds\libeay32.dll
- %PROGRAM_FILES%\BRAds\ssleay32.dll
- %TEMP%\nsxEDD9.tmp\System.dll
- %TEMP%\nsxEDD9.tmp\SimpleSC.dll
- %PROGRAM_FILES%\BRAds\ssfilterdrv.sys
- DNS ASK dn#.##ftncsi.com
- DNS ASK www.br####warellc.com
- ClassName: 'MS_WINHELP' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''