Техническая информация
- <SYSTEM32>\Stat.exe iemonhits-success
- <SYSTEM32>\CBrowser.exe {5C1EFA91-8F06-4c01-A7E4-516E5C69B451}|%APPDATA%\__oja.dll
- <SYSTEM32>\bnlxrupy.exe
- <SYSTEM32>\dumprep.exe 2880 -dm 7 7 %TEMP%\WER364f.dir00\bnlxrupy.exe.hdmp 16325836412027500
- <SYSTEM32>\dumprep.exe 2880 -dm 7 7 %TEMP%\WER364f.dir00\bnlxrupy.exe.mdmp 16325836412027480
- %TEMP%\nsd4.tmp\AccessControl.dll
- %TEMP%\Backup.ini
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\GetUrl[1].aspx
- %APPDATA%\tsmfl.dll
- %TEMP%\nsp2.tmp\AccessControl.dll
- C:\log.ini
- %TEMP%\nsd4.tmp\FindProcDLL.dll
- %TEMP%\WER364f.dir00\bnlxrupy.exe.hdmp
- %TEMP%\WER364f.dir00\appcompat.txt
- %TEMP%\WER364f.dir00\manifest.txt
- %TEMP%\nsd4.tmp\KillProcDLL.dll
- %TEMP%\nsd4.tmp\System.dll
- %TEMP%\WER364f.dir00\bnlxrupy.exe.mdmp
- <SYSTEM32>\config.ini
- <SYSTEM32>\EnUnKey.dll
- <SYSTEM32>\Stat.exe
- %TEMP%\nsp2.tmp\blowfish.dll
- %TEMP%\nsp2.tmp\FindProcDLL.dll
- <Текущая директория>\config.ini
- <SYSTEM32>\IEMon.exe
- %TEMP%\nsp2.tmp\System.dll
- %TEMP%\nsp2.tmp\nsRandom.dll
- <SYSTEM32>\tslable.ini
- <SYSTEM32>\CBrowser.exe
- <SYSTEM32>\Client_TB.exe
- <SYSTEM32>\IEMgr.exe
- %TEMP%\nsd4.tmp\FindProcDLL.dll
- %TEMP%\nsd4.tmp\AccessControl.dll
- %TEMP%\nsd4.tmp\System.dll
- %TEMP%\nsd4.tmp\KillProcDLL.dll
- %TEMP%\nsp2.tmp\System.dll
- %TEMP%\nsp2.tmp\blowfish.dll
- %TEMP%\nsp2.tmp\AccessControl.dll
- %TEMP%\nsp2.tmp\nsRandom.dll
- %TEMP%\nsp2.tmp\FindProcDLL.dll
- 'co####.netbarad.net':80
- co####.netbarad.net/GetUrl.aspx
- DNS ASK co####.netbarad.net