Technical Information
- %WINDIR%\explorer.exe
- iexplore.exe
- iexplore.exe process, wininet.dll module
- %HOMEPATH%\4_63\deifdrlhx.vgd
- %HOMEPATH%\4_63\sgww.docx
- %HOMEPATH%\4_63\pqtvmpwic.dll
- %HOMEPATH%\4_63\fpsl.mp3
- %HOMEPATH%\4_63\jkmpcu.bmp
- %HOMEPATH%\4_63\miaase.pdf
- %HOMEPATH%\4_63\quadwmii.bmp
- %HOMEPATH%\4_63\olnaaeq.xl
- %HOMEPATH%\4_63\ofqoxgqvf.bmp
- %HOMEPATH%\4_63\tgjxfstrfn.docx
- %HOMEPATH%\4_63\ougwhhfaq.dll
- %HOMEPATH%\4_63\thwkrjmb.xml
- %HOMEPATH%\4_63\stlvx.dll
- %HOMEPATH%\4_63\omtrhr.docx
- %HOMEPATH%\4_63\qiajsh.pdf
- %HOMEPATH%\4_63\pvlaepnu.xl
- %HOMEPATH%\4_63\injamsjgsx.bmp
- %HOMEPATH%\4_63\pxoedpeg.txt
- %HOMEPATH%\4_63\rbwrpeig.msc
- %HOMEPATH%\4_63\aorwh.txt
- %HOMEPATH%\4_63\uldu.xl
- %HOMEPATH%\4_63\vgdifjj.msc
- %HOMEPATH%\4_63\ugmtasr.icm
- %HOMEPATH%\4_63\bpskopiw.pif
- %HOMEPATH%\4_63\lmhe.bsj
- %HOMEPATH%\4_63\lxnv.ini
- %HOMEPATH%\4_63\fibsi.cpl
- %HOMEPATH%\temp\lxnv.ini
- %HOMEPATH%\4_63\bpskopiw.pif
- %WINDIR%\microsoft.net\framework\v4.0.30319\regsvcs.exe
- ClassName: 'EDIT' WindowName: ''
- '%HOMEPATH%\4_63\bpskopiw.pif' lmhe.bsj
- '%WINDIR%\microsoft.net\framework\v4.0.30319\regsvcs.exe'
- '%WINDIR%\syswow64\cmd.exe'
- '%WINDIR%\syswow64\cmd.exe' del "%WINDIR%\Microsoft.NET\Framework\v4.0.30319\RegSvcs.exe"