Technical Information
- %WINDIR%\explorer.exe
- <SYSTEM32>\rundll32.exe "%TEMP%\ope104.tmp,NotifyLogonUser"
- %TEMP%\QuvJgBPU
- %TEMP%\winhlp32.exe
- %TEMP%\HGoEK1Au
- %WINDIR%\mjRemote.dll.bak
- %TEMP%\ope104.tmp
- %TEMP%\ope104.tmp.Tmp
- %WINDIR%\mjRemote.dll.ini
- %WINDIR%\mjRemote.dll.ini
- %WINDIR%\mjRemote.dll
- %TEMP%\HGoEK1Au
- %TEMP%\ope104.tmp.Tmp
- %TEMP%\QuvJgBPU
- 'ad###.#d.blueline.be':9000
- DNS ASK ad###.#d.blueline.be