Technical Information
- %TEMP%\KD\ESD.key
- %TEMP%\KD\1.txt
- %TEMP%\KD\RESETreg.key
- %TEMP%\KD\RESET2.BAT
- <SYSTEM32>\d3d9caps.tmp
- <SYSTEM32>\d3d9caps.dat
- %TEMP%\KD\KIS90.key
- %TEMP%\KD\KAV90.key
- %TEMP%\KD\ESD.key
- <SYSTEM32>\d3d9caps.dat
- from <SYSTEM32>\d3d9caps.tmp to <SYSTEM32>\d3d9caps.dat
- 'dl.##opbox.com':80
- 'www.br###net.com':80
- 'wp#d':80
- dl.##opbox.com/u/17490438/ESD.reg
- dl.##opbox.com/u/17490438/RESET2.bat
- dl.##opbox.com/u/17490438/RESETreg.reg
- wp#d/wpad.dat
- www.br###net.com/
- dl.##opbox.com/u/17490438/1.txt
- DNS ASK dl.##opbox.com
- DNS ASK www.br###net.com
- DNS ASK wp#d
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'SysListView32' WindowName: ''