Technical Information
- %APPDATA%\microsoft\windows\start menu\programs\startup\wefdsfee.html
- %TEMP%\lnk.exe
- %TEMP%\abr.exe
- %TEMP%\atl.exe
- %TEMP%\lnk.html
- %LOCALAPPDATA%\microsoft\windows\history\history.ie5\mshist012022082220220823\index.dat
- %APPDATA%\microsoft\internet explorer\quick launch\user pinned\taskbar\google chrome.lnk
- 'bi#.ly':80
- http://bi#.ly/1MYDK0t
- DNS ASK bi#.ly
- DNS ASK ad#####ayerflash.info
- ClassName: 'EDIT' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- ClassName: 'Static' WindowName: ''
- '%TEMP%\abr.exe'
- '%TEMP%\atl.exe'
- '%TEMP%\lnk.exe'