Техническая информация
- %TEMP%\nso6.tmp\amisid.exe
- %TEMP%\nso6.tmp\InstallerPB.exe /i /Optimize /PTN=amonetize_playbryte_fa_v2
- %TEMP%\nsu2.tmp\tmp0002.exe /S /ci=302
- %TEMP%\nsu2.tmp\ns3.tmp "%TEMP%\nsu2.tmp\lzma.exe" d %TEMP%\nsu2.tmp\inetc.bin %TEMP%\nsu2.tmp\inetc.dll
- %TEMP%\nsu2.tmp\lzma.exe d %TEMP%\nsu2.tmp\inetc.bin %TEMP%\nsu2.tmp\inetc.dll
- <SYSTEM32>\ping.exe 1.1.1.1 -n 1 -w 3000
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\fileio.js
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\json.js
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\browserwindow.xul
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\Toolbar.xml
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\browserwindow.js
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\sidebar.js
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\sidebar.xul
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\share_link.xul
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\login.xul
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\menu.xul
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\install.rdf
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\FFAboutBlankSearch.txt
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\install.rdf
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome.manifest
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\update_status.xul
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\windows.js
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome.manifest
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\FFAboutBlankSearch.txt
- <LS_APPDATA>\Playbryte\GAC\SHDocVw.dll
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\Toolbar.xml
- <LS_APPDATA>\Playbryte\GAC\AxSHDocVw.dll
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\Thumbs.db
- %PROGRAM_FILES%\Playbryte\uninstall.exe
- <LS_APPDATA>\Playbryte\install.log
- %WINDIR%\assembly\tmp\4HOMLJIG\__AssemblyInfo__.ini
- <LS_APPDATA>\fusioncache.dat
- %WINDIR%\assembly\tmp\4HOMLJIG\SHDocVw.dll
- %TEMP%\nso6.tmp\Math.dll
- %TEMP%\nso6.tmp\inetc.dll
- <LS_APPDATA>\ApplicationHistory\InstallerPB.exe.4f8b2a3b.ini
- %WINDIR%\Microsoft.NET\Framework\v1.1.4322\CONFIG\security.config.cch.new
- %WINDIR%\Microsoft.NET\Framework\v1.1.4322\CONFIG\enterprisesec.config.cch.new
- %WINDIR%\assembly\tmp\ZZGF5T0F\__AssemblyInfo__.ini
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\update_status.xul
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\windows.js
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\toolbarsidebarshared.js
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\toolbar.js
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\toolbar.xul
- <LS_APPDATA>\Playbryte\usersettings.xml
- %WINDIR%\assembly\tmp\ZZGF5T0F\AxSHDocVw.dll
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\settingsConfig.js
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\images\hidden.png
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\extensions\playbryte@playbryte.com\chrome\content\inline\inline.js
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\toolbarsidebarshared.js
- <LS_APPDATA>\Playbryte\config.json
- <LS_APPDATA>\Playbryte\Desktop.xml
- <LS_APPDATA>\Playbryte\config.cfg
- <LS_APPDATA>\Playbryte\AuthorizedURLs.xml
- <LS_APPDATA>\Playbryte\BHO.xml
- <LS_APPDATA>\Playbryte\Assemblies\1\BrowserObjects.dll
- <LS_APPDATA>\Playbryte\Assemblies\1\Inline.dll
- <LS_APPDATA>\Playbryte\version.txt
- <LS_APPDATA>\Playbryte\TabsSearch.txt
- <LS_APPDATA>\Playbryte\Toolbar.xml
- <LS_APPDATA>\Playbryte\Settings\UpdaterSettings.xml
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\iw[1].0&cv=1189&p=320
- %TEMP%\nso6.tmp\amisid.exe
- %TEMP%\nso6.tmp\IpConfig.dll
- %TEMP%\nsi5.tmp
- %TEMP%\nso6.tmp\System.dll
- %TEMP%\playbryte-fa-amon_playbryte-fa-amon_install.zip
- <LS_APPDATA>\Playbryte\Settings\ToolbarPrefs.txt
- %TEMP%\nso6.tmp\InstallerPB.exe
- %TEMP%\nso6.tmp\nsisos.dll
- %TEMP%\nso6.tmp\PlayBryte.bmp
- <LS_APPDATA>\Playbryte\Chrome\assemblyConfig.json
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\menu.xul
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\share_link.xul
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\login.xul
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\inline\inline.js
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\json.js
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\toolbar.js
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\toolbar.xul
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\Thumbs.db
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\sidebar.js
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\sidebar.xul
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\images\hidden.png
- <LS_APPDATA>\Playbryte\Chrome\inline_content.js
- <LS_APPDATA>\Playbryte\Chrome\listenerConfig.json
- <LS_APPDATA>\Playbryte\Chrome\inline.js
- <LS_APPDATA>\Playbryte\Chrome\bg.html
- <LS_APPDATA>\Playbryte\Chrome\content.js
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\browserwindow.xul
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\fileio.js
- <LS_APPDATA>\Playbryte\Firefox\playbryte@playbryte.com\chrome\content\browserwindow.js
- <LS_APPDATA>\Playbryte\Chrome\manifest.json
- <LS_APPDATA>\Playbryte\Chrome\settingsConfig.json
- %TEMP%\nso6.tmp\Math.dll
- %TEMP%\nso6.tmp\IpConfig.dll
- %TEMP%\nso6.tmp\nsisos.dll
- %TEMP%\nso6.tmp\System.dll
- %TEMP%\nso6.tmp\PlayBryte.bmp
- %TEMP%\nso6.tmp\inetc.dll
- %WINDIR%\Microsoft.NET\Framework\v1.1.4322\CONFIG\security.config.cch.3252.130437
- %TEMP%\playbryte-fa-amon_playbryte-fa-amon_install.zip
- %WINDIR%\Microsoft.NET\Framework\v1.1.4322\CONFIG\enterprisesec.config.cch.3252.130453
- %TEMP%\nso6.tmp\amisid.exe
- %TEMP%\nso6.tmp\InstallerPB.exe
- %WINDIR%\Microsoft.NET\Framework\v1.1.4322\CONFIG\enterprisesec.config.cch в %WINDIR%\Microsoft.NET\Framework\v1.1.4322\CONFIG\enterprisesec.config.cch.3252.130453
- %WINDIR%\Microsoft.NET\Framework\v1.1.4322\CONFIG\security.config.cch в %WINDIR%\Microsoft.NET\Framework\v1.1.4322\CONFIG\security.config.cch.3252.130437
- 're#####.amonetize.com':80
- 'im##############y-1085035873.us-east-1.elb.amazonaws.com':80
- 'www.in####lwrapper.com':80
- im##############y-1085035873.us-east-1.elb.amazonaws.com/impression.do/?ev####################################################################################################################################################################################################################
- im##############y-1085035873.us-east-1.elb.amazonaws.com/impression.do/?ev##########################################################################################################################################################################################################
- im##############y-1085035873.us-east-1.elb.amazonaws.com/impression.do/?ev#######################################################################################################################################################################################################################
- www.in####lwrapper.com/api/iw/?i=############################################################
- im##############y-1085035873.us-east-1.elb.amazonaws.com/impression.do/?ev#################################################################################################################################################################################################################
- DNS ASK re#####.amonetize.com
- DNS ASK im##############y-1085035873.us-east-1.elb.amazonaws.com
- DNS ASK www.in####lwrapper.com
- ClassName: 'Shell_TrayWnd' WindowName: ''