Trojan.DownLoader11.14932

Technical Information

To ensure autorun and distribution:

Modifies the following registry keys:

[<HKLM>\SOFTWARE\Classes\m3jfile\Shell\Open\Command] '' = '%PROGRAM_FILES%\MBTools\m3\m3.exe "%1"'
[<HKLM>\SOFTWARE\Classes\vafile\Shell\Open\Command] '' = '%PROGRAM_FILES%\MBTools\wva.exe /v "%1"'
[<HKLM>\SOFTWARE\Classes\PROTOCOLS\Handler\mgpc] 'CLSID' = '{D25ACC3D-6EB1-4C4D-A418-96DF4A1E835B}'
[<HKLM>\SOFTWARE\Classes\MGPCfile\Shell\Open\Command] '' = '"%PROGRAM_FILES%\MBTools\m2\mgpcview.exe" "%1"'

Creates or modifies the following files:

%HOMEPATH%\Start Menu\Programs\Startup\VAUpdate.lnk

Malicious functions:

Creates and executes the following:

'%PROGRAM_FILES%\MBTools\mwb000.exe' /REGSERVER
'%PROGRAM_FILES%\MBTools\mwb000.exe' /UNREGSERVER
'%PROGRAM_FILES%\MBTools\MGPCCom.exe' /REGSERVER
'%PROGRAM_FILES%\MBTools\gui.exe' /REGSERVER
'%PROGRAM_FILES%\MBTools\m3client.exe' /REGSERVER
'%PROGRAM_FILES%\MBTools\mbtools001.exe' /REGSERVER
'%PROGRAM_FILES%\MBTools\config.exe' "%PROGRAM_FILES%\MBTools\config\config.va" postinstall
'%PROGRAM_FILES%\MBTools\opie000.exe' /REGSERVER
'%PROGRAM_FILES%\MBTools\lu.exe' ?%USERNAME%+CRNJEUFU+CRNJEUFU+config.exe+480+VA+config.va+CRC:4F445D94+VER:0000119A

Modifies file system :

Creates the following files:

%PROGRAM_FILES%\MBTools\sys\edit.exe
%PROGRAM_FILES%\MBTools\txtscan.exe
%PROGRAM_FILES%\MBTools\quikview.exe
%PROGRAM_FILES%\MBTools\zip.exe
%PROGRAM_FILES%\MBTools\unzip.exe
%PROGRAM_FILES%\MBTools\edit.exe
%PROGRAM_FILES%\MBTools\scriptcenter.chm
%PROGRAM_FILES%\MBTools\textpad\user\va.syn
%PROGRAM_FILES%\MBTools\textpad\user\dcl.syn
%PROGRAM_FILES%\MBTools\mp.exe
%PROGRAM_FILES%\MBTools\mp.txt
%PROGRAM_FILES%\MBTools\script56.chm
%PROGRAM_FILES%\MBTools\microsoft\MSVCP60.dll
%PROGRAM_FILES%\MBTools\vms\install_mtx.va
%PROGRAM_FILES%\MBTools\vms\mtx.com.vax
%PROGRAM_FILES%\MBTools\vms\mtx.exe.vax
%PROGRAM_FILES%\MBTools\scripts\composite.va
%PROGRAM_FILES%\MBTools\scripts\tail.va
%PROGRAM_FILES%\MBTools\scripts\zipdemo.va
%PROGRAM_FILES%\MBTools\vms\pit_alpha.exe.axp
%PROGRAM_FILES%\MBTools\microsoft\scrrun.dll
%PROGRAM_FILES%\MBTools\microsoft\vbscript.dll
%PROGRAM_FILES%\MBTools\vms\mtx_alpha.exe.axp
%PROGRAM_FILES%\MBTools\vms\pit.com.vax
%PROGRAM_FILES%\MBTools\vms\pit.exe.vax
%PROGRAM_FILES%\MBTools\SHFileUtils001.dll
%PROGRAM_FILES%\MBTools\ACTsspi.dll
%PROGRAM_FILES%\MBTools\acmesrv\ACMESrv.dll
%PROGRAM_FILES%\MBTools\ACTCache.dll
%PROGRAM_FILES%\MBTools\MGPC_exapi.dll
%PROGRAM_FILES%\MBTools\MGPCCom.exe
%PROGRAM_FILES%\MBTools\acmesrv\ATrinket-8-0-2.dll
%PROGRAM_FILES%\MBTools\scripts\lib\ScriptHostLib.va
%PROGRAM_FILES%\MBTools\scripts\MAD_Logon.va
%PROGRAM_FILES%\MBTools\acmesrv\ACME_Client-8-0-2.dll
%PROGRAM_FILES%\MBTools\acmesrv\ACME_Network-8-0-2.dll
%PROGRAM_FILES%\MBTools\acmesrv\ACME_Winsock-8-0-2.dll
%PROGRAM_FILES%\MBTools\HttpUrlGrabber.dll
%PROGRAM_FILES%\MBTools\textpad\user\cs.syn
%PROGRAM_FILES%\MBTools\textpad\user\r.syn
%PROGRAM_FILES%\MBTools\msxml.txt
%PROGRAM_FILES%\MBTools\textpad\user\sql.syn
%PROGRAM_FILES%\MBTools\textpad\user\pascal.syn
%PROGRAM_FILES%\MBTools\textpad\system\mbousek.bnd
%PROGRAM_FILES%\MBTools\wgnupl32.exe
%PROGRAM_FILES%\MBTools\WGNUPLOT.HLP
%PROGRAM_FILES%\MBTools\EXACOM.dll
%PROGRAM_FILES%\MBTools\mshtml.txt
%PROGRAM_FILES%\MBTools\config.exe
%PROGRAM_FILES%\MBTools\config.ini
%PROGRAM_FILES%\MBTools\scripts\lib\matchlist.va
%PROGRAM_FILES%\MBTools\scripts\lib\prompts.va
%PROGRAM_FILES%\MBTools\scripts\lib\shell_ns.va
%PROGRAM_FILES%\MBTools\scripts\lib\dtrutils.va
%PROGRAM_FILES%\MBTools\scripts\lib\indextable.va
%PROGRAM_FILES%\MBTools\scripts\lib\intel.va
%PROGRAM_FILES%\MBTools\scripts\lib\adoconst.va
%PROGRAM_FILES%\MBTools\scripts\lib\adoutils.va
%PROGRAM_FILES%\MBTools\scripts\cache.va
%PROGRAM_FILES%\MBTools\scripts\lib\jscript_ns.va
%PROGRAM_FILES%\MBTools\scripts\lib\sysutils.va
%PROGRAM_FILES%\MBTools\scripts\lib\xlutils.va
%PROGRAM_FILES%\MBTools\scripts\lib\colutils.va
%PROGRAM_FILES%\MBTools\engine\source\activscp.pas
%PROGRAM_FILES%\MBTools\engine\source\dispatchobject.pas
%PROGRAM_FILES%\MBTools\engine\source\engine_interface.pas
%PROGRAM_FILES%\MBTools\engine\engine_test.cpp
%PROGRAM_FILES%\MBTools\engine\source\engine.dpr
%PROGRAM_FILES%\MBTools\engine\source\engine.res
%PROGRAM_FILES%\MBTools\scripts\shgui.va
%PROGRAM_FILES%\MBTools\scripts\lib\shgui_html.va
%PROGRAM_FILES%\MBTools\scripts\lib\regxmlhelper.va
%PROGRAM_FILES%\MBTools\engine\source\engine_object.pas
%PROGRAM_FILES%\MBTools\engine\source\engine_globals.pas
%PROGRAM_FILES%\MBTools\engine\source\engine_utils.pas
%PROGRAM_FILES%\MBTools\scripts\plotter.va
%PROGRAM_FILES%\MBTools\scripts\plotter_mgpctpa.va
%PROGRAM_FILES%\MBTools\scripts\plotter_testdata.va
%PROGRAM_FILES%\MBTools\scripts\vaxman.va
%PROGRAM_FILES%\MBTools\scripts\accounts.va
%PROGRAM_FILES%\MBTools\scripts\ww.va
%PROGRAM_FILES%\MBTools\scripts\quikview.va
%PROGRAM_FILES%\MBTools\scripts\quikview_exe.va
%PROGRAM_FILES%\MBTools\scripts\getacme.va
%PROGRAM_FILES%\MBTools\scripts\findfiles.va
%PROGRAM_FILES%\MBTools\scripts\dirwatcher.va
%PROGRAM_FILES%\MBTools\scripts\syncfiles.va
%PROGRAM_FILES%\MBTools\scripts\ww43ar.va
%PROGRAM_FILES%\MBTools\scripts\equip.va
%PROGRAM_FILES%\MBTools\scripts\lbe.va
%PROGRAM_FILES%\MBTools\scripts\logon.va
%PROGRAM_FILES%\MBTools\scripts\col.va
%PROGRAM_FILES%\MBTools\scripts\demo.va
%PROGRAM_FILES%\MBTools\scripts\dtr.va
%PROGRAM_FILES%\MBTools\scripts\russ2.va
%PROGRAM_FILES%\MBTools\scripts\scd.va
%PROGRAM_FILES%\MBTools\scripts\shell.va
%PROGRAM_FILES%\MBTools\scripts\mtx.va
%PROGRAM_FILES%\MBTools\scripts\reghelper.va
%PROGRAM_FILES%\MBTools\scripts\russ.va
%PROGRAM_FILES%\MBTools\m3\scripts\lib\m3jobs.va
%PROGRAM_FILES%\MBTools\scripts\lib\MGPCLibDefaultMap.ini
%PROGRAM_FILES%\MBTools\m3\scripts\modules\JMPData.jsl
%PROGRAM_FILES%\MBTools\m3\templates\LOT_MGFILE_ENTITY_ACCESS_EVENT.m3j
%PROGRAM_FILES%\MBTools\m3\templates\WAFER_MGFILE_SLOT_POSITION.m3j
%PROGRAM_FILES%\MBTools\UpdateSHLogin.exe
%PROGRAM_FILES%\MBTools\m3\scripts\modules\lib\JobData.va
%PROGRAM_FILES%\MBTools\scripts\lib\MailLib.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\recipe_mars_cb.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\JMPData.va
%PROGRAM_FILES%\MBTools\scripts\lib\JMPLib.jsl
%PROGRAM_FILES%\MBTools\scripts\lib\JMPLib.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\slot_position.va
%PROGRAM_FILES%\MBTools\scripts\lib\ShadowLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\SHLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\VDCLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\MGPCLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\MultiShadowLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\RunCBLib.va
%PROGRAM_FILES%\MBTools\SubmitSHJob.exe
%PROGRAM_FILES%\MBTools\XLConfig.xla
%PROGRAM_FILES%\MBTools\m3\scripts\modules\slot_position.ini
%PROGRAM_FILES%\MBTools\scripts\lib\ZipLib.va
%PROGRAM_FILES%\MBTools\AutoMGPC.xls
%PROGRAM_FILES%\MBTools\CreateSHJob.exe
%PROGRAM_FILES%\MBTools\scripts\lib\EPRawLib.ini
%PROGRAM_FILES%\MBTools\scripts\lib\EPRawLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\QueryLib.ini
%PROGRAM_FILES%\MBTools\m3\scripts\modules\ep_query\scatter.exe
%PROGRAM_FILES%\MBTools\m3\scripts\modules\ep_query.va
%PROGRAM_FILES%\MBTools\scripts\lib\EPLib.va
%HOMEPATH%\Desktop\MGPC3.lnk
%HOMEPATH%\Start Menu\MGPC3.lnk
%HOMEPATH%\Start Menu\Programs\MGPC3.lnk
%PROGRAM_FILES%\MBTools\config\installation.ini
%WINDIR%\va.exe
%PROGRAM_FILES%\MBTools\m3\config\config.xml
%PROGRAM_FILES%\MBTools\m3\scripts\modules\ep_query\runvb.zip
%PROGRAM_FILES%\MBTools\scripts\lib\ORALib.va
%PROGRAM_FILES%\MBTools\scripts\lib\SHJob.va
%PROGRAM_FILES%\MBTools\scripts\lib\SHJob.xml
%PROGRAM_FILES%\MBTools\RunJMP.exe
%PROGRAM_FILES%\MBTools\scripts\lib\SCANLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\GNULib.va
%PROGRAM_FILES%\MBTools\scripts\lib\ViewerLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\CSVLib.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\ep_query\EPTemplateSummaryData.exe
%PROGRAM_FILES%\MBTools\scripts\lib\SHNotify.xml
%PROGRAM_FILES%\MBTools\RunSMART.exe
%PROGRAM_FILES%\MBTools\scripts\lib\PPTLib.va
%PROGRAM_FILES%\MBTools\scripts\exa\menus.va
%PROGRAM_FILES%\MBTools\scripts\utils\FileLib.va
%PROGRAM_FILES%\MBTools\scripts\utils\StringLib.va
%PROGRAM_FILES%\MBTools\scripts\MGPC_Help.va
%PROGRAM_FILES%\MBTools\scripts\exa\MGPC_Help.htm
%PROGRAM_FILES%\MBTools\scripts\exa\exautils.va
%PROGRAM_FILES%\MBTools\VA_Script_CookBook.doc
%PROGRAM_FILES%\MBTools\scripts\fva_feature.va
%PROGRAM_FILES%\MBTools\scripts\fva_mgpc.va
%PROGRAM_FILES%\MBTools\textpad\user\VBScript_Class.tcl
%PROGRAM_FILES%\MBTools\VA_Scripts.doc
%PROGRAM_FILES%\MBTools\VA_Scripting_Training.doc
%PROGRAM_FILES%\MBTools\scripts\vffindlots.va
%PROGRAM_FILES%\MBTools\scripts\lib\FileLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\CBLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\XMLLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\TomS.va
%PROGRAM_FILES%\MBTools\scripts\lib\StringLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\EmailLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\VBALib.va
%PROGRAM_FILES%\MBTools\scripts\lib\SQLLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\CryptoLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\HTMLLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\inputLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\VALib.va
%PROGRAM_FILES%\MBTools\scripts\lib\MSALib.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\entity_event.va
%PROGRAM_FILES%\MBTools\m3\templates\LOT_MGFILE_ENTITY_ACCESS.m3j
%PROGRAM_FILES%\MBTools\scripts\lib\PTSLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\WEBLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\XLRepLib.va
%PROGRAM_FILES%\MBTools\m3\templates\WAFER_MGFILE_SUBENTITY_ML.m3j
%PROGRAM_FILES%\MBTools\scripts\lib\ACSLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\HTMTableLib.va
%PROGRAM_FILES%\MBTools\m3\templates\LOT_MGFILE_ENTITY_ACCESS_ML.m3j
%PROGRAM_FILES%\MBTools\m3\templates\TemplateInputs.xml
%PROGRAM_FILES%\MBTools\m3\templates\WAFER_CSV_SUBENTITY.m3j
%PROGRAM_FILES%\MBTools\scripts\lib\JSLLib.va
%PROGRAM_FILES%\MBTools\scripts\sva_cummap.va
%PROGRAM_FILES%\MBTools\scripts\simpleActToolHostCom.va
%PROGRAM_FILES%\MBTools\scripts\t.txt
%PROGRAM_FILES%\MBTools\scripts\fva_pareto.va
%PROGRAM_FILES%\MBTools\scripts\fva_throughtime.va
%PROGRAM_FILES%\MBTools\scripts\fva_trumpet.va
%PROGRAM_FILES%\MBTools\scripts\lib\ADOLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\AHATableLib.va
%PROGRAM_FILES%\MBTools\scripts\lib\CmdLine.va
%PROGRAM_FILES%\MBTools\scripts\loadSortToSas.sas
%PROGRAM_FILES%\MBTools\scripts\lib\ADMLib.ini
%PROGRAM_FILES%\MBTools\scripts\lib\ADMLib.va
%PROGRAM_FILES%\MBTools\plotterobject.txt
%PROGRAM_FILES%\MBTools\mwb000.exe
%PROGRAM_FILES%\MBTools\mwb000.txt
%PROGRAM_FILES%\MBTools\mui000.ocx
%PROGRAM_FILES%\MBTools\mui000.txt
%PROGRAM_FILES%\MBTools\plotterobject.ocx
%PROGRAM_FILES%\MBTools\r000.dll
%PROGRAM_FILES%\MBTools\r000.txt
%PROGRAM_FILES%\MBTools\tpatypelib.tlb
%PROGRAM_FILES%\MBTools\phook000.dll
%PROGRAM_FILES%\MBTools\m3admin.exe
%PROGRAM_FILES%\MBTools\m3admin.ini
%PROGRAM_FILES%\MBTools\filter000.txt
%PROGRAM_FILES%\MBTools\m2\mgpcview.exe
%PROGRAM_FILES%\MBTools\m2\register.va
%PROGRAM_FILES%\MBTools\cache000.dll
%PROGRAM_FILES%\MBTools\acmenet\acmenames.ini
%PROGRAM_FILES%\MBTools\m2\delphimm.dll
%PROGRAM_FILES%\MBTools\m2\mgpcview.dll
%PROGRAM_FILES%\MBTools\m3client.exe
%PROGRAM_FILES%\MBTools\m3client.txt
%PROGRAM_FILES%\MBTools\filter000.dll
%PROGRAM_FILES%\MBTools\cache000.txt
%PROGRAM_FILES%\MBTools\m3handler.dll
%PROGRAM_FILES%\MBTools\m3handler.txt
%PROGRAM_FILES%\MBTools\m3\scripts\lib\m3alias.va
%PROGRAM_FILES%\MBTools\m3\scripts\lib\m3arrays.va
%PROGRAM_FILES%\MBTools\m3\scripts\lib\m3plotter.va
%PROGRAM_FILES%\MBTools\m3\scripts\lib\m3jobindex.m3m
%PROGRAM_FILES%\MBTools\m3\scripts\lib\m3master.va
%PROGRAM_FILES%\MBTools\m3\scripts\lib\m3utils.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\corr.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\csvfile.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\datafile.va
%PROGRAM_FILES%\MBTools\m3\scripts\lib\m3server.va
%PROGRAM_FILES%\MBTools\m3\scripts\lib\m3runquery.va
%PROGRAM_FILES%\MBTools\m3\scripts\lib\index_maint.va
%PROGRAM_FILES%\MBTools\m3\scripts\lib\m3filter.va
%PROGRAM_FILES%\MBTools\m3\admin\configserver_.ini
%PROGRAM_FILES%\MBTools\m3\admin\configserver_azsactapp123.ini
%PROGRAM_FILES%\MBTools\m3\admin\configserver_azvactmgpcdb2.ini
%PROGRAM_FILES%\MBTools\m3\admin\snt.exe
%PROGRAM_FILES%\MBTools\m3\admin\configserver.va
%PROGRAM_FILES%\MBTools\m3\admin\configserver.ini
%PROGRAM_FILES%\MBTools\scripts\lib\mwblib.va
%PROGRAM_FILES%\MBTools\m3\scripts\lib\m3common.va
%PROGRAM_FILES%\MBTools\m3\scripts\lib\m3doc.va
%PROGRAM_FILES%\MBTools\m3\admin\configserver_f21syield008.ini
%PROGRAM_FILES%\MBTools\m3\admin\configserver.txt
%PROGRAM_FILES%\MBTools\m3\config\startup.va
%PROGRAM_FILES%\MBTools\internals.tlb
%PROGRAM_FILES%\MBTools\mbtools000.dll
%PROGRAM_FILES%\MBTools\mbtools000.txt
%PROGRAM_FILES%\MBTools\dsnap70.bpl
%PROGRAM_FILES%\MBTools\internet000.bpl
%PROGRAM_FILES%\MBTools\core000.bpl
%PROGRAM_FILES%\MBTools\mman000.txt
%PROGRAM_FILES%\MBTools\plot000.dll
%PROGRAM_FILES%\MBTools\plot000.txt
%PROGRAM_FILES%\MBTools\mbtools001.exe
%PROGRAM_FILES%\MBTools\mbtools001.txt
%PROGRAM_FILES%\MBTools\mman000.dll
%PROGRAM_FILES%\MBTools\dbrtl70.bpl
%PROGRAM_FILES%\MBTools\config.bat
%PROGRAM_FILES%\MBTools\config\baggage.va
%PROGRAM_FILES%\MBTools\config\tom.va
%PROGRAM_FILES%\MBTools\config\config.va
%PROGRAM_FILES%\MBTools\config\update.cmd
%PROGRAM_FILES%\MBTools\config\startup.va
%PROGRAM_FILES%\MBTools\vcljpg50.bpl
%PROGRAM_FILES%\MBTools\rtl70.bpl
%PROGRAM_FILES%\MBTools\vcl70.bpl
%PROGRAM_FILES%\MBTools\config\alan.va
%PROGRAM_FILES%\MBTools\config\scott.va
%PROGRAM_FILES%\MBTools\vcl50.bpl
%PROGRAM_FILES%\MBTools\wva_stub.exe
%PROGRAM_FILES%\MBTools\mv.exe
%PROGRAM_FILES%\MBTools\cva.exe
%PROGRAM_FILES%\MBTools\va_stub.exe
%PROGRAM_FILES%\MBTools\wva.exe
%PROGRAM_FILES%\MBTools\wva_exe.exe
%PROGRAM_FILES%\MBTools\acmesrv\acmenet.ini
%PROGRAM_FILES%\MBTools\acmenet\mgpcnet.ini
%PROGRAM_FILES%\MBTools\acmenet\acmenet.ini
%PROGRAM_FILES%\MBTools\lu.exe
%PROGRAM_FILES%\MBTools\luCom.dll
%PROGRAM_FILES%\MBTools\lucom.txt
%PROGRAM_FILES%\MBTools\va_exe.exe
%PROGRAM_FILES%\MBTools\opie000.txt
%PROGRAM_FILES%\MBTools\mv000.bpl
%PROGRAM_FILES%\MBTools\va000.bpl
%PROGRAM_FILES%\MBTools\utils000.dll
%PROGRAM_FILES%\MBTools\utils000.txt
%PROGRAM_FILES%\MBTools\opie000.exe
%PROGRAM_FILES%\MBTools\dde000.dll
%PROGRAM_FILES%\MBTools\dde000.txt
%PROGRAM_FILES%\MBTools\va.exe
%PROGRAM_FILES%\MBTools\midas000.bpl
%PROGRAM_FILES%\MBTools\zipfile.dll
%PROGRAM_FILES%\MBTools\zipfile.txt
%PROGRAM_FILES%\MBTools\m3\pages\tpadoc_files\tpa_min.gif
%PROGRAM_FILES%\MBTools\m3\pages\tpadoc_files\tpa_prob.gif
%PROGRAM_FILES%\MBTools\m3\pages\tpadoc_files\tpa_s2.gif
%PROGRAM_FILES%\MBTools\m3\pages\tpadoc_files\tpa_cum.gif
%PROGRAM_FILES%\MBTools\m3\pages\tpadoc_files\tpa_eq.gif
%PROGRAM_FILES%\MBTools\m3\pages\tpadoc_files\tpa_max.gif
%PROGRAM_FILES%\MBTools\m3\scripts\mgpccom_template.m3j
%PROGRAM_FILES%\MBTools\m3\examplecode\makegraphs.va
%PROGRAM_FILES%\MBTools\m3\examplecode\dumpdata.va
%PROGRAM_FILES%\MBTools\m3\pages\tpadoc_files\tpa_s3.gif
%PROGRAM_FILES%\MBTools\scripts\m3.va
%PROGRAM_FILES%\MBTools\m3\scripts\m3exe.va
%PROGRAM_FILES%\MBTools\m3\pages\tpadoc.htm
%PROGRAM_FILES%\MBTools\m3\pages\config.htm
%PROGRAM_FILES%\MBTools\m3\pages\dialog.htm
%PROGRAM_FILES%\MBTools\m3\scripts\m3servers.va
%PROGRAM_FILES%\MBTools\m3\scripts\m3debug.va
%PROGRAM_FILES%\MBTools\m3\pages\debug.htm
%PROGRAM_FILES%\MBTools\m3\scripts\m3config.va
%PROGRAM_FILES%\MBTools\m3\scripts\m3query.va
%PROGRAM_FILES%\MBTools\m3\m3_main.vbs
%PROGRAM_FILES%\MBTools\m3\m3.exe
%PROGRAM_FILES%\MBTools\m3\pages\servers.htm
%PROGRAM_FILES%\MBTools\m3\scripts\lib\m3rscript.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\rtest.va
%PROGRAM_FILES%\MBTools\sva\sva.zip
%PROGRAM_FILES%\MBTools\scripts\wque.va
%PROGRAM_FILES%\MBTools\scripts\wque_stuffer.va
%PROGRAM_FILES%\MBTools\scripts\lib\wsb.va
%PROGRAM_FILES%\MBTools\scripts\guitest.va
%PROGRAM_FILES%\MBTools\scripts\yaf.va
%PROGRAM_FILES%\MBTools\engine\engine_functions.pas
%PROGRAM_FILES%\MBTools\engine\engine_functions.def
%PROGRAM_FILES%\MBTools\engine\engine_functions.hpp
%PROGRAM_FILES%\MBTools\scripts\wque_worker.va
%PROGRAM_FILES%\MBTools\engine\engine.dll
%PROGRAM_FILES%\MBTools\engine\engine_functions.txt
%PROGRAM_FILES%\MBTools\scripts\lib\gui.va
%PROGRAM_FILES%\MBTools\m3\examplecode\template.m3j
%PROGRAM_FILES%\MBTools\m3\examplecode\submitjob.va
%PROGRAM_FILES%\MBTools\m3\examplecode\test_mgpccom.va
%PROGRAM_FILES%\MBTools\m3\examplecode\kim.zip
%PROGRAM_FILES%\MBTools\m3\examplecode\mkurl.va
%PROGRAM_FILES%\MBTools\m3\examplecode\testmgpc.txt
%PROGRAM_FILES%\MBTools\tidoc.exe
%PROGRAM_FILES%\MBTools\gui.exe
%PROGRAM_FILES%\MBTools\gui.txt
%PROGRAM_FILES%\MBTools\va.va
%PROGRAM_FILES%\MBTools\mv.va
%PROGRAM_FILES%\MBTools\mv.is
%PROGRAM_FILES%\MBTools\m3\scripts\modules\catfile.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\sort_access.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\sort_access_w.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\keylist.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\queuetime_dm.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\resfile.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\raster_cb.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\pmcount_adaptor.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\lib\pmlib.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\sort_aries.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\sort_aries_w.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\subentity_mars.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\ftest.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\loadport_mars.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\etest_access.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\etest_access_w.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\entity_access.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\entity_mars.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\entity_mars_cb.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\fleng_access.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\neng_access.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\eng_oasys.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\etest_aries.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\etest_aries_w.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\exafile.va
%PROGRAM_FILES%\MBTools\m3\pages\viewer_help.htm
%PROGRAM_FILES%\MBTools\m3\scripts\m3main.va
%PROGRAM_FILES%\MBTools\m3\pages\main.htm
%PROGRAM_FILES%\MBTools\m3\pages\editor_help.htm
%PROGRAM_FILES%\MBTools\m3\scripts\m3viewer.va
%PROGRAM_FILES%\MBTools\m3\pages\viewer.htm
%PROGRAM_FILES%\MBTools\m3\scripts\m3job.va
%PROGRAM_FILES%\MBTools\m3\pages\blueball.gif
%PROGRAM_FILES%\MBTools\m3\pages\about.htm
%PROGRAM_FILES%\MBTools\m3\scripts\m3dump.va
%PROGRAM_FILES%\MBTools\m3\scripts\m3ela.va
%PROGRAM_FILES%\MBTools\m3\scripts\m3cmd.va
%PROGRAM_FILES%\MBTools\m3\pages\editor.htm
%PROGRAM_FILES%\MBTools\m3\scripts\modules\acsfile.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\multilayer.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\pmcount_mars_cb.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\queuetime_mars_cb.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\lib\cbextracts.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\subentity_mars_cb.va
%PROGRAM_FILES%\MBTools\m3\pages\filter_help.htm
%PROGRAM_FILES%\MBTools\m3\scripts\m3help.va
%PROGRAM_FILES%\MBTools\m3\scripts\m3editor.va
%PROGRAM_FILES%\MBTools\m3\scripts\modules\pmcount2_mars_cb.va
%PROGRAM_FILES%\MBTools\m3\samples\test_pmcount.va
%PROGRAM_FILES%\MBTools\m3\pages\dw4q.vbs

Network activity:

Connects to:

'ac#.#ntel.com':80

TCP:

HTTP GET requests:

ac#.#ntel.com/scripts/VA/log.asp?UR##############################################################################

UDP:

DNS ASK ac#.#ntel.com

Miscellaneous:

Searches for the following windows:

ClassName: '(null)' WindowName: '2940{20EE46C1-FE31-11D2-B7DA-0080C73C22BA}'
ClassName: 'MS_WINHELP' WindowName: '(null)'
ClassName: '{3E2FF4F7-6220-4755-A503-5F61B7743573}' WindowName: '{82D14767-F77F-45FE-A9D2-E81FA4D3BDAA}'

テクノロジー

用語

トレーニングコースおよび啓蒙プロジェクト

アンチウイルスに関する誤解と噂

Technical Information

Curing recommendations

Free trial