Technical Information
- [<HKLM>\System\CurrentControlSet\Services\DD94687] 'ImagePath' = 'C:\DD94687.sys'
- %ProgramFiles(x86)%\repercussion_inc\libmysql.dll
- %ProgramFiles(x86)%\repercussion_inc\cygnus.bmp
- %ProgramFiles(x86)%\repercussion_inc\boss_go.bmp
- %ProgramFiles(x86)%\repercussion_inc\cygnus_2.bmp
- %ProgramFiles(x86)%\repercussion_inc\boss_go_2.bmp
- %ProgramFiles(x86)%\repercussion_inc\login_ok.bmp
- %ProgramFiles(x86)%\repercussion_inc\ui_good.bmp
- %ProgramFiles(x86)%\repercussion_inc\ui_bad.bmp
- %ProgramFiles(x86)%\repercussion_inc\mouse.bmp
- %ProgramFiles(x86)%\repercussion_inc\5000.bmp
- %ProgramFiles(x86)%\repercussion_inc\close0.bmp
- %ProgramFiles(x86)%\repercussion_inc\close2.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\3.bmp
- %ProgramFiles(x86)%\repercussion_inc\cashok.bmp
- %ProgramFiles(x86)%\repercussion_inc\cashok2.bmp
- %ProgramFiles(x86)%\repercussion_inc\cashin.bmp
- %ProgramFiles(x86)%\repercussion_inc\room.bmp
- %ProgramFiles(x86)%\repercussion_inc\gemcheck.bmp
- %ProgramFiles(x86)%\repercussion_inc\dot.bmp
- %ProgramFiles(x86)%\repercussion_inc\event.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\0.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\1.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\2.bmp
- %ProgramFiles(x86)%\repercussion_inc\boss_right.bmp
- %ProgramFiles(x86)%\repercussion_inc\close1.bmp
- %ProgramFiles(x86)%\repercussion_inc\runewait9.bmp
- %ProgramFiles(x86)%\repercussion_inc\user2.bmp
- %ProgramFiles(x86)%\repercussion_inc\server_enosis.bmp
- %ProgramFiles(x86)%\repercussion_inc\server_red.bmp
- %ProgramFiles(x86)%\repercussion_inc\server_aurora.bmp
- %ProgramFiles(x86)%\repercussion_inc\channel.bmp
- %ProgramFiles(x86)%\repercussion_inc\gamestart.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2apply.bmp
- %ProgramFiles(x86)%\repercussion_inc\apply.bmp
- %ProgramFiles(x86)%\repercussion_inc\plus.bmp
- %ProgramFiles(x86)%\repercussion_inc\exp.bmp
- %ProgramFiles(x86)%\repercussion_inc\user.bmp
- %ProgramFiles(x86)%\repercussion_inc\user3.bmp
- %ProgramFiles(x86)%\repercussion_inc\login2.bmp
- %ProgramFiles(x86)%\repercussion_inc\user4.bmp
- %ProgramFiles(x86)%\repercussion_inc\black.bmp
- %ProgramFiles(x86)%\repercussion_inc\setting.bmp
- %ProgramFiles(x86)%\repercussion_inc\bydx.bmp
- %ProgramFiles(x86)%\repercussion_inc\nxlogin.bmp
- %ProgramFiles(x86)%\repercussion_inc\reset.bmp
- %ProgramFiles(x86)%\repercussion_inc\connect.bmp
- %ProgramFiles(x86)%\repercussion_inc\rune.bmp
- %ProgramFiles(x86)%\repercussion_inc\login.png
- %ProgramFiles(x86)%\repercussion_inc\login1.bmp
- %ProgramFiles(x86)%\repercussion_inc\runewait.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\i.bmp
- %WINDIR%\temp\udda51b.tmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\6.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\x.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\y.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\z.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\caps.bmp
- %ProgramFiles(x86)%\repercussion_inc\violeta\findme.bmp
- %ProgramFiles(x86)%\repercussion_inc\violeta\findme2.bmp
- %ProgramFiles(x86)%\repercussion_inc\violeta\first.bmp
- %ProgramFiles(x86)%\repercussion_inc\violeta\lie_detector.bmp
- %ProgramFiles(x86)%\repercussion_inc\lie2.bmp
- %ProgramFiles(x86)%\repercussion_inc\ahp_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\stone_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\pw2\5.bmp
- %ProgramFiles(x86)%\repercussion_inc\ebbox_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\olympus_com_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\gdip_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\kakao_lie_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\kakao_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\lie2_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\screen_ui_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\gemcount_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\threadchecker_enc.oly
- C:\dd94687.sys
- %ProgramFiles(x86)%\repercussion_inc\pw2\w.bmp
- %ProgramFiles(x86)%\repercussion_inc\server_elysium.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\v.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\h.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\7.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\8.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\9.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\a.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\b.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\c.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\d.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\e.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\f.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\g.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\4.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\t.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\j.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\k.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\l.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\m.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\n.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\o.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\p.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\q.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\r.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\s.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw2\u.bmp
- %ProgramFiles(x86)%\repercussion_inc\amp_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\server_union.bmp
- %ProgramFiles(x86)%\repercussion_inc\map.bmp
- %ProgramFiles(x86)%\repercussion_inc\detect\l1_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\detect\l2_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\detect\l3_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\detect\l4_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\detect\l5_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\detect\l6_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\detect\c1.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\c1_2.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\c2.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\c2_2.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\c3_2.dll
- %ProgramFiles(x86)%\repercussion_inc\kakao_lie_2.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\c4.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\c4_2.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\c1_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\detect\c2_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\detect\c3_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\detect\c4_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\olympus_dll.dll
- %ProgramFiles(x86)%\repercussion_inc\screen_ui_2.dll
- %ProgramFiles(x86)%\repercussion_inc\lie2_2.dll
- %ProgramFiles(x86)%\repercussion_inc\kakao_2.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\l6_2.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\c3.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\l6.dll
- %ProgramFiles(x86)%\repercussion_inc\gemcount.dll
- %ProgramFiles(x86)%\repercussion_inc\mysql_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\query_enc.oly
- %ProgramFiles(x86)%\repercussion_inc\query.dll
- %ProgramFiles(x86)%\repercussion_inc\olympus_com.dll
- %ProgramFiles(x86)%\repercussion_inc\ahp.dll
- %ProgramFiles(x86)%\repercussion_inc\amp.dll
- %ProgramFiles(x86)%\repercussion_inc\stone.dll
- %ProgramFiles(x86)%\repercussion_inc\ebbox.dll
- %ProgramFiles(x86)%\repercussion_inc\kakao.dll
- %ProgramFiles(x86)%\repercussion_inc\kakao_lie.dll
- %ProgramFiles(x86)%\repercussion_inc\lie2.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\l5.dll
- %ProgramFiles(x86)%\repercussion_inc\screen_ui.dll
- %ProgramFiles(x86)%\repercussion_inc\threadchecker.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\l1.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\l1_2.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\l2.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\l2_2.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\l3.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\l3_2.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\l4.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\l4_2.dll
- %ProgramFiles(x86)%\repercussion_inc\detect\l5_2.dll
- %ProgramFiles(x86)%\repercussion_inc\stone_r.bmp
- %ProgramFiles(x86)%\repercussion_inc\server_zenith.bmp
- %ProgramFiles(x86)%\repercussion_inc\ddx64_64.dll
- %ProgramFiles(x86)%\repercussion_inc\gem_3.bmp
- %ProgramFiles(x86)%\repercussion_inc\hptext.bmp
- %ProgramFiles(x86)%\repercussion_inc\worldmap.bmp
- %ProgramFiles(x86)%\repercussion_inc\unread.bmp
- %ProgramFiles(x86)%\repercussion_inc\unread2.bmp
- %ProgramFiles(x86)%\repercussion_inc\unread3.bmp
- %ProgramFiles(x86)%\repercussion_inc\send.bmp
- %ProgramFiles(x86)%\repercussion_inc\disconnect1.bmp
- %ProgramFiles(x86)%\repercussion_inc\disconnect3.bmp
- %ProgramFiles(x86)%\repercussion_inc\world_me.bmp
- %ProgramFiles(x86)%\repercussion_inc\world.bmp
- %ProgramFiles(x86)%\repercussion_inc\ddx64_32.dll
- %ProgramFiles(x86)%\repercussion_inc\npc.bmp
- %ProgramFiles(x86)%\repercussion_inc\login.bmp
- %ProgramFiles(x86)%\repercussion_inc\uotp.bmp
- %ProgramFiles(x86)%\repercussion_inc\uotp_f.bmp
- %ProgramFiles(x86)%\repercussion_inc\pw.bmp
- %ProgramFiles(x86)%\repercussion_inc\server_arcane.bmp
- %ProgramFiles(x86)%\repercussion_inc\server_nova.bmp
- %ProgramFiles(x86)%\repercussion_inc\server_scania.bmp
- %ProgramFiles(x86)%\repercussion_inc\server_bera.bmp
- %ProgramFiles(x86)%\repercussion_inc\server_luna.bmp
- %ProgramFiles(x86)%\repercussion_inc\gem_2.bmp
- %ProgramFiles(x86)%\repercussion_inc\server_croa.bmp
- %ProgramFiles(x86)%\repercussion_inc\gem_1.bmp
- %ProgramFiles(x86)%\repercussion_inc\stone_l.bmp
- %TEMP%\updater.exe
- %ProgramFiles(x86)%\repercussion_inc\me.bmp
- %ProgramFiles(x86)%\repercussion_inc\hp.bmp
- %ProgramFiles(x86)%\repercussion_inc\mp.bmp
- %ProgramFiles(x86)%\repercussion_inc\die.bmp
- %ProgramFiles(x86)%\repercussion_inc\lie.bmp
- %ProgramFiles(x86)%\repercussion_inc\lie_s.bmp
- %ProgramFiles(x86)%\repercussion_inc\eb_clock.bmp
- %ProgramFiles(x86)%\repercussion_inc\eb_min.bmp
- %ProgramFiles(x86)%\repercussion_inc\stone.bmp
- %ProgramFiles(x86)%\repercussion_inc\ddx32.dll
- %ProgramFiles(x86)%\repercussion_inc\gem.bmp
- %ProgramFiles(x86)%\repercussion_inc\0.bmp
- %ProgramFiles(x86)%\repercussion_inc\1.bmp
- %ProgramFiles(x86)%\repercussion_inc\2.bmp
- %ProgramFiles(x86)%\repercussion_inc\3.bmp
- %ProgramFiles(x86)%\repercussion_inc\4.bmp
- %ProgramFiles(x86)%\repercussion_inc\5.bmp
- %ProgramFiles(x86)%\repercussion_inc\6.bmp
- %ProgramFiles(x86)%\repercussion_inc\7.bmp
- %ProgramFiles(x86)%\repercussion_inc\8.bmp
- %ProgramFiles(x86)%\repercussion_inc\9.bmp
- %ProgramFiles(x86)%\repercussion_inc\gem_quick.bmp
- %ProgramFiles(x86)%\repercussion_inc\keyset.ini
- %WINDIR%\temp\udda51b.tmp
- C:\dd94687.sys
- http://www.ne##kus.net/show_ip.html
- DNS ASK hs##312.com
- DNS ASK ne##kus.net
- ClassName: 'Olympus' WindowName: '<Full path to file>'