Техническая информация
- '%TEMP%\local.exe'
- '<SYSTEM32>\msiexec.exe' /V
- '<SYSTEM32>\msiexec.exe' /i "<LS_APPDATA>\Downloaded Installations\{5E9D0F7F-4AF3-482A-A865-1DD9CE91DE1F}\FreeYouTubeDownloader.msi" SETUPEXEDIR="%HOMEPATH%\Local Settings\Temp" SETUPEXENAME="local.exe"
- %TEMP%\{E7AE458D-98F3-43D2-BC39-23C7E69AC04D}\FreeYouTubeDownloader.msi
- %TEMP%\{E7AE458D-98F3-43D2-BC39-23C7E69AC04D}\Microsoft .NET Framework 4.5 Web.prq
- %TEMP%\~4.tmp
- %TEMP%\32627.msi
- %TEMP%\~5.tmp
- <LS_APPDATA>\Downloaded Installations\{5E9D0F7F-4AF3-482A-A865-1DD9CE91DE1F}\FreeYouTubeDownloader.msi
- %TEMP%\~3.tmp
- %TEMP%\nsv2.tmp\setup.dll
- %TEMP%\nsv2.tmp\conf
- %TEMP%\nsv2.tmp\NSISdl.dll
- %TEMP%\{E7AE458D-98F3-43D2-BC39-23C7E69AC04D}\0x0409.ini
- %TEMP%\{E7AE458D-98F3-43D2-BC39-23C7E69AC04D}\_ISMSIDEL.INI
- %TEMP%\{E7AE458D-98F3-43D2-BC39-23C7E69AC04D}\Setup.INI
- %TEMP%\~5.tmp
- %TEMP%\~4.tmp
- %TEMP%\~3.tmp
- %TEMP%\nsv2.tmp\setup.dll в %TEMP%\local.exe
- 'pe###ne.club':80
- pe###ne.club/launch_reb.php?p=######################################
- DNS ASK pe###ne.club
- ClassName: 'Shell_TrayWnd' WindowName: ''