Техническая информация
- '%WINDIR%\Temp\linker.exe' (загружен из сети Интернет)
- '%WINDIR%\Temp\netstream.exe' (загружен из сети Интернет)
- '%WINDIR%\Temp\linker.exe' {"packer":{"DistributerName":"APSnapdoAMRev","ChannelId":"3"},"agent":{"SetAll":"true","Internal_Amonetize_Campaign_ID":"{19911}","OUR_CLICK_ID":""}}
- '%WINDIR%\Temp\netstream.exe' s/ /subid={19910}
- %WINDIR%\Temp\linker.exe
- %TEMP%\nsy2.tmp\System.dll
- %TEMP%\nsy2.tmp\inetc.dll
- %WINDIR%\Temp\netstream.exe
- %TEMP%\nsy2.tmp\System.dll
- %TEMP%\nsy2.tmp\inetc.dll
- 'in####l.bhuygv.com':80
- 'al####oudmedia.com':80
- '50.#.75.201':5450
- http://in####l.bhuygv.com/download/APSnapdoAMRev
- http://al####oudmedia.com/tunnel/netstream.exe
- DNS ASK in####l.bhuygv.com
- DNS ASK al####oudmedia.com
- ClassName: 'Shell_TrayWnd' WindowName: ''