Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Macromedia Updater' = '<LS_APPDATA>\Macromedia\Macromedia Assistant.exe'
- %WINDIR%\Tasks\Macromedia Flash.job
- %TEMP%\RarSFX0\ba.bat
- %TEMP%\RarSFX0\Microsoft.Win32.TaskScheduler.dll
- %TEMP%\RarSFX0\service.exe
- C:\Macromedia\Microsoft.Win32.TaskScheduler.dll
- <LS_APPDATA>\Macromedia\Macromedia Assistant.exe
- <LS_APPDATA>\Macromedia\log.log
- %TEMP%\dw.log
- %TEMP%\23C72.dmp
- 'wp#d':80
- 'dr##box.com':443
- http://11#.#11.111.1/wpad.dat via wp#d
- DNS ASK wp#d
- DNS ASK www.dr##box.com
- ClassName: 'EDIT' WindowName: ''
- '%TEMP%\RarSFX0\service.exe'
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\RarSFX0\ba.bat" "
- '%CommonProgramFiles%\Microsoft Shared\DW\DW20.EXE' -x -s 796