Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'flash.exe' = '%TEMP%\flashplayer\flash.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'flashframe.exe' = '%APPDATA%\CoolBean\flashframe.exe'
- %TEMP%\flashplayer\flash.exe
- %APPDATA%\CoolBean\flashframe.exe
- firefox.exe
- %TEMP%\grabber_pages.txt
- %TEMP%\ts-grabber.dll
- %APPDATA%\CoolBean\flashframe.exe
- %TEMP%\flashplayer\flash.exe
- 'da###t.1x.net':80
- da###t.1x.net/adm/111/com/~acp/addons/grabber.dll
- da###t.1x.net/adm/111/com/~acp/connect.php?hw########################
- da###t.1x.net/adm/111/com/~acp/grabber-connect.php
- DNS ASK da###t.1x.net
- ClassName: 'Indicator' WindowName: ''