Техническая информация
- %TEMP%\stub.exe
- %TEMP%\stub.exe (загружен из сети Интернет)
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3] '2500' = '00000003'
- %TEMP%\activation_key
- %TEMP%\nsh3.tmp\NSISdl.dll
- %TEMP%\stub.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\2774dgdxitqp[1].exe
- %TEMP%\nsh3.tmp\System.dll
- %TEMP%\nsc2.tmp
- <SYSTEM32>\srceqvxukwgkuk.dll-uninst.exe
- <SYSTEM32>\srceqvxukwgkuk.dll
- %TEMP%\nsh3.tmp\System.dll
- %TEMP%\nsh3.tmp\NSISdl.dll
- %TEMP%\activation_key
- 'av##v.com':80
- 'localhost':1038
- 'my####search.biz':80
- av##v.com/_ioymsaxo/2774dgdxitqp.exe
- my####search.biz/nsi.php?af######################
- DNS ASK av##v.com
- DNS ASK my####search.biz