Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] 'PSTypeLib' = '{51e23817-6ef0-470b-aa31-c67d4c396034}'
- %TEMP%\voicent-agent-dialer-7.6.0.exe
- <SYSTEM32>\regsvr32.exe /s "%TEMP%\windll.dll"
- %TEMP%\voicent-agent-dialer-7.6.0.log
- %TEMP%\windll.dll
- %CommonProgramFiles%\PSTypeLib\PSTypeLib.dll
- %TEMP%\voicent-agent-dialer-7.6.0.exe
- %TEMP%\nss2.tmp\NSISdl.dll
- %HOMEPATH%\Desktop\Voicent SmartDownload 7.lnk
- %TEMP%\nss2.tmp\NSISdl.dll
- %TEMP%\windll.dll
- 'ne#####iontracker.com':80
- ne#####iontracker.com/system32/version.php?ve####################################
- DNS ASK ne#####iontracker.com
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'MozillaUIWindowClass' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''