Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%TEMP%\BundleSweetIMSetup.exe' = '%TEMP%\BundleSweetIMSetup.exe:*:Enabled:MiniMe'
- '%TEMP%\IMsetup.exe' -silent -SIMBP -sethomepage -setsearch -SIMRB=OutBrowseB -SIMTP="pid=668&cmpid=38945&plcmtid=552975&cveid=1361051" -Cargo=3.5000006.10042
- '%TEMP%\BundleSweetIMSetup.exe' -silent -SIMBP -sethomepage -setsearch -SIMRB=OutBrowseB -SIMTP="pid=668&cmpid=38945&plcmtid=552975&cveid=1361051" -Cargo=3.5000006.10042
- '%TEMP%\IMsetup.exe' (загружен из сети Интернет)
- %TEMP%\nsj2.tmp\NSISdl.dll
- %TEMP%\ping.txt
- %TEMP%\IMsetup.exe
- %TEMP%\BundleSweetIMSetup.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\bundlesweetimsetup[1].exe
- %TEMP%\nsj2.tmp\NSISdl.dll
- %TEMP%\IMsetup.exe
- 'in#####.outbrowse.com':80
- 'cd#.####load.sweetpacks.com':80
- 'localhost':1036
- in#####.outbrowse.com/installTrack.php?pu############################################################################
- cd#.####load.sweetpacks.com/simsdm/bing/bundle/bundlesweetimsetup.exe
- DNS ASK in#####.outbrowse.com
- DNS ASK cd#.####load.sweetpacks.com