Техническая информация
- %PROGRAM_FILES%\Groove-Stream\uninstall.exe
- %ALLUSERSPROFILE%\Desktop\Groove-Stream.lnk
- <LS_APPDATA>\ApplicationHistory\<Имя вируса>.exe.39a980f1.ini
- %TEMP%\install.log
- %PROGRAM_FILES%\Groove-Stream\AxSHDocVw.dll
- %PROGRAM_FILES%\Groove-Stream\Groove-Stream.exe
- %ALLUSERSPROFILE%\Start Menu\Programs\Groove-Stream\Groove-Stream.lnk
- %PROGRAM_FILES%\Groove-Stream\SHDocVw.dll
- %WINDIR%\Microsoft.NET\Framework\v1.1.4322\CONFIG\enterprisesec.config.cch.2716.226062
- %WINDIR%\Microsoft.NET\Framework\v1.1.4322\CONFIG\security.config.cch.2716.226031
- %WINDIR%\Microsoft.NET\Framework\v1.1.4322\CONFIG\enterprisesec.config.cch в %WINDIR%\Microsoft.NET\Framework\v1.1.4322\CONFIG\enterprisesec.config.cch.2716.226062
- %WINDIR%\Microsoft.NET\Framework\v1.1.4322\CONFIG\security.config.cch в %WINDIR%\Microsoft.NET\Framework\v1.1.4322\CONFIG\security.config.cch.2716.226031
- 'im#####ions.ibryte.com':80
- im#####ions.ibryte.com/impression.do/?ev#####################################################################################################################################
- DNS ASK im#####ions.ibryte.com