Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'PrivitizeVPN' = '%PROGRAM_FILES%\PrivitizeVPN\PrivitizeVPN.exe /autorun'
- '%PROGRAM_FILES%\PrivitizeVPN\PrivitizeVPN.exe'
- %PROGRAM_FILES%\PrivitizeVPN\uninstall.exe
- %PROGRAM_FILES%\PrivitizeVPN\VPN.dll
- %HOMEPATH%\Start Menu\Programs\PrivitizeVPN\PrivitizeVPN.lnk
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\update[1].5
- %HOMEPATH%\Start Menu\Programs\PrivitizeVPN\Uninstall PrivitizeVPN.lnk
- %TEMP%\nsr2.tmp\sqlite3.dll
- %TEMP%\nsr2.tmp\chutil.dll
- %TEMP%\nsr2.tmp\System.dll
- %PROGRAM_FILES%\PrivitizeVPN\PrivitizeVPN.exe
- %TEMP%\nsr2.tmp\KillProcDLL.dll
- %TEMP%\nsr2.tmp\sqlite3.dll
- %TEMP%\nsr2.tmp\System.dll
- %TEMP%\nsr2.tmp\chutil.dll
- %TEMP%\nsr2.tmp\KillProcDLL.dll
- 'www.pr###tize.com':80
- www.pr###tize.com/api/dev/update?ve###########
- DNS ASK www.pr###tize.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'