Техническая информация
- '%APPDATA%\chrome.exe' /silent /install
- '%APPDATA%\chrome.exe' (загружен из сети Интернет)
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\icwrmind.exe.new
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\icwtutor.exe.new
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\icwhelp.dll.new
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\icwres.dll.new
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\isignup.exe.new
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\trialoc.dll.new
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\icwutil.dll.new
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\inetwiz.exe.new
- %PROGRAM_FILES%\Internet Explorer\iedw.exe.new
- %PROGRAM_FILES%\Internet Explorer\iexplore.exe.new
- %APPDATA%\chrome.exe
- %PROGRAM_FILES%\Internet Explorer\hmmapi.dll.new
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\icwconn2.exe.new
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\icwdl.dll.new
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\icwconn.dll.new
- %PROGRAM_FILES%\Internet Explorer\Connection Wizard\icwconn1.exe.new
- %APPDATA%\chrome.exe
- '74.##5.232.51':80
- 'xu####utrampo.com':80
- 'co####ipping.com':80
- 74.##5.232.51/chrome/install/375.126/chrome_installer.exe
- xu####utrampo.com/xupa.jsp
- co####ipping.com/conta/add.php
- DNS ASK dl.##ogle.com
- DNS ASK xu####utrampo.com
- DNS ASK co####ipping.com
- ClassName: 'Shell_TrayWnd' WindowName: ''