Техническая информация
- '%TEMP%\vcredist.exe' /quiet
- '%TEMP%\nsn2.tmp\ns3.tmp' "%TEMP%\vcredist.exe" /quiet
- '%TEMP%\vcredist.exe' (загружен из сети Интернет)
- %TEMP%\nsn2.tmp\ns3.tmp
- %TEMP%\nsn2.tmp\SimpleSC.dll
- %TEMP%\nsn2.tmp\tkDecript.dll
- %PROGRAM_FILES%\uninstall.exe
- %TEMP%\nsn2.tmp\nsExec.dll
- %TEMP%\nsn2.tmp\nsURL.dll
- %WINDIR%\Temp\versionUpdaterSw
- %TEMP%\update.zip
- %TEMP%\vcredist.exe
- %TEMP%\nsn2.tmp\nsisunz.dll
- %TEMP%\nsn2.tmp\nsURL.dll
- %TEMP%\nsn2.tmp\nsisunz.dll
- %TEMP%\nsn2.tmp\tkDecript.dll
- %TEMP%\nsn2.tmp\SimpleSC.dll
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\vcredist_x86[1].exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\update[1].zip
- %TEMP%\nsn2.tmp\nsExec.dll
- %TEMP%\nsn2.tmp\ns3.tmp
- '20#.#6.232.182':80
- 'up#.#pd4ter.com':80
- 20#.#6.232.182/download/1/6/B/16B06F60-3B20-4FF2-B699-5E9B7962F9AE/VSU_4/vcredist_x86.exe
- up#.#pd4ter.com/update/update.zip
- DNS ASK do#####d.microsoft.com
- DNS ASK up#.#pd4ter.com