Техническая информация
Вредоносные функции:
Создает и запускает на исполнение:
- '%TEMP%\7ZipSfx.000\XUSDesktopSetup.exe' /VERYSILENT
- '%TEMP%\is-PTO3P.tmp\is-9IKMP.tmp' /SL4 $200EE "%TEMP%\7ZipSfx.000\XUSDesktopSetup.exe" 2776814 52224 /VERYSILENT
- '%TEMP%\is-1VUE0.tmp\_isetup\_RegDLL.tmp' 424 396
- '%WINDIR%\Temp\XUS.Desktop.1.4.60.exe'
- '%TEMP%\_ir_sf_temp_0\irsetup.exe' __IRAOFF:652322 "__IRAFN:%WINDIR%\Temp\XUS.Desktop.1.4.60.exe" "__IRCT:1" "__IRTSS:0" "__IRSID:S-1-5-21-2052111302-484763869-725345543-1003"
- '%TEMP%\_ir_sf_temp_0\XUS.Desktop.1.4.60.exe'
Изменения в файловой системе:
Создает следующие файлы:
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-TDJLD.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-UB9LU.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-BI8JH.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-B94RI.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-2L261.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-J7PCT.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-SUDAU.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-5QBQ5.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-LVBO5.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-6QO50.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-9TANL.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-FOBF9.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-N14IL.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-67C89.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-NSPAM.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-8CKTT.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-IOR4O.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-ENGJ2.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-0Q0NU.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-AT3IH.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-0JH5F.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-4S189.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-C2SSD.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-1DA6P.tmp
- <SYSTEM32>\is-R8L7J.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-KH41F.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-J3CV8.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-NN6Q8.tmp
- %ALLUSERSPROFILE%\Start Menu\Programs\XUS Desktop\XUS Desktop.lnk
- %ALLUSERSPROFILE%\Desktop\XUS Desktop.lnk
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\unins000.dat
- %ALLUSERSPROFILE%\Start Menu\Programs\XUS Desktop\Readme.lnk
- %ALLUSERSPROFILE%\Start Menu\Programs\XUS Desktop\XUS Desktop on the Web.url
- %ALLUSERSPROFILE%\Start Menu\Programs\XUS Desktop\Uninstall XUS Desktop.lnk
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-J255E.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-0D6R2.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-8UTPO.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-VRLMU.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-FLB7S.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-LE7FE.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-IQRHC.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-2RDNA.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-4PP18.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-UKBUI.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-B9GOF.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-Q0INT.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\is-HGHD1.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-7VVHH.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\is-36O3I.tmp
- %TEMP%\is-1VUE0.tmp\_isetup\_shfoldr.dll
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\is-L9BLN.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-S2SI9.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-B61KB.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-77NQM.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-ICSVN.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-NG59B.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-I7ESR.tmp
- %TEMP%\_ir_sf_temp_0\IRIMG1.JPG
- %TEMP%\_ir_sf_temp_0\IRIMG2.JPG
- %TEMP%\_ir_sf_temp_0\irsetup.dat
- %WINDIR%\Temp\XUS.Desktop.1.4.60.exe
- %TEMP%\_ir_sf_temp_0\irsetup.exe
- %TEMP%\_ir_sf_temp_0\XUS.Desktop.1.4.60.exe
- %TEMP%\is-PTO3P.tmp\is-9IKMP.tmp
- %TEMP%\is-1VUE0.tmp\_isetup\_RegDLL.tmp
- %TEMP%\7ZipSfx.000\XUSDesktopSetup.exe
- %TEMP%\7ZipSfx.000\stop.cmd
- %TEMP%\7ZipSfx.000\regfile.reg
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-6B9MJ.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-8KUER.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-QSS7E.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-RPQIP.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-RB68K.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-FI6MK.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-AQCVJ.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-HEM7P.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-GHJEJ.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-TV52S.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-F0KAM.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-KN2TB.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-HISLV.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-VPJB9.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-KL3GB.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-38PFD.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-IC0DM.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-0L8K1.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-PF215.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-SLOFM.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-G3QI3.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-C8EN3.tmp
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-HJVQN.tmp
Удаляет следующие файлы:
- %TEMP%\_ir_sf_temp_0\irsetup.dat
Перемещает следующие файлы:
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-TDJLD.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\RecycleFull.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-UB9LU.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\RemDrive.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-2L261.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\RamDrive.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-BI8JH.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\RecycleEmpty.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-J7PCT.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\RemoteDrive.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-LVBO5.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Search.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-SUDAU.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\SearchInternet.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-6QO50.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Restart.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-9TANL.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Run.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-IOR4O.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Network Connection.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-0JH5F.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Network.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-FOBF9.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\MusicFolder.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-N14IL.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\My Computer.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-4S189.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Personal.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-0Q0NU.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Printer.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-B94RI.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Properties.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-AT3IH.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\PicDir.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-ENGJ2.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\PicFolder.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-IQRHC.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\UserIcon.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-2RDNA.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\VideoDir.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-B9GOF.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\UserDoc.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-4PP18.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\UserFolder.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-J3CV8.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\VideoFolder.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-1DA6P.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Workgroup.png
- <SYSTEM32>\is-R8L7J.tmp в <SYSTEM32>\COMCTL32.OCX
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-NN6Q8.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\WinDrive.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-KH41F.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\WinGroup.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-VRLMU.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Shutdown.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-FLB7S.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Switch.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-5QBQ5.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Setting.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-C2SSD.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Shortcut.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-8UTPO.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\TrashCheck.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-LE7FE.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Uninstall.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-UKBUI.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\UnknownDrive.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-J255E.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\TrashEmpty.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-0D6R2.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\TrashFull.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-67C89.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\MusicDir.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-38PFD.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\DeviceManager.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-IC0DM.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Directory.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-77NQM.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\CPanel.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-6B9MJ.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Desktop.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-KL3GB.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Display.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-0L8K1.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\DVDDrive.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-C8EN3.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Exit.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-HISLV.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\DocDir.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-VPJB9.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\DocFolder.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\is-HGHD1.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\README.txt
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-7VVHH.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\About.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\is-L9BLN.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\unins000.exe
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\is-36O3I.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\XUSDesktopPro.exe
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-S2SI9.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\All Programs Group.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-ICSVN.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Broadband.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-B61KB.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\CDDrive.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-NG59B.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Allow Dragging.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-I7ESR.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Application.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-KN2TB.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\LockWorkstation.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-TV52S.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\LogOff.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-AQCVJ.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Library.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-F0KAM.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Lock Dragging.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-HEM7P.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Mailbox.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-NSPAM.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Minimize.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-8CKTT.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\MonitorOff.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-GHJEJ.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Manage Shortcut.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-Q0INT.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Microsoft Office Group.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-PF215.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\FixedDrive.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-SLOFM.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\FloppyDrive.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-HJVQN.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\FavFolder.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-G3QI3.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\File.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-RB68K.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Folder.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-8KUER.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\IEProperty.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-QSS7E.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Internet.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-FI6MK.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\Group.png
- %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\is-RPQIP.tmp в %PROGRAM_FILES%\EDesksoft\XUS Desktop\SysIcons\HideXUS.png
Сетевая активность:
Подключается к:
- 'www.ed###soft.com':80
- 'localhost':1036
TCP:
Запросы HTTP GET:
- www.ed###soft.com/xusdesktop/install.html
UDP:
- DNS ASK www.ed###soft.com
Другое:
Ищет следующие окна:
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'EDIT' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: ''
