Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 'AppInit_DLLs' = '%PROGRAM_FILES%\Coupon Marvel\bin\CouponMarvel32.dll '
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 'LoadAppInit_DLLs' = '00000001'
- '%PROGRAM_FILES%\Coupon Marvel\bin\ie-installer.exe'
- '%PROGRAM_FILES%\Coupon Marvel\bin\firefox-installer.exe'
- %PROGRAM_FILES%\Coupon Marvel\bin\firefox-installer.exe
- %PROGRAM_FILES%\Coupon Marvel\bin\CouponMarvel.exe
- %PROGRAM_FILES%\Coupon Marvel\bin\ie-installer.exe
- %PROGRAM_FILES%\Coupon Marvel\coupon-marvel.dll
- %APPDATA%\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\jid1-xGIjYAPvEA9ENA@jetpack.xpi
- %TEMP%\nsl2.tmp\UserInfo.dll
- %TEMP%\nsl2.tmp\NSISHelper.dll
- %PROGRAM_FILES%\Coupon Marvel\Uninstall.exe
- %PROGRAM_FILES%\Coupon Marvel\bin\CouponMarvel32.dll
- %TEMP%\nsl2.tmp\System.dll
- %TEMP%\nsl2.tmp\System.dll
- %TEMP%\nsl2.tmp\UserInfo.dll
- %TEMP%\nsl2.tmp\NSISHelper.dll
- %PROGRAM_FILES%\Coupon Marvel\bin\firefox-installer.exe
- %PROGRAM_FILES%\Coupon Marvel\bin\ie-installer.exe
- 'bi###ocker.com':443
- DNS ASK bi###ocker.com