Техническая информация
- '<SYSTEM32>\msiexec.exe' -Embedding 7638A55149C785F1DD51BB27B720571B
- '<SYSTEM32>\msiexec.exe' /V
- %TEMP%\~DF2ABE.tmp
- %WINDIR%\Installer\1dea5.ipi
- %WINDIR%\Installer\MSI1.tmp
- %WINDIR%\Installer\MSI2.tmp
- %TEMP%\~DF685F.tmp
- %APPDATA%\Mozilla\Firefox\Profiles\cwdgt0y8.default\searchplugins\yasearch.xml
- C:\Config.Msi\1dea6.rbs
- %WINDIR%\Installer\1dea3.msi
- %TEMP%\YandexBarIE00000.log
- %TEMP%\{1B45ED99-29B4-4411-A68E-C10E9E2B8B2F}\YandexBarIE.msi
- %APPDATA%\Microsoft\CryptnetUrlCache\MetaData\60E31627FDA0A46932B0E5948949F2A5
- %APPDATA%\Microsoft\CryptnetUrlCache\Content\0797C381B2F87EB5A1D5573BD15BA4F4
- %APPDATA%\Microsoft\CryptnetUrlCache\MetaData\0797C381B2F87EB5A1D5573BD15BA4F4
- %APPDATA%\Microsoft\CryptnetUrlCache\Content\60E31627FDA0A46932B0E5948949F2A5
- %WINDIR%\Installer\1dea3.msi
- %WINDIR%\Installer\1dea5.ipi
- %TEMP%\{1B45ED99-29B4-4411-A68E-C10E9E2B8B2F}\YandexBarIE.msi
- %WINDIR%\Installer\MSI1.tmp
- %WINDIR%\Installer\MSI2.tmp
- C:\Config.Msi\1dea6.rbs
- 'cs#######-2-crl.verisign.com':80
- 'crl.verisign.com':80
- 'wp#d':80
- http://cs#######-2-crl.verisign.com/CSC3-2009-2.crl
- http://crl.verisign.com/pca3.crl
- http://11#.#11.111.1/wpad.dat via wp#d
- DNS ASK cs#######-2-crl.verisign.com
- DNS ASK crl.verisign.com
- DNS ASK wp#d