Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] 'vidc.VP61' = '<SYSTEM32>\vp6vfw.dll'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] 'vidc.VP60' = '<SYSTEM32>\vp6vfw.dll'
- '%TEMP%\DLR.exe'
- '%TEMP%\Pinball.exe'
- '%TEMP%\byiw.exe' x "%TEMP%\xhasf.7z" -puuindtpnbn -o"%TEMP%\" -aoa
- '%TEMP%\tsqnzvem.exe'
- '<SYSTEM32>\reg.exe' ADD HKCU\Software\TR2 /v uni /t REG_SZ /d 1
- %TEMP%\nsy2.tmp\ExecDos.dll
- %TEMP%\DLR.exe
- %TEMP%\Pinball.exe
- %TEMP%\tsqnzvem.exe
- %TEMP%\byiw.exe
- %TEMP%\xhasf.7z
- %TEMP%\nsy2.tmp\ExecDos.dll
- 'xv###codex.com':80
- 'localhost':1037
- 'localhost':1035
- xv###codex.com/drm/display.php
- xv###codex.com/images/dl.txt
- DNS ASK xv###codex.com
- ClassName: 'WindowsForms10.Window.208.app.0.378734a' WindowName: 'Setup'
- ClassName: 'TkTopLevel' WindowName: 'Setup'
- ClassName: '#32770' WindowName: 'BuzzSocialPoints_DNS_IE Setup'
- ClassName: '(null)' WindowName: 'Preparing to install RealPlayer'
- ClassName: 'AppBundlerProgressClass' WindowName: '(null)'