Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] 'DirectSoundDistortionDMO' = '{a903a55d-21a3-4a24-b46f-5f804f2282a3}'
- %TEMP%\is-GPKNT.tmp\is-6TM9F.tmp /SL4 $300DA "%TEMP%\rebex-mail-for-.net-1.0.3428.0.exe" 2508724 52224
- %TEMP%\rebex-mail-for-.net-1.0.3428.0.exe
- <SYSTEM32>\regsvr32.exe /s %TEMP%\windll.dll
- %TEMP%\is-3GTSN.tmp\_isetup\_shfoldr.dll
- %TEMP%\windll.dll
- %CommonProgramFiles%\DirectSoundDistortionDMO\DirectSoundDistortionDMO.dll
- %TEMP%\rebex-mail-for-.net-1.0.3428.0.log
- %TEMP%\rebex-mail-for-.net-1.0.3428.0.exe
- %TEMP%\nsj2.tmp\NSISdl.dll
- %TEMP%\is-GPKNT.tmp\is-6TM9F.tmp
- %TEMP%\nsj2.tmp\NSISdl.dll
- %TEMP%\windll.dll
- '20#.#26.167.92':80
- 20#.#26.167.92/tor2_5/trun2.php?tn###############################
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'MozillaUIWindowClass' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''