Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'viruscatch' = '%PROGRAM_FILES%\viruscatch\VCatchUp.exe'
- %PROGRAM_FILES%\viruscatch\Resource\MZ
- %PROGRAM_FILES%\viruscatch\Resource\DB_Install.txt
- %HOMEPATH%\Start Menu\viruscatch.lnk
- %HOMEPATH%\Desktop\viruscatch.lnk
- %PROGRAM_FILES%\viruscatch\MZ
- %PROGRAM_FILES%\viruscatch\version.txt
- <SYSTEM32>\MZ
- <SYSTEM32>\version_un.txt
- <SYSTEM32>\version_un.txt
- %PROGRAM_FILES%\viruscatch\version.txt
- %PROGRAM_FILES%\viruscatch\Resource\DB_Install.txt
- 'up#.###uscatch.co.kr':80
- up#.###uscatch.co.krhttp://up1.viruscatch.co.kr/Install/DB/DB_Install.txt
- up#.###uscatch.co.krhttp://up1.viruscatch.co.kr/Install/DB/MZ
- up#.###uscatch.co.krhttp://up1.viruscatch.co.kr/Install/DB/
- up#.###uscatch.co.krhttp://up1.viruscatch.co.kr/Install/viruscatch/version_un.txt
- up#.###uscatch.co.krhttp://up1.viruscatch.co.kr/Install/viruscatch/version.txt
- up#.###uscatch.co.krhttp://up1.viruscatch.co.kr/Install/viruscatch/MZ
- up#.###uscatch.co.krhttp://up1.viruscatch.co.kr/Install/viruscatch/
- DNS ASK up#.###uscatch.co.kr
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'Indicator' WindowName: '(null)'