Техническая информация
- <LS_APPDATA>\Xenocode\Sandbox\HyperTerminal Applet\1.1.603.2.21\2013.04.01T18.25\Native\STUBEXE\@SYSTEM@\rundll32.exe <SYSTEM32>\shimgvw.dll,ImageView_Fullscreen %APPDATA%\images.jpeg
- <LS_APPDATA>\Xenocode\Sandbox\HyperTerminal Applet\1.1.603.2.21\2013.04.01T18.25\Native\STUBEXE\@APPDATA@\ilovepc.exe
- <LS_APPDATA>\Xenocode\Sandbox\HyperTerminal Applet\1.1.603.2.21\2013.04.01T18.25\Virtual\STUBEXE\@APPDIR@\ilovepc.exe
- %TEMP%\CRNJEUFU - 3-29-2013-11.38.06-AM.gif
- %HOMEPATH%\Recent\Application Data.lnk
- <SYSTEM32>\iexplorer.exe
- %HOMEPATH%\Recent\images.lnk
- %APPDATA%\ilovepc.exe
- %APPDATA%\images.jpeg
- 'sm##.gmail.com':587
- DNS ASK sm##.gmail.com
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'ShImgVw:CPreviewWnd' WindowName: ''