Technical Information
- '%TEMP%\Adc.exe' (downloaded from the Internet)
- '%TEMP%\Adc.exe' google.com -d:poo.xml
- %TEMP%\System.Data.SQLite.dll
- %TEMP%\Adc.config
- %TEMP%\Adc.exe
- %TEMP%\msvcp120d.dll
- %TEMP%\msvcr120d.dll
- %TEMP%\sqlite3.dll
- 'ge###cation.com':80
- 'fi##.ff.com':80
- 'wp#d':80
- http://fi##.ff.com/ch/Adc.config
- http://fi##.ff.com/ch/System.Data.SQLite.dll
- http://ge###cation.com/
- http://fi##.ff.com/ch/Adc.exe
- http://fi##.ff.com/ch/msvcp120d.dll
- http://11#.#11.111.1/wpad.dat via wp#d
- http://fi##.ff.com/ch/sqlite3.dll
- http://fi##.ff.com/ch/msvcr120d.dll
- DNS ASK ge###cation.com
- DNS ASK fi##.ff.com
- DNS ASK wp#d
- ClassName: 'Shell_TrayWnd' WindowName: ''