Technical Information
- [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\drivers32] 'vidc.XVID' = 'scatimpeg4vfw.dll'
- [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce] 'GrpConv' = 'grpconv -o'
- %TEMP%\rarsfx0\installscaticodec.exe
- %TEMP%\rarsfx0\scatimpeg4.inf
- %TEMP%\rarsfx0\scatimpeg4vfw.dll
- %WINDIR%\inf\seta3dc.tmp
- %WINDIR%\syswow64\seta3fd.tmp
- %TEMP%\rarsfx0\installscaticodec.exe
- %TEMP%\rarsfx0\scatimpeg4.inf
- %TEMP%\rarsfx0\scatimpeg4vfw.dll
- from %WINDIR%\inf\seta3dc.tmp to %WINDIR%\inf\scatimpeg4.inf
- from %WINDIR%\syswow64\seta3fd.tmp to %WINDIR%\syswow64\scatimpeg4vfw.dll
- %LOCALAPPDATA%\microsoft\windows\explorer\explorerstartuplog_runonce.etl
- ClassName: 'EDIT' WindowName: ''
- '%TEMP%\rarsfx0\installscaticodec.exe'
- '%WINDIR%\syswow64\rundll32.exe' setupapi,InstallHinfSection DefaultInstall 132 %TEMP%\RarSFX0\scatimpeg4.inf
- '%WINDIR%\syswow64\runonce.exe' -r
- '%WINDIR%\syswow64\grpconv.exe' -o