Technical Information
- Registry Editor (RegEdit)
- System Restore (SR)
- Windows Security Center
- %CommonProgramFiles%\System\sys_vd4.dat
- %CommonProgramFiles%\System\tmp.back
- %TEMP%\nsu2.tmp
- %TEMP%\nsk3.tmp\NSISdl.dll
- %CommonProgramFiles%\System\sys_vd4.dat
- 'www.di##you.org':80
- 'www.ka###datov.net':80
- www.di##you.org/6/fout1.php
- www.ka###datov.net/1/update.vad
- DNS ASK www.di##you.org
- DNS ASK www.ka###datov.net