Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'YOUTUBE_UP' = '%APPDATA%\spoovler.exe'
- %APPDATA%\spoovler.exe
- %APPDATA%\spoovler.exe
- 'vi###.ygfocus.com':443
- 'vi###.ygfocus.com':1863
- 'vi###.ygfocus.com':80
- 'do####ad.movie.jp':443
- 'do####ad.movie.jp':1863
- 'do####ad.movie.jp':80
- vi###.ygfocus.com/0000/a233015.asp
- do####ad.movie.jp/0000/a225578.asp
- DNS ASK vi###.ygfocus.com
- DNS ASK do####ad.movie.jp
- ClassName: 'Indicator' WindowName: '(null)'