Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Media Gateway' = '%ProgramFiles%\Media Gateway\MediaGateway.exe'
- '%ProgramFiles%\Media Gateway\MediaGateway.exe' /RegServer
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\wbk2.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\wbk4.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\wbk6.tmp
- %TEMP%\default.mht
- <SYSTEM32>\ide21201.vxd
- %ProgramFiles%\Media Gateway\MediaGateway.exe
- %ProgramFiles%\Media Gateway\Info.txt
- 'pu####.zangocash.com':80
- DNS ASK pu####.zangocash.com
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''