Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] 'Btmchk' = '{87680534-D962-4EF7-9543-6381951B98AA}'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] 'Btmchk' = '{2E9BEC64-7D34-4891-B0A1-EAF33D1B4FE6}'
- %WINDIR%\Explorer.EXE
- %CommonProgramFiles%\winafx.log
- 'my###ads.com':80
- my###ads.com/gold/xgate.php
- DNS ASK my###ads.com