Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Winfile.exe' = 'C:\ProgramData\Winfile.exe'
- '<SYSTEM32>\rundll32.exe' Shell32.DLL, Control_RunDLL C:\ProgramData\Update2014.cpl
- C:\ProgramData\IMG.jpg
- C:\ProgramData\Update2014.cpl
- C:\ProgramData\Winfile.exe
- C:\ProgramData\IMG.jpg
- C:\ProgramData\Update2014.cpl
- C:\ProgramData\Winfile.exe
- 'bi#.ly':80
- '37.##7.65.198':80
- http://bi#.ly/1o3C0oZ
- http://37.##7.65.198/UPDATE/new2.2
- http://37.##7.65.198/1/chrome_kfuffnd9284.1
- DNS ASK bi#.ly
- ClassName: 'Indicator' WindowName: ''