Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'WarnonBadCertRecving' = '00000000'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'WarnOnZoneCrossing' = '00000000'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3] '1601' = '00000000'
- %HOMEPATH%\Desktop\System Check.lnk
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\System Check.lnk
- %HOMEPATH%\Start Menu\Programs\System Check\Uninstall System Check.lnk
- %ALLUSERSPROFILE%\Application Data\a9XNKdgZPJsP
- %HOMEPATH%\Start Menu\Programs\System Check\System Check.lnk
- из <Полный путь к файлу> в %ALLUSERSPROFILE%\Application Data\a9XNKdgZPJsP.exe
- 'gi###tik.com':80
- 'au###ighton.com':80
- 'or###regih.com':80
- 'ub###ngumer.com':80
- 'ne###uteri.com':80
- 'ja####nfario.com':80
- 'wa###eport.com':80
- http://gi###tik.com/britix/ar
- http://gi###tik.com/britix/a
- http://ub###ngumer.com/britix/ar
- http://au###ighton.com/britix/a
- http://or###regih.com/britix/ar
- http://or###regih.com/britix/a
- http://au###ighton.com/britix/ar
- http://ub###ngumer.com/britix/a
- http://ne###uteri.com/britix/ar
- http://ja####nfario.com/up.php?0Q##################################################################
- http://ne###uteri.com/britix/a
- http://wa###eport.com/britix/a
- http://ja####nfario.com/britix/ar
- http://ja####nfario.com/britix/a
- http://wa###eport.com/britix/ar
- DNS ASK gi###tik.com
- DNS ASK au###ighton.com
- DNS ASK or###regih.com
- DNS ASK ub###ngumer.com
- DNS ASK ne###uteri.com
- DNS ASK ja####nfario.com
- DNS ASK wa###eport.com