Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'WarnonBadCertRecving' = '00000000'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'WarnOnZoneCrossing' = '00000000'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3] '1601' = '00000000'
- %HOMEPATH%\Desktop\System Check.lnk
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\System Check.lnk
- %HOMEPATH%\Start Menu\Programs\System Check\Uninstall System Check.lnk
- %ALLUSERSPROFILE%\Application Data\DPWwKQuC
- %HOMEPATH%\Start Menu\Programs\System Check\System Check.lnk
- из <Полный путь к файлу> в %ALLUSERSPROFILE%\Application Data\DPWwKQuC.exe
- 'te####fbadmi.com':80
- 'ma###inbar.com':80
- 'so####oinbow.com':80
- 'wi##ijs.com':80
- 'wi###yfunan.com':80
- 'ja###torub.com':80
- http://ma###inbar.com/britix/a
- http://te####fbadmi.com/britix/ar
- http://te####fbadmi.com/britix/a
- http://so####oinbow.com/britix/ar
- http://so####oinbow.com/britix/a
- http://ma###inbar.com/britix/ar
- http://wi###yfunan.com/britix/ar
- http://wi###yfunan.com/up.php?0Q##################################################################
- http://wi##ijs.com/britix/ar
- http://wi##ijs.com/britix/a
- http://wi###yfunan.com/britix/a
- http://ja###torub.com/britix/ar
- http://ja###torub.com/britix/a
- DNS ASK te####fbadmi.com
- DNS ASK ma###inbar.com
- DNS ASK so####oinbow.com
- DNS ASK wi##ijs.com
- DNS ASK wi###yfunan.com
- DNS ASK ja###torub.com