Техническая информация
- [<HKCU>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Windows Live' = '%TEMP%\winini.exe'
- [<HKCU>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Windows Live' = '%PROGRAMDATA%\sessionmanager\smss.exe'
- %TEMP%\winini.exe
- %PROGRAMDATA%\sessionmanager\smss.exe
- %TEMP%\sessionmanager.ini
- %PROGRAMDATA%\sessionmanager\smss.exe
- http://ap#.##pmania.com/
- DNS ASK ap#.##pmania.com
- DNS ASK ga####ttp.zapto.org
- '%TEMP%\winini.exe'
- '%PROGRAMDATA%\sessionmanager\smss.exe'