Техническая информация
- %APPDATA%\microsoft\windows\start menu\programs\startup\bit160e.tmp
- %WINDIR%\tasks\intelcx.job
- <SYSTEM32>\tasks\intelcx
- %WINDIR%\syswow64\mstsc.exe
- %WINDIR%\syswow64\cmd.exe
- %TEMP%\407a2e7b.png
- %APPDATA%\icq-profile\base\bitad2.tmp
- %TEMP%\330e9038.lnk
- %APPDATA%\icq-profile\base\bitad2.tmp
- %APPDATA%\microsoft\windows\start menu\programs\startup\bit160e.tmp
- %APPDATA%\icq-profile\base\bitad2.tmp в %APPDATA%\icq-profile\base\intelcx.exe
- 'public-trust.com':80
- 'i.##gur.com':443
- '37.##2.5.163':2404
- DNS ASK i.##gur.com
- DNS ASK public-trust.com
- '%WINDIR%\syswow64\mstsc.exe'
- '%WINDIR%\syswow64\cmd.exe'