Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] 'SUROWND' = 'C:\Boot.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'ProxyOverride' = 'local'
- C:\Boot.exe
- 'po###m.com.br':80
- po###m.com.br/php/add.php
- DNS ASK tu###sbzin.net
- DNS ASK po###m.com.br
- ClassName: 'Shell_TrayWnd' WindowName: ''