Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Services.exe' = '%TEMP%\~unzip017~\msconfig.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%TEMP%\~unzip017~\msconfig.exe' = '%TEMP%\~unzip017~\msconfig.exe:*:Enabled:TCP\IP NetBIOS Helper'
- %TEMP%\~unzip017~\msconfig.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\mit[1].gif
- %TEMP%\~unzip017~\msconfig.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\mit[1].gif
- 'www.sa###brief.com':80
- www.sa###brief.com/mit.gif
- DNS ASK www.sa###brief.com
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''