Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] '1' = '%HOMEPATH%\Local Settings\MicrosoftUpdate\reader.exe /run'
- %HOMEPATH%\Local Settings\MicrosoftUpdate\reader.exe
- %HOMEPATH%\Local Settings\MicrosoftUpdate\ciner.zip
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\coin[1].zip
- 'ma###fect.info':80
- ma###fect.info/btc/stat/stat.php?vi#####
- ma###fect.info/btc/coin.zip
- DNS ASK ma###fect.info