Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] '1' = '%HOMEPATH%\Local Settings\Minrd\wincheck.vbs'
- %HOMEPATH%\Local Settings\Minrd\ciner.zip
- %HOMEPATH%\Local Settings\Minrd\reader.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\coin[1].zip
- %HOMEPATH%\Local Settings\Minrd\wincheck.vbs
- %TEMP%\~DFE1D.tmp
- 'ta##rola.pw':80
- ta##rola.pw/stat/stat.php?vi#####
- ta##rola.pw/stat/coin.zip
- DNS ASK ta##rola.pw
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'