Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'UpdateCL' = '%TEMP%\UpdateCL\UpdateCL.exe'
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\vbc.exe'
- '<SYSTEM32>\notepad.exe' %TEMP%\Serial-Key.txt
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\vbc.exe
- %TEMP%\UpdateCL\UpdateCL.exe
- %TEMP%\Serial-Key.txt
- 'an####o.zapto.org':5564
- DNS ASK an####o.zapto.org
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'Indicator' WindowName: '(null)'