Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'kID' = '0000000B'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'scvhost.exe' = 'C:\Users\Public\scvhost.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'jklVersion' = '1,1'
- 'C:\Users\Public\scvhost.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\associations] 'LowRiskFileTypes' = '.exe'
- C:\Users\Public\scvhost.exe
- 'fr####xthost.com':80
- fr####xthost.com/fbi2x3vbji
- fr####xthost.com/nzllaqfryl
- DNS ASK fr####xthost.com
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'Indicator' WindowName: ''