Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'kav' = '"%ALLUSERSPROFILE%\Application Data\kav\svchost.exe"'
- '%TEMP%\setup.exe'
- '<SYSTEM32>\msiexec.exe'
- <SYSTEM32>\msiexec.exe
- %ALLUSERSPROFILE%\Application Data\kav\config.ini
- %TEMP%\setup.exe
- %TEMP%\msi.dll
- %TEMP%\msi.dll.url в %ALLUSERSPROFILE%\Application Data\kav\msi.dll.url
- %TEMP%\msi.dll в %ALLUSERSPROFILE%\Application Data\kav\msi.dll
- %TEMP%\setup.exe в %ALLUSERSPROFILE%\Application Data\kav\svchost.exe
- 'www.mi#####ft-outlook.org':443
- DNS ASK www.mi#####ft-outlook.org
- ClassName: 'Indicator' WindowName: ''