Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'atlservice' = '%PROGRAM_FILES%\FINDTOOLS\atlservice.EXE'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'FINDMAN' = '%PROGRAM_FILES%\FINDTOOLS\FINDMAN.EXE'
- 'C:\M7SJ7X.exe'
- 'C:\M7SJ7X.exe' (загружен из сети Интернет)
- C:\M7SJ7X.exe
- C:\KMLD778.zip
- 'do####ad.skype.com':80
- '23.##.99.253':80
- do####ad.skype.com/bf94b0508d33d968c9200839f080e127/SkypeSetup.exe
- 23.##.99.253/file.001
- DNS ASK do####ad.skype.com
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: '' WindowName: 'dede'
- ClassName: 'PROCEXPL' WindowName: ''