Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'UPDATERIE' = '<SYSTEM32>\UPDATERWIN.EXE'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'DKS Filtro' = '<SYSTEM32>\Taskcall.EXE'
- Средство контроля пользовательских учетных записей (UAC)
- <LS_APPDATA>\AN0.zip
- 'www.ea####ost.com.br':80
- '16#.#3.237.183':80
- 'localhost':1036
- http://www.ea####ost.com.br/modelo/notify.php
- http://16#.#3.237.183/Droid.zip
- DNS ASK www.ea####ost.com.br
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''