Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'update' = '%ALLUSERSPROFILE%\Application Data\Microsoft.exe'
- %ALLUSERSPROFILE%\Application Data\Microsoft.exe
- %ALLUSERSPROFILE%\Application Data\Microsoft.exe
- %TEMP%\0530.TMP
- %ALLUSERSPROFILE%\Application Data\Microsoft.exe
- %TEMP%\0530.TMP
- %TEMP%\0530.TMP
- 'ms##.#efound.com':8080
- 'ms##.#efound.com':1863
- 'ms##.#efound.com':443
- 'ho####l.dsmtp.com':8080
- 'ho####l.dsmtp.com':443
- 'ho####l.dsmtp.com':1863
- DNS ASK ms##.#efound.com
- DNS ASK ho####l.dsmtp.com
- ClassName: 'Indicator' WindowName: ''