Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '7e9891f68f63b24043b740f781e25454' = '%ALLUSERSPROFILE%\Application Data\Important.exe'
- [<HKCU>\Software\IMVU\username]
- %ALLUSERSPROFILE%\Application Data\CRNJEUFU_7_27_21_9_1.jpg
- %ALLUSERSPROFILE%\Application Data\Important.exe
- 'yo##gme.biz':80
- 'wp#d':80
- http://yo##gme.biz/keybase/kbpanel4/post.php?ty##########################################################
- http://11#.#11.111.1/wpad.dat via wp#d
- DNS ASK yo##gme.biz
- DNS ASK wp#d
- ClassName: 'Indicator' WindowName: ''