Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '' = '%APPDATA%\AcompanyXXX\aproductXXX\1.0.0.0win.exe'
- '%APPDATA%\AcompanyXXX\aproductXXX\1.0.0.0\EBXtSKGSixTHQniMOuPUcRxGHFKhovZmlCGJzZoh.exe'
- '%APPDATA%\AcompanyXXX\aproductXXX\1.0.0.0\EBXtSKGSixTHQniMOuPUcRxGHFKhovZmlCGJzZoh.exe' (загружен из сети Интернет)
- %APPDATA%\AcompanyXXX\aproductXXX\1.0.0.0\win.exe
- %APPDATA%\AcompanyXXX\aproductXXX\1.0.0.0\EBXtSKGSixTHQniMOuPUcRxGHFKhovZmlCGJzZoh.exe
- 'pc####top-shop.de':80
- 'wp#d':80
- pc####top-shop.de/images/samsung-s4-spezial.exe
- wp#d/wpad.dat
- DNS ASK pc####top-shop.de
- DNS ASK wp#d
- ClassName: 'Indicator' WindowName: '(null)'