Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'WinKey' = '%TEMP%\SearchWin.exe'
- '%TEMP%\SearchWin.exe'
- %TEMP%\Companny
- %TEMP%\SearchWin.exe
- %TEMP%\Crepeat.tl
- 'wh#####pcomputador.com':80
- http://wh#####pcomputador.com/scriptenvio.php
- DNS ASK wh#####pcomputador.com
- ClassName: 'Indicator' WindowName: ''
- ClassName: '' WindowName: 'RDO78'