Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Microsoft Run' = ''
- '<SYSTEM32>\rundll32.exe' dfdts.dll,DfdGetDefaultPolicyAndSMART
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\6P5SDOMI\servico[1].pac
- <LS_APPDATA>\ffpxomev.exe
- 'or#####apontevedra.es':80
- 'au#####ivesound.com.br':80
- 'sm######ar2014.no-ip.org':82
- or#####apontevedra.es/cont/lachita.php
- au#####ivesound.com.br/estoque/servico.pac
- DNS ASK or#####apontevedra.es
- DNS ASK au#####ivesound.com.br
- DNS ASK sm######ar2014.no-ip.org
- ClassName: 'Indicator' WindowName: '(null)'