Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Google Inc Automatic Updater' = '%APPDATA%\Google\Update\Contemp\GoogleUpdate.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'WarnonBadCertRecving' = '00000000'
- %APPDATA%\Google\Update\Contemp\proxy.pac
- %APPDATA%\Google\Update\Contemp\c0d3c4p3t4sh.txt
- %APPDATA%\Google\Update\Contemp\GoogleUpdate.exe
- 'www.co###s.com.br':80
- '20#.#.140.111':80
- www.co###s.com.br/file_pac.txt
- 20#.#.140.111/0/atualizando.txt
- DNS ASK www.co###s.com.br
- ClassName: 'Indicator' WindowName: ''