Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'systemfile' = ''
- '<LS_APPDATA>\systemfile\systemfile.exe'
- '%TEMP%\tmp1.tmp'
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\access[1].1&BIT=32
- %TEMP%\tmp2.tmp
- <LS_APPDATA>\mannn\downlist.log
- <LS_APPDATA>\systemfile\systemfile.exe
- <LS_APPDATA>\systemfile\install.log
- %TEMP%\tmp1.tmp
- <LS_APPDATA>\mannn\downlist.log
- <LS_APPDATA>\systemfile\install.log
- 'to###ntrg2.com':80
- 'localhost':1036
- to###ntrg2.com/log/access?mo###########################################################################################
- DNS ASK to###ntrg2.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: '' WindowName: '(null)'