Technical Information
- [<HKLM>\System\CurrentControlSet\Services\sharpServ] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\sharpServ] 'ImagePath' = '%ALLUSERSPROFILE%\SharpServTest\sharpServ.exe'
- 'sharpServ' %ALLUSERSPROFILE%\SharpServTest\sharpServ.exe
- %ALLUSERSPROFILE%\files manager\files manager_part1.dll
- %ALLUSERSPROFILE%\files manager\files manager_part2.dll
- %ALLUSERSPROFILE%\sharpservtest\sharpserv.exe
- %ALLUSERSPROFILE%\sharpservtest\sed.dat
- %ALLUSERSPROFILE%\sharpservtest\cldr.dat
- 'ch####p.dyndns.org':80
- 'ap#.##xpanel.com':443
- 'ap#.##xpanel.com':443
- DNS ASK ch####p.dyndns.org
- DNS ASK ap#.##xpanel.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- '%ALLUSERSPROFILE%\sharpservtest\sharpserv.exe'