Technical Information
- [HKCU\Software\Microsoft\Windows\CurrentVersion\Run] '98dc22' = '%TEMP%\98dc22.exe'
- [HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3] '1601' = '00000000'
- [HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'WarnOnZoneCrossing' = '00000000'
- %TEMP%\98dc22
- %APPDATA%\microsoft\windows\start menu\programs\system defragmenter\system defragmenter.lnk
- %APPDATA%\microsoft\windows\start menu\programs\system defragmenter\uninstall system defragmenter.lnk
- %HOMEPATH%\desktop\system defragmenter.lnk
- from <Full path to file> to %TEMP%\98dc22.exe
- DNS ASK se###habout.org
- DNS ASK be###fulice.com