Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'nVidiaDisp32' = '%HOMEPATH%\dlhzt.exe'
- %HOMEPATH%\dlhzt.exe
- %TEMP%\dw.log
- %TEMP%\249C1.dmp
- %WINDIR%\RGI1.tmp
- %HOMEPATH%\dlhzt.exe
- %APPDATA%\sxwar.exe
- 'el#######85.warpigs-online.com':6667
- 'dl.##opbox.com':80
- 'ap#.##pmania.com':80
- dl.##opbox.com/u/32166345/update.exe
- ap#.##pmania.com/
- DNS ASK el#######85.warpigs-online.com
- DNS ASK dl.##opbox.com
- DNS ASK ap#.##pmania.com