Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{A9260CCB-B2B6-7B3B-D778-C92DBC5AEE18}] 'StubPath' = '<SYSTEM32>\server.exe'
- %TEMP%\erver.exe
- %TEMP%\222.exe
- ClassName: 'pediy06' WindowName: ''
- ClassName: 'GBDYLLO' WindowName: ''
- ClassName: 'OLLYDBG' WindowName: ''
- <SYSTEM32>\server.exe
- %TEMP%\erver.exe
- %TEMP%\222.exe
- 'to#####anoo.no-ip.biz':80
- 'to#####anoo.no-ip.biz':25
- DNS ASK to#####anoo.no-ip.biz