Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'NetworkChecker' = '<Полный путь к вирусу>'
- '<SYSTEM32>\taskhost.exe'
- <Полный путь к вирусу>
- '78.##.213.28':80
- '17#.#21.227.27':80
- '94.##3.36.27':80
- '59.##7.180.32':80
- '37.#15.0.32':80
- '46.##1.106.31':80
- '77.##4.35.26':80
- '15#.#24.26.217':80
- '94.##.14.215':80
- '93.##.236.212':80
- '10#.#54.130.25':80
- 'localhost':49201
- '46.##1.220.217':80
- '46.##2.34.45':80
- '46.##.224.43':80
- '93.##7.250.42':80
- 'localhost':49224
- '5.###.157.45':80
- '17#.#65.82.45':80
- '19#.28.7.42':80
- '15#.#24.34.35':80
- '46.##2.118.34':80
- '17#.#51.213.33':80
- '17#.#55.59.41':80
- '77.##0.146.38':80
- '17#.#14.146.35':80
- '12#.#17.234.211':80
- '31.##9.13.239':80
- '10#.#62.72.234':80
- '46.##.54.234':80
- '17#.#50.233.243':80
- '17#.#01.8.243':80
- '93.##.199.241':80
- '21#.#11.239.231':80
- '78.##9.169.227':80
- '10#.#62.100.223':80
- '92.##.171.218':80
- '46.##8.63.229':80
- '77.##.31.229':80
- '91.##5.225.228':80
- '19#.#62.153.207':80
- '17#.8.0.206':80
- 'localhost':49178
- '17#.#12.15.211':80
- '85.##2.173.210':80
- '37.##5.231.208':80
- '27.#.172.255':80
- '17#.#.82.251':80
- '37.##4.119.248':80
- '93.#9.3.248':80
- '77.##1.83.253':80
- '10#.#62.2.253':80
- '94.##.97.251':80
- DNS ASK dn#.##ftncsi.com