Техническая информация
- [<HKLM>\SYSTEM\ControlSet002\Services\apjsyc] 'start' = '00000002'
- [<HKLM>\SYSTEM\CONTROLSET003\Services\apjsyc\Parameters] 'ServiceDll' = '<SYSTEM32>\qewtgz.dll'
- [<HKLM>\SYSTEM\CONTROLSET003\Services\apjsyc] 'start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet002\Services\apjsyc\Parameters] 'ServiceDll' = '<SYSTEM32>\qewtgz.dll'
- [<HKLM>\SYSTEM\ControlSet001\Services\apjsyc] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\apjsyc] 'ImagePath' = '<SYSTEM32>\svchost.exe -k apjsyc'
- [<HKLM>\SYSTEM\ControlSet001\Services\apjsyc\Parameters] 'ServiceDll' = '<SYSTEM32>\qewtgz.dll'
- '<SYSTEM32>\svchost.exe' -k apjsyc
- <SYSTEM32>\qewtgz.dll
- <SYSTEM32>\0004ee35.inf
- %TEMP%\80EB2F5C
- '<L####NET>.0.215':80
- http://19#.#68.0.215/20171130/051719/229421.jsp via <L####NET>.0.215
- http://19#.#68.0.215/20171130/051707/216875.jsp via <L####NET>.0.215
- http://19#.#68.0.215/20171130/051731/241234.jsp via <L####NET>.0.215
- http://19#.#68.0.215/20171130/051755/265703.jsp via <L####NET>.0.215
- http://19#.#68.0.215/20171130/051744/253921.jsp via <L####NET>.0.215
- http://19#.#68.0.215/20171130/051615/165031.jsp via <L####NET>.0.215
- http://19#.#68.0.215/20171130/051602/152671.jsp via <L####NET>.0.215
- http://19#.#68.0.215/20171130/051628/177984.jsp via <L####NET>.0.215
- http://19#.#68.0.215/20171130/051653/203390.jsp via <L####NET>.0.215
- http://19#.#68.0.215/20171130/051640/190640.jsp via <L####NET>.0.215