Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\GrayPigeon] 'Start' = '00000002'
- %WINDIR%\Hacker.com.cn.exe
- %TEMP%\Server_Setup.exe
- %TEMP%\Tesla_2012.exe
- %TEMP%\TUser.list
- %WINDIR%\LSZDRH.DAT
- %WINDIR%\Hacker.com.cn.exe
- %TEMP%\SE1.tmp
- %TEMP%\Tesla_2012.exe
- %TEMP%\Server_Setup.exe
- %WINDIR%\Hacker.com.cn.exe
- %TEMP%\SE1.tmp
- '00###.3322.org':8000
- DNS ASK 00###.3322.org
- '<IP-адрес в локальной сети>':1037
- ClassName: 'Shell_TrayWnd' WindowName: ''