Техническая информация
- [<HKLM>\SYSTEM\CONTROLSET003\Services\nfkcga] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet002\Services\nfkcga] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\nfkcga] 'Start' = '00000002'
- <SYSTEM32>\svchost.exe -k nfkcga
- <SYSTEM32>\lznxje.exe
- <SYSTEM32>\0004b2c6.sys
- '16#.#54.133.189':8181