Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\userinfo32] 'Start' = '00000001'
- NtTerminateProcess, драйвер-обработчик: userinfo32.ggt
- NtOpenKey, драйвер-обработчик: userinfo32.ggt
- NtCreateKey, драйвер-обработчик: userinfo32.ggt
- %WINDIR%\system\userinfo32.ggt
- 'ce####kras-tv.name':80
- '20#.#2.169.54':80
- 'ce####kras-tv.info':80
- 'ce####kras-tv.tv':80
- 'ce####kras-tv.biz':80
- '20#.#2.168.97':80
- '20#.#2.169.15':80
- 'ma##.###lin-01.mx.aol.com':25
- 'il####verybody.tj':80
- 'ma##.##uster-club.info':25
- 20#.#2.169.15/nnn2
- 20#.#2.169.15/nnn1
- DNS ASK ce####kras-tv.name
- DNS ASK il####verybody.tj
- DNS ASK ma##.##uster-club.info
- DNS ASK ce####kras-tv.tv
- DNS ASK ce####kras-tv.biz
- DNS ASK ce####kras-tv.info
- DNS ASK ma#####01.mx.aol.com
- DNS ASK 20#.#2.168.151
- DNS ASK 20#.#2.168.97
- DNS ASK cl####r-club.info
- DNS ASK un###trade.biz
- DNS ASK ma##.###lin-01.mx.aol.com