Техническая информация
- [<HKLM>\System\CurrentControlSet\Services\Window Resolution DHCP Locator] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\Window Resolution DHCP Locator] 'ImagePath' = 'C:\wpwdicavlisw\jiu3sfopyo.exe'
- %WINDIR%\wpwdicavlisw\fsnsu3
- C:\wpwdicavlisw\fsnsu3
- C:\wpwdicavlisw\kmqufelnfu1et5zkf6ecd.exe
- C:\wpwdicavlisw\jiu3sfopyo.exe
- C:\wpwdicavlisw\bgyyu7da.exe
- C:\wpwdicavlisw\itqzzhgaqsu9
- C:\wpwdicavlisw\jiu3sfopyo.exe
- C:\wpwdicavlisw\bgyyu7da.exe
- %WINDIR%\wpwdicavlisw\fsnsu3
- C:\wpwdicavlisw\kmqufelnfu1et5zkf6ecd.exe
- %WINDIR%\wpwdicavlisw\fsnsu3
- 'na##top.ru':80
- 'ca#####eeitinthecup.org':80
- http://so####ryducks.com/index.php
- http://cl#####ortswomen.com/index.php
- http://do##bate.cn/index.php
- DNS ASK sc#####epuzzlechess.org
- DNS ASK sc####ainbow.net
- DNS ASK do##bate.cn
- DNS ASK cl#####ortswomen.com
- DNS ASK ag#####anabolics.com
- DNS ASK gu##155.cn
- DNS ASK ka#######ayajivayapriroda.ru
- DNS ASK pr##card.ru
- DNS ASK na##top.ru
- DNS ASK so####ryducks.com
- DNS ASK ta#####pielenreiten.org
- DNS ASK cl####portsmen.com
- DNS ASK ga#####yundongyuan.cn
- DNS ASK to###tosales.ru
- DNS ASK ye####gdongwu.cn
- DNS ASK bu####rmansion.com
- DNS ASK ch####isportsmen.ru
- DNS ASK pi##asia.cn
- DNS ASK ca#####eeitinthecup.org
- 'C:\wpwdicavlisw\kmqufelnfu1et5zkf6ecd.exe'
- 'C:\wpwdicavlisw\jiu3sfopyo.exe'
- 'C:\wpwdicavlisw\bgyyu7da.exe' "c:\wpwdicavlisw\jiu3sfopyo.exe"