Техническая информация
- [<HKLM>\System\CurrentControlSet\Services\J1PU66276Q66E6K66G6M6I6O66L7R7XN7T7ZP1BP4Z5FV] 'ImagePath' = '%TEMP%\J1PU66276Q66E6K66G6M6I6O66L7R7XN7T7ZP1BP4Z5FV.dat'
- [<HKLM>\System\CurrentControlSet\Services\ifdjgofdshgfusfd] 'ImagePath' = 'C:\ifdjgofdshgfusfd.sys'
- ClassName: 'TXGuiFoundation', WindowName: 'ÌÚѶÊÖÓÎÖúÊÖ¡¾¼«ËÙ°ÁÒýÇæ¡¿'
- %TEMP%\j1pu66276q66e6k66g6m6i6o66l7r7xn7t7zp1bp4z5fv.dat
- %WINDIR%\temp\uddeb9f.tmp
- C:\ifdjgofdshgfusfd.sys
- %WINDIR%\temp\uddf4b9.tmp
- C:\ifdjgofdshgfusfd.sys
- %TEMP%\j1pu66276q66e6k66g6m6i6o66l7r7xn7t7zp1bp4z5fv.dat
- %WINDIR%\temp\uddeb9f.tmp
- %WINDIR%\temp\uddf4b9.tmp
- http://w.###ata.net/1fc2b2b4fcbb9d37
- DNS ASK w.###ata.net
- ClassName: 'AEngineRenderWindowClass' WindowName: ''