Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{B6D4B588-2C0D-7D81-4D57-1E866A46D511}] 'stubpath' = ''
- [<HKLM>\SYSTEM\ControlSet001\Services\resdr32] 'Start' = '00000001'
- %WINDIR%\explorer.exe
- %WINDIR%\explorer.exe
- <SYSTEM32>\ias\iasv.exe
- %APPDATA%\resdr32.sys
- <DRIVERS>\resdr32.sys
- 'fr####dy.3322.org':8187
- 'sw###h.kmip.net':8187
- DNS ASK fr####dy.3322.org
- DNS ASK sw###h.kmip.net