Техническая информация
- [<HKLM>\SYSTEM\CONTROLSET003\Services\gkqzyo] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet002\Services\gkqzyo] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\gkqzyo] 'Start' = '00000002'
- <SYSTEM32>\svchost.exe -k gkqzyo
- <SYSTEM32>\islwvp.dll
- <SYSTEM32>\00045e87.sys
- 'vt####q.3322.org':80
- vt####q.3322.org/2012000904/073547/208359.jsp
- vt####q.3322.org/2012000904/073533/194156.jsp
- vt####q.3322.org/2012000904/073615/235734.jsp
- vt####q.3322.org/2012000904/073601/222515.jsp
- vt####q.3322.org/2012000904/073453/153890.jsp
- vt####q.3322.org/2012000904/073439/140515.jsp
- vt####q.3322.org/2012000904/073520/180656.jsp
- vt####q.3322.org/2012000904/073506/167453.jsp
- DNS ASK vt####q.3322.org