Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Nationalvod] 'Start' = '00000002'
- <SYSTEM32>\dqrhqi.exe
- C:\Server.exe
- C:\Эѕ_ЩюЛм__Рп.exe
- %TEMP%\E_4\krnln.fnr
- <SYSTEM32>\dqrhqi.exe
- C:\Эѕ_ЩюЛм__Рп.exe
- C:\Server.exe
- 'go####gil.zapto.org':6969
- DNS ASK go####gil.zapto.org
- ClassName: 'Shell_TrayWnd' WindowName: ''