Техническая информация
- %ALLUSERSPROFILE%\Start Menu\Programs\Startup\scm32hlp.exe
- NtQuerySystemInformation, драйвер-обработчик: scm32hec.sys
- NtQueryDirectoryFile, драйвер-обработчик: scm32hec.sys
- <SYSTEM32>\scm32hec.sys
- %WINDIR%\scm32hs.exe
- <SYSTEM32>\scm32hlp.exe
- '62.#41.53.2':4242
- '21#.#33.41.235':4661
- '19#.#45.244.243':4661
- '74.##5.232.51':80
- '67.##5.160.76':80
- 67.##5.160.76/
- DNS ASK 1.#.#.#27.list.dsbl.org
- DNS ASK 1.#.#.##7.cbl.abuseat.org
- DNS ASK 1.#.#.###.dynablock.easynet.nl
- DNS ASK google.com
- DNS ASK ya##o.com
- DNS ASK 1.#.#.##7.bl.spamcop.net