Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\74831230] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\082827b6] 'Start' = '00000002'
- <SYSTEM32>\midimap.dll файлом <SYSTEM32>\midimap.dll
- <SYSTEM32>\wshtcpip.dll файлом <SYSTEM32>\wshtcpip.dll
- <SYSTEM32>\cmd.exe /c %TEMP%\Coor.bat
- <SYSTEM32>\regsvr32.exe /s /c <SYSTEM32>\kakuzd.dll
- <SYSTEM32>\wshtcpzd.dll
- %TEMP%\HqRywHY.dll
- <DRIVERS>\74831230.sys
- %TEMP%\Coor.bat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\get[1].asp
- %TEMP%\3HHFue.dll
- <SYSTEM32>\kakuzd.dll
- <DRIVERS>\082827b6.sys
- %TEMP%\A1.zip
- %TEMP%\C1.zip
- %TEMP%\B1.zip
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\get[1].asp
- <DRIVERS>\74831230.sys
- <SYSTEM32>\midimap.dll в %TEMP%\8Yu
- <SYSTEM32>\wshtcpip.dll в <SYSTEM32>\yw84
- '20#.#3.155.228':80
- 20#.#3.155.228/xx/get.asp?ma#################################################################################
- ClassName: 'Indicator' WindowName: ''