Техническая информация
- [<HKLM>\SYSTEM\CurrentControlSet\Services\f0f4d8d2068bb44d4f8668660dff0fbf] 'ImagePath' = '%TEMP%\f0f4d8d2068bb44d4f8668660dff0fbf\f0f4d8d2068bb44d4f8668660dff0fbf.sys'
- [<HKLM>\System\CurrentControlSet\Services\{45487F67-EC9F-4449-A6F2-2D0970F9B80B}] 'Start' = '00000000'
- [<HKLM>\System\CurrentControlSet\Services\{45487F67-EC9F-4449-A6F2-2D0970F9B80B}] 'ImagePath' = 'system32\drivers\Wdf65374.sys'
- 'f0f4d8d2068bb44d4f8668660dff0fbf' %TEMP%\f0f4d8d2068bb44d4f8668660dff0fbf\f0f4d8d2068bb44d4f8668660dff0fbf.sys
- %TEMP%\f0f4d8d2068bb44d4f8668660dff0fbf\f0f4d8d2068bb44d4f8668660dff0fbf.sys
- <SYSTEM32>\config\000000
- <SYSTEM32>\config\000000.log1
- http://x5.##tocz.com/000/0012
- http://s1.##tocz.com/r7kv59abzzu70zhz0e0zzzs
- http://s1.##tocz.com/h09ryz95
- DNS ASK ip###ger.org
- DNS ASK s1.##tocz.com
- DNS ASK x5.##tocz.com