Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\nProtect Network Packet Monitoring] 'Start' = '00000002'
- %WINDIR%\npmsvc.exe
- %WINDIR%\npmsvc.exe
- C:\msvcr71.dll
- %WINDIR%\ver.log
- %WINDIR%\npmsvc.exe
- C:\msvcr71.dll
- 'si#####e369.comeze.com':80
- 'si####?e369.zxq.net':80
- 'si####eye369.com':80
- 'si###r?e369.com':80
- si#####e369.comeze.com/index.html
- si####?e369.zxq.net/index.html
- si####eye369.com/aloha2.html
- si###r?e369.com/index.html
- DNS ASK si#####e369.comeze.com
- DNS ASK si####?e369.zxq.net
- DNS ASK si####eye369.com
- DNS ASK si###r?e369.com
- ClassName: '' WindowName: ''