Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\svJJOaFK7st] 'Start' = '00000002'
- %TEMP%\1e4cf.tmp
- <DRIVERS>\svJJOaFK7st.sys
- %TEMP%\1cfaf.tmp
- %TEMP%\1da7d.tmp
- %TEMP%\1e4cf.tmp
- <DRIVERS>\svJJOaFK7st.sys
- %TEMP%\1cfaf.tmp
- %TEMP%\1da7d.tmp
- 'hi.##idu.com':80
- hi.##idu.com/yu20/blog/item/f5aef8de0cba6340ccbf1a9c.html
- DNS ASK hi.##idu.com
- ClassName: 'Shell_TrayWnd' WindowName: ''