Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Future Terminatorjrq] 'Start' = '00000002'
- C:\Server.exe
- C:\SnakeШјРРЅЕёЁЦъ-1.0.2.exe
- <SYSTEM32>\svchost.exe -k netsvcs
- <SYSTEM32>\taskkill.exe /f /t /im ZhuDongFangYu.exe
- %WINDIR%\QQTempS.reg
- %TEMP%\wi217531nd.temp
- C:\superec.ProcessMemory.sys
- %WINDIR%\QQTempS.txt
- C:\SnakeШјРРЅЕёЁЦъ-1.0.2.exe
- C:\Server.exe
- %WINDIR%\Temporaryfiles.ini
- %WINDIR%\Temporaryfiles.ini
- C:\Server.exe
- %WINDIR%\QQTempS.txt
- %WINDIR%\QQTempS.reg
- %TEMP%\wi217531nd.temp в <SYSTEM32>\XXX.dll
- 'q2#####8414.f3322.org':2011
- DNS ASK q2#####8414.f3322.org
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: ''