Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Fiagpa Girybfvx Pho] 'Start' = '00000002'
- '%WINDIR%\win7.exe'
- '<SYSTEM32>\svchost.exe' -k imgsvc
- '<SYSTEM32>\svchost.exe' -k netsvcs
- C:\Net-Temp.ini
- %PROGRAM_FILES%\Yang\Djcnfgjpc.jpg
- C:\NT_Path.jpg
- %WINDIR%\win7.exe
- C:\1947700.dll
- %PROGRAM_FILES%\Yang\Djcnfgjpc.jpg
- %WINDIR%\win7.exe
- C:\1947700.dll
- C:\Net-Temp.ini
- C:\NT_Path.jpg
- 'aa####yu.3322.org':2212
- '18#.#1.171.87':146
- 'localhost':1037
- DNS ASK aa####yu.3322.org
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''