Техническая информация
- [<HKCU>\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Shell' = 'explorer.exe,"%APPDATA%\GamingStram\StreamNet.exe",'
- %WINDIR%\microsoft.net\framework\v4.0.30319\regasm.exe
- %APPDATA%\gamingstram\streamnet.exe
- 'up######hecker-status.cc':80
- '19#.#7.218.241':8808
- 'microsoft.com':80
- http://up######hecker-status.cc/OCB-Async.txt
- http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt
- '19#.#7.218.241':8808
- DNS ASK up######hecker-status.cc
- DNS ASK microsoft.com
- '%WINDIR%\microsoft.net\framework\v4.0.30319\regasm.exe'