Техническая информация
- [HKLM\System\CurrentControlSet\Services\2037fWqXl] 'ImagePath' = '%WINDIR%\Fonts\gAdQb.sys'
- [HKLM\System\CurrentControlSet\Services\2037jAhOj] 'ImagePath' = '%WINDIR%\Fonts\gAdQb.sys'
- '2037fWqXl' %WINDIR%\Fonts\gAdQb.sys
- '2037jAhOj' %WINDIR%\Fonts\gAdQb.sys
- %TEMP%\gadqb.sys
- %WINDIR%\fonts\gadqb.sys
- %WINDIR%\temp\udd1a43.tmp
- %WINDIR%\temp\udd227e.tmp
- %TEMP%\gadqb.sys
- %WINDIR%\temp\udd1a43.tmp
- %WINDIR%\temp\udd227e.tmp
- %TEMP%\gadqb.sys
- '43.##2.103.18':80
- '13#.#75.221.3':8089
- '13#.#75.221.3':19738
- http://43.##2.103.18/SYSSS/SSDTHook_Communicate.txt
- http://43.##2.103.18/SYSSS/reg.txt
- http://43.##2.103.18/SYSSS/Driver_01.sys
- http://43.##2.103.18/SYSSS/Driver_02.sys
- http://43.##2.103.18/SYSSS/Driver_03.sys
- '13#.#75.221.3':8089
- '13#.#75.221.3':19738