Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Sejbnv Vwwkehoy Tid] 'Start' = '00000002'
- 'C:\asdg.exe'
- '<SYSTEM32>\svchost.exe' -k imgsvc
- '<SYSTEM32>\svchost.exe' -k netsvcs
- C:\NT_Path.jpg
- C:\Net-Temp.ini
- %PROGRAM_FILES%\Woix\Cwcffpibd.gif
- <Текущая директория>\Hook.dll
- C:\asdg.exe
- C:\519100.dll
- %PROGRAM_FILES%\Woix\Cwcffpibd.gif
- C:\asdg.exe
- C:\519100.dll
- C:\Net-Temp.ini
- C:\NT_Path.jpg
- 'qf##.f3322.org':1124
- '12#.#56.127.18':80
- 'localhost':1036
- DNS ASK qf##.f3322.org
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: '(null)' WindowName: 'HawkOD.exe'
- ClassName: '(null)' WindowName: '????????.exe'