Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\RCManagerg] 'Start' = '00000002'
- '%TEMP%\temky.exe'
- 360tray.exe
- %PROGRAM_FILES%\NetMeeting\WS2HELP.dll
- <DRIVERS>\winsawids.sys
- %TEMP%\temky.exe
- <SYSTEM32>\Fiele Ps.txt
- <SYSTEM32>\usrprbeda.exe
- <SYSTEM32>\usrprbeda.exe
- %PROGRAM_FILES%\NetMeeting\WS2HELP.dll
- %TEMP%\temky.exe
- <SYSTEM32>\Fiele Ps.txt
- 'www.55##g.com':80
- www.55##g.com/ip.txt
- DNS ASK www.55##g.com
- ClassName: 'MS_WINHELP' WindowName: '(null)'