Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%TEMP%\system.exe' = '%TEMP%\system.exe:*:Enabled:system.exe'
- '%TEMP%\svchost.exe'
- '%TEMP%\system.exe'
- '%TEMP%\svchost.exe' (загружен из сети Интернет)
- %TEMP%\svchost.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\logo[1].jpg
- %TEMP%\system.exe
- 'st#####.cmsh.cyc.edu.tw':80
- '74.##5.232.51':80
- st#####.cmsh.cyc.edu.tw/~streetdance/logo.jpg
- 74.##5.232.51/
- DNS ASK st#####.cmsh.cyc.edu.tw
- DNS ASK google.com