Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\mshwprf] 'Start' = '00000002'
- '<SYSTEM32>\svchost.exe' -k netsvcs
- %TEMP%\164890_tem.info
- <SYSTEM32>\migliba.dll
- <SYSTEM32>\systemio.exe
- %WINDIR%\svtmp.ini
- %WINDIR%\ServiceAdd.txt
- %WINDIR%\ServiceIns.reg
- %WINDIR%\svtmp.ini
- %WINDIR%\ServiceIns.reg
- %WINDIR%\ServiceAdd.txt
- %TEMP%\164890_tem.info в <SYSTEM32>\migliba.dll
- 'se####ty.idcvn.net':443
- DNS ASK se####ty.idcvn.net