Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Apjlfp Rddbamb] 'Start' = '00000002'
- '<SYSTEM32>\svchost.exe' -k imgsvc
- C:\NetTemp.ini
- %CommonProgramFiles%\termil.dll
- C:\map220100.dll
- C:\heygirl.ddd
- C:\map220100.dll
- C:\heygirl.ddd
- C:\NetTemp.ini
- 'cm####s.codns.com':8959
- DNS ASK cm####s.codns.com