Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\5F14AmN5R] 'Start' = '00000001'
- <SYSTEM32>\MakeAtManage.sys
- <SYSTEM32>\5F14AmN5R.sys
- <SYSTEM32>\2E0FqK1uG.systmp
- <Текущая директория>\ksreglib.dll
- C:\GuaUpDataConfig.ini
- <SYSTEM32>\2E0FqK1uG.sys
- <SYSTEM32>\2E0FqK1uG.sys
- <SYSTEM32>\2E0FqK1uG.systmp в <SYSTEM32>\2E0FqK1uG.sys
- 'localhost':1044
- 'gg.#ar0.com':80
- 't.##.com':80
- '52########e-shzshz.stor.sinaapp.com':80
- 'bu########huye3.stor.sinaapp.com':80
- t.##.com/sddosas/mine
- gg.#ar0.com/
- 52########e-shzshz.stor.sinaapp.com/SHZ/shhhhh.txt
- bu########huye3.stor.sinaapp.com/zhuye/zhuye.txt
- DNS ASK gg.#ar0.com
- DNS ASK my.##years.com
- DNS ASK t.##.com
- DNS ASK 52########e-shzshz.stor.sinaapp.com
- DNS ASK bu########huye3.stor.sinaapp.com
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''