Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{38E7D256-AC7E-6E92-0407-070005010008}] 'StubPath' = '<SYSTEM32>\sisy.exe'
- '%TEMP%\21.exe'
- '%WINDIR%\1234.exe'
- %WINDIR%\Explorer.EXE
- %TEMP%\babyshitters6.swf
- <SYSTEM32>\sisy.exe
- %WINDIR%\1234.exe
- %TEMP%\21.exe
- 'no##.no-ip.org':3460
- 'ss####.no-ip.info':3460
- 'no##.sytes.net':3460
- 'localhost':3460
- 'al####m99.no-ip.biz':3460
- DNS ASK no##.no-ip.org
- DNS ASK ss####.no-ip.info
- DNS ASK al####m99.no-ip.biz
- DNS ASK no##.sytes.net
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''