Техническая информация
- '<SYSTEM32>\tcpsvcs.exe' "No RegKey" "ParmisCMD(1)-8.217-Demo-WinXP/32-1013-7117-47B8-7518-DefUser:%USERNAME%-LogUser:%USERNAME%-parent:C:_WINDOWS_Systema_<Служебное имя>.exe-cmdline:C:_bf32d3b0_<Имя вируса>.exe"
- <SYSTEM32>\tcpsvcs.exe
- 'pa#####df.infordesk.com':80
- pa#####df.infordesk.com/update/update.php
- DNS ASK pa#####df.infordesk.com
- ClassName: 'MS_WINHELP' WindowName: ''