Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\btdfgb] 'Start' = '00000002'
- <SYSTEM32>\fsldsw.exe
- C:\conime.exe
- C:\ti.exe
- %PROGRAM_FILES%\Internet Explorer\IEXPLORE.EXE http://co#####o.9966.org:81/tj.html
- <SYSTEM32>\fsldsw.exe
- C:\conime.exe
- C:\ti.exe
- C:\conime.exe
- 'any':6668
- 'localhost':1040
- 'za####n168.3322.org':6668
- DNS ASK co####wo.9966.org
- DNS ASK za####n168.3322.org
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''