Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\chuppa] 'ImagePath' = 'system32\DRIVERS\super32.sys'
- [<HKLM>\SYSTEM\ControlSet001\Services\chuppa] 'Start' = '00000001'
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\super32.sys[1].off
- <DRIVERS>\super32.sys.off
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\super32[1].sys
- <DRIVERS>\super32.sys
- 'www.ha#######idorconcursos.com.br':80
- 'localhost':1036
- www.ha#######idorconcursos.com.br/site/super32.sys.off
- www.ha#######idorconcursos.com.br/site/super32.sys
- www.ha#######idorconcursos.com.br/site/form.php
- DNS ASK www.ha#######idorconcursos.com.br