Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\CDPService] 'ImagePath' = '<SYSTEM32>\mswoner.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\CDPService] 'Start' = '00000002'
- %WINDIR%\Explorer.EXE
- <SYSTEM32>\lsass.exe
- <SYSTEM32>\mspeets.dll_
- <SYSTEM32>\mswoner.exe
- <SYSTEM32>\lashorg.ini
- <SYSTEM32>\mscarpe.dll_
- <SYSTEM32>\lashorg.ini
- <SYSTEM32>\mspeets.dll_ в <SYSTEM32>\mspeets.dll
- <SYSTEM32>\mscarpe.dll_ в <SYSTEM32>\mscarpe.dll
- 'bo####sex.3322.org':8080
- DNS ASK bo####sex.3322.org