Техническая информация
- [<HKLM>\SYSTEM\ControlSet002\Services\ethkjcbh] 'Start' = '00000001'
- [<HKLM>\SYSTEM\ControlSet002\Services\ethkjcbh] 'ImagePath' = 'system32\drivers\ethkjcbh.sys'
- [<HKLM>\SYSTEM\ControlSet001\Services\ethkjcbh] 'Start' = '00000001'
- [<HKLM>\SYSTEM\ControlSet001\Services\ethkjcbh] 'ImagePath' = 'system32\drivers\ethkjcbh.sys'
- <DRIVERS>\asyncmac.sys
- <DRIVERS>\ethkjcbh.sys
- <DRIVERS>\asyncmac.sys.bak
- <DRIVERS>\asyncmac.sys.bak
- 'go####kljdgl.biz':17536
- DNS ASK go####kljdgl.biz
- '19#.#28.79.201':4961
- '12#.8.10.90':4962
- '19#.5.5.241':4964
- '20#.#2.27.33':4957
- '20#.#7.222.222':4958
- '19#.#28.79.201':4960
- '19#.5.5.241':4965
- '20#.#7.222.222':4970
- '20#.#7.222.222':4972
- '20#.#7.222.222':4973
- '20#.#7.222.222':4966
- '12#.8.10.90':4968
- '12#.8.10.90':4969
- '4.#.2.1':4944
- '4.#.2.1':4945
- '19#.#28.79.201':4946
- '20#.#7.220.220':4940
- '20#.#7.220.220':4941
- '20#.#7.222.222':4942
- '19#.33.4.12':4948
- '19#.#03.230.10':4953
- '19#.5.5.241':4954
- '20#.#2.27.33':4956
- '19#.33.4.12':4949
- '12#.8.10.90':4950
- '19#.#03.230.10':4952