Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Taskman' = '%APPDATA%\aqlapx.exe'
- %WINDIR%\Explorer.EXE
- %APPDATA%\aqlapx.exe
- %APPDATA%\aqlapx.exe
- DNS ASK ov###oading.us
- DNS ASK mi####oftgroups.com
- 'ov###oading.us':444
- 'mi####oftgroups.com':444
- ClassName: 'Progman' WindowName: ''