Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\mR6iUBVYTK] 'ImagePath' = 'system32\drivers\mR6iUBVYTK.sys'
- [<HKLM>\SYSTEM\ControlSet001\Services\mR6iUBVYTK] 'Start' = '00000002'
- <DRIVERS>\mR6iUBVYTK.sys
- %CommonProgramFiles%\ysz.ini
- %TEMP%\21526.tmp
- %TEMP%\1f1cd.tmp
- %TEMP%\20372.tmp
- <DRIVERS>\mR6iUBVYTK.sys
- %CommonProgramFiles%\ysz.ini
- %TEMP%\21526.tmp
- %TEMP%\1f1cd.tmp
- %TEMP%\20372.tmp
- '12#.#25.114.144':80
- http://hi.##idu.com/baijinfank/blog/item/caea494de3f6df0872f05d01.html?ti##################### via 12#.#25.114.144
- DNS ASK hi.##idu.com
- ClassName: 'Shell_TrayWnd' WindowName: ''