Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\xadf] 'start' = '00000001'
- [<HKLM>\SYSTEM\ControlSet001\Services\xadf] 'ImagePath' = '%APPDATA%\jxadf\xadfilter.sys'
- [<HKLM>\SYSTEM\ControlSet001\Services\xadf] 'Start' = '00000002'
- '%TEMP%\xad\adfilter.exe'
- '%TEMP%\nsz2.tmp\ns3.tmp' %TEMP%\xad\adfilter.exe
- %TEMP%\nsz2.tmp\ns3.tmp
- %APPDATA%\jxadf\ieplugin.dll
- %APPDATA%\jxadf\xadfilter.sys
- %TEMP%\nsz2.tmp\nsExec.dll
- %TEMP%\xad\IEPlugin.dll
- %TEMP%\xad\adfilter.exe
- %TEMP%\xad\xadfilter.sys
- '12#.#01.8.70':80
- 12#.#01.8.70/report.php?ty#################
- 12#.#01.8.70/report.php?ty##################