Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\soumdman] 'Start' = '00000002'
- <DRIVERS>\beep.sys
- <DRIVERS>\beep.sys
- '%WINDIR%\Temp\soumdman.exe'
- '<SYSTEM32>\svchost.exe' 82817
- %TEMP%\86646582.tmp
- %TEMP%\86646582.tmp в %WINDIR%\Temp\soumdman.exe
- '82###.rhelper.com':8000
- DNS ASK 82###.rhelper.com