Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Control\Print\Providers\2464816928] 'Name' = '"%TEMP%\srvAD0.tmp"'
- [<HKLM>\SYSTEM\ControlSet001\Services\srvAD0] 'Start' = '00000002'
- <SYSTEM32>\spoolsv.exe
- %WINDIR%\Temp\1.tmp
- %TEMP%\srvAD0.ini
- %TEMP%\srvAD0.tmp
- %TEMP%\srvAD0.tmp
- '94.##.193.20':80
- '82.##2.88.10':80
- 94.##.193.20/service/listener.php?af#########
- 82.##2.88.10//srv