Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\NdisFileServices32] 'Start' = '00000002'
- <SYSTEM32>\wmdrtc32.dl_
- %TEMP%\Jgl_Rt\2_whiter_shade_of_pale.mp3
- <SYSTEM32>\wmdrtc32.dll
- <DRIVERS>\jonmjn.sys
- %TEMP%\1.tmp\gaxsna.txt
- %TEMP%\1.tmp\WebBrowserPassView.exe
- %TEMP%\1.tmp\blat.exe
- %TEMP%\1.tmp\virus.bat
- %TEMP%\1.tmp\blat.lib
- %TEMP%\1.tmp\kalia.exe
- %TEMP%\1.tmp\blat.dll
- %TEMP%\1.tmp\kalia.exe
- %TEMP%\1.tmp\WebBrowserPassView.exe
- %TEMP%\1.tmp\virus.bat
- %TEMP%\1.tmp\blat.dll
- %TEMP%\1.tmp\gaxsna.txt
- %TEMP%\1.tmp\blat.exe
- %TEMP%\1.tmp\blat.lib
- '93.##8.134.11':587
- DNS ASK sm##.yandex.ru
- DNS ASK ya.ru
- ClassName: 'Shell_TrayWnd' WindowName: ''