Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\LKMMSjrq] 'Start' = '00000002'
- <SYSTEM32>\svchost.exe -k netsvcs
- %WINDIR%\fUCKyOU.REG
- %TEMP%\wi199921nd.temp
- %WINDIR%\MyInformations.ini
- %WINDIR%\FuckYou.txt
- %WINDIR%\MyInformations.ini
- %WINDIR%\fUCKyOU.REG
- %WINDIR%\FuckYou.txt
- %TEMP%\wi199921nd.temp в <SYSTEM32>\LKMMS.dll
- 'lo####ng.no-ip.org':8786
- DNS ASK lo####ng.no-ip.org