Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\vv1dap32] 'Start' = '00000002'
- <DRIVERS>\beep.sys
- '<SYSTEM32>\svchost.exe'
- <SYSTEM32>\svchost.exe
- 360tray.exe
- NtClose, драйвер-обработчик: Beep.SYS
- <DRIVERS>\0002d037.sys
- <SYSTEM32>\vv1dap32.sys
- <SYSTEM32>\vv1dap32.zip
- <SYSTEM32>\vv1dap32.zip
- <DRIVERS>\0002d037.sys
- <SYSTEM32>\vv1dap32.sys
- 'www.us####thmart.com':80
- www.us####thmart.com/kernel/cmd.txt
- DNS ASK www.us####thmart.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'