Техническая информация
- '%TEMP%\DNFsk\SK.exe'
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\rundll32.exe' url.dll,FileProtocolHandler http://www.na##wg.com
- NtCreateMutant, драйвер-обработчик: mtd
- %TEMP%\DNFsk\gj.dll
- %TEMP%\DNFsk\temp7891.dat
- %TEMP%\DNFsk\ver.ini
- %TEMP%\DNFsk\WS2_32.dll
- %TEMP%\DNFsk\SK.exe
- %TEMP%\DNFsk\mtd
- %TEMP%\DNFsk\dnfgjx.dll
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- 'localhost':1037
- DNS ASK www.na##wg.com
- DNS ASK so##.jdbbx.com
- DNS ASK www.dn##44.com
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: '' WindowName: '??????????'
- ClassName: '' WindowName: 'јтµҐ°Щ±¦Пд'
- ClassName: 'Shell_TrayWnd' WindowName: ''