Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\services\TCPIPPORT] 'Start' = '00000001'
- [<HKLM>\SYSTEM\ControlSet001\services\BITS] 'Start' = '00000002'
- '<SYSTEM32>\rundll32.exe' <SYSTEM32>\mpeg4c32.dll Main
- '<SYSTEM32>\PING.EXE' localhost -n 1
- '<SYSTEM32>\svchost.exe' -k netsvcs
- C:\ProgramData\Microsoft\RAC\Temp\sqlB348.tmp
- C:\ProgramData\Microsoft\RAC\Temp\sqlB318.tmp
- <SYSTEM32>\mpeg4c32.dll
- <SYSTEM32>\tcpipport.sys
- <SYSTEM32>\tcpipport.sys
- <SYSTEM32>\mpeg4c32.dll
- C:\ProgramData\Microsoft\RAC\Temp\sqlB318.tmp
- C:\ProgramData\Microsoft\RAC\Temp\sqlB348.tmp
- 'm.###pang.com':80
- DNS ASK m.###pang.com