Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\xhuSoesdjzQ] 'Start' = '00000002'
- %TEMP%\2fe6d.tmp
- <DRIVERS>\xhuSoesdjzQ.sys
- %TEMP%\2ef48.tmp
- %TEMP%\2f786.tmp
- %TEMP%\2fe6d.tmp
- <DRIVERS>\xhuSoesdjzQ.sys
- %TEMP%\2ef48.tmp
- %TEMP%\2f786.tmp
- 'ar####.71147.ftpdo.com':80
- ar####.71147.ftpdo.com/wmfc.txt
- DNS ASK ar####.71147.ftpdo.com