Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'mmc' = '%APPDATA%\Microsoft\MMC\mmc.exe'
- '%APPDATA%\Microsoft\MMC\mmc.exe'
- '<SYSTEM32>\ping.exe' 127.0.0.1 -n 5
- %APPDATA%\Microsoft\MMC\mmc.exe
- 'ph#####inenews.mooo.com':443
- 'ph#####inenews.mooo.com':8080
- 'ph#####inenews.mooo.com':53
- 'ph#####inenews.mooo.com':80
- ph#####inenews.mooo.com/common.asp
- DNS ASK ph#####inenews.mooo.com
- ClassName: 'Indicator' WindowName: ''