Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\DPSS] 'Start' = '00000002'
- C:\DHI\ddhmain.exe /NOTRAY /install /silent
- <SYSTEM32>\dpskpr.exe
- <SYSTEM32>\winlogon.exe
- <SYSTEM32>\dpssvc.dll
- C:\DHI\ddhsvc.dll
- C:\DHI\images\logo.png
- <SYSTEM32>\dpskpr.exe
- C:\DHI\uninstall.exe
- C:\DHI\DDHMain.exe.ini
- %APPDATA%\DHI\DHI.ini
- C:\DHI\ddhmain.exe
- %TEMP%\nsh3.tmp\ddhsvc.dll
- %TEMP%\nsr2.tmp
- C:\DHI\License.txt
- C:\DHI\css\style2.css
- C:\DHI\notconn.html
- C:\DHI\bpage.html
- %TEMP%\nsh3.tmp\ddhsvc.dll
- 'to##.#uoduohi.com':80
- to##.#uoduohi.com/box/MsgInfo/getMessage2.asp?in#######################################################################################################################
- DNS ASK to##.#uoduohi.com