Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\svchost\Parameters] 'ServiceDll' = '<SYSTEM32>\Fengzi.dll'
- [<HKLM>\SYSTEM\ControlSet001\Services\svchost] 'ImagePath' = '<SYSTEM32>\svchost.exe -k netsvcs'
- [<HKLM>\SYSTEM\ControlSet001\Services\svchost] 'Start' = '00000002'
- '<SYSTEM32>\svchost.exe' -k netsvcs
- <SYSTEM32>\Fengzi.dll
- '92####er.9966.org':520
- DNS ASK 92####er.9966.org