Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Windows' = '"%TEMP%\system.exe"'
- %WINDIR%\Explorer.EXE
- %TEMP%\system.exe
- %TEMP%\system.exe
- 'ri###.4irc.com':8067
- 'fr###ppz.biz':8067
- 'ju####r.mooo.com':8067
- 'up####ng-soft.com':8067
- DNS ASK ri###.4irc.com
- DNS ASK fr###ppz.biz
- DNS ASK ju####r.mooo.com
- DNS ASK up####ng-soft.com
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Progman' WindowName: ''