Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\ceqrau] 'Start' = '00000002'
- '%CommonProgramFiles%\bsrmghz\ceqrau.exe'
- '<SYSTEM32>\calc.exe'
- <SYSTEM32>\calc.exe
- %CommonProgramFiles%\bsrmghz\ceqrau.exe
- %CommonProgramFiles%\bsrmghz\pudift.exe
- %CommonProgramFiles%\bsrmghz\winda.ini
- %CommonProgramFiles%\bsrmghz\winda.ini
- 'ga###5.3322.org':7887
- DNS ASK ga###5.3322.org
- ClassName: 'MS_WINHELP' WindowName: ''