Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\WinHelp32] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\360name] 'Start' = '00000002'
- '<SYSTEM32>\WinHelp32.exe'
- '<SYSTEM32>\ggmogq.exe'
- 'C:\dk.exe'
- 'C:\1.exe'
- '<SYSTEM32>\svchost.exe'
- <SYSTEM32>\svchost.exe
- <SYSTEM32>\WinHelp32.exe
- <SYSTEM32>\ggmogq.exe
- C:\dk.exe
- C:\1.exe
- <SYSTEM32>\WinHelp32.exe
- C:\1.exe
- C:\dk.exe
- 'xi####ao.gnway.net':8080
- 'w4.#966.org':8500
- DNS ASK xi####ao.gnway.net
- DNS ASK w4.#966.org