Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\JavaXchecker] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DoNotAllowExceptions' = '00000000'
- <SYSTEM32>\javaxd.exe
- <SYSTEM32>\svchost.exe
- <SYSTEM32>\javaxd.exe
- 'www.da###bill.info':80
- 'ad#####.ourclickstat.info':80
- www.da###bill.info/pubsvc/ret.php
- ad#####.ourclickstat.info/in.php
- DNS ASK www.da###bill.info
- DNS ASK ad#####.ourclickstat.info