Техническая информация
- [<HKCU>\Software\Microsoft\Active Setup\Installed Components\{5U0R3145-3IC7-OK81-25EL-] 'StubPath' = '<SYSTEM32>\server.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'server.exe' = '<SYSTEM32>\server.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'server.exe' = '<SYSTEM32>\server.exe'
- '<SYSTEM32>\server.exe'
- '<SYSTEM32>\ping.exe' localhost -n 2 -w 1000
- '<SYSTEM32>\cmd.exe' /c ""<Текущая директория>\melt.bat" "
- <LS_APPDATA>\SQLite3.dll
- %TEMP%\DataUser2.dat
- <SYSTEM32>\server.exe
- <Текущая директория>\melt.bat
- 'co#####moi.no-ip.biz':9000
- DNS ASK co#####moi.no-ip.biz
- ClassName: 'Indicator' WindowName: '(null)'