Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{7S3I1ND4-H0JT-LW1W-U4O4-UM5N13PLK86X}] 'StubPath' = ''
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{7S3I1ND4-H0JT-LW1W-U4O4-UM5N13PLK86X}] 'StubPath' = '%WINDIR%\windowse\svhost.exe Restart'
- Диспетчера задач (Taskmgr)
- Средство контроля пользовательских учетных записей (UAC)
- %WINDIR%\windowse\svhost.exe
- <SYSTEM32>\netsh.exe firewall set opmode disable
- %WINDIR%\Explorer.EXE
- %TEMP%\%USERNAME%7
- %TEMP%\%USERNAME%8
- %WINDIR%\windowse\svhost.exe
- %TEMP%\%USERNAME%2.txt
- %TEMP%\%USERNAME%8
- %TEMP%\%USERNAME%2.txt
- DNS ASK ma######een2011.no-ip.info
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: 'Network event'