Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{783CA2FC-BB34-0220-85E3-983D03516A67}] 'StubPath' = 'winmine32.exe'
- <SYSTEM32>\reg.exe add hklm\SYSTEM\CurrentControlSet\Services\secdrv /v imagepath /t REG_EXPAND_SZ /d system32\DRIVERS\Secdrv.sys /f
- <SYSTEM32>\reg.exe add hklm\SYSTEM\CurrentControlSet\Services\secdrv /v imagepath /t REG_EXPAND_SZ /d \??\%HOMEPATH%\53586.dat /f
- %WINDIR%\Installer\21023.msi
- <SYSTEM32>\winmine32.exe
- <SYSTEM32>\dllcache\wabise2.dll
- %HOMEPATH%\55743.tmp
- %HOMEPATH%\Cookies\index32.dat
- %HOMEPATH%\Cookies\index32.dat
- 'ic##.#ainscoat.net':80
- DNS ASK ic##.#ainscoat.net
- '<IP-адрес в локальной сети>':1035