Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\perfnw32] 'Start' = '00000002'
- %TEMP%\e574413e.exe
- <SYSTEM32>\netsh.exe firewall add portopening TCP 25 DNS ENABLE ALL
- <SYSTEM32>\netsh.exe firewall add portopening TCP 6748 messenger ENABLE ALL
- <SYSTEM32>\a312d5d4.dll
- %TEMP%\e574413e.exe
- <SYSTEM32>\56e52ce8.dll
- <SYSTEM32>\9b5a2663.dll
- <SYSTEM32>\perfnw32.dll
- ClassName: 'Shell_TrayWnd' WindowName: ''