Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\GbpSvc] 'Start' = '00000000'
- '<SYSTEM32>\cmd.exe' /c <SYSTEM32>\Logsvc.bat
- '<SYSTEM32>\sc.exe' create GbpSvc binPath= "<DRIVERS>\gbpkms.sys" type= kernel start= boot
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\trunkb[1].gif
- <SYSTEM32>\logsvc.exe
- <DRIVERS>\GbpKms.sys
- <SYSTEM32>\Logsvc.bat
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\trunkx[1].gif
- '22#.#19.29.81':80
- 22#.#19.29.81/trunkb.gif
- 22#.#19.29.81/trunkx.gif
- ClassName: 'MS_WINHELP' WindowName: '(null)'