Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\Windows.lnk
- '%TEMP%\file.exe'
- ClassName: 'PROCMON_WINDOW_CLASS' WindowName: '(null)'
- ClassName: 'RegMonClass' WindowName: '(null)'
- ClassName: 'FileMonClass' WindowName: '(null)'
- %APPDATA%\driver--grap.exe
- %TEMP%\file.exe
- %TEMP%\aut1.tmp
- %TEMP%\aut1.tmp
- '2f####o.no-ip.biz':3178
- DNS ASK 2f####o.no-ip.biz
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'ThunderRT6FormDC' WindowName: '(null)'
- ClassName: 'ThunderRT6FormDC' WindowName: 'Shareware Cheater v 3.0'