Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 'LoadAppInit_DLLs' = '00000001'
- [<HKLM>\SYSTEM\ControlSet001\services\6ca217a5] 'Start' = '00000002'
- '<SYSTEM32>\rundll32.exe' "%PROGRAM_FILES%\SystemEnterprise\SystemEnterprise.dll",serv
- '<SYSTEM32>\rundll32.exe' "%PROGRAM_FILES%\SystemEnterprise\SystemEnterprise.dll",serv -install
- %PROGRAM_FILES%\SystemEnterprise\SystemEnterprise.dll
- %TEMP%\tf00294823.dll
- DNS ASK te###ne.info
- DNS ASK te##ine.net
- DNS ASK ti##.nist.gov
- DNS ASK ed###on.cnn.com
- DNS ASK dn#.##ftncsi.com
- ClassName: 'Shell_TrayWnd' WindowName: ''