Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'DVDUpgrd' = '<SYSTEM32>\ntosrnl.exe'
- <SYSTEM32>\ntosrnl.exe
- <SYSTEM32>\tokkun2.exe
- [<HKCU>\Software\ORL\WinVNC3]
- [<HKLM>\Software\ORL\WinVNC3]
- <SYSTEM32>\tokkun2.swf
- <SYSTEM32>\tokkun2.exe
- <SYSTEM32>\VNCHooks.dll
- %TEMP%\ci0-temp\control remoto.set
- %TEMP%\gert0.dll
- <SYSTEM32>\MSWINSCK.OCX
- <SYSTEM32>\ntosrnl.exe
- %TEMP%\gert0.dll
- %TEMP%\ci0-temp\control remoto.set
- 'localhost':5900
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''