Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Msconfig' = '%WINDIR%\msc0nfig.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Msc0nfig' = '%WINDIR%\msconfig.exe'
- '<SYSTEM32>\taskkill.exe' /pid=4076
- '<SYSTEM32>\taskkill.exe' /pid=2612
- '<SYSTEM32>\taskkill.exe' /pid=3184
- '<SYSTEM32>\taskkill.exe' /pid=3652
- '<SYSTEM32>\taskkill.exe' /F /IM taskmgr.exe
- '<SYSTEM32>\taskkill.exe' /pid=3124
- '<SYSTEM32>\taskkill.exe' /pid=3480
- <SYSTEM32>\taskkill.exe
- %WINDIR%\msc0nfig.exe
- %WINDIR%\msconfig.exe
- 'lo###.icq.com':5190
- DNS ASK lo###.icq.com
- ClassName: '(null)' WindowName: '(null)'