Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Basesx64' = '%WINDIR%\WinUp.exe'
- %WINDIR%\WinUp.exe
- %WINDIR%\WinUp.exe
- <SYSTEM32>\wbem\Performance\WmiApRpl_new.ini
- %WINDIR%\WinUp.exe
- 'ch#####ros.zapto.org':4662
- DNS ASK ch#####ros.zapto.org
- ClassName: 'Indicator' WindowName: ''