Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Generic Host Process for Win32 Services' = '%WINDIR%\csrss.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Client Server Runtime Process' = '%WINDIR%\csrss.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Shell' = 'explorer.exe "%WINDIR%\csrss.exe"'
- %WINDIR%\csrss.exe
- %WINDIR%\csrss.exe
- '40########c90c5d7b7056c55fd4b5d5.in':80
- 40########c90c5d7b7056c55fd4b5d5.in/gate.php
- DNS ASK 40########c90c5d7b7056c55fd4b5d5.in