Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\RunOnce] 'jNn76Y' = '%HOMEPATH%\dMz85Z\iaxXk.exe'
- скрытых файлов
- Диспетчера задач (Taskmgr)
- '%HOMEPATH%\dMz85Z\iaxXk.exe'
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe'
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoFolderOptions' = '00000001'
- %TEMP%\tEf37M.FP7
- C:\iaxXk.exe
- %TEMP%\aut1.tmp
- %HOMEPATH%\dMz85Z\iaxXk.exe
- %HOMEPATH%\dMz85Z\wRvrm.aamc
- %TEMP%\tEf37M.FP7
- %TEMP%\tEf37M.FP7
- %TEMP%\aut1.tmp
- 'co#####2432.no-ip.biz':1604
- DNS ASK co#####2432.no-ip.biz
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'