Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'syswinnt' = '%WINDIR%\SysWinNT.COM'
- '%WINDIR%\SysWinNT.com'
- '%PROGRAM_FILES%\00\SWr.exe'
- %PROGRAM_FILES%\00\pic.bmp
- %WINDIR%\SysWinNT.com
- %PROGRAM_FILES%\00\SWr.exe
- %TEMP%\00000001.000
- %TEMP%\00000002.000
- %TEMP%\pic1.bmp
- %PROGRAM_FILES%\00\pic.bmp
- %TEMP%\~DF5DEA.tmp
- %TEMP%\pic1.bmp
- %TEMP%\00000001.000
- %TEMP%\00000002.000
- '74.##5.232.51':25
- DNS ASK al##.####l-smtp-in.l.google.com
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'MS_WINHELP' WindowName: ''