Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\RunOnce] 'Runsis' = '<SYSTEM32>\Runsis.exe'
- <SYSTEM32>\Runsis.exe
- <SYSTEM32>\regsvr32.exe PicFormat32.dll /s
- <SYSTEM32>\regsvr32.exe MSWINSCK.OCX /s
- <SYSTEM32>\PicFormat32.ocx
- <SYSTEM32>\Runsis.exe
- <SYSTEM32>\PicFormat32.oca
- <SYSTEM32>\MSWINSCK.OCX
- <SYSTEM32>\PicFormat32.dll
- 'zo####k.zapto.org':16160
- DNS ASK zo####k.zapto.org
- ClassName: 'NDDEAgnt' WindowName: 'NetDDE Agent'