Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Bicrosoft .Fet Gramework COM+] 'Start' = '00000002'
- <DRIVERS>\beep.sys
- %PROGRAM_FILES%\Remote\Lsass.exe
- <SYSTEM32>\winlogon.exe 57329
- <SYSTEM32>\dllcache\beep.sys.new
- %TEMP%\68588023.tmp
- '57###.rhelper.com':1986
- DNS ASK 57###.rhelper.com
- ClassName: '' WindowName: '???????? ????'
- ClassName: '' WindowName: '????????????'
- ClassName: '' WindowName: '????????????????'