Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{F53C57A8-66BE-FE12-07B7-2F78C59F6802}] 'stubpath' = ''
- <SYSTEM32>\por1t[1].exe
- <SYSTEM32>\CatRoot2\PowerISO48.exe
- <SYSTEM32>\CatRoot2\FINdefault.exe
- <SYSTEM32>\winaddin.exe
- <SYSTEM32>\netsh.exe firewall add portopening tcp 81 "http."
- <SYSTEM32>\cmd.exe /c ""%TEMP%\1.tmp\port.bat" "
- %WINDIR%\Explorer.EXE
- %TEMP%\nsd3.tmp
- %TEMP%\1.tmp\port.bat
- <SYSTEM32>\system332\default.exe
- %TEMP%\nst4.tmp\System.dll
- <SYSTEM32>\winaddin.exe
- <SYSTEM32>\CatRoot2\FINdefault.exe
- %TEMP%\sfx.ini
- <SYSTEM32>\por1t[1].exe
- <SYSTEM32>\CatRoot2\PowerISO48.exe
- %TEMP%\1.tmp\port.bat
- %TEMP%\sfx.ini
- 'am#####dad.no-ip.biz':81
- DNS ASK am#####dad.no-ip.biz
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '#32770' WindowName: ''
- ClassName: 'SCDEMUAPP_C2C80BFA WNDCLASS' WindowName: ''