Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'exploree' = '<SYSTEM32>\scvhost.exe'
- <SYSTEM32>\scvhost.exe
- <SYSTEM32>\sleep.exe 2
- <SYSTEM32>\taskkill.exe /im teamViewer.exe /f
- <SYSTEM32>\taskkill.exe /im scvhost.exe /f
- <SYSTEM32>\cmd.exe /c ""<SYSTEM32>\system.bat" "
- <SYSTEM32>\tv2.dll
- <SYSTEM32>\ts2.dll
- <SYSTEM32>\system.bat
- %PROGRAM_FILES%\Company\Microsoft\Uninstall.ini
- %PROGRAM_FILES%\Company\Microsoft\Uninstall.exe
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- <SYSTEM32>\scvhost2.exe
- <SYSTEM32>\Teamviewer_Resource_en2.dll
- <SYSTEM32>\sleep.exe
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- 'pi###.dyngate.com':5938
- 'ma#####4.teamviewer.com':80
- 'ma####.dyngate.com':80
- 'crl.verisign.com':80
- 'cs######4-crl.verisign.com':80
- 'localhost':9998
- ma#####4.teamviewer.com/din.aspx?s=################################################
- ma####.dyngate.com/din.aspx?s=###############################################
- crl.verisign.com/pca3.crl
- cs######4-crl.verisign.com/CSC3-2004.crl
- DNS ASK ma#####0.teamviewer.com
- DNS ASK ma#####.teamviewer.com
- DNS ASK ma#####1.teamviewer.com
- DNS ASK ma#####3.teamviewer.com
- DNS ASK ma#####2.teamviewer.com
- DNS ASK cs######4-crl.verisign.com
- DNS ASK crl.verisign.com
- DNS ASK pi###.dyngate.com
- DNS ASK ma####.dyngate.com
- DNS ASK ma#####4.teamviewer.com
- ClassName: '' WindowName: ''
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''