Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\W32Time] 'Start' = '00000002'
- C:\Хрє¶ХЯЧФ¶ЇїЄЗ№ХЅ¶У°ж.exe
- C:\server.exe
- %TEMP%\E_N4\krnln.fne
- %PROGRAM_FILES%\NVIDIA\NVIDIA.OLE
- %TEMP%\E_N4\shell.fne
- %TEMP%\1c0f9.tmp
- <SYSTEM32>\SkinH_EL.dll
- %TEMP%\1cc65.tmp
- %TEMP%\1c7d0.tmp
- %PROGRAM_FILES%\NVIDIA\ANOntEx.Dll
- C:\Хрє¶ХЯЧФ¶ЇїЄЗ№ХЅ¶У°ж.exe
- C:\server.exe
- %TEMP%\E_N4\krnln.fnr
- %TEMP%\E_N4\spec.fne
- %TEMP%\E_N4\iext.fnr
- %TEMP%\E_N4\eAPI.fne
- %TEMP%\1cc65.tmp
- %TEMP%\1c7d0.tmp
- %TEMP%\1c0f9.tmp
- 'li#####13264.gicp.net':6380
- DNS ASK li#####13264.gicp.net
- DNS ASK ti##.#indows.com
- 'ti##.#indows.com':123
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: 'opjkropioiasdjaieee'