Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] '{B0ABF9CF-6EAA-F6EB-B2DB-C09521345A58}' = '<SYSTEM32>\msnmsgrs.exe'
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{74960470-4CC0-2FF5-E3AF-0481C9355570}] 'StubPath' = '<SYSTEM32>\msnmsgrs.exe'
- %WINDIR%\Temp\lrtwjqqunr\Server.exe
- %WINDIR%\Temp\lrtwjqqunr\Server.exe
- <SYSTEM32>\msnmsgrs.exe
- %WINDIR%\Temp\lrtwjqqunr\Firefox.lnk
- %WINDIR%\Temp\lrtwjqqunr\lawlz.exe
- %WINDIR%\Temp\lrtwjqqunr\Server.exe
- 'ke####ii.no-ip.org':3460
- DNS ASK ke####ii.no-ip.org
- ClassName: 'Shell_TrayWnd' WindowName: ''