Техническая информация
- [<HKLM>\SYSTEM\ControlSet002\Services\Wqxx72] 'Start' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\Wqxx72] 'Start' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\docker19] 'Start' = '00000002'
- <SYSTEM32>\cmd.exe /c """%TEMP%\mc11.bat"" "
- <SYSTEM32>\net1.exe stop wscsvc
- <SYSTEM32>\net.exe stop wscsvc
- <DRIVERS>\Wqxx72.sys
- %TEMP%\mc11.bat
- <SYSTEM32>\igtaftgq.tmp
- %TEMP%\frame1_6_290.exe
- %TEMP%\liar5.exe
- <DRIVERS>\docker19.sys
- %TEMP%\frame1_6_290.exe
- ClassName: '' WindowName: '&Yes'
- ClassName: '' WindowName: '&??'
- ClassName: 'OutpostMainWindowClass' WindowName: ''
- ClassName: '' WindowName: 'Outpost Firewall Pro'