Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'LiveMessenger' = '%WINDIR%\hdss.exe'
- <SYSTEM32>\reg.exe add hkcu\software\microsoft\windows\currentversion\run /v LiveMessenger /t reg_sz /d %WINDIR%\hdss.exe /f
- %WINDIR%\hdss.exe
- 'me#####er.hotmail.com':1863
- 'nn###.com.ar':80
- nn###.com.ar/cn03.php
- DNS ASK me#####er.hotmail.com
- DNS ASK nn###.com.ar
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''