Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\38909135] 'ImagePath' = 'system32\38909135.sys'
- [<HKLM>\SYSTEM\ControlSet001\Services\38909135] 'Start' = '00000000'
- '<SYSTEM32>\cmd.exe' /c "<Текущая директория>\5186fc0d.BAT"
- '<SYSTEM32>\logonui.exe' /status /shutdown
- <SYSTEM32>\471ef5ce0e
- <SYSTEM32>\4717a6971f
- <SYSTEM32>\472a2e55fd
- <Текущая директория>\5186fc0d.BAT
- <SYSTEM32>\38909135.sys
- %WINDIR%\7e8c1b07a3a9c8ae
- %WINDIR%\Temp\47a457dbf07c10
- <SYSTEM32>\46fbc38693
- <SYSTEM32>\471040eea0
- <SYSTEM32>\4702f9f95f
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'StatusWindowClass' WindowName: ''