Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002] 'PackedCatalogItem' = ''
- [<HKLM>\SYSTEM\ControlSet001\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001] 'PackedCatalogItem' = ''
- <SYSTEM32>\rundll32.exe %WINDIR%\msntdct.dll,_svchost@16 <Полный путь к вирусу>
- <DRIVERS>\wdmeaud2e.sys
- %WINDIR%\msntdct.dll
- <DRIVERS>\USBWIN32.sys
- <SYSTEM32>\wmsdemps32.dll
- <SYSTEM32>\msmsock.dll
- %WINDIR%\msntdct.dll