Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'secdrive.exe' = '%WINDIR%\pchealth\helpctr\binaries\secdrive.exe'
- <SYSTEM32>\tftp.exe
- <SYSTEM32>\ftp.exe
- <DRIVERS>\tcpip.sys
- Cредство проверки системных файлов (SFC)
- %WINDIR%\pchealth\helpctr\binaries\secdrive.exe
- ClassName: 'OLLYDBG' WindowName: ''
- ClassName: 'MSNHiddenWindowClass' WindowName: ''
- <SYSTEM32>\Microsoft\backup.ftp
- <SYSTEM32>\Microsoft\backup.tftp
- %WINDIR%\Photo_13308.zip
- %WINDIR%\pchealth\helpctr\binaries\secdrive.exe
- %WINDIR%\pchealth\helpctr\binaries\secdrive.exe
- %WINDIR%\Photo_13308.zip
- 'ma##.tiktikz':83
- 'ma##.##lon-servers.net':83
- 'www.wo###casino.to':83
- 'ma##.fucuzzy':83
- DNS ASK ma##.TIKTIKZ
- DNS ASK ma##.##lon-servers.net
- DNS ASK ma##.fucuzzy
- DNS ASK www.wo###casino.to
- '<IP-адрес в локальной сети>':1034
- ClassName: '' WindowName: 'Unreal3.2.2b'
- ClassName: '' WindowName: 'Unreal3.2-beta19'
- ClassName: '' WindowName: 'Unr3413.2(phr0stic-modd)'
- ClassName: '' WindowName: 'Unreal3.2 Modded By LyR'