Техническая информация
- Центр обеспечения безопасности (Security Center)
- '<SYSTEM32>\sc.exe' config wscsvc start= disabled
- '<SYSTEM32>\svchost.exe'
- '<SYSTEM32>\net.exe' stop wscsvc
- '<SYSTEM32>\sc.exe' config SharedAccess start= disabled
- '<SYSTEM32>\net1.exe' stop wscsvc
- '<SYSTEM32>\net1.exe' stop SharedAccess
- '<SYSTEM32>\cmd.exe' /c sc config SharedAccess start= disabled
- '<SYSTEM32>\cmd.exe' /c net stop SharedAccess
- '%WINDIR%\explorer.exe'
- '<SYSTEM32>\cmd.exe' /c sc config wscsvc start= disabled
- '<SYSTEM32>\net.exe' stop SharedAccess
- '<SYSTEM32>\cmd.exe' /c net stop wscsvc
- <SYSTEM32>\svchost.exe
- %WINDIR%\explorer.exe
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\KHMHGZ4F\counter[1].htm
- 'of####livenet24.xyz':80
- http://of####livenet24.xyz/counter/counter.php
- DNS ASK of####livenet24.xyz