Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\cnexx] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\cnexx] 'ImagePath' = '<SYSTEM32>\cnex-demo.exe'
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- <SYSTEM32>\init\cwSvc.ocx
- <SYSTEM32>\atiecls.dll
- <SYSTEM32>\init\pocketHTTP.dll
- <SYSTEM32>\init\scrrun.dll
- <SYSTEM32>\init\winhttp.dll
- <SYSTEM32>\cnex-demo.exe
- <SYSTEM32>\init\SYSINFO.OCX
- <SYSTEM32>\cnex.exe
- <SYSTEM32>\unitemp.exe
- <SYSTEM32>\hopatemp.ini
- <SYSTEM32>\atiecls.dll
- <SYSTEM32>\cnex-demo.exe
- <SYSTEM32>\cnex.exe
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- '<SYSTEM32>\cnex-demo.exe' -i