Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'iVendas' = 'c:\ivendas\injetor.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'iVendas-screenshot-server' = 'c:\ivendas\screenshot.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\ivendas-servico-controle-neuronio] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\ivendas-servico-controle-neuronio] 'ImagePath' = 'c:\ivendas\servico.exe'
- C:\ivendas\rootCA.pem
- C:\ivendas\bc-client.exe
- C:\ivendas\busybox.exe
- C:\ivendas\servico.exe
- C:\ivendas\ivfind.exe
- C:\ivendas\ivfindindexer.exe
- C:\ivendas\screenshot.exe
- C:\ivendas\iv_loader.exe
- C:\ivendas\injetor.exe
- C:\ivendas\neuronio.exe
- '<LOCALNET>.0.255':54545
- 'C:\ivendas\servico.exe' instalar
- 'C:\ivendas\servico.exe'
- 'C:\ivendas\iv_loader.exe'
- 'C:\ivendas\injetor.exe' -mostrar-janela
- 'C:\ivendas\screenshot.exe' -mostrar-janela
- 'C:\ivendas\neuronio.exe'
- '<SYSTEM32>\sc.exe' query "iVendas v2"
- '<SYSTEM32>\sc.exe' delete "iVendas v2"