Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\WMS] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\WMS] 'ImagePath' = '%WINDIR%\wmu\wnetmon.exe'
- [<HKLM>\SYSTEM\ControlSet002\Services\WMS] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet002\Services\WMS] 'ImagePath' = '%WINDIR%\wmu\wnetmon.exe'
- %WINDIR%\wmu\wnetmon.exe
- %WINDIR%\wmu\unsecapp.exe
- %ProgramFiles%\Ableton\Ableton\Ableton_KeyGen.exe
- %TEMP%\nso2.tmp
- %TEMP%\BASSMOD.dll
- %TEMP%\bgm.xm
- %TEMP%\keygen.exe
- %TEMP%\R2RLIVE.dll
- '%ProgramFiles%\Ableton\Ableton\Ableton_KeyGen.exe'
- '%TEMP%\keygen.exe'