Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] 'NokKernel install' = '<SYSTEM32>\Nokkernel_install.EXE '
- [<HKLM>\SYSTEM\ControlSet001\Services\w32insx] 'Start' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\w32insx] 'ImagePath' = 'system32\DRIVERS\w32insx.sys'
- %TEMP%\$$$2.TMP
- <SYSTEM32>\$$$3.TMP
- <DRIVERS>\w32insx.sys
- <SYSTEM32>\Nokkernel_install.EXE
- ClassName: ' ' WindowName: ' '
- ClassName: 'jan Nok-Nok' WindowName: 'Nok-Nok - Tasco'