Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'shell' = 'Explorer.exe'
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{9D71D88C-C598-4935-C5D1-43AA4DB90836}] 'stubpath' = ''
- [<HKLM>\SYSTEM\ControlSet001\Services\NdisFileServices32] 'Start' = '00000002'
- %WINDIR%\Explorer.EXE
- msnmsgr.exe
- <SYSTEM32>\Bifrost\Server.exe
- <DRIVERS>\fmigs.sys
- %APPDATA%\addons.dat
- <SYSTEM32>\wmdrtc32.dl_
- <SYSTEM32>\wmdrtc32.dll
- %APPDATA%\addons.dat
- <SYSTEM32>\Bifrost\Server.exe
- <DRIVERS>\fmigs.sys
- 'www.bp##02.com':80
- 'en##.no-ip.info':777
- www.bp##02.com/t_100_v400/?rn######################
- DNS ASK www.bp##02.com
- DNS ASK www.microsoft.com
- DNS ASK en##.no-ip.info
- '<IP-адрес в локальной сети>':1035
- '<IP-адрес в локальной сети>':1036
- ClassName: 'Indicator' WindowName: ''