Техническая информация
- [<HKLM>\System\CurrentControlSet\Services\AdobeFlashPlayerSvc] 'ImagePath' = '"%WINDIR%\SysWOW64\Macromed\Flash\AdobeFlashPlayerService.exe"'
- %WINDIR%\syswow64\macromed\flash\adobeflashplayerservice.exe
- %WINDIR%\syswow64\macromed\flash\adobeflashplayerservice.exe
- '10#.#2.25.90':29622
- DNS ASK ca###ngx2.com
- '%WINDIR%\syswow64\macromed\flash\adobeflashplayerservice.exe'
- '<SYSTEM32>\cmd.exe' ' (со скрытым окном)
- '<SYSTEM32>\cmd.exe'
- '<SYSTEM32>\ping.exe' 127.0.0.1 -n 2