Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\GrayPigeon_Hacker.com.cn] 'Start' = '00000002'
- %WINDIR%\Hacker.com.cn.exe
- %WINDIR%\CF.exe
- ClassName: 'PROCMON_WINDOW_CLASS' WindowName: ''
- ClassName: 'ollydbg' WindowName: ''
- %WINDIR%\CF.exe
- %WINDIR%\Hacker.com.cn.exe
- %APPDATA%\E_UIEngine\90afea1eeb37be7a93471c36152ab43a\90afea1eeb37be7a93471c36152ab43a.jpg
- %APPDATA%\E_UIEngine\90afea1eeb37be7a93471c36152ab43a\90afea1eeb37be7a93471c36152ab43a.jpg.data
- %WINDIR%\Hacker.com.cn.exe
- '11#.#89.81.17':8000
- ClassName: '18467-41' WindowName: ''
- ClassName: 'SoftSnoopMainDialog' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '4823-00000029' WindowName: ''
- ClassName: '' WindowName: 'Syser : Active Hotkey [Ctrl+F12]'
- ClassName: '' WindowName: 'Syser Debugger - Win32 User Mode Debugger'
- ClassName: '' WindowName: 'Microsoft Spy++ - [???? 1]'
- ClassName: 'WinDbgFrameClass' WindowName: ''