Техническая информация
- [<HKLM>\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] '<SYSTEM32>\explore.exe' = '<SYSTEM32>\explore.exe'
- [<HKLM>\Software\Classes\txtfile\shell\open\command] '' = '%WINDIR%\SysWow64\explore.exe'
- Диспетчера задач (Taskmgr)
- Редактора реестра (RegEdit)
- %WINDIR%\syswow64\explore.exe
- %HOMEPATH%\desktop\d.exe
- %HOMEPATH%\desktop\9.exe
- %HOMEPATH%\desktop\6.exe
- %HOMEPATH%\desktop\3.exe
- %HOMEPATH%\desktop\3ff.exe
- %HOMEPATH%\desktop\3fc.exe
- %HOMEPATH%\desktop\3f9.exe
- %HOMEPATH%\desktop\3f6.exe
- %HOMEPATH%\desktop\3f2.exe
- %HOMEPATH%\desktop\3ef.exe
- %HOMEPATH%\desktop\3ec.exe
- %HOMEPATH%\desktop\3e9.exe
- %HOMEPATH%\desktop\3e5.exe
- %HOMEPATH%\desktop\10.exe
- %HOMEPATH%\desktop\3e2.exe
- %HOMEPATH%\desktop\3dc.exe
- %HOMEPATH%\desktop\3d8.exe
- %HOMEPATH%\desktop\3d5.exe
- %HOMEPATH%\desktop\3d2.exe
- %HOMEPATH%\desktop\3ce.exe
- %HOMEPATH%\desktop\3cb.exe
- %HOMEPATH%\desktop\3c8.exe
- %HOMEPATH%\desktop\3c5.exe
- %HOMEPATH%\desktop\3c1.exe
- %HOMEPATH%\desktop\3be.exe
- %HOMEPATH%\desktop\3bb.exe
- %HOMEPATH%\desktop\3b8.exe
- %HOMEPATH%\desktop\3b4.exe
- %HOMEPATH%\desktop\3df.exe
- %HOMEPATH%\desktop\13.exe
- 'ss#.##static.com':443
- DNS ASK ss#.##static.com