Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'upWinsystem' = '%WINDIR%\poke.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Rsystem' = '%WINDIR%\Astry.exe'
- %WINDIR%\poke.exe
- %WINDIR%\Astry.exe
- 'localhost':1037
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: '' WindowName: 'M7F757GA:D1DF:210F:ED8A:D4A4A90C038B'
- ClassName: 'Shell_TrayWnd' WindowName: ''