Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'PeekClient' = '%WINDIR%\Cursors\PeekClient.exe'
- %WINDIR%\Cursors\PeekClient.exe
- %TEMP%\1.tmp\FileControl.exe
- <SYSTEM32>\cmd.exe /c ""%TEMP%\1.tmp\install.bat" "
- %TEMP%\1.tmp\PeekClient.exe
- %WINDIR%\Cursors\PeekClient.exe
- %WINDIR%\Cursors\PeekClient.dat
- %TEMP%\1.tmp\PeekClient.dat
- %TEMP%\1.tmp\install.bat
- %TEMP%\1.tmp\FileControl.exe
- %TEMP%\1.tmp\Initialize.ini
- %WINDIR%\Cursors\PeekClient.dat
- %WINDIR%\Cursors\PeekClient.exe
- %TEMP%\1.tmp\PeekClient.dat
- %TEMP%\1.tmp\PeekClient.exe
- '18######u8asd.dyndns-ip.com':36404
- DNS ASK 18######u8asd.dyndns-ip.com
- ClassName: '' WindowName: '???? ??????????'
- ClassName: '' WindowName: '?????? ????????'
- ClassName: '' WindowName: '???? ????'
- ClassName: '' WindowName: '???? ????????'
- ClassName: '' WindowName: '???? ??????'
- ClassName: '' WindowName: '?????? ??????'
- ClassName: '' WindowName: '?????? 7????'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: '?????? ??????????'
- ClassName: '' WindowName: '?????? ?????????? ????'
- ClassName: '' WindowName: '????????2'