Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\ComnCena] 'Start' = '00000002'
- <SYSTEM32>\regsvr32.exe /s "%WINDIR%\BaLogeFinder.dll"
- <SYSTEM32>\cmd.exe /c <Текущая директория>\$$306609.bat
- <SYSTEM32>\regsvr32.exe /s "<SYSTEM32>\comnpvzpfldu.dll"
- <SYSTEM32>\svchost.exe -k ComnGrp
- %WINDIR%\Seftecniery.dll
- <Текущая директория>\$$306609.bat
- %WINDIR%\BaLogeFinder.dll
- %PROGRAM_FILES%\0298eb3300.dat
- <SYSTEM32>\comnpvzpfldu.dll
- ClassName: 'MS_WINHELP' WindowName: ''