Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run] 'Service32' = '%WINDIR%\smss.exe'
- %WINDIR%\uno.exe
- %WINDIR%\police.exe
- C:\Shell.exe
- %WINDIR%\smss.exe
- %WINDIR%\Explorer.EXE
- %WINDIR%\police.exe
- C:\Shell.exe
- %WINDIR%\smss.exe
- %WINDIR%\uno.exe
- %WINDIR%\loadfile.bin
- 'im#####ry.no-ip.info':7777
- DNS ASK im#####ry.no-ip.info
- ClassName: 'Shell_TrayWnd' WindowName: ''