Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'explorer' = '%WINDIR%\svchost.com'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'explorer' = '%WINDIR%\svchost.com'
- %WINDIR%\pckl
- %WINDIR%\svchost.com
- '93.##8.134.11':25
- DNS ASK sm##.yandex.ru
- ClassName: 'Indicator' WindowName: ''