Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'msn' = '<SYSTEM32>\explorer.exe'
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{860AB9A3-130E-D9C9-046C-2A3B52DF2183}] 'StubPath' = '<SYSTEM32>\explorer.exe'
- %WINDIR%\Info Grabber.exe
- %WINDIR%\pi.exe
- %WINDIR%\Explorer.EXE
- msnmsgr.exe
- <SYSTEM32>\explorer.exe
- %WINDIR%\Info Grabber.exe
- %WINDIR%\pi.exe
- '<IP-адрес в локальной сети>':3460
- 'ha#####80.no-ip.info':3460
- 'sp#.#o-ip.biz':3460
- DNS ASK ha#####80.no-ip.info
- DNS ASK sp#.#o-ip.biz
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''