Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'SNU32' = '"%HOMEPATH%\My Documents\BinarySoft\snu.exe" -ga'
- скрытых файлов
- %HOMEPATH%\My Documents\BinarySoft\snu.exe -gp
- %HOMEPATH%\My Documents\BinarySoft\wtlex.exe
- %HOMEPATH%\My Documents\BinarySoft\snu.exe
- %HOMEPATH%\My Documents\BinarySoft\setfile.zip
- %HOMEPATH%\My Documents\BinarySoft\tnb.dll
- %HOMEPATH%\My Documents\BinarySoft\setfile.zip
- 'pi#####877.pnsweb.net':80
- pi#####877.pnsweb.net/install.asp?ma#########################
- DNS ASK pi#####877.pnsweb.net
- ClassName: 'SHELLDLL_DefView' WindowName: ''
- ClassName: 'SysListView32' WindowName: 'FolderView'
- ClassName: 'WorkerW' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''