Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'xm_Shell' = '%HOMEPATH%\xm_vgce.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%WINDIR%\explorer.exe' = '%WINDIR%\explorer.exe:*:Enabled:Windows Explorer'
- <SYSTEM32>\dwwin.exe
- <Служебный элемент>
- %HOMEPATH%\xm_vgce.exe
- '81.##.241.241':80
- 81.##.241.241/office/options.cgi?us######################################################################################
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: ''
- ClassName: 'Indicator' WindowName: ''