Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Dfs] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\msnc] 'Start' = '00000002'
- %WINDIR%\cacls.exe
- <SYSTEM32>\Dfssvr.exe
- iexplore.exe
- <SYSTEM32>\Dfssvr.exe
- %WINDIR%\cacls.exe
- <SYSTEM32>\Dfssvr.exe
- %WINDIR%\Temp\ibsi.xml
- %WINDIR%\Temp\Tmp2.tmp
- %WINDIR%\dc.dll
- %WINDIR%\cacls.exe
- %WINDIR%\Temp\ibft.xml
- <DRIVERS>\filter.rar
- %TEMP%\Tmp1.tmp
- <DRIVERS>\msnc.sys
- %WINDIR%\Temp\filter.rar
- %WINDIR%\Temp\ibcm.xml
- %TEMP%\Tmp1.tmp
- %WINDIR%\Temp\Tmp2.tmp
- <DRIVERS>\filter.rar
- %WINDIR%\Temp\filter.rar
- 'sx.##wcell.cn':80
- sx.##wcell.cn/service.asmx
- DNS ASK sx.##wcell.cn
- ClassName: 'Shell_TrayWnd' WindowName: ''