Техническая информация
- '<SYSTEM32>\rundll32.exe'
- '<SYSTEM32>\net1.exe' stop cryptsvc
- '<SYSTEM32>\sc.exe' delete cryptsvc
- '<SYSTEM32>\net.exe' stop cryptsvc
- '<SYSTEM32>\sc.exe' config cryptsvc start= disabled
- <SYSTEM32>\ksuser.dll
- <SYSTEM32>\dllcache\ksuser.dll
- <SYSTEM32>\chinasougou.ime
- %TEMP%\1366246323.dat
- <SYSTEM32>\DVR0034042.dll
- %TEMP%\1366246323.dat
- ClassName: 'CicLoaderWndClass' WindowName: ''