Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'MicrosoftSys' = '<DRIVERS>\SPOOLSYS.EXE'
- '<DRIVERS>\SPOOLSYS.exe'
- Библиотека-обработчик для всех процессов: <DRIVERS>\mnsystem.dll
- <DRIVERS>\FILE88E6680F.BCK
- <DRIVERS>\Data\vmmlog64.TXT
- <DRIVERS>\Data\vmmlog64II.TXT
- <DRIVERS>\MNSYSTEM.dll
- <DRIVERS>\SPOOLSYS.exe
- '20#.#9.188.95':25
- ClassName: '(null)' WindowName: 'SPOOLSYS'
- ClassName: 'NDDEAgnt' WindowName: 'NetDDE Agent'
- ClassName: '(null)' WindowName: 'WinSpool'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'Indicator' WindowName: '(null)'