Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'svchost.exe' = '%APPDATA%\Microsoft\svchost.exe'
- '%APPDATA%\Microsoft\svchost.exe'
- ClassName: 'PROCMON_WINDOW_CLASS' WindowName: ''
- ClassName: 'RegMonClass' WindowName: ''
- ClassName: 'FileMonClass' WindowName: ''
- %APPDATA%\Microsoft\svchost.exe
- %ALLUSERSPROFILE%\Application Data\TEMP:D56FBB0B
- %APPDATA%\Microsoft\svchost.exe
- '1j####.no-ip.org':3085
- DNS ASK 1j####.no-ip.org
- ClassName: 'Indicator' WindowName: ''