Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\RACOM+ Integration with SOAP.Net CLR] 'Start' = '00000002'
- '<SYSTEM32>\svchost.exe' -k "RACOM+ Integration with SOAP.Net CLR"
- ClassName: 'OLLYDBG' WindowName: '(null)'
- ClassName: 'FileMonClass' WindowName: '(null)'
- <Полный путь к вирусу>
- <SYSTEM32>\winet.dll
- '60.#.10.43':8011
- ClassName: '18467-41' WindowName: '(null)'