Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'conhost.exe' = '%APPDATA%\Microsoft\conhost.exe'
- '%APPDATA%\Microsoft\Windows\GoogleUpdate.exe'
- '%APPDATA%\Microsoft\conhost.exe'
- %APPDATA%\Microsoft\conhost.exe
- %APPDATA%\Microsoft\Windows\GoogleUpdate.exe
- %APPDATA%\Microsoft\Windows\Interop.TaskScheduler.dll
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- %APPDATA%\Microsoft\chrome.exe
- %APPDATA%\Microsoft\Windows\GoogleUpdate.exe
- %APPDATA%\Microsoft\Windows\Interop.TaskScheduler.dll
- %APPDATA%\Microsoft\chrome.exe
- %APPDATA%\Microsoft\conhost.exe
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- 'da##.##romeservices.org':80
- 'wp#d':80
- da##.##romeservices.org/i
- da##.##romeservices.org/c
- wp#d/wpad.dat
- da##.##romeservices.org/o
- DNS ASK da##.##romeservices.org
- DNS ASK ch####services.org
- DNS ASK www.google.com
- DNS ASK wp#d
- ClassName: 'Indicator' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'