Техническая информация
- [<HKCU>\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] 'shell' = '%AppData%\Windows\sidebar.exe,explorer.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'TCP Service' = ''
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] 'TCP Service' = ''
- %HOMEPATH%\Start Menu\Programs\Startup\Windows.lnk
- Диспетчера задач (Taskmgr)
- '%HOMEPATH%\backupnovembernano.exe'
- %HOMEPATH%\vid-11-01-2014-w001wrcs.mp4
- %APPDATA%\23EF5514-3059-436F-A4A7-4CEFAAB20EB1\run.dat
- %APPDATA%\Windows\sidebar.exe
- %HOMEPATH%\backupnovembernano.exe
- 'na#####ewb.linkpc.net':9191
- DNS ASK na#####ewb.linkpc.net
- ClassName: 'Indicator' WindowName: ''