Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\svchost.exe
- '%HOMEPATH%\Start Menu\Programs\Startup\svchost.exe'
- '<Текущая директория>\TCM.v8.51a.exe'
- '%TEMP%\TCM.v8.51a.exe'
- '<SYSTEM32>\ping.exe' 0
- [<HKCU>\SOFTWARE\Ghisler\Total Commander]
- [<HKCU>\SOFTWARE\Ghisler\Windows Commander]
- [<HKLM>\SOFTWARE\Ghisler\Total Commander]
- [<HKLM>\SOFTWARE\Ghisler\Windows Commander]
- %TEMP%\OvSystemset
- <Текущая директория>\TCM.v8.51a.exe
- %TEMP%\TCM.v8.51a.exe
- 'localhost':1200
- 'pa###bin.com':80
- pa###bin.com/raw.php?i=########
- DNS ASK pa###bin.com
- ClassName: 'Shell_TrayWnd' WindowName: ''