Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Base Filtering Engine Patcher' = '<LS_APPDATA>\KFAV\explorer-updater.exe'
- '<LS_APPDATA>\KFAV\ntservices.exe'
- '<LS_APPDATA>\KFAV\explorer-updater.exe'
- '<SYSTEM32>\netsh.exe' firewall add allowedprogram "<LS_APPDATA>\KFAV\explorer-updater.exe" "Base Filtering Engine Patcher" ENABLE
- <LS_APPDATA>\KFAV\ntservices.exe
- <LS_APPDATA>\KFAV\explorer-updater.exe
- DNS ASK so####ufandle.com
- DNS ASK ct###.#indowsupdate.com
- DNS ASK dn#.##ftncsi.com
- DNS ASK pa###safr.com
- DNS ASK cs######0-aia.verisign.com
- ClassName: 'Shell_TrayWnd' WindowName: ''