Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Windows Audio Driver' = '"<SYSTEM32>\audiohd.exe"'
- скрытых файлов
- '%CommonProgramFiles%\WUDHost.exe'
- '<SYSTEM32>\audiohd.exe'
- '<SYSTEM32>\conhost.exe' -x -s 1380
- '<SYSTEM32>\rundll32.exe' <SYSTEM32>\FirewallControlPanel.dll,ShowNotificationDialog /configure /ETOnly 0 /OnProfiles 6 /OtherAllowed 0 /OtherBlocked 0 /OtherEdgeAllowed 0 /NewBlocked 2 "<SYSTEM32>\audiohd.exe"
- %CommonProgramFiles%\WUDHost.exe
- <SYSTEM32>\audiohd.exe
- %CommonProgramFiles%\WUDHost.exe
- <SYSTEM32>\audiohd.exe
- DNS ASK www.to###oject.org
- DNS ASK dn#.##ftncsi.com
- '23#.#55.255.250':1900
- '<IP-адрес в локальной сети>':5351
- 'localhost':49918
- ClassName: 'Shell_TrayWnd' WindowName: ''