Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'senrmodk70.exe' = '"%APPDATA%\835E2D3CF44000EFC11EDC3621FB3C65\senrmodk70.exe"'
- %HOMEPATH%\Start Menu\Programs\Startup\Zentom System Guard.lnk
- %APPDATA%\835E2D3CF44000EFC11EDC3621FB3C65\senrmodk70.exe 7070010300
- %HOMEPATH%\Start Menu\Programs\Zentom System Guard\Zentom System Guard.lnk
- %HOMEPATH%\Start Menu\Zentom System Guard.lnk
- %APPDATA%\Microsoft\Internet Explorer\Quick Launch\Zentom System Guard.lnk
- %HOMEPATH%\Start Menu\Programs\Zentom System Guard\Uninstall.lnk
- %HOMEPATH%\Desktop\Zentom System Guard.lnk
- %APPDATA%\835E2D3CF44000EFC11EDC3621FB3C65\enemies-names.txt
- %APPDATA%\835E2D3CF44000EFC11EDC3621FB3C65\senrmodk70.exe
- %APPDATA%\835E2D3CF44000EFC11EDC3621FB3C65\hookdll.dll
- %APPDATA%\835E2D3CF44000EFC11EDC3621FB3C65\local.ini
- 'se##or.in':80
- se##or.in/index.php?pr###################################################################################################
- se##or.in/
- DNS ASK s.##edor.in
- DNS ASK se##or.in
- '<IP-адрес в локальной сети>':1034
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'msctls_updown32' WindowName: ''
- ClassName: 'Indicator' WindowName: ''