Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\HeheHeromei] 'Start' = '00000002'
- <SYSTEM32>\svchost.exe -k netsvcs
- %WINDIR%\hehehero.txt
- %WINDIR%\hehehero.reg
- %PROGRAM_FILES%\he111187ro.hero
- %PROGRAM_FILES%\he109968ro.hero
- %WINDIR%\heheheroI.ini
- %WINDIR%\heheheroI.ini
- %WINDIR%\hehehero.reg
- %WINDIR%\hehehero.txt
- '12#.#36.168.76':1420
- ClassName: 'Shell_TrayWnd' WindowName: ''