Техническая информация
- <SYSTEM32>\net1.exe stop sharedaccess
- <SYSTEM32>\sc.exe config sharedaccess start= disabled
- <SYSTEM32>\net.exe stop sharedaccess
- firefox.exe
- %TEMP%\E_4\eAPI.fne
- <SYSTEM32>\wins\shay.exe
- %TEMP%\E_4\krnln.fnr
- %TEMP%\E_4\internet.fne
- 'su####08.27h.net':80
- 'su####07.27h.net':80
- 'su####09.27h.net':80
- 'su####12.27h.net':80
- 'su####11.27h.net':80
- 'su####06.27h.net':80
- 'su####02.27h.net':80
- 'su####01.27h.net':80
- 'su####03.27h.net':80
- 'su####05.27h.net':80
- 'su####04.27h.net':80
- su####08.27h.net/shay.exe
- su####07.27h.net/shay.exe
- su####09.27h.net/shay.exe
- su####12.27h.net/shay.exe
- su####11.27h.net/shay.exe
- su####06.27h.net/shay.exe
- su####02.27h.net/shay.exe
- su####01.27h.net/shay.exe
- su####03.27h.net/shay.exe
- su####05.27h.net/shay.exe
- su####04.27h.net/shay.exe
- DNS ASK su####08.27h.net
- DNS ASK su####07.27h.net
- DNS ASK su####09.27h.net
- DNS ASK su####12.27h.net
- DNS ASK su####11.27h.net
- DNS ASK su####06.27h.net
- DNS ASK su####02.27h.net
- DNS ASK su####01.27h.net
- DNS ASK su####03.27h.net
- DNS ASK su####05.27h.net
- DNS ASK su####04.27h.net
- ClassName: '' WindowName: 'configet.exe'
- ClassName: '' WindowName: 'ycss.exe'
- ClassName: '' WindowName: 'Privoxy.exe'
- ClassName: '' WindowName: 'firefox.exe'
- ClassName: '' WindowName: 'vvisit.exe'