Техническая информация
- [<HKCU>\SYSTEM\CurrentControlSet\Services\kkduusfsd] 'ImagePath' = '<SYSTEM32>\kkduusfsd.exe -service'
- [<HKLM>\SYSTEM\ControlSet001\Services\kkduusfsd] 'ImagePath' = '<SYSTEM32>\kkduusfsd.exe -service'
- [<HKLM>\SYSTEM\ControlSet001\Services\kkduusfsd] 'Start' = '00000002'
- '<SYSTEM32>\hhfssdf.exe' snmh-9:cde?{zod`je'khk*eoc.
- '<SYSTEM32>\kkduusfsd.exe' -service
- '<SYSTEM32>\cmd.exe' /c <SYSTEM32>\KillMe.bat
- '<SYSTEM32>\cmd.exe' /c <SYSTEM32>\sd3sdd.bat
- %WINDIR%\Explorer.EXE
- <SYSTEM32>\winlogon.exe
- ClassName: 'AVP.Product_Notification' WindowName: '?????????????????? 6.0: ????'
- <SYSTEM32>\bkkdud.dll
- <SYSTEM32>\hhfssdf.exe
- <SYSTEM32>\KillMe.bat
- <SYSTEM32>\sd3sdd.bat
- <SYSTEM32>\kkduusfsd.exe
- 'localhost':1036
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'