Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SecuriIC] 'ImagePath' = '<SYSTEM32>\navigsmod.exe -k netsvcs'
- [<HKLM>\SYSTEM\ControlSet001\Services\SecuriIC] 'ImagePath' = '<SYSTEM32>\navigsmod.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\SecuriIC] 'Start' = '00000002'
- '<SYSTEM32>\navigsmod.exe' -k netsvcs
- '<SYSTEM32>\pqulkbi.exe'
- 'C:\winlive\services.exe'
- '<SYSTEM32>\navigsmod.exe' /install /silent
- <SYSTEM32>\pqulkbi.exe
- <SYSTEM32>\jubmmlb.dll
- C:\winlive\services.exe
- <SYSTEM32>\navigsmod.exe
- C:\winlive\services.exe
- <SYSTEM32>\pqulkbi.exe
- 'localhost':53125