Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Control\SecurityProviders] 'SecurityProviders' = 'msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, msbtoxkb.dll'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '<SYSTEM32>\rundll32.exe' = '<SYSTEM32>\rundll32.exe:*:Enabled:Run a DLL as an App'
- <SYSTEM32>\rundll32.exe "<SYSTEM32>\msbtoxkb.dll",DllRegisterServer
- <SYSTEM32>\msbtoxkb.dll
- DNS ASK tx#.###aincheker.info
- DNS ASK tx#.###aincheker.name