Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{08B0E5JF-4FCB-11CF-AAA5-00401C6XX500}] 'StubPath' = 'c:\dir\install\install\server.exe Restart'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] 'Policies' = ''
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run] 'Policies' = ''
- C:\dir\install\install\server.exe
- %TEMP%\2.exe
- %TEMP%\1.exe
- %TEMP%\XX--XX--XX.txt
- C:\dir\install\install\server.exe
- %APPDATA%\logs.dat
- %TEMP%\UuU.uUu
- %TEMP%\XxX.xXx
- %TEMP%\2.exe
- %TEMP%\1.exe
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\CONFIG\security.config.cch.new
- <Текущая директория>\mytank.cfg
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.new
- %APPDATA%\logs.dat
- %TEMP%\UuU.uUu
- %TEMP%\XxX.xXx
- %TEMP%\XX--XX--XX.txt
- %TEMP%\1.exe
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch.new в %WINDIR%\Microsoft.NET\Framework\v2.0.50727\CONFIG\enterprisesec.config.cch
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\CONFIG\security.config.cch.new в %WINDIR%\Microsoft.NET\Framework\v2.0.50727\CONFIG\security.config.cch
- 'la####jo.zapto.org':81
- DNS ASK la####jo.zapto.org
- ClassName: 'Shell_TrayWnd' WindowName: ''