Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\storage] 'Start' = '00000002'
- %TEMP%\info.exe
- <SYSTEM32>\svchost.exe -k storage
- %WINDIR%\inf\isvc.PNF
- %TEMP%\MarketingConsulting.doc
- %WINDIR%\Temp\STZC.TMP
- %TEMP%\info.exe
- <SYSTEM32>\STRUNLIB.DLL
- 'kj#.#yndns.org':443
- '74.##5.232.51':80
- '61.##9.194.93':443
- 'sh####on.dyndns.org':443
- 'sh#####n.dyndns.info':443
- DNS ASK kj#.#yndns.org
- DNS ASK www.google.com
- DNS ASK sh#####n.dyndns.info
- DNS ASK sh####on.dyndns.org
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'WordPadClass' WindowName: ''