Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{101446A2-171E-5B55-F817-2E3C985C202B}] 'stubpath' = ''
- %WINDIR%\Explorer.EXE
- ClassName: '' WindowName: 'Registry Monitor - Sysinternals: www.sysinternals.com'
- ClassName: '' WindowName: 'File Monitor - Sysinternals: www.sysinternals.com'
- ClassName: '' WindowName: 'Process Monitor - Sysinternals: www.sysinternals.com'
- %PROGRAM_FILES%\Windox\Windo.exe
- <Полный путь к вирусу>-up.txt
- 'pr####as.zapto.org':85
- DNS ASK pr####as.zapto.org
- ClassName: '' WindowName: 'The Wireshark ^etwork Analyzer'