Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '<SYSTEM32>\cmon\cmonitor.exe' = '<SYSTEM32>\cmon\cmonitor.exe:*:Enabled:ТЖ¶ЇјаїШ'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DoNotAllowExceptions' = '00000000'
- <SYSTEM32>\ntvdm.exe -f -i1
- <SYSTEM32>\regsvr32.exe /s /c <SYSTEM32>\cmon\cmonitorBar.dll
- %WINDIR%\Temp\scs2.tmp
- %WINDIR%\Temp\scs1.tmp
- <SYSTEM32>\cmon\cmonitor.exe
- %WINDIR%\Temp\scs2.tmp
- %WINDIR%\Temp\scs1.tmp
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-b78.b7c.370001'