Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] 'DrvAnti' = '%PROGRAM_FILES%\Bdream\DrvAnti.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\Windwos] 'Start' = '00000002'
- <SYSTEM32>\pubwin.exe
- <SYSTEM32>\Com\serviceup.exe -install /silent
- <SYSTEM32>\cmd.exe /c "%PROGRAM_FILES%\Intel\runonce.bat"
- <SYSTEM32>\reg.exe ADD "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce" /V DrvAnti /T REG_SZ /D "%PROGRAM_FILES%\Bdream\DrvAnti.exe" /F
- <SYSTEM32>\net.exe stop "windwos"
- <SYSTEM32>\net1.exe stop "windwos"
- %PROGRAM_FILES%\Intel\runonce.bat
- <SYSTEM32>\pubwin.exe
- <SYSTEM32>\Com\serviceup.exe
- %PROGRAM_FILES%\Intel\runonce.bat
- <SYSTEM32>\Com\serviceup.exe
- 'gp###.3322.org':80
- gp###.3322.org/msc.ini
- DNS ASK gp###.3322.org
- '<IP-адрес в локальной сети>':1036
- ClassName: 'MS_WINHELP' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''