Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360Tray.exe] 'debugger' = 'DisabledRun'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360sd.exe] 'debugger' = 'DisabledRun'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ekrn.exe] 'debugger' = 'DisabledRun'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\egui.exe] 'debugger' = 'DisabledRun'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360sd.exe] 'debugger' = '%WINDIR%\Tasks\360safe.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\inst.exe] 'debugger' = '%WINDIR%\Tasks\360safe.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360Tray.exe] 'debugger' = '%WINDIR%\Tasks\360safe.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360sd_se.exe] 'debugger' = '%WINDIR%\Tasks\360safe.exe'
- %WINDIR%\Tasks\360safe.exe
- %WINDIR%\Tasks\360safe.exe
- <Текущая директория>\afc9fe2f418b00a0.bat
- '12#.#72.237.15':74
- '<IP-адрес в локальной сети>':139
- '<IP-адрес в локальной сети>':80
- '<IP-адрес в локальной сети>':445
- 'localhost':1035