Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'SysWIMusic' = 'rundll32.exe "<LS_APPDATA>\NativeNetServ\SysWIMusic.dll",userMouselink DirectnetServ'
- %TEMP%\is-C1MU9.tmp\lan-speed-test-2-2.0.6.tmp /SL5="$300CE,132946,54272,%TEMP%\lan-speed-test-2-2.0.6.exe"
- %TEMP%\lan-speed-test-2-2.0.6.exe
- <SYSTEM32>\rundll32.exe "<LS_APPDATA>\NativeNetServ\SysWIMusic.dll",userMouselink DirectnetServ
- <SYSTEM32>\rundll32.exe "%TEMP%\WdCommondll32.dll", userMouselink MSNNetclass
- %TEMP%\lan-speed-test-2-2.0.6.log
- %TEMP%\is-CBOEH.tmp\_isetup\_shfoldr.dll
- <LS_APPDATA>\NativeNetServ\SysWIMusic.dll
- %TEMP%\WdCommondll32.dll
- %TEMP%\nsf2.tmp\NSISdl.dll
- %TEMP%\lan-speed-test-2-2.0.6.exe
- %TEMP%\is-CBOEH.tmp\_isetup\_RegDLL.tmp
- %TEMP%\is-C1MU9.tmp\lan-speed-test-2-2.0.6.tmp
- %TEMP%\nsf2.tmp\NSISdl.dll
- %TEMP%\WdCommondll32.dll
- 'st##rs.info':80
- st##rs.info/st/stin.php?sf###################################
- DNS ASK st##rs.info
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'SystemapiTray' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''