Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\RunOnce] 'Computer Helper' = '"\996926\helper.exe" -a /a'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Computer Helper' = '"\996926\helper.exe" -a /a'
- %HOMEPATH%\Start Menu\Programs\Startup\Google Chrome.vbs
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\co.bat" "
- <SYSTEM32>\svchost.exe
- C:\996926\helper.exe
- C:\53d39cab45de20d5f5fcdbb5ec69d0aa57cae84e
- %TEMP%\co.bat
- C:\53d39cab45de20d5f5fcdbb5ec69d0aa57cae84e
- %TEMP%\co.bat
- 'rm###3.ddns.net':5382
- DNS ASK rm###3.ddns.net
- ClassName: 'Indicator' WindowName: ''