Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\frvjmqb7.lnk
- '<SYSTEM32>\logonui.exe' /status /shutdown
- '%WINDIR%\regedit.exe' -s %ALLUSERSPROFILE%\Application Data\frvjmqb7.reg
- '<SYSTEM32>\rundll32.exe' %ALLUSERSPROFILE%\Application Data\7bqmjvrf.plz,GL300
- %ALLUSERSPROFILE%\Application Data\frvjmqb7.reg
- %ALLUSERSPROFILE%\Application Data\frvjmqb7.pff
- %ALLUSERSPROFILE%\Application Data\7bqmjvrf.plz
- %ALLUSERSPROFILE%\Application Data\frvjmqb7.reg
- '37.##9.53.199':80
- '64.##0.167.162':443
- ClassName: 'StatusWindowClass' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: '(null)' WindowName: '(null)'
- ClassName: 'RegEdit_RegEdit' WindowName: '(null)'