Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'RNJEU' = 'regsvr32.exe /s "%APPDATA%\img.jpg" #ju45thdfghjkje'
- '<SYSTEM32>\regsvr32.exe' /s "%APPDATA%\img.jpg" #ju45thdfghjkje
- %APPDATA%\CRNJEUFUc.jpg
- %APPDATA%\img.jpg
- %APPDATA%\id
- '17#.#88.2.173':80
- 17#.#88.2.173/dinom10/infx/s1/conta.php?ch################################################################################################
- 17#.#88.2.173/dinom10/dn04.html
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''