Техническая информация
- '%TEMP%\www.exe'
- '%WINDIR%\regedit.exe' /s %TEMP%\Fred\1.reg
- ClassName: 'PROCMON_WINDOW_CLASS' WindowName: '(null)'
- ClassName: 'RegMonClass' WindowName: '(null)'
- ClassName: 'FileMonClass' WindowName: '(null)'
- %TEMP%\Fred\1.reg
- %TEMP%\www.exe
- 'zi###r.zz.mu':80
- 'zi###r.zz.mu':21
- zi###r.zz.mu/ll/log.php?ke######################
- zi###r.zz.mu/log.php?ke######################
- DNS ASK zi###r.zz.mu
- ClassName: 'RegEdit_RegEdit' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'