Техническая информация
- [<HKCU>\SYSTEM\CurrentControlSet\Services\CBD19B7A] 'ImagePath' = '<SYSTEM32>\6A1C6123.EXE -a'
- [<HKLM>\SYSTEM\ControlSet001\Services\CBD19B7A] 'ImagePath' = '<SYSTEM32>\6A1C6123.EXE -a'
- [<HKLM>\SYSTEM\ControlSet001\Services\CBD19B7A] 'Start' = '00000002'
- <SYSTEM32>\6068B4DC.exe Hkjm&45x|da|z=ayeng}"hed'fbvsjl.
- <SYSTEM32>\6A1C6123.EXE -a
- <SYSTEM32>\cmd.exe /c <SYSTEM32>\delme.bat
- %WINDIR%\Explorer.EXE
- <SYSTEM32>\winlogon.exe
- <SYSTEM32>\delme.bat
- <SYSTEM32>\6068B4DC.exe
- <SYSTEM32>\6A1C6123.EXE
- <SYSTEM32>\61C1ECB.DLL
- 'localhost':1035