Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'note.exe' = '<SYSTEM32>\note.exe'
- %WINDIR%\IFinst27.exe -IC:\ЖГ±иЖРДЎ.exe
- <SYSTEM32>\note.exe
- C:\server_npse.exe
- C:\ЖГ±иЖРДЎ.exe
- %TEMP%\_if2.tmp
- <SYSTEM32>\note.exe
- %WINDIR%\IFinst27.exe
- C:\server_npse.exe
- C:\ЖГ±иЖРДЎ.exe
- '11#.#.119.41':1515
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'IFBG' WindowName: '???????? -by??????- ????'