Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Windows Update' = '%APPDATA%\RegSrvc32.exe'
- '%APPDATA%\RegSrvc32.exe'
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\111.bat" "
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\21821.bat" "
- %APPDATA%\RegSrvc32.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\333813243[1].jpg
- %TEMP%\21821.bat
- %TEMP%\111.bat
- %APPDATA%\RegSrvc32.exe
- 'www.7i##ge.ru':80
- www.7i##ge.ru/pics/0113/333813243.jpg
- DNS ASK www.7i##ge.ru
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''