Техническая информация
- '%HOMEPATH%\realsched'
- '<SYSTEM32>\svchost.exe'
- '<SYSTEM32>\schtasks.exe' /Create /TN "Update\google update" /XML "%TEMP%\aBBBBB.xml"
- <SYSTEM32>\svchost.exe
- <SYSTEM32>\Tasks\Update\google update
- %HOMEPATH%\realsched
- %TEMP%\chrome.exe
- %TEMP%\aBBBBB.xml
- %TEMP%\chrome.exe
- %HOMEPATH%\realsched
- %TEMP%\aBBBBB.xml
- '80.#4.52.45':80
- http://80.##.52.45:80//Amon/gate.php via 80.#4.52.45
- ClassName: '#32770' WindowName: 'Windows Task Manager'