Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'task' = '%WINDIR%\tasks\conime.exe'
- %WINDIR%\Tasks\conime.exe
- %WINDIR%\Tasks\conime.exe
- %TEMP%\ma28.exe
- <SYSTEM32>\rundll32.exe <SYSTEM32>\shimgvw.dll,ImageView_Fullscreen %TEMP%\§І§а§Щ§С §Х§Э§с §Э§р§Т§Ъ§Ю§н§з §Ш§Ц§Я§л§Ъ§Я.JPG
- %TEMP%\§І§а§Щ§С §Х§Э§с §Э§р§Т§Ъ§Ю§н§з §Ш§Ц§Я§л§Ъ§Я.JPG
- %TEMP%\ma28.exe
- %TEMP%\ieTempEc.dat
- '61.##.202.198':80
- 61.##.202.198/login/admin_ru.asp
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'ShImgVw:CPreviewWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''