Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'TFM0N' = 'c:\EP324EP7U2EVUM7D\Wjvrr.exe'
- 'C:\EP324EP7U2EVUM7D\Wjvrr.exe'
- 'C:\cache\Install.exe'
- C:\EP324EP7U2EVUM7D\setting.xml
- C:\1.txt
- C:\cache\Install.exe
- %TEMP%\nsr2.tmp\Banner.dll
- C:\cache\Config.ini
- %TEMP%\nsr2.tmp\Banner.dll
- C:\cache\Install.exe в C:\EP324EP7U2EVUM7D\Wjvrr.exe
- C:\cache\Config.ini в C:\EP324EP7U2EVUM7D\Config.ini
- '98.##6.220.101':23456
- '11#.#4.196.132':10220
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''