Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'EDMComp' = '%APPDATA%\EDMComp\Uedit64.exe'
- %APPDATA%\EDMComp\Uedit64.exe
- %APPDATA%\google\GoogleUpdate.exe
- %APPDATA%\EDMComp\Uedit64.exe
- %TEMP%\~DF3E75.doc
- <Текущая директория>\ka4281x3.log
- %APPDATA%\google\GoogleUpdate.exe
- %APPDATA%\google\GoogleUpdate.exe
- <Текущая директория>\ka4281x3.log
- 'ro###or.com8.tw':443
- DNS ASK ro###or.com8.tw
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'WordPadClass' WindowName: ''
- ClassName: 'Indicator' WindowName: ''