Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Daqjyns] 'ImagePath' = '<SYSTEM32>\svchost.exe -k imgsvc'
- [<HKLM>\SYSTEM\ControlSet001\Services\Daqjyns] 'Start' = '00000002'
- '<SYSTEM32>\svchost.exe' -k imgsvc
- %ProgramFiles%\Ejvi\Tgajsowta.jpg
- C:\NetTemp.ini
- %ProgramFiles%\Ejvi\Tgajsowta.jpg
- C:\NetTemp.ini
- C:\NetTemp.ini
- '11#.#0.92.242':6001