Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Windows Live' = '%TEMP%\winini.exe'
- %TEMP%\winini.exe
- <SYSTEM32>\ping.exe 1.1.1.1 -n 1 -w 1000
- %TEMP%\winlogon.exe
- %TEMP%\dw.log
- %TEMP%\2B4EE.dmp
- %TEMP%\winini.exe
- %TEMP%\^fname^.exe
- %TEMP%\ieU.PNG
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''