Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'OJJLEAHFAILJHGM' = '%TEMP%\system.exe'
- %TEMP%\6SENSE.exe
- %TEMP%\system.exe
- C:\6SENSE_SETUP.exe
- C:\install.bat
- C:\6SENSE_INSTALLER.exe
- %TEMP%\system.exe
- ClassName: 'EDIT' WindowName: ''
- '%TEMP%\6SENSE.exe'
- 'C:\6SENSE_SETUP.exe'
- 'C:\6SENSE_INSTALLER.exe' -p1 -dc:\
- '<SYSTEM32>\cmd.exe' /c ""c:\install.bat" "