Техническая информация
- [<HKCU>\SYSTEM\CurrentControlSet\Services\1B1DFFC9] 'ImagePath' = '<SYSTEM32>\4C02D9C8.EXE -d'
- [<HKLM>\SYSTEM\ControlSet001\Services\1B1DFFC9] 'ImagePath' = '<SYSTEM32>\4C02D9C8.EXE -d'
- [<HKLM>\SYSTEM\ControlSet001\Services\1B1DFFC9] 'Start' = '00000002'
- <SYSTEM32>\4C02D9C8.EXE -d
- <SYSTEM32>\cmd.exe /c <SYSTEM32>\delmep.bat
- <SYSTEM32>\cmd.exe /c <SYSTEM32>\ggkb.bat
- <SYSTEM32>\winlogon.exe
- <SYSTEM32>\4102A806.DLL
- <SYSTEM32>\delmep.bat
- <SYSTEM32>\ggkb.bat
- <SYSTEM32>\4C02D9C8.EXE
- ClassName: '' WindowName: '?????????????????? 6.0: ????'