Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'b594996374aa09b5869f6b97a8c7d974' = '%APPDATA%\Microsoft\winupdate.exe'
- %APPDATA%\microsoft\windows\start menu\programs\startup\winupdate.exe
- %WINDIR%\serviceprofiles\localservice\appdata\roaming\microsoft\upnp device host\upnphost\udhisapi.dll
- %TEMP%\1.exe
- %TEMP%\isiti.mkv
- %APPDATA%\microsoft\winupdate.exe
- %APPDATA%\microsoft\winupdate.exe
- %APPDATA%\microsoft\windows\start menu\programs\startup\winupdate.exe
- DNS ASK mi###eminer.tk
- '23#.#55.255.250':1900
- ClassName: 'EDIT' WindowName: ''
- ClassName: '\MSITPro::EventQueue' WindowName: ''
- ClassName: 'Type32_Main_Window' WindowName: ''
- ClassName: 'WMPlayerApp' WindowName: ''
- '%TEMP%\1.exe'
- '%ProgramFiles(x86)%\windows media player\wmplayer.exe' /Play -Embedding
- '%ProgramFiles(x86)%\windows media player\setup_wm.exe' /SysTrayAndQuit