Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'effaacefaabebgfdgfdgdfg' = '"%ALLUSERSPROFILE%\Application Data\effaacefaabebgfdgfdgdfg.exe"'
- %WINDIR%\Explorer.EXE
- %ALLUSERSPROFILE%\Application Data\effaacefaabebgfdgfdgdfg.exe
- %TEMP%\dddddddd.txt
- 'me##onf.ru':443
- 'ye###rconf.ru':443
- 'ne###reamer.ru':443
- DNS ASK me##onf.ru
- DNS ASK ye###rconf.ru
- DNS ASK ne###reamer.ru
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''