Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'MSConfig' = '"%HOMEPATH%\fspzgzns.exe"'
- '%HOMEPATH%\fspzgzns.exe'
- '<SYSTEM32>\ping.exe' 127.0.0.1
- '<SYSTEM32>\svchost.exe'
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\7451.bat" "
- <SYSTEM32>\svchost.exe
- %TEMP%\7451.bat
- %HOMEPATH%\fspzgzns.exe
- %HOMEPATH%\fspzgzns.exe
- '20#.#31.138.216':443
- ClassName: 'IZU%k.h9!Pf' WindowName: 'z2:'
- ClassName: 'Yzk&HE;M:!' WindowName: 'x*$>26o+gt'
- ClassName: 'Indicator' WindowName: ''
- ClassName: '%VS0&c4x>vdr@' WindowName: '*[u%aM1m NBA72'
- ClassName: 'xh/4*r:&][,u#MEc}?>a' WindowName: 'c;fB'
- ClassName: '&a(j U@J+P5>O^0/<;hzc' WindowName: '(U!,3FEbt;P%TA4*vaedf+Zz1@'
- ClassName: 'C0 <;wnrG$T/u' WindowName: 'O}FuMilHNK0L(6'
- ClassName: 'gDL<TtvW9kxS' WindowName: 'W{:5oSRO%+'
- ClassName: '1O&*5aeV{t7X2v' WindowName: 'p#?l'