Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] '360safer' = '%WINDIR%\ime\alg.exe'
- '<SYSTEM32>\ping.exe' 127.1 -n 1
- '<SYSTEM32>\reg.exe' add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v 360safer /d %WINDIR%\ime\alg.exe /f
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\1.tmp\1.bat" "
- %TEMP%\1.tmp\alg.exe
- %TEMP%\1.tmp\1.bat
- %TEMP%\1.tmp\1.bat
- %TEMP%\1.tmp\alg.exe в %WINDIR%\ime\alg.exe