Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '{AB1F3E47-AEF1-400E-A108-233A046C3A34}' = '%ALLUSERSPROFILE%\Oracle\java.exe'
- %WINDIR%\explorer.exe
- %ALLUSERSPROFILE%\oracle\java.exe
- %TEMP%\{f9ed2351-fdbc-4b5b-9d45-23a0cb28b0c0}
- %TEMP%\{f9ed2351-fdbc-4b5b-9d45-23a0cb28b0c0}
- %TEMP%\{f9ed2351-fdbc-4b5b-9d45-23a0cb28b0c0}
- DNS ASK x.####retail.com
- '<SYSTEM32>\svchost.exe'
- '%WINDIR%\explorer.exe'