Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'CTFM0N' = 'c:\E140812gmmh140812\MUpdate.exe c:\E140812gmmh140812\Lvrba.dll,ALSTS_ExecuteAction'
- 'C:\E140812gmmh140812\MUpdate.exe' "c:\E140812gmmh140812\Lvrba.dll",ALSTS_ExecuteAction
- '<SYSTEM32>\ping.exe' 127.0.0.1 -n 3
- C:\E140812gmmh140812\MUpdate.exe
- C:\E140812gmmh140812\RCX1.tmp
- C:\E140812gmmh140812\Lvrba.dll
- C:\E140812gmmh140812\Lvrba.dll
- C:\E140812gmmh140812\RCX1.tmp в C:\E140812gmmh140812\Lvrba.dll
- '17#.#39.177.250':3201
- '17#.#39.177.251':805
- ClassName: 'Indicator' WindowName: '(null)'