Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'RNJEU' = 'regsvr32.exe /s "%APPDATA%\img.jpg" #jktuyjfghfg'
- '<SYSTEM32>\regsvr32.exe' /s "%APPDATA%\img.jpg" #jktuyjfghfg
- %APPDATA%\CRNJEUFUc.jpg
- %APPDATA%\img.jpg
- %APPDATA%\id
- '20#.#8.201.6':80
- 20#.#8.201.6/mutam10/infx/s1/conta.php?ch################################################################################################
- 20#.#8.201.6/mutam10/m4x2.html
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''