Техническая информация
- '%TEMP%\yjsz.exe'
- '%TEMP%\start.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'ProxyServer' = '192.168.1.100:808'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'ProxyEnable' = '00000001'
- %TEMP%\start.exe
- %TEMP%\del.bat
- %TEMP%\yjsz.exe
- ClassName: '' WindowName: 'CheckWD.exe'
- ClassName: '' WindowName: 'RGTray.exe'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: 'LanClt.exe'
- ClassName: '' WindowName: 'NetRGClt.exe'
- ClassName: '' WindowName: 'ConSvr.exe'