Техническая информация
- %WINDIR%\explorer.exe
- <SYSTEM32>\rundll32.exe "%TEMP%\8HPmKgdb.dll," AgereEventlog BluetoothGLcdrom
- <SYSTEM32>\rundll32.exe "%TEMP%\Jftb7xXv.dll,DllUnregisterServer" install
- %TEMP%\bXmjf7qN
- %TEMP%\8HPmKgdb.dll
- %TEMP%\nsh2.tmp\SelfDel.dll
- %TEMP%\Jftb7xXv.dll
- %TEMP%\nsh2.tmp\GetVersion.dll
- %TEMP%\nsh2.tmp\System.dll
- %TEMP%\nsh2.tmp\inetc.dll
- %TEMP%\nsh2.tmp\SelfDel.dll
- %TEMP%\nsh2.tmp\System.dll
- %TEMP%\nsh2.tmp\GetVersion.dll
- %TEMP%\nsh2.tmp\inetc.dll
- 'up#####.beimahench.co.cc':80
- up#####.beimahench.co.cc/vxC3qfPk/Az2mfHAWCojBOpZcBzNpnD6YMnrul88lUeFkOJsq/Luo5rl
- up#####.beimahench.co.cc/tvknYVPwB79cxDw5TgMHH5Tkx7FhxYRlWzRi17jL8d7reNqlztANtQPP0nSCqOYtli4T4aYMcGftq0gy0JZchC/DaPpONeCO3MZuUhZRTPE=
- up#####.beimahench.co.cc/6K9VvBpNRnz7Torz1Y9wlL34ijOSlAkSo35UWqxfRbvlpSWjB+O8ZeEJY+lWIbTMwQQ6Jt10mxSky6ZP
- DNS ASK up#####.beimahench.co.cc
- ClassName: '#32770' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''