Техническая информация
- "%TEMP%\NrlMe.exe" (загружен из сети Интернет)
- [<HKCU>\Software\Paltalk]
- [<HKCU>\Software\Google\Google Talk\Accounts]
- ClassName: 'PROCMON_WINDOW_CLASS' WindowName: ''
- ClassName: 'gdkWindowToplevel' WindowName: ''
- %TEMP%\NrlMe.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\Bot[1].exe
- 'dl.##opbox.com':80
- 'localhost':1035
- dl.##opbox.com/u/34860079/Bot.exe
- DNS ASK dl.##opbox.com