Техническая информация
- %APPDATA%\TP.dll
- %TEMP%\nsa2.tmp\AccessControl.dll
- <SYSTEM32>\ComBHO.dll
- %TEMP%\nsa2.tmp\System.dll
- %TEMP%\nsa2.tmp\inetc.dll
- %TEMP%\nsa2.tmp\nsRandom.dll
- <SYSTEM32>\ComBHO.dll
- <Полный путь к вирусу>
- %TEMP%\nsa2.tmp\nsRandom.dll
- %TEMP%\nsa2.tmp\System.dll
- %TEMP%\nsa2.tmp\AccessControl.dll
- %TEMP%\nsa2.tmp\inetc.dll
- %APPDATA%\TP.dll в %APPDATA%\owxss.dll
- 'up####.wblove.com':8899
- DNS ASK up####.wblove.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'