Техническая информация
- %PROGRAM_FILES%\Microsoft.NaNianHuaKai\Hijack.exe
- <SYSTEM32>\ping.exe 127.1
- <SYSTEM32>\ping.exe -a 127.1
- <SYSTEM32>\cmd.exe /c "%TEMP%\\nResurrection.bat"
- %PROGRAM_FILES%\Microsoft.NaNianHuaKai\Google.res
- %PROGRAM_FILES%\Microsoft.NaNianHuaKai\Hijack.exe
- %TEMP%\nResurrection.bat