Техническая информация
- %APPDATA%\microsoft\windows\start menu\programs\startup\windowsupatetmpc13bd6e2.vbs
- %APPDATA%\microsoft\libbcpt.dll
- %TEMP%\window.tmp
- %APPDATA%\log.file
- http://80.##1.6.227/admin/post.php
- http://80.##1.6.227/admin/register.php
- ClassName: '' WindowName: 'dWinlock trial version'
- ClassName: '' WindowName: 'G-Buster Browser Defense - Service'
- ClassName: '' WindowName: 'Aplicativo ItaГє'