Техническая информация
- %APPDATA%\microsoft\windows\start menu\programs\startup\bitf186.tmp
- %WINDIR%\syswow64\nslookup.exe
- %TEMP%\nsj3442.tmp
- %TEMP%\myrtf.rtf
- %TEMP%\winds_ico.png
- %TEMP%\metoo.dll
- %TEMP%\nse350e.tmp\system.dll
- %PROGRAMDATA%\dxwzx.bmp
- %APPDATA%\microsoft\windows\start menu\programs\startup\bitf186.tmp
- http://10#.#44.75.179/request
- '%WINDIR%\syswow64\nslookup.exe'