Техническая информация
- <SYSTEM32>\wscript.exe "%APPDATA%\MyFolder\tmp6.vbs" 0
- <SYSTEM32>\svchost.exe
- <SYSTEM32>\svchost.exe
- %TEMP%\dw.log
- %TEMP%\29A61.dmp
- %APPDATA%\MyFolder\GoogleUpdate.ram
- %APPDATA%\MyFolder\tmp6.vbs
- 'br####.no-ip.org':1604
- DNS ASK br####.no-ip.org
- ClassName: 'Shell_TrayWnd' WindowName: ''