Техническая информация
- %TEMP%\nsz9bb6.tmp
- <DRIVERS>\etc\hosts-backup
- %TEMP%\nsu9c82.tmp\nsexec.dll
- %TEMP%\nsu9c82.tmp\registry.dll
- <DRIVERS>\etc\hosts-backup
- %TEMP%\nsu9c82.tmp\nsexec.dll
- %TEMP%\nsu9c82.tmp\registry.dll
- '%WINDIR%\syswow64\cmd.exe' /c "echo 127.0.0.1 www.ea###efi.com>> <DRIVERS>\etc\hosts"' (со скрытым окном)
- '%WINDIR%\syswow64\cmd.exe' /c "echo 127.0.0.1 www.ea###efi.com>> <DRIVERS>\etc\hosts"