Техническая информация
- %TEMP%\ckznfsryelf.js
- %TEMP%\gxuvqse_3638.exe
- %TEMP%\gxuvqse_3130.exe
- %TEMP%\gxuvqse_51193.exe
- http://cl###ghts.com/vHFCzK
- http://st####fit.com.br/i3Dvy5
- http://dr###nex.com/w9IjYE
- http://op##6.ru/q5p7uL
- http://wb####online.com/lKUYSO
- http://po####irect.net.au/XMxmTv
- http://lk###estige.com/aR8LBr
- http://av###ix.com.br/mgw1Z9
- http://st######tjewellery.co.uk/Wgb1kc
- http://nu####vitamins.ca/twZLMm
- http://me####plyonline.com/8Y9Z1a
- http://ze####dscape.com.sg/IH0gsp
- http://ae####ant.com.br/D0d34W
- http://se#########74-248-139.live-servers.net/fNgOsU
- http://ph###onlamp.com/mqSfkV
- http://tr####fetygear.ca/yNCap9
- DNS ASK cl###ghts.com
- DNS ASK se#########74-248-139.live-servers.net
- DNS ASK ba##aaz.com
- DNS ASK ae####ant.com.br
- DNS ASK ze####dscape.com.sg
- DNS ASK me####plyonline.com
- DNS ASK co#####rmuseumbd.com
- DNS ASK st##-tex.ru
- DNS ASK nu####vitamins.ca
- DNS ASK st######tjewellery.co.uk
- DNS ASK av###ix.com.br
- DNS ASK lk###estige.com
- DNS ASK mr####online.com
- DNS ASK po####irect.net.au
- DNS ASK fa####racelets.com
- DNS ASK in####brasil.com.br
- DNS ASK me#####ilavsiparisi.com
- DNS ASK pr##lnz.com
- DNS ASK le######cyandsupply.com.sg
- DNS ASK wb####online.com
- DNS ASK op##6.ru
- DNS ASK ro####egmeals.com
- DNS ASK sa####yonline.com
- DNS ASK dr###nex.com
- DNS ASK zi######gento.dealopia.com
- DNS ASK st####fit.com.br
- DNS ASK ph###onlamp.com
- DNS ASK tr####fetygear.ca
- '<SYSTEM32>\wscript.exe' %TEMP%\CKzNfsRyELF.js