Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\ntsvc64.lnk
- %TEMP%\iexplore.exe %TEMP%\438386.dll,start
- %TEMP%\iexplore.exe
- %TEMP%\438386.dll
- 'www.cc###t5942.com':80
- www.cc###t5942.com/add.php
- DNS ASK www.cc###t5942.com
- ClassName: 'Shell_TrayWnd' WindowName: ''