Техническая информация
- %WINDIR%\explorer.exe
- %TEMP%\nsn57e0.tmp
- %TEMP%\iwhad7m406luxttz
- %TEMP%\ks6vzl9vr1r2grgikjxx
- %TEMP%\nss5800.tmp\m2poq.dll
- 'la###dscans.com':80
- 'ca####rniahiker.com':80
- 'bo##66.com':80
- 'ma####wsmodems.com':80
- 'ho######ddigestemail.com':80
- 'pu##d.net':80
- DNS ASK la###dscans.com
- DNS ASK ca####rniahiker.com
- DNS ASK am###care.com
- DNS ASK bo##66.com
- DNS ASK ma####wsmodems.com
- DNS ASK ho######ddigestemail.com
- DNS ASK pu##d.net
- '%WINDIR%\syswow64\svchost.exe'
- '%WINDIR%\syswow64\rundll32.exe'
- '%WINDIR%\syswow64\cmd.exe' del "%WINDIR%\SysWOW64\svchost.exe"