Техническая информация
- '<SYSTEM32>\Setup\~~00lz.exe' -iii
- '%WINDIR%\Temp\bypass.exe'
- '<SYSTEM32>\wbem\mdm_go84.exe'
- <SYSTEM32>\RWDSK16.DLL
- <SYSTEM32>\RWDSKD32.DLL
- <SYSTEM32>\RWDSKDLL.DLL
- <SYSTEM32>\Setup\~~00lz.exe
- <DRIVERS>\bcd0000000000.dll
- %WINDIR%\Njorth.bin
- <SYSTEM32>\ExtDLL32.DLL
- <SYSTEM32>\wbem\mdm_go84.exe
- <SYSTEM32>\wbem\srvany.exe
- <SYSTEM32>\wbem\instsrv.exe
- <SYSTEM32>\ExtDLL.DLL
- <SYSTEM32>\~~0sta.DLL
- %WINDIR%\Temp\bypass.exe
- '61.###.14.181,1809':445
- '61.##3.14.181':1809
- '11#.#0.161.57':30308
- DNS ASK 61.###.14.181,1809
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'