Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\6uWlfxyS1R7QJKil3Vl.exe
- '%TEMP%\6uWlfxyS1R7QJKil3Vl.exe'
- '%HOMEPATH%\Local Settings\Tempd.exe'
- '%TEMP%\6uWlfxyS1R7QJKil3Vl.exe' (загружен из сети Интернет)
- %TEMP%\6uWlfxyS1R7QJKil3Vl.exe
- %HOMEPATH%\Local Settings\Tempd.exe
- %HOMEPATH%\Start Menu\Programs\Startup\6uWlfxyS1R7QJKil3Vl.exe
- 'rg##st.net':80
- 'wp#d':80
- rg##st.net/download/55988760/1828e6fa3f12063c8318b0cd7692a53463f0b1c9/rrrr.exe
- wp#d/wpad.dat
- DNS ASK rg##st.net
- DNS ASK wp#d