Техническая информация
- '%TEMP%\RarSFX0\project.exe'
- '<SYSTEM32>\taskkill.exe' /F /IM steam.exe
- [<HKLM>\SOFTWARE\Valve\Steam]
- %TEMP%\RarSFX0\php5ts.dll
- %TEMP%\RarSFX0\myssfn.bat
- %TEMP%\RarSFX0\libeay32.dll
- %TEMP%\PSE20\e5d6358d644385c03fb567e95f9bf536\php.ini
- %TEMP%\RarSFX0\Rar.exe
- %TEMP%\RarSFX0\project.exe
- %TEMP%\RarSFX0\ext\php_curl.dll
- %TEMP%\RarSFX0\ssleay32.dll
- %TEMP%\RarSFX0\ssfn.dll
- %TEMP%\RarSFX0\data.dll
- %TEMP%\RarSFX0\ext\php_rar.dll
- %TEMP%\RarSFX0\ext\php_osinfo.dll
- 'sa####otov.esy.es':80
- sa####otov.esy.es/data.txt
- DNS ASK sa####otov.esy.es
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''