Техническая информация
- <SYSTEM32>\rundll32.exe 816.vir main
- <SYSTEM32>\cmd.exe /c ""%PROGRAM_FILES%\%Program Files%\cest.bat""
- %PROGRAM_FILES%\%Program Files%\Cest.bat
- %PROGRAM_FILES%\%Program Files%\~
- %PROGRAM_FILES%\%Program Files%\816.vir
- %PROGRAM_FILES%\%Program Files%\ntldr.SYS
- %PROGRAM_FILES%\%Program Files%\laass.exe
- %PROGRAM_FILES%\%Program Files%\363.VBS
- C:\ntldr.SYS
- 'an#####2000.3322.org':1860
- DNS ASK an#####2000.3322.org