Техническая информация
- %WINDIR%\explorer.exe
- <SYSTEM32>\rundll32.exe "%TEMP%\kRfxNVH4.dll," CdapiInit QuickAuthenticationNotifier
- <SYSTEM32>\rundll32.exe "%TEMP%\fg8qMnrk.dll,DllUnregisterServer" install
- %TEMP%\Mfp86mcr
- %TEMP%\kRfxNVH4.dll
- %TEMP%\nsy2.tmp\SelfDel.dll
- %TEMP%\fg8qMnrk.dll
- %TEMP%\nsy2.tmp\GetVersion.dll
- %TEMP%\nsy2.tmp\System.dll
- %TEMP%\nsy2.tmp\inetc.dll
- %TEMP%\nsy2.tmp\SelfDel.dll
- %TEMP%\nsy2.tmp\System.dll
- %TEMP%\nsy2.tmp\GetVersion.dll
- %TEMP%\nsy2.tmp\inetc.dll
- 'up######.todmewyns.co.cc':80
- up######.todmewyns.co.cc/qrcyC3YfQDtTPBs+B6HI1+LRuUPIS+ZmFpf09zNxL4xm7M5wDU+b8auQ
- up######.todmewyns.co.cc/Cv24QBMmrvZni+WHwBJFls4IHdh30vcPZVrm8fLiY4dmbJ1KnJ8f/VJ9NoJWHdApVbSnK6woCEfwuTSt3m8+dRL1wVH7X7vmPfBUtVASHC4=
- up######.todmewyns.co.cc/gnhwmG8ypeWMYybWODz/XWIt95kiIUzsa6MyjZYiHrm8qjhrQ7yyEyJ0seh15kwgwq4gBmjm6+J2eCrb
- DNS ASK up######.todmewyns.co.cc
- ClassName: '#32770' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''