Техническая информация
- 'C:\smess.exe'
- '%TEMP%\Temp\wgfmdx.exe'
- '%TEMP%\Temp\rundll32.exe'
- '<SYSTEM32>\cmd.exe' /c ""C:\heboy.bat" "
- '%WINDIR%\explorer.exe' C:\heboy.bat
- %WINDIR%\rew.bmp
- %WINDIR%\chku.bmp
- C:\smess.exe
- %WINDIR%\lpkreal.dll
- C:\helboy.bmp
- %TEMP%\Temp\wgfmdx.exe
- %TEMP%\Temp\rundll32.exe
- %WINDIR%\rxing.bat
- %WINDIR%\zhh.bmp
- %WINDIR%\config.dat
- %WINDIR%\rxing.bat в %WINDIR%\lpk.dll
- C:\helboy.bmp в C:\heboy.bat
- DNS ASK ��###
- DNS ASK ns.###3-domain.com
- 'ns.###3-domain.com':8000
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: '' WindowName: ''