Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\8ili28.lnk
- '<SYSTEM32>\rundll32.exe' %TEMP%\82ili8.dss,XL204
- '<SYSTEM32>\rundll32.exe' %ALLUSERSPROFILE%\Application Data\82ili8.dss,XL200
- %ALLUSERSPROFILE%\Application Data\8ili28.bxx
- %TEMP%\82ili8.dss
- %ALLUSERSPROFILE%\Application Data\82ili8.dss
- <SYSTEM32>\PerfStringBackup.TMP
- '37.##9.53.204':80