Техническая информация
- <SYSTEM32>\notepad.exe <Текущая директория>\<Имя вируса>.txt
- <SYSTEM32>\svchost.exe
- <SYSTEM32>\svchost.exe
- <Текущая директория>\<Имя вируса>.txt
- <LS_APPDATA>\gwqowrtv.exe
- '10#.#35.252.2':8088
- '14#.#2.168.76':8080
- '46.##5.143.110':8080
- '81.##.248.152':8080
- '74.##7.61.123':8080
- '12#.#55.18.53':8080
- '21#.#29.106.32':8088
- '87.##6.51.52':8080
- '91.##1.28.146':8080
- '93.##5.30.232':8080
- '50.##5.116.201':8088
- '91.##1.238.46':8080
- '91.##1.140.40':8080
- '11#.#7.15.13':8080
- '84.##.176.36':8080
- '94.##.193.229':8080
- '95.##0.203.241':8080
- '21#.#1.63.194':8080
- ClassName: 'Shell_TrayWnd' WindowName: ''