Техническая информация
- %WINDIR%\explorer.exe
- <SYSTEM32>\rundll32.exe %TEMP%\8fLV2ZvY.dll, AgereEventlog BluetoothGLcdrom
- <SYSTEM32>\rundll32.exe %TEMP%\4zd9XVxt.dll,DllUnregisterServer install
- %TEMP%\CygDQW7X
- %TEMP%\8fLV2ZvY.dll
- %TEMP%\nsq2.tmp\SelfDel.dll
- %TEMP%\4zd9XVxt.dll
- %TEMP%\nsq2.tmp\GetVersion.dll
- %TEMP%\nsq2.tmp\System.dll
- %TEMP%\nsq2.tmp\inetc.dll
- %TEMP%\nsq2.tmp\SelfDel.dll
- %TEMP%\nsq2.tmp\System.dll
- %TEMP%\nsq2.tmp\GetVersion.dll
- %TEMP%\nsq2.tmp\inetc.dll
- 'up#####5.chroslop.ce.ms':80
- up#####5.chroslop.ce.ms/zdGhgHM9Q8ElHGhNzNauvkN1dXc/BH5mrC2WSq5YirM93ekFip8gfpV3
- up#####5.chroslop.ce.ms/HXkrPmnMxOLyW9A6T6aUyCWu0NMJK/ifiGCKP96JB2tOE10fXGDIl6DIDxEESX4amuFJ8/6/Ff8UGF+gsTg30uuGbCGl8SflngMwiROUC9Y=
- up#####5.chroslop.ce.ms/pgrTwfbGrBNkqaJS4voNNhMEp6hLXQm5jpcgQtdKuBVdr7GvgqGPAqdoSjH7u7bdfXxwFUiYQXBvLAQP
- DNS ASK up#####5.chroslop.ce.ms
- '<IP-адрес в локальной сети>':1037
- ClassName: '#32770' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''