Техническая информация
- '<SYSTEM32>\rundll32.exe' dfdts.dll,DfdGetDefaultPolicyAndSMART
- %TEMP%\CabAB61.tmp
- <LS_APPDATA>Low\Microsoft\CryptnetUrlCache\Content\8DFDF057024880D7A081AFBF6D26B92F
- <LS_APPDATA>Low\Microsoft\CryptnetUrlCache\MetaData\8DFDF057024880D7A081AFBF6D26B92F
- <LS_APPDATA>Low\Microsoft\CryptnetUrlCache\Content\62B5AF9BE9ADC1085C3C56EC07A82BF6
- <LS_APPDATA>Low\Microsoft\CryptnetUrlCache\MetaData\62B5AF9BE9ADC1085C3C56EC07A82BF6
- %WINDIR%\ServiceProfiles\NetworkService\AppData\Local\Temp\CabABB9.tmp
- %TEMP%\Cab2924.tmp
- %TEMP%\Tar2867.tmp
- %TEMP%\Cab2866.tmp
- %TEMP%\Tar6462.tmp
- %TEMP%\Cab6461.tmp
- %TEMP%\Tar2925.tmp
- %TEMP%\Tar6462.tmp
- %TEMP%\Cab6461.tmp
- %WINDIR%\ServiceProfiles\NetworkService\AppData\Local\Temp\CabABB9.tmp
- %TEMP%\CabAB61.tmp
- %TEMP%\Tar2867.tmp
- %TEMP%\Cab2866.tmp
- %TEMP%\Tar2925.tmp
- %TEMP%\Cab2924.tmp
- 'cs######0-crl.verisign.com':80
- 'ap#.##bwebget.com':80
- 'crl.verisign.com':80
- 'www.download.windowsupdate.com':80
- 'oc##.#erisign.com':80
- oc##.#erisign.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTSqZMG5M8TA9rdzkbCnNwuMAd5VgQUz5mp6nsm9EvJjo%2FX8AUm7%2BPSp50CEC3fCpGn0hCPl4vrJtRzS7o%3D
- cs######0-crl.verisign.com/CSC3-2010.crl
- crl.verisign.com/pca3-g5.crl
- www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab
- oc##.#erisign.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBS56bKHAoUD%2BOyl%2B0LhPg9JxyQm4gQUf9Nlp8Ld7LvwMAnzQzn6Aq8zMTMCEFIA5aolVvwahu2WydRLM8c%3D
- ap#.##bwebget.com/rs
- DNS ASK cs######0-crl.verisign.com
- DNS ASK ap#.##bwebget.com
- DNS ASK crl.verisign.com
- DNS ASK www.download.windowsupdate.com
- DNS ASK oc##.#erisign.com