Техническая информация
- '<SYSTEM32>\rundll32.exe' dfdts.dll,DfdGetDefaultPolicyAndSMART
- %TEMP%\CabCFC2.tmp
- <LS_APPDATA>Low\Microsoft\CryptnetUrlCache\Content\8DFDF057024880D7A081AFBF6D26B92F
- <LS_APPDATA>Low\Microsoft\CryptnetUrlCache\MetaData\8DFDF057024880D7A081AFBF6D26B92F
- <LS_APPDATA>Low\Microsoft\CryptnetUrlCache\Content\62B5AF9BE9ADC1085C3C56EC07A82BF6
- <LS_APPDATA>Low\Microsoft\CryptnetUrlCache\MetaData\62B5AF9BE9ADC1085C3C56EC07A82BF6
- %WINDIR%\ServiceProfiles\NetworkService\AppData\Local\Temp\CabD01A.tmp
- %TEMP%\Cab4C7C.tmp
- %TEMP%\Tar4BFE.tmp
- %TEMP%\Cab4BFD.tmp
- %TEMP%\Tar87F8.tmp
- %TEMP%\Cab87E8.tmp
- %TEMP%\Tar4C7D.tmp
- %TEMP%\Tar87F8.tmp
- %TEMP%\Cab87E8.tmp
- %WINDIR%\ServiceProfiles\NetworkService\AppData\Local\Temp\CabD01A.tmp
- %TEMP%\CabCFC2.tmp
- %TEMP%\Tar4BFE.tmp
- %TEMP%\Cab4BFD.tmp
- %TEMP%\Tar4C7D.tmp
- %TEMP%\Cab4C7C.tmp
- 'cs######0-crl.verisign.com':80
- 'ap#.##bconnect.co':80
- 'crl.verisign.com':80
- 'www.download.windowsupdate.com':80
- 'oc##.#erisign.com':80
- oc##.#erisign.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTSqZMG5M8TA9rdzkbCnNwuMAd5VgQUz5mp6nsm9EvJjo%2FX8AUm7%2BPSp50CECcDPqqa%2FzmmmqMecBrJ1zE%3D
- cs######0-crl.verisign.com/CSC3-2010.crl
- crl.verisign.com/pca3-g5.crl
- www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab
- oc##.#erisign.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBS56bKHAoUD%2BOyl%2B0LhPg9JxyQm4gQUf9Nlp8Ld7LvwMAnzQzn6Aq8zMTMCEFIA5aolVvwahu2WydRLM8c%3D
- ap#.##bconnect.co/rs
- DNS ASK cs######0-crl.verisign.com
- DNS ASK ap#.##bconnect.co
- DNS ASK crl.verisign.com
- DNS ASK www.download.windowsupdate.com
- DNS ASK oc##.#erisign.com