Техническая информация
- '%TEMP%\18be6784_.exe' /in + /un /cb /rp /rf /mf /ai 14400 /ad 300 /pn "PriceLess" /sf /en 30 /path "#0\Supporter\Supporter.dll" /dn "Support PL 1.1" /prd "Supporter" /sn "Supporter" /pid 55643
- '%TEMP%\294823_.exe'
- '%TEMP%\18be6784_.exe' (загружен из сети Интернет)
- '%TEMP%\294823_.exe' (загружен из сети Интернет)
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- %TEMP%\18be6784_.exe
- %TEMP%\294823_.exe
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- 'in#####collection.com':80
- 'di###ture.info':80
- 'do######.masternations.net':80
- in#####collection.com/?HI#######################################
- di###ture.info/TyHelper.exe
- do######.masternations.net/?e=###############################################################################################################################
- DNS ASK in#####collection.com
- DNS ASK di###ture.info
- DNS ASK do######.masternations.net