Техническая информация
- '%TEMP%\43WFV4t6894X.exe' (загружен из сети Интернет)
- '%TEMP%\jJ636Gq4hXrlK.exe' (загружен из сети Интернет)
- '%TEMP%\jJ636Gq4hXrlK.exe'
- '%TEMP%\43WFV4t6894X.exe' /in + /un /cb /rp /rf /mf /ai 14400 /ad 300 /pn "Costmin" /sf /ax /en 30 /path "#0\Supporter\Supporter.dll" /dn "Supporter 1.80" /prd "Supporter" /sn "Supporter" /iu "asp4Hwymrs/3mJLFHw4R5UlzU6...
- '%TEMP%\113711088\R1jB4GYdu.exe'
- '%TEMP%\113711088\0eVLa40C.exe'
- '%TEMP%\113711088\37n8Y5ZVX.exe'
- %TEMP%\113711088\0D6gvH3640AHc.ini
- %TEMP%\jJ636Gq4hXrlK.exe
- %TEMP%\43WFV4t6894X.exe
- %TEMP%\113711088\R1jB4GYdu.exe
- %TEMP%\113711088\0eVLa40C.exe
- %TEMP%\113711088\37n8Y5ZVX.exe
- %TEMP%\113711088\37n8Y5ZVX.exe
- %TEMP%\113711088\R1jB4GYdu.exe
- %TEMP%\113711088\0D6gvH3640AHc.ini
- %TEMP%\jJ636Gq4hXrlK.exe
- %TEMP%\43WFV4t6894X.exe
- %TEMP%\113711088\0eVLa40C.exe
- 'in#####collection.com':80
- 'su#####.costmin.info':80
- 'do#####d.costmin.info':80
- http://in#####collection.com/?HI#######################################
- http://su#####.costmin.info/
- http://do#####d.costmin.info/?e=########################################################################################################
- DNS ASK in#####collection.com
- DNS ASK su#####.costmin.info
- DNS ASK do#####d.costmin.info