Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001] 'LibraryPath' = 'mswsock.dll'
- <SYSTEM32>\services.exe
- %WINDIR%\Explorer.EXE
- <SYSTEM32>\alg.exe
- %TEMP%\WER22e0.dir00\alg.exe.hdmp
- %TEMP%\WER22e0.dir00\alg.exe.mdmp
- %TEMP%\WER22e0.dir00\manifest.txt
- %TEMP%\WER22e0.dir00\appcompat.txt
- %WINDIR%\assembly\GAC\Desktop.ini
- C:\RECYCLER\S-1-5-21-2052111302-484763869-725345543-1003\$2ebe1c2e2a38cb36436c4d1cb8c2630c\n
- C:\RECYCLER\S-1-5-21-2052111302-484763869-725345543-1003\$2ebe1c2e2a38cb36436c4d1cb8c2630c\@
- C:\RECYCLER\S-1-5-18\$2ebe1c2e2a38cb36436c4d1cb8c2630c\n
- C:\RECYCLER\S-1-5-18\$2ebe1c2e2a38cb36436c4d1cb8c2630c\@
- <SYSTEM32>\wbem\Logs\wbemess.lo_
- 'j.###mind.com':80
- j.###mind.com/app/geoip.js
- DNS ASK �#��
- DNS ASK �#�d\
- DNS ASK �#�n
- DNS ASK �#����
- DNS ASK �#4=�4
- DNS ASK �#�i
- DNS ASK j.###mind.com
- DNS ASK �#�Ht
- DNS ASK �#�\�
- DNS ASK �#�=4)