Техническая информация
- '%TEMP%\pdfstore.exe'
- '<SYSTEM32>\rundll32.exe' dfdts.dll,DfdGetDefaultPolicyAndSMART
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\BOWDBRP7\3005HKdp[1].css
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\SOXZEUJX\3005HKdp[1].css
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YF7T7AK2\3005HKdp[1].css
- %TEMP%\pdfstore.exe
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\6P5SDOMI\3005HKdp[1].css
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\BOWDBRP7\3005HKdp[1].css
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\SOXZEUJX\3005HKdp[1].css
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\6P5SDOMI\3005HKdp[1].css
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YF7T7AK2\3005HKdp[1].css
- 'ut####nindia.com':80
- 'mo####gesquad.ca':80
- ut####nindia.com/images/background/3005HKdp.css
- mo####gesquad.ca/css/3005HKdp.css
- DNS ASK ut####nindia.com
- DNS ASK mo####gesquad.ca