Техническая информация
- <SYSTEM32>\WinAppMNGR.exe
- %TEMP%\_MEI29122\python27.dll
- %TEMP%\_MEI29122\msvcr90.dll
- %TEMP%\_MEI29122\msvcp90.dll
- %TEMP%\_MEI29122\msvcm90.dll
- %TEMP%\_MEI29122\connector.exe.manifest
- %TEMP%\_MEI29122\bz2.pyd
- %TEMP%\_MEI29122\select.pyd
- %TEMP%\_MEI29122\_ssl.pyd
- %TEMP%\_MEI29122\_hashlib.pyd
- %TEMP%\_MEI29122\_ctypes.pyd
- %TEMP%\_MEI29122\Microsoft.VC90.CRT.manifest
- <SYSTEM32>\D64.exe
- <SYSTEM32>\D86.exe
- <SYSTEM32>\connectorp1.exe
- %TEMP%\_MEI29122\_socket.pyd
- %TEMP%\_MEI29122\unicodedata.pyd
- <SYSTEM32>\D86.exe
- <SYSTEM32>\D64.exe
- <SYSTEM32>\WinAppMNGR.exe
- '5.##6.70.86':82
- '5.##6.70.86':21
- '5.##6.70.86':1433
- '5.##6.70.86':8080
- '5.##6.70.86':1111
- '5.##6.70.86':25
- '5.##6.70.86':139
- '5.##6.70.86':143
- '5.##6.70.86':5555
- '5.##6.70.86':8443
- '5.##6.70.86':4444
- '5.##6.70.86':7777
- '5.##6.70.86':8181
- '5.##6.70.86':2222
- '5.##6.70.86':110
- '5.##6.70.86':3333
- '5.##6.70.86':8888
- '5.##6.70.86':443
- '5.##6.70.86':3306
- '5.##6.70.86':9999
- '5.##6.70.86':81
- '5.##6.70.86':6666
- '5.##6.70.86':389
- '5.##6.70.86':445
- '5.##6.70.86':80
- '5.##6.70.86':53
- '5.##6.70.86':3389
- http:/// via 5.##6.70.86
- ClassName: 'EDIT' WindowName: ''
- '<SYSTEM32>\connectorp1.exe'
- '<SYSTEM32>\cmd.exe' /c del /f /q <SYSTEM32>\D86.exe
- '<SYSTEM32>\cmd.exe' /c del /f /q <SYSTEM32>\D64.exe
- '<SYSTEM32>\cmd.exe' /c del /f /q <SYSTEM32>\WinAppMNGR.exe