Техническая информация
- <SYSTEM32>\tasks\microsoft\windows\mobiler\update
- <SYSTEM32>\tasks\microsoft\windows\mobiler\backup
- %ProgramFiles(x86)%\yycalendar\file.7z
- %ProgramFiles(x86)%\yycalendar\uninst.exe
- %ProgramFiles(x86)%\yycalendar\yycalendar.exe
- %ProgramFiles(x86)%\yycalendar\yymodel32.dll
- %ProgramFiles(x86)%\yycalendar\yymodel64.dll
- %PROGRAMDATA%\yycalendar\yymodel64.dll
- %ProgramFiles(x86)%\yycalendar\file.7z
- DNS ASK s.###ili.com
- '%WINDIR%\syswow64\rundll32.exe' "%PROGRAMDATA%\YYCalendar\YYModel64.dll",CheckUpDate
- '<SYSTEM32>\rundll32.exe' "%PROGRAMDATA%\YYCalendar\YYModel64.dll",CheckUpDate