Техническая информация
- %LOCALAPPDATA%\google\chrome\user data\default\cookies
- %LOCALAPPDATA%\google\chrome\user data\default\web data
- %PROGRAMDATA%\1111.exe
- %TEMP%\2tsa1tfteuf.fv
- %TEMP%\ya5xvxtrga2.fv
- %TEMP%\c44byqvewta.fv
- %TEMP%\2g1da3amphy.fv
- %LOCALAPPDATA%\u3lzdgvtlknoyxjbxq\cacheservice\browsers\cookies\cookies_2.txt
- %TEMP%\ldgjr5e1wph.fv
- %LOCALAPPDATA%\u3lzdgvtlknoyxjbxq\cacheservice\browsers\cookieslist.txt
- %LOCALAPPDATA%\u3lzdgvtlknoyxjbxq\cacheservice\browsers\cookies\cookies_0.txt
- %TEMP%\qvrmy41bb3a.fv
- %LOCALAPPDATA%\u3lzdgvtlknoyxjbxq\cacheservice\browsers\passwords.txt
- %TEMP%\53jelcgnmni.fv
- %TEMP%\d5pgn3y5fdf.fv
- %PROGRAMDATA%\debug.txt
- %LOCALAPPDATA%\u3lzdgvtlknoyxjbxq\cacheservice\image.png
- %PROGRAMDATA%\222.exe
- %LOCALAPPDATA%\u3lzdgvtlknoyxjbxq\cacheservice\browsers\autofill.txt
- %PROGRAMDATA%\wmi provider host\wmi64update.exe
- %TEMP%\qvrmy41bb3a.fv
- %TEMP%\ldgjr5e1wph.fv
- http://gr#.#zz.com.ua/st1l.exe
- http://gr#.#zz.com.ua/minimine.exe
- DNS ASK gr#.#zz.com.ua
- DNS ASK ve#######dom.000webhostapp.com
- DNS ASK mu#######fsx.000webhostapp.com
- DNS ASK fu#######jpd.000webhostapp.com
- '%PROGRAMDATA%\1111.exe'
- '%PROGRAMDATA%\222.exe'
- '%PROGRAMDATA%\wmi provider host\wmi64update.exe'