Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Windows Time Manager' = '%PROGRAMDATA%\TimeManager.exe'
- <SYSTEM32>\svchost.exe
- %PROGRAMDATA%\timemanager.exe
- %PROGRAMDATA%\time manager\auto_proc64
- %PROGRAMDATA%\timemanager.exe
- %PROGRAMDATA%\time manager\auto_proc64
- 'lk###fdsa1.ru':25998
- 'lk###fdsa1.ru':31258
- 'iv####nv-test.ru':39523
- DNS ASK google-public-dns-a.google.com
- DNS ASK lk###fdsa1.ru
- DNS ASK iv####nv-test.ru
- '<SYSTEM32>\svchost.exe'