Техническая информация
- скрытых файлов
- %APPDATA%\windows\rantimebroker.exe
- %WINDIR%\serviceprofiles\networkservice\appdata\locallow\microsoft\cryptneturlcache\metadata\f0accf77cdcbff39f6191887f6d2d357
- %WINDIR%\serviceprofiles\networkservice\appdata\locallow\microsoft\cryptneturlcache\content\f0accf77cdcbff39f6191887f6d2d357
- %APPDATA%\windows\rantimebroker.exe
- http://hv##.biz/x64.y
- http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt
- DNS ASK hv##.biz
- DNS ASK bi##y.su
- ClassName: '' WindowName: 'Task Manager'
- ClassName: '' WindowName: 'Диспетчер задач'
- ClassName: '' WindowName: 'AnVir Task Manager'