Техническая информация
- <SYSTEM32>\tasks\firefox default browser agent 134421b72a7ce992
- %WINDIR%\microsoft.net\framework\v4.0.30319\applaunch.exe
- %WINDIR%\microsoft.net\framework\v4.0.30319\applaunch.exe
- %APPDATA%\svdsujv
- %TEMP%\33bc.exe
- %TEMP%\3736.exe
- %TEMP%\42bc.dll
- %APPDATA%\svdsujv
- 'po###ulit.org':80
- '79.##7.192.18':80
- http://79.##7.192.18/mar3.exe
- http://po###ulit.org/
- DNS ASK po###ulit.org
- '%TEMP%\33bc.exe'
- '%TEMP%\3736.exe'
- '%APPDATA%\svdsujv'
- '%APPDATA%\svdsujv' ' (со скрытым окном)
- '<SYSTEM32>\regsvr32.exe' /s %TEMP%\42BC.dll
- '%WINDIR%\microsoft.net\framework\v4.0.30319\applaunch.exe'
- '<SYSTEM32>\taskeng.exe' {267D04C2-EEFA-42B5-86E4-8CB81AA96DDB} S-1-5-21-3150914307-1777937420-491476919-1000:grwkumzt\user:Interactive:[1]