Техническая информация
- '%TEMP%\nsm2.tmp\ns3.tmp' taskkill /f /im AppsUpdater.exe
- '<SYSTEM32>\taskkill.exe' /f /im AppsUpdater.exe
- %PROGRAM_FILES%\SoftwareUpdater\Interop.Shell32.dll
- %PROGRAM_FILES%\SoftwareUpdater\AppsUpdater.exe.config
- %PROGRAM_FILES%\SoftwareUpdater\AppsUpdaterSem.exe.config
- %TEMP%\nsm2.tmp\nsURL.dll
- %PROGRAM_FILES%\SoftwareUpdater\translations.xml
- %PROGRAM_FILES%\SoftwareUpdater\KeyGen.dll
- %TEMP%\nsm2.tmp\nsExec.dll
- %TEMP%\nsm2.tmp\SimpleSC.dll
- %TEMP%\nsm2.tmp\System.dll
- %PROGRAM_FILES%\SoftwareUpdater\config.xml
- %TEMP%\nsm2.tmp\tkDecript.dll
- %TEMP%\nsm2.tmp\ns3.tmp
- %PROGRAM_FILES%\SoftwareUpdater\AppsUpdaterSem.exe.config
- %TEMP%\nsm2.tmp\ns3.tmp
- 'www.up###atsone.com':80
- www.up###atsone.com/cmd/api.php?ac##########################
- DNS ASK www.up###atsone.com
- ClassName: '(null)' WindowName: '(null)'