Техническая информация
- '<SYSTEM32>\consent.exe' 840 480 0175DF78
- %WINDIR%\Explorer.EXE
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YIF7DGLM\jquery[1]
- %TEMP%\UpdateFlashPlayer_f666a34c.exe
- %TEMP%\tmp8c0e68ec.bat
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YIF7DGLM\1480[1]
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YIF7DGLM\jquery[1]
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YIF7DGLM\1480[1]
- 'ce##gone.su':80
- 'op##isp.su':80
- ce##gone.su/mod_articles-auth-qa659.587/jquery/
- op##isp.su/b/shoe/1480
- DNS ASK ce##gone.su
- DNS ASK op##isp.su