Техническая информация
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\mshta.exe' c:\43e9570a-3200-448d-ae73-16a6655abf9e\start.hta
- C:\43e9570a-3200-448d-ae73-16a6655abf9e\Config.ini
- C:\43e9570a-3200-448d-ae73-16a6655abf9e\loader.gif
- C:\43e9570a-3200-448d-ae73-16a6655abf9e\lib99493.dll
- C:\43e9570a-3200-448d-ae73-16a6655abf9e\start.hta
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- 'se####e.srvmd9.com':80
- se####e.srvmd9.com/offers/getInstallerSettings.php?in##########################################
- DNS ASK se####e.srvmd9.com
- ClassName: 'Shell_TrayWnd' WindowName: ''