Техническая информация
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- %ALLUSERSPROFILE%\Desktop\Download dopolnenie.lnk
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- 'sd#######9gyaw5.endofdoom.ru':80
- 'ai###.###.ybabylinakolenyah.ru':80
- sd#######9gyaw5.endofdoom.ru/api
- ai###.###.ybabylinakolenyah.ru/api
- DNS ASK sd#######9gyaw5.endofdoom.ru
- DNS ASK ai###.###.ybabylinakolenyah.ru
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''