Техническая информация
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- %TEMP%\muj2.tmp
- %TEMP%\mda1.tmp
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- 'up####.cascadedgt.net':80
- http://up####.cascadedgt.net/CYpq2x8ejIpV2IvP8COXp8-LBfIDanTYA4xqzx-K8LWn24zPH_CXp4ofCR-KimoD8KfP8Eoml9ivp4of8oyKEdi0igPw5BER8kwjj0yOCEyOCBGKauxVBRFqEWryiwr9i9pMjgiKH_KMihFMjggFEWqKETEiBRFqAwNMjgin2x8Ras9qEWrYOh8i2OyMIgmLOvCvjkwjj45MjjsjTCOPl0yOO0pMI48LTI47Qq9MI49vTI47Jq9MI4-vTI47r69MI4-vjkyOO68jTCOPr5dMjjuvSkwjj68LTI47r0JMI4-vb6cffh_Yi8_wb5enizoijIof2OyMtCIRinTY22oi2IwJCR-K2IvPBfCvpwWLAx8iEfCvp4wJCR-K2IvPBfBKr5dMjjuXC5en/installer/
- DNS ASK up####.cascadedgt.net