Техническая информация
- '%TEMP%\ccgcabfifbia.exe' 4-1-0-2-7-1-4-7-3-2-2 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
- '%TEMP%\Setup.exe'
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81431863627.txt bios get serialnumber
- %TEMP%\rc27.exe
- %TEMP%\nsa2.tmp\nsisunz.dll
- %TEMP%\tmp4.tmp
- %TEMP%\tmp3.tmp
- %TEMP%\rc27.ccgcabfifbia
- %TEMP%\tm12fcqr.tor
- %TEMP%\ccgcabfifbia.zip
- %TEMP%\nsa2.tmp\hug.dll
- %TEMP%\tmp3.tmp
- %TEMP%\rc27.exe в %TEMP%\ccgcabfifbia.exe
- %TEMP%\tm12fcqr.tor в %TEMP%\Setup.exe
- 'tl.##mcb.com':80
- 'wp#d':80
- http://tl.##mcb.com/tl.crt
- http://11#.#11.111.1/wpad.dat via wp#d
- DNS ASK tl.##mcb.com
- DNS ASK www.download.windowsupdate.com
- DNS ASK wp#d