Техническая информация
- '%TEMP%\adivokar.exe'
- '<SYSTEM32>\DllHost.exe' /pid=0xfd4 /log
- '<SYSTEM32>\DllHost.exe' /pid=0xb10 /log
- '<SYSTEM32>\conhost.exe' /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
- <Служебный элемент>
- %TEMP%\adivokar.exe
- %TEMP%\LogAdivokar.txt
- '18#.#55.243.105':443
- '95.##3.132.118':443
- '95.##3.141.50':443
- '37.##.144.177':443
- '68.##.59.145':443
- '76.##.81.120':443
- '84.##6.161.47':443
- '85.##5.104.170':443
- '19#.#28.203.19':443
- '87.##9.142.189':443
- '98.##4.11.253':443
- '24.##8.217.188':443
- '66.##6.61.218':443
- '21#.#6.93.250':443
- '98.##6.210.27':443
- '77.##.30.156':443
- '77.##.195.68':443
- '17#.#16.247.74':443
- '98.##9.75.164':443
- '76.##5.248.137':443
- DNS ASK dn#.##ftncsi.com
- DNS ASK ic###azip.com
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'OleMainThreadWndClass' WindowName: ''