Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'camocxwow.exe' = '%WINDIR%\camocxwow.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%WINDIR%\camocxwow.exe' = '%WINDIR%\camocxwow.exe:*:Enabled:Windows Update Service'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] '%WINDIR%\camocxwow.exe' = '%WINDIR%\camocxwow.exe:*:Enabled:Windows Update Service'
- %WINDIR%\camocxwow.exe
- <SYSTEM32>\netsh.exe firewall add allowedprogram program="%WINDIR%\camocxwow.exe" name="Windows Update Service" mode=ENABLE scope=ALL profile=ALL
- <SYSTEM32>\9DDCC9E44F12B4496310808ED4E11A06\unrar.exe
- %WINDIR%\camocxwow.exe
- <SYSTEM32>\9DDCC9E44F12B4496310808ED4E11A06\unrar.exe
- %WINDIR%\camocxwow.exe
- '89.##7.53.210':8080
- '91.##7.153.48':8080
- '95.##1.1.174':8080
- 89.##7.53.210/update/r6DFU_W76FQ_WM6FQ_W5KVPddccPeTTfWEbTTPURWQOQOedTeWWaQU_WGSCOQOQ_iQ_iQ_WZ7JQ_W51CTTRU_W
- 91.##7.153.48/update/r6DFU_W76FQ_WM6FQ_W5KVPddccPeTTfWEbTTPURWQOQOedTeWWaQU_WGSCOQOQ_iQ_iQ_WZ7JQ_W51CTTRU_W
- 95.##1.1.174/update/r6DFU_W76FQ_WM6FQ_W5KVPddccPeTTfWEbTTPURWQOQOedTeWWaQU_WGSCOQOQ_iQ_iQ_WZ7JQ_W51CTTRU_W