Техническая информация
- '%ALLUSERSPROFILE%\THMS\RasTls.exe'
- '<SYSTEM32>\cscript.exe' del.vbs //NoLogo
- '<SYSTEM32>\cmd.exe' /c ""%ALLUSERSPROFILE%\THMS\del.bat" "
- '<SYSTEM32>\wscript.exe' "%ALLUSERSPROFILE%\THMS\DEL.VBS"
- %ALLUSERSPROFILE%\THMS\Configinfo.dat
- %ALLUSERSPROFILE%\THMS\MemoryLoad.dump
- %TEMP%\798370707272.log
- %ALLUSERSPROFILE%\THMS\DEL.VBS
- %ALLUSERSPROFILE%\THMS\RasTls.dll
- %ALLUSERSPROFILE%\THMS\RasTls.exe
- %ALLUSERSPROFILE%\THMS\DEL.BAT
- %ALLUSERSPROFILE%\THMS\MSSystem.dump
- %ALLUSERSPROFILE%\THMS\DEL.VBS
- 'www.di###ention.com':80
- DNS ASK www.di###ention.com
- ClassName: 'DOT1XTRAY' WindowName: 'Dot1x Tray'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'