Техническая информация
- '%TEMP%\8757.exe'
- '%TEMP%\4147.exe'
- '<SYSTEM32>\systeminfo.exe'
- %WINDIR%\Explorer.EXE
- %TEMP%\8757.exe
- %TEMP%\bm3.tmp
- %TEMP%\nsx2.tmp
- %TEMP%\4147.exe
- %TEMP%\8757.exe
- %TEMP%\4147.exe
- 've####a.junyks.cz':80
- ve####a.junyks.cz/report2_43524E4A45554655_006C5085_5_http___hostthenpost_org_uploads_4c70f8c5aa8c80c8449670362ffc0aa3_png
- ve####a.junyks.cz/report2_43524E4A45554655_006C5085_4_page_err
- ve####a.junyks.cz/report2_43524E4A45554655_006C5085_7_http___www_filedump_net_dumped_img3421380573415_png
- ve####a.junyks.cz/report2_43524E4A45554655_006C5085_6_page_err
- ve####a.junyks.cz/report2_43524E4A45554655_006C5085_1_already_ok
- ve####a.junyks.cz/report2_43524E4A45554655_006C5085_0_started
- ve####a.junyks.cz/report2_43524E4A45554655_006C5085_3_http___img194_imageshack_us_img194_1240_pr5s_png
- ve####a.junyks.cz/report2_43524E4A45554655_006C5085_2_mark_ok
- DNS ASK ho####enpost.org
- DNS ASK im####.imageshack.us
- DNS ASK ve####a.junyks.cz
- ClassName: 'LJ60123456789abcdefine PCI_WRITY_SWITCP_USERVERSE_EXIST' WindowName: 'STATUS_CTL32.dll'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'