Техническая информация
- ClassName: 'Filemonclass' WindowName: '(null)'
- ClassName: 'Regmonclass' WindowName: '(null)'
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\xxwging[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\lhwwg[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\yy325858.taobao[1]
- %TEMP%\1d629.tmp
- <SYSTEM32>\gameeckbZm8.sys
- %TEMP%\1c28f.tmp
- %TEMP%\1d33a.tmp
- %TEMP%\1d33a.tmp
- %TEMP%\1d629.tmp
- <SYSTEM32>\gameeckbZm8.sys
- %TEMP%\1c28f.tmp
- 'www.lh##g.com':80
- 'yy####58.taobao.com':80
- 'www.xx##ing.com':80
- '12#.#25.114.144':80
- 'localhost':1037
- www.lh##g.com/
- yy####58.taobao.com/
- 12#.#25.114.144/new/xjp0595
- www.xx##ing.com/
- DNS ASK www.lh##g.com
- DNS ASK yy####58.taobao.com
- DNS ASK hi.##idu.com
- DNS ASK www.xx##ing.com
- ClassName: 'MS_AutodialMonitor' WindowName: '(null)'
- ClassName: 'MS_WebcheckMonitor' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: '4823-00000029' WindowName: '(null)'
- ClassName: '18467-41' WindowName: '(null)'